Documents the host-local UNIX-socket pub/sub transport: architecture,
topic hierarchy, env vars, code examples (publish/subscribe +
get_app_bus for the API), at-most-once delivery semantics, the
live-topology-mutation worked example, testing helpers, and
troubleshooting. Linked from the user-docs section of the sidebar
between Systemd setup and Logging.
docs: document swarm/agent/updater APIs and add PKI-and-mTLS reference
- Module-Reference-Workers: new sections for decnet/swarm/, decnet/agent/,
and decnet/updater/ covering exported symbols, FastAPI routes, uvicorn
launcher flags, and the executor seams the test suite monkeypatches.
- PKI-and-mTLS: standalone developer page covering CA generation, leaf
issuance, SSLContext wiring (client + server), the VERIFY_X509_STRICT
workaround for Python 3.13, the RFC 5425 log pipeline's reuse of the
same CA, and the currently-unenforced CN/role-separation gap.
- Sidebar: link the new PKI page from the Developer docs section.
docs(swarm): add SWARM Mode page and cross-link from Deployment Modes
Comprehensive walkthrough for the newly-landed SWARM control plane:
- Architecture diagram (master: swarmctl/listener/ingester/api; worker:
agent/forwarder) with ports cheat sheet
- Step-by-step setup (CA bootstrap, enrollment, bundle shipment, agent +
forwarder startup, check, first swarm deploy)
- Full command reference for swarmctl, listener, agent, forwarder, and
the swarm enroll/list/check/decommission subcommands
- Log-pipeline end-to-end story (RFC 5424 on worker → RFC 5425 mTLS on
6514 → master.json → ingester → dashboard), including tcpdump-based
plaintext-leak check and source_worker provenance note
- Operational concerns: master crash resume (no dup/loss), worker crash,
CA rotation, cert rotation, teardown
- Security posture summary
- Known limitations (get_host_ip master-side bug, no web UI yet,
round-robin only, single master)
- Troubleshooting matrix
Deployment-Modes: trimmed the old 'swarm is not implemented, drive it
from Ansible' section and replaced with a link to the new page.
_Sidebar: added SWARM-Mode under User docs.
