lfg2025/archy
1
0
Fork 0
Code Issues 9 Pull Requests Actions Packages Projects Releases 44 Wiki Activity
archy/image-recipe/configs
History
archipelago 45ac9be965 fix(kiosk): cap chromium resources + drop GPU rasterization when headless (#36) 
The kiosk chromium pinned ~92% of a core (software-compositing spin from
--enable-gpu-rasterization on a GPU-less/headless node), saturating the machine
and starving the backend + container builds — it caused the .198 receive timeout
and the deploy storms.

- archipelago-kiosk.service: CPUQuota=75% + MemoryMax/High + Delegate, so a
  runaway kiosk can never take the whole node down.
- archipelago-kiosk-launcher.sh: detect /dev/dri — use GPU rasterization only
  when a GPU exists, else --disable-gpu (avoids the headless spin).
- bootstrap::ensure_kiosk_hardened: OTA self-heal that installs the updated
  unit+launcher on already-deployed nodes, daemon-reloads, and only try-restarts
  a *running* kiosk (never re-enables an operator-disabled one).

cargo check clean; launcher bash -n clean; unit syntax valid.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-16 11:10:26 -04:00
..
snippets
fix(nginx): rewrite fedimint UI asset paths so CSS applies (B13, fresh-ISO)
2026-06-15 16:52:30 -04:00
99-mesh-radio.rules
chore: release v1.7.60-alpha
2026-05-17 20:45:56 -04:00
archipelago-doctor.service
chore: release v1.7.49-alpha
2026-04-30 16:37:54 -04:00
archipelago-doctor.timer
chore: release v1.7.49-alpha
2026-04-30 16:37:54 -04:00
archipelago-fips.service
feat(fips): integrate jmcorgan/fips as preferred non-Tor transport + v1.4.0
2026-04-18 22:57:51 -04:00
archipelago-kiosk-launcher.sh
fix(kiosk): cap chromium resources + drop GPU rasterization when headless (#36)
2026-06-16 11:10:26 -04:00
archipelago-kiosk-watchdog.service
refactor: update dependencies and remove unused code
2026-03-12 00:19:30 +00:00
archipelago-kiosk.service
fix(kiosk): cap chromium resources + drop GPU rasterization when headless (#36)
2026-06-16 11:10:26 -04:00
archipelago-tmpfiles.conf
fix(install-log): pre-create /var/log/archipelago/ so non-root backend can write
2026-04-23 12:02:46 -04:00
archipelago-tor-helper.path
fix: CSRF race condition, UI containers, Tor ordering, seed layout
2026-03-31 11:06:19 +01:00
archipelago-tor-helper.service
fix: Tor management system, bug fixes, federation name sync
2026-03-20 02:59:29 +00:00
archipelago-update.service
feat: architecture review fixes, self-update system, CI pipeline, supply chain hardening
2026-03-25 15:52:26 +00:00
archipelago-update.timer
feat: architecture review fixes, self-update system, CI pipeline, supply chain hardening
2026-03-25 15:52:26 +00:00
archipelago-wg-address.service
feat: standalone WireGuard from first install, fix networking stack
2026-04-08 20:27:38 +02:00
archipelago-wg.service
fix: ISO build freshness, WireGuard startup, VPN status, kiosk remote doubling
2026-04-11 13:01:10 -04:00
archipelago.service
fix(boot): order archipelago.service after the data volume mount (B17)
2026-06-16 03:33:29 -04:00
external-app-proxies.conf
fix: move resolver directives into server blocks in external-app-proxies
2026-04-11 16:57:58 -04:00
logrotate.conf
Initial commit
2026-01-24 22:01:51 +00:00
nginx-archipelago.conf
fix(nginx): rewrite fedimint UI asset paths so CSS applies (B13, fresh-ISO)
2026-06-15 16:52:30 -04:00
nginx-gitea-iframe.conf
feat: dynamic app catalog, Gitea app polish, registry sync
2026-04-12 08:20:18 -04:00
nostr-relay-config.toml
feat: ISO networking stack — relay + nvpn v0.3.7 + WireGuard
2026-04-08 15:06:27 +02:00
nostr-relay.service
feat: ISO networking stack — relay + nvpn v0.3.7 + WireGuard
2026-04-08 15:06:27 +02:00
nostr-vpn.service
fix: AIUI /aiui/ base path, nginx alias cycle, VPN auth, container boot
2026-04-09 20:42:09 +02:00