dannydannydanny/dotfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(clan): re-enable dm-pull-deploy via forked clan-community 🌊

Browse source 
Stage 4e, take 2. Point the clan-community input at our fork's branch
that sanitizes machine.name for data-mesher's file-name validator
(upstream PR: clan/clan-community#25). Revisit this pin once merged.

- flake.nix: clan-community.url → fork + fix branch
- flake-modules/clan.nix: re-adds meta.domain = "clan",
  inventory.instances.data-mesher (sunken-ship bootstrap, both default),
  inventory.instances.dm-pull-deploy (sunken-ship push, both default
  action="switch"), and clanHostsModule that puts /etc/hosts entries
  for <host>.clan → each machine's ZT IPv6 so libp2p multiaddr
  resolution works without a clan-domain DNS server.
- Generator vars for data-mesher + dm-pull-deploy signing keys were
  regenerated on sunken-ship (data-mesher isn't packaged for
  aarch64-darwin, so clan vars generate runs on Linux).
This commit is contained in:
DannyDannyDanny 2026-04-20 19:58:16 +02:00
parent 1d4c6c8f4f
commit 22808f39fa
34 changed files with 337 additions and 20 deletions
Download patch file Download diff file Expand all files Collapse all files

14
vars/shared/data-mesher-network/network.key/secret Normal file
View file

@ -0,0 +1,14 @@
{
"data": "ENC[AES256_GCM,data:N5diXVSyLS5354gi5UcSK7iWflVH549PGf4ugg/mIk0utPBscDV/9HaRCn5KWvprBeLmAgnSrFs9syU17Zwwf7FHPE1RfhalN+Pi0sesttMIBc9Bni7IcmVpFY+pXJxoqGdIkM7grEtWBquJWh1cSL1ICbG4Vz0=,iv:jdEXN0pyyYnsCtr0qEI5e3e8s1GS6Lk0HnZBI6q0Wb8=,tag:JPLfvnOFdfRtWREumJ3sow==,type:str]",
"sops": {
"age": [
{
"recipient": "age1g6y8gvcampqj5y3yzdajke2h5n7k6ckdg6a424cghy5325px7cmqjmmd28",
"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBqaGt1dGY3RmZJaW9icGJw\nZ1RGQStFN3Z4R3BrcXVHRmZGOE1FcjFhRUM4Cmd5UnNmMFVpYU5CbFNicTBBS0tQ\nWUdOMnBMZk1Qc3NrY1NIMjJFc01PcU0KLS0tIG1sOFk1VEFyQmZuczZUeC9hSWZ3\nL0FXelZ2b3RrbVZMSGJOSDk2bDZkNU0KNVGQqSX5jSxLqAcvjyofkDP8rudeusEN\nrfrrqmvP6NUgiuQiBAWpXFS6Vt8aNIWwhpk/Ij3zw0rNWH4wdV5YSg==\n-----END AGE ENCRYPTED FILE-----\n"
}
],
"lastmodified": "2026-04-20T17:57:25Z",
"mac": "ENC[AES256_GCM,data:LB+xpBT4SsjEZKMBE5JMATxOKGmLITAurL5ZAtCT1eVBJ+2kf7hp/EdmW29RrqeRZhQe3vVVo37qsud+jkACMYODmMBAzhwz7i2c2OQBFoz65MKth74B1BaV1AIfiCxghNbFExqfwV4SCnV4XntHxYelG97GfV9hWCLRdykaD10=,iv:fnkmHHJiwtfIC4F3FXXXH4vDmFls72F1UqhL45pvAsI=,tag:8fvUupt25Ta+CA9QExtpzg==,type:str]",
"version": "3.12.2"
}
}

1
vars/shared/data-mesher-network/network.key/users/danny Symbolic link
View file

@ -0,0 +1 @@
../../../../../sops/users/danny