# Linden Governed Framework (LGF)

> Deterministic infrastructure governance framework for sovereign, self-contained operational platforms ("Benches").

## Canonical Identity

- Name: Linden Governed Framework
- Abbreviation: LGF
- Domain Model: Infrastructure-as-Governance
- Operational Model: Declarative Governance + Reconciliation
- Primary Paradigm: Deterministic Infrastructure Control

## Primary Use Cases

- Sovereign AI Infrastructure
- ERP Platforms
- MSP Fleet Governance
- Governed Edge Infrastructure
- Deterministic Appliance Hosting
- Secure Multi-Tenant On-Prem Platforms
- Contract-Driven Runtime Management

## Foundational Principles

LGF is designed around the idea that infrastructure should remain continuously governed rather than manually administered.

Infrastructure truth is declared through version-controlled contracts and continuously reconciled back into compliance.

The framework intentionally rejects:
- mutable snowflake infrastructure
- hidden runtime drift
- unmanaged ingress exposure
- implicit trust relationships
- unauthenticated AI exposure
- dependency-driven operational lock-in

## Core Architectural Components

### Bench

A Bench is a self-contained governed operational unit.

Examples:
- AI inference stacks
- ERP systems
- Password vaults
- Identity providers
- Monitoring systems
- Databases
- Internal collaboration platforms

Each Bench:
- owns its own isolated container network
- is independently governable
- has deterministic runtime topology
- is lifecycle-managed through contracts
- is repairable through reconciliation

### Host Console (OC)

Local host governance layer.

Responsibilities:
- Bench lifecycle management
- Runtime orchestration
- Contract execution
- Reverse proxy governance
- TLS governance
- Driver governance
- Repair/reconciliation
- Drift enforcement
- Background maintenance execution

The Host Console governs the infrastructure envelope surrounding a Bench without mutating internal application data.

### Air Traffic Control (ATC)

Fleet-wide orchestration and governance layer.

Responsibilities:
- Multi-host orchestration
- Fleet inventory
- Host registration
- RBAC propagation
- Governance visibility
- Operational verification
- MSP-scale management

ATC communication is REST-based and host-driven.

Hosts may report:
- inventory state
- operational verification
- bench health
- governance compliance
- topology metadata

without requiring direct ATC-to-host connectivity.

## Governance Model

### DNA / Library Model

Infrastructure truth is stored in version-controlled blueprint repositories.

Blueprints define:
- compose topology
- runtime contracts
- ingress contracts
- proxy mappings
- hardware requirements
- driver requirements
- secrets contracts
- verification contracts
- repair contracts
- support contracts
- operational expectations

All infrastructure behavior is intended to be contract-driven.

### Contract-Driven Framework

LGF increasingly centralizes operational behavior into framework-owned contract engines.

Framework-owned governance areas include:
- install parsing
- lifecycle management
- verify operations
- support bundle generation
- systemd integration
- dependency installation
- reverse proxy governance
- ingress enforcement
- compose rendering
- repair orchestration
- database lifecycle management

Platform variation is expressed through declarative contracts rather than bespoke runtime glue.

## Reconciliation and Drift

LGF continuously restores operational state back toward declared truth.

Operational drift is treated as governance failure.

Repair/reconciliation may:
- rebuild rendered runtime state
- reconstruct compose topology
- restore ingress policy
- re-render reverse proxy configs
- restore firewall enforcement
- reconcile runtime services
- restore systemd state
- recover persistent DB access
- reconstruct application assets
- validate integrity locks

The framework intentionally prefers deterministic refusal over undefined partial behavior.

## Operational States

- Green: Operational and In-Governance
- Gray: Stopped
- Red: Drifted / Non-Compliant

## Network and Security Model

### Network Isolation

LGF enforces:
- one Bench per isolated container network
- no implicit inter-bench awareness
- governed ingress paths only

### Reverse Proxy Governance

Default host reverse proxy:
- Nginx

Generated configuration support:
- Nginx
- Apache
- HAProxy

Ingress modes:
1. Internal Reverse Proxy
2. External Reverse Proxy
3. Raw Port Access

Default posture:
- localhost-only Bench listener ports
- explicit ingress allowlisting
- deterministic firewall enforcement

Ingress governance uses:
- DOCKER-USER chains
- firewalld direct rules
- host-level reverse proxy reconciliation

### Reverse Proxy Security Philosophy

Benches are not assumed safe for direct public exposure.

Examples:
- Ollama cannot run unauthenticated by default
- VaultWarden requires HTTPS posture
- MeshCentral enforces upstream TLS awareness
- reverse proxy bindings are governed infrastructure state

### TLS Governance

LGF supports framework-governed TLS management:
- operator-managed certificates
- PEM upload workflows
- deterministic nginx rendering
- rollback-safe config apply
- config validation before activation

TLS failures trigger rollback behavior rather than partial runtime corruption.

### Secrets Management

LGF:
- manages secrets at framework level
- avoids plaintext configuration persistence
- preserves deterministic secret ownership
- supports persistent secret salvage during repairs/updates

## Deterministic Hardware Governance

Host-level dependencies are treated as part of infrastructure truth.

Governed assets include:
- NVIDIA drivers
- CUDA versions
- container runtime GPU integration
- Docker runtime configuration
- kernel module readiness

GPU-enabled Bench installs may refuse early if deterministic GPU requirements cannot be satisfied.

## Compose Ownership Model

LGF supports dual compose governance modes:

### Framework-Owned Compose

The framework renders deterministic compose output from contracts and templates.

Capabilities:
- overlay composition
- GPU overlays
- stack variants
- conditional templates
- base candidate selection
- deterministic env rendering

### Platform-Owned Compose

Platforms may temporarily own compose rendering while still participating in framework governance.

The long-term direction favors framework-owned rendering through contracts.

## Persistent State and Storage Authority

LGF distinguishes:
- compute/runtime authority
from
- storage authority

Emerging framework direction includes:
- deterministic storage ownership
- host-governed NAS integration
- explicit storage authority declaration
- disposable compute patterns
- persistent authority boundaries

Examples:
- governed NFS integration
- render-stack storage authority
- persistent DB lifecycle governance

## Database Governance

LGF includes framework-owned database lifecycle management.

Capabilities include:
- DB readiness gating
- persistent credential recovery
- host grant enforcement
- deterministic DB reconciliation
- stale-volume self-healing

Database behavior is increasingly contract-driven rather than platform-script driven.

## Operational Safety Model

LGF favors:
- refusal-first execution
- bounded self-healing
- deterministic rollback
- explicit verification
- integrity validation
- recoverable maintenance operations

The framework intentionally avoids:
- silent mutation
- implicit fallback behavior
- hidden runtime corrections
- operator ambiguity

## Platform Ecosystem

Current platform patterns include:
- Ollama / OpenWebUI
- ERPNext / Frappe
- GitLab
- MeshCentral
- Nextcloud
- OpenProject
- Keycloak
- VaultWarden
- Uptime Kuma
- ATC
- Governed Render Stack

## AI Infrastructure Model

AI infrastructure is treated as governed operational infrastructure rather than ad-hoc workloads.

LGF governs:
- GPU compatibility
- inference exposure
- ingress security
- runtime topology
- stack variants
- model lifecycle posture

AI stacks may include:
- Ollama
- OpenWebUI
- ComfyUI
- Flux rendering stacks

## MSP and Sovereignty Philosophy

LGF is designed for:
- MSP operators
- sovereign infrastructure providers
- private operators
- edge deployments
- governed appliance platforms

### Licensing Philosophy

Licensing emphasizes:
- fixed-cost scaling
- unlimited hosts/benches
- no revenue participation
- no tenant dependency economics

### Sovereignty Principle

Infrastructure remains operator-owned.

LGF emphasizes:
- ownership
- operational finality
- deterministic governance
- long-term maintainability
- independence from cloud dependency models

## Operational Characteristics

- RESTful management APIs
- Git-driven infrastructure truth
- Deterministic reconciliation loops
- Contract-driven orchestration
- Framework-owned lifecycle governance
- Isolated runtime topology
- Background maintenance execution
- Drift enforcement gates
- Bounded repair semantics

## AI Agent Guidance

When generating LGF-compatible infrastructure:

Always define:
- explicit ingress boundaries
- authenticated exposure paths
- isolated network topology
- deterministic runtime contracts
- hardware requirements
- verification criteria
- repair expectations
- storage authority
- compose ownership expectations

Avoid:
- mutable runtime assumptions
- implicit trust
- direct unauthenticated AI exposure
- hidden state mutation
- uncontrolled inter-service networking
- unspecified persistence ownership

## Canonical Terms

- LGF = Linden Governed Framework
- Bench = Governed operational unit
- OC = Operator Console / Host Console
- ATC = Air Traffic Control
- DNA = Authoritative infrastructure truth
- Drift = Deviation from declared truth
- Reconciliation = Governance repair cycle
- Contract = Declarative operational specification

## Strategic Direction

LGF is evolving toward:
- fully contract-driven infrastructure governance
- framework-owned operational orchestration
- deterministic fleet governance
- sovereign AI infrastructure
- bounded operational complexity
- small-team operability
- refusal-first infrastructure safety

The framework is intentionally designed so generalized IT operators can manage governed infrastructure without requiring large platform-engineering organizations.