imladris

Author	SHA1	Message	Date
Kyle Isom	3be5613120	Fix deprecated NixOS options for 25.11 - Use nixpkgs.hostPlatform module instead of deprecated system arg to lib.nixosSystem - Rename services.logind.powerKey to services.logind.settings.Login.HandlePowerKey Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-03 09:53:25 -07:00
Kyle Isom	5d82e27ba4	Add fallback DNS resolvers to all nodes All nodes now list 1.1.1.1 and 8.8.8.8 as fallback nameservers after MCNS. When MCNS is down, internal names (.svc.mcp.metacircular.net) fail but external DNS (google.com, github.com, etc.) keeps working. Lesson from 2026-04-03 incident: without fallbacks, MCNS failure caused total DNS blackout including external services, forcing Tailscale to be disabled to restore any DNS resolution. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-03 09:30:09 -07:00
Kyle Isom	c26f5b9a87	ignore power key on vade	2026-03-30 13:04:53 -07:00
Kyle Isom	a1c59deb0b	Disable Tailscale DNS management on vade to fix DNS timeout Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-26 21:54:00 -07:00
Kyle Isom	c0d16c97e0	revert dns bugs	2026-03-26 21:38:05 -07:00
Kyle Isom	8c9d8f4ff5	Fix DNS: restore Tailscale catch-all removal service The previous commit removed the systemd service that stripped Tailscale's ~. DNS catch-all, breaking all DNS resolution — even when Tailscale is disconnected. Restore it as fix-tailscale-dns, which restricts tailscale0 to only route ~scylla-hammerhead.ts.net queries. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-26 21:32:15 -07:00
Kyle Isom	0e54bd5fe7	Use /etc/hosts for internal Metacircular names (Tailscale DNS workaround)	2026-03-26 15:41:30 -07:00
Kyle Isom	ad3b6b949b	Fix: add pkgs to vade module arguments	2026-03-26 15:37:53 -07:00
Kyle Isom	c8b271d6b9	Fix DNS routing: override Tailscale catch-all for mcp.metacircular.net	2026-03-26 15:35:47 -07:00
Kyle Isom	71702dfb06	Add metacircular control programs to rift, orion, and vade Install mciasctl, mciasgrpcctl, mcrctl, and mcproxyctl via new configs/mcpkg.nix module. Adds flake inputs for mcias, mcr, and mc-proxy from git.wntrmute.dev. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-25 21:11:25 -07:00
Kyle Isom	73be02eaae	vade: route mcp.metacircular.net zone to rift via resolved Link-level DNS from DHCP and Tailscale takes priority over global nameservers in systemd-resolved. Use domain routing (~mcp.metacircular.net) so resolved sends only internal zone queries to rift's CoreDNS. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-25 19:22:35 -07:00
Kyle Isom	eecb3973b1	rift: allow port 53 for CoreDNS, vade: use rift as DNS rift: sysctl to allow rootless containers to bind port 53, open firewall for DNS queries from LAN clients. vade: point nameservers at rift (LAN + Tailscale) for internal service resolution via CoreDNS (MCNS precursor). Falls back to 1.1.1.1/8.8.8.8 via systemd-resolved. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-25 19:19:02 -07:00
Kyle Isom	998a1d9aaf	fix stylus support	2026-03-25 16:29:04 -07:00
Kyle Isom	d1aee2f30e	vade: prefer FIDO2 over passphrase for LUKS unlock Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-24 23:56:40 -07:00
Kyle Isom	efe0252473	flake updates and systemd initrd	2026-03-24 23:23:15 -07:00
Kyle Isom	fd6f699068	add power optimizations for vade laptop Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-03-17 18:12:25 -07:00
Kyle Isom	155f8d4aac	add nixos-hardware module for framework 12 laptop Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-03-17 18:03:03 -07:00
Kyle Isom	e8c45e54d0	add vade hardware config	2026-03-17 12:23:46 -07:00
Kyle Isom	099a6e4250	splitting things out for vade	2026-03-16 19:18:26 -07:00
Kyle Isom	d3bc36ef59	Start vade.	2026-03-16 18:32:11 -07:00

20 Commits