Skip to content

docs/build(source-os): add mesh linux estate integration kit#13

Merged
mdheller merged 14 commits intomainfrom
mesh-linux-estate-bootstrap
Apr 16, 2026
Merged

docs/build(source-os): add mesh linux estate integration kit#13
mdheller merged 14 commits intomainfrom
mesh-linux-estate-bootstrap

Conversation

@mdheller
Copy link
Copy Markdown
Member

@mdheller mdheller commented Apr 16, 2026

Summary

Land the first Linux-realization capture for the mesh work in source-os.

This PR adds:

  • docs/mesh/ planning and path-template docs
  • linux/systemd-networkd/ WireGuard underlay and policy templates
  • linux/systemd/ helper unit templates for meshd, meshd-linkd, and meshd-exitd
  • linux/networkmanager/ workstation WireGuard profile template
  • linux/nftables/ exit policy template
  • linux/packaging/ package-split notes
  • examples/nmcli/ operator hardening example
  • README links clarifying placement

Placement rule

This repository remains the Linux realization home.
Shared schemas and canonical vocabulary are intentionally split to SocioProphet/socioprophet-agent-standards.

Follow-up

Still needed after merge:

  • distro/kernel/systemd/NetworkManager floor matrix
  • NixOS module realization of these templates
  • SELinux/AppArmor confinement
  • CI validation for the example templates

mdheller added 14 commits April 16, 2026 09:54
@mdheller
docs(source-os): add mesh linux estate landing page
ab50aba
@mdheller
docs(source-os): add mesh linux estate upstream plan
1ba4e13
@mdheller
docs(source-os): add traffic class and path template matrix
93dfde9
@mdheller
docs(source-os): add upstream workstreams for mesh linux estate
2cca465
@mdheller
build(source-os): add mesh systemd-networkd underlay template
d4cb7fb
@mdheller
build(source-os): add mesh systemd-networkd policy template
3d7dad2
@mdheller
build(source-os): add mesh exit nftables template
86172af
@mdheller
build(source-os): add meshd service unit
eb34ef7
@mdheller
build(source-os): add meshd-linkd service unit
4e0fa14
@mdheller
build(source-os): add meshd-exitd service unit
aecd079
@mdheller
build(source-os): add NetworkManager mesh profile template
ef7aa55
@mdheller
docs(source-os): add nmcli hardening example for mesh exits
d429481
@mdheller
docs(source-os): add mesh packaging notes
4ad470d
@mdheller
docs(source-os): link mesh linux estate integration surfaces
eae37cf
@mdheller mdheller marked this pull request as ready for review April 16, 2026 21:04
@mdheller mdheller merged commit 84303a3 into main Apr 16, 2026
@mdheller mdheller deleted the mesh-linux-estate-bootstrap branch April 16, 2026 21:05
This was referenced Apr 16, 2026
Open
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mdheller