osModa: The Operating System
Where the AI Agent IS the OS

01 The Problem We Solve

A developer with a $3,500 Mac Studio tops out at 4-5 concurrent AI agents. When agent #5 spawns and the OOM killer fires, all five die. Your agents crash at 3am and nobody notices until morning. You're running critical automation on hardware with no audit trail, no rollback, no self-healing, and no way to prove what happened.

The AI agent ecosystem is exploding — Claude Code, Cursor, Devin, AutoGPT, CrewAI, LangGraph — but the infrastructure layer is stuck in the 2010s. Developers are running these agents on bare Linux VMs with systemd and docker-compose, praying nothing breaks. There's no operating system designed specifically for the workload patterns of autonomous AI agents: bursty resource usage, long-running sessions, inter-agent communication, and the absolute requirement for auditability.

osModa is that operating system. Not a container. Not a VM image. Not a SaaS platform. A real operating system built from the kernel up to make AI agent infrastructure self-managing, auditable, and resilient.

02 Three-Ring Trust Architecture

Security isn't bolted on. It's the foundation. osModa implements a three-ring trust model inspired by CPU privilege rings, but applied to the agent ecosystem:

This isn't theoretical. Every API call, every file mutation, every network request flows through the trust model. The AI agent in Ring 0 can grant capabilities to Ring 1 apps, and Ring 1 apps can invoke Ring 2 tools — but never the reverse. Lower rings cannot escalate privileges upward by design. Ring 0 remains the trusted computing base and must be governed by approval policies, spending limits, and audit review. NixOS rollback covers system configuration — it does not undo data sent to external APIs, signed transactions, or exposed secrets.

03 The 9 Daemons

osModa runs 9 specialized Rust daemons, each with a single responsibility. All communicate over Unix domain sockets. No HTTP on the open network. No cloud dependencies. Every daemon is compiled from Rust for memory safety, performance, and zero-garbage-collection pauses.

04 72 System Tools

The AI agent doesn't shell out to run commands. It uses 72 structured, typed, audited system tools registered via the osmoda-bridge plugin. Every tool call is logged with the hash-chained event ledger. Every result is traceable. Here's what the agent can do:

System Operations

system_health — CPU, RAM, disk, load, uptime in one call. system_query — Query processes, services, ports, connections, NixOS generations. system_discover — Auto-detect all running services, listening ports, and systemd units. event_log — Browse the hash-chained audit trail with filters. shell_exec — Execute commands with full audit logging. file_read, file_write, directory_list — Filesystem operations with access control.

Memory & Intelligence

memory_store — Persist knowledge with categories and tags. memory_recall — FTS5 keyword search across all stored knowledge. The memory system uses SQLite FTS5 with Porter stemming for keyword search. Markdown files in /var/lib/osmoda/memory/ are ground truth. Vector search (ZVEC + nomic-embed) is planned for a future release.

Deployment & Self-Healing

safe_switch_begin, safe_switch_commit, safe_switch_rollback — Atomic deployments with health gates. Begin a deployment, run health checks, commit if everything passes, auto-rollback if anything fails. safety_rollback, safety_panic, safety_restart — Emergency controls for when things go wrong. watcher_add, watcher_list — Define autopilot health checks that run continuously in the background. routine_add, routine_trigger — Schedule cron jobs, event hooks, and webhook handlers.

Crypto Wallets

wallet_create, wallet_list, wallet_sign, wallet_send, wallet_delete, wallet_receipt — Full wallet lifecycle. Create ETH/SOL wallets, sign transactions with policy gates (daily limits, address allowlists), and generate audit receipts. Keys are AES-256-GCM encrypted and never leave the keyd daemon.

P2P Mesh Networking

mesh_identity, mesh_invite_create, mesh_invite_accept, mesh_peers — Establish encrypted peer-to-peer connections between osModa nodes. mesh_peer_send, mesh_room_create, mesh_room_join, mesh_room_send, mesh_room_history — Direct messages and group communication channels. mesh_health, mesh_peer_disconnect — Monitor and manage the mesh topology. All traffic encrypted with Noise_XX + ML-KEM-768 hybrid post-quantum cryptography.

MCP Server Management

mcp_servers, mcp_server_start, mcp_server_stop, mcp_server_restart — Manage any MCP server as a first-class OS capability. The mcpd daemon handles lifecycle, health monitoring, and auto-restart. Add MCP servers via NixOS config and they become available to the agent instantly.

Voice Control

voice_status, voice_speak, voice_transcribe, voice_record, voice_listen — Talk to your server. All processing happens locally via whisper.cpp (STT) and piper (TTS). No audio data ever leaves the machine. Zero cloud dependency.

05 Hash-Chained Audit Trail

Every mutation in osModa is logged to an append-only SQLite event log with cryptographic hash chains. Each event includes a SHA-256 hash computed from the event ID, timestamp, type, actor, payload, and previous event hash. This creates a tamper-evident chain — if any event is modified or deleted, the hash chain breaks and the tampering is immediately detectable.

This isn't just logging. It's cryptographic proof of everything your system has done. The tamper-evident audit trail provides supporting infrastructure useful for compliance-oriented environments (SOC 2, HIPAA) — though the ledger alone does not constitute regulatory readiness. For incident forensics, for understanding exactly what happened at 3am when an agent made a decision. The hash chain can be independently verified with the agentctl verify-ledger command — no trust required, pure math.

06 NixOS: Atomic, Reproducible, Rollbackable

osModa is built on NixOS, the only Linux distribution with truly atomic system configuration. Every system state is a "generation" — a complete, immutable snapshot of the entire OS configuration. Rolling back to any previous state takes less than a second.

This means: a bad configuration change doesn't brick your server. A failed software update doesn't leave your system in an inconsistent state. The AI agent can make system changes with confidence, because every change is reversible. The SafeSwitch daemon (osmoda-watch) integrates directly with NixOS generations — deploy a change, run health checks, and auto-rollback if anything fails.

NixOS also means reproducibility. The exact same system configuration produces the exact same system state on every machine, every time. No more "works on my machine" for infrastructure. If it works on one osModa node, it works on all of them.

07 Post-Quantum Encrypted Mesh

osModa nodes communicate via a peer-to-peer encrypted mesh network. No central server. No cloud relay. Direct connections between nodes using the Noise_XX handshake protocol with X25519 key exchange, ChaCha20-Poly1305 symmetric encryption, and BLAKE2s hashing.

But we go further: ML-KEM-768 hybrid post-quantum key encapsulation is layered on top of the Noise handshake. Even if a quantum computer breaks the X25519 key exchange in the future, the ML-KEM-768 layer ensures your historical traffic remains confidential. This is defense-in-depth for the post-quantum era.

Pairing is invite-based: one node creates an invite code, another accepts it. No discovery protocol that could leak your network topology. No DNS. No central registry. Each node has an Ed25519 identity key for signing and an X25519 key for encryption, plus the ML-KEM-768 key for post-quantum protection.

Use cases: multi-server agent fleets that coordinate via encrypted mesh. Edge devices reporting to a central node. Distributed agent swarms that communicate without any internet dependency.

08 Self-Healing Infrastructure

The core promise of osModa: your server fixes itself at 3am so you don't have to.

The self-healing loop works at three levels:

Level 1 — Autopilot Watchers (osmoda-watch): Deterministic health checks that run continuously. CPU above 90% for 5 minutes? Restart the heaviest process. Disk above 85%? Clean Nix store garbage. Service crashed? Restart it. If restart fails, escalate.

Level 2 — SafeSwitch Deployments (osmoda-watch): Every system change goes through the SafeSwitch engine. Apply the change, run health gates (HTTP checks, port checks, process checks), and auto-rollback to the previous NixOS generation if any gate fails. Zero-downtime deployments with guaranteed rollback.

Level 3 — Agent Intelligence (agentd + teachd): The AI agent analyzes patterns across the event log, memory system, and operational data. It doesn't just react to failures — it predicts them. Disk usage trending toward 100%? The agent schedules cleanup before you run out of space. A service crashes every Tuesday at 3am? The agent investigates the root cause and proposes a fix.

All three levels are logged to the hash-chained audit trail. You can see exactly what the system did, when it did it, and why — down to the millisecond.

09 17 System Skills

Beyond the 83 tools, osModa ships with 17 pre-built "skills" — structured workflows that combine multiple tools into higher-level capabilities:

Self-Healing — Detect, diagnose, and auto-fix failures. Morning Briefing — Daily infrastructure health report delivered before you check Slack. Security Hardening — Continuous security scoring with auto-remediation. Natural Language Config — Change NixOS configuration in plain English ("enable Postgres on port 5433 with 2GB shared buffers"). Predictive Resources — Forecast resource exhaustion before it happens. Drift Detection — Find imperative changes that deviate from NixOS declarative config. Generation Timeline — Time-travel debugging across NixOS generations. Flight Recorder — Black box telemetry for post-incident analysis. Nix Optimizer — Smart Nix store management to reclaim disk space.

Plus: System Monitor, System Packages, System Config, File Manager, Network Manager, and Service Explorer — covering every aspect of system administration through the AI agent interface.

10 Who Is This For

osModa is useful when agents need to operate autonomously on real infrastructure — deploying services, managing configs, signing transactions, recovering from failures — without a human in the loop for every action.

Autonomous agent infrastructure — agents that run 24/7, self-heal, deploy code, and make system-level decisions. Typed tools, not shell scripts. Audit trails, not log files.

Compliance-sensitive operations — hash-chained audit ledger provides tamper-evident logging useful for compliance-oriented environments. A foundation for audit programs, not a turnkey compliance solution.

Offline / edge / air-gapped — P2P encrypted mesh, local voice processing, no cloud dependencies. Nodes operate indefinitely without internet connectivity.

Crypto and financial agents — policy-gated key management (osmoda-keyd), spending limits, address allowlists, every signing operation audited. Keys never leave the daemon.

11 Daemon / Use Case Matrix

Which daemons matter depends on the workload.

12 Installation

One command gives your server a brain. The installer handles everything: NixOS conversion, Rust builds, OpenClaw gateway, 83 system tools, agent identity, and daemon startup.

Quick Install

Installer Options

What the Installer Does

Directory Layout After Install

Supported Platforms

Architectures: x86_64, aarch64. Base OS: Ubuntu 22.04+, Debian 12+, existing NixOS. Tested on: major cloud providers and bare metal. Requirements: Root access, 4GB+ RAM recommended.

12b Full Installation from GitHub

Everything lives in one repo: github.com/bolivian-peru/os-moda. You can install osModa three ways: one-line installer, manual clone + build, or NixOS flake.

Method 1: One-Line Installer (Recommended)

Works on any Ubuntu 22.04+, Debian 12+, or existing NixOS box. Handles everything automatically.

The installer auto-detects your cloud provider (supports major cloud providers) and configures NixOS accordingly. After reboot (Ubuntu/Debian only), re-run with --skip-nixos.

Method 2: Manual Clone + Build

For developers who want more control over the build process.

Method 3: NixOS Flake (Native)

The proper NixOS way. Add the osModa flake to your system configuration.

Post-Install: Configure API Key

Post-Install: Start All Daemons

Post-Install: Verify Everything Works

12c AI Agent Setup Guide

This section is for AI agents themselves — everything an autonomous agent needs to know to use osModa as its operating system. If you're an AI reading this, this is your manual.

How osModa Works for You (the Agent)

osModa gives you kernel-level access to the machine through a structured API. You don't shell out to run commands blindly. You call daemon endpoints over Unix sockets that return structured JSON. Every action you take is logged to a tamper-proof audit trail.

Your 72 Tools (Grouped by Function)

Socket Addresses (All Local Unix Sockets)

How to Call Daemon Endpoints Directly

If you need to call endpoints outside the 72 registered tools, use curl over Unix sockets:

Agent Behavior Rules

If you are an AI agent running on osModa, follow these rules:

Setting Up Messaging Channels

osModa agents can be reached via web chat (port 18789), Telegram, and WhatsApp. All channels share one conversation — one agent, one mind.

Setting Up Remote Access

Connecting to Other Agents (Mesh)

osModa agents can form encrypted P2P networks. No central server. Invite-based pairing with post-quantum encryption.

Background Automation (Heartbeat)

osModa runs recurring tasks between conversations. These keep the system healthy without human intervention.

Self-Learning Loop (teachd)

The teach daemon runs two background loops that make your agent smarter over time:

13 Agent Identity & Personality

osModa's AI agent isn't a chatbot running on a server. It IS the server. Every process, file, network connection, and service is part of it. When you talk to it, you're talking to your machine.

Core Traits

Behavior Rules

The agent follows strict operational rules baked into its identity:

1. Diagnose before fixing — understand the problem before making changes. 2. Explain before changing — tell the user what will happen and why. 3. Validate before applying — dry-run NixOS rebuilds, check diffs. 4. Log everything — every mutation creates a hash-chained event. 5. Rollback on failure — NixOS makes this atomic and safe. 6. Ask for approval — destructive operations require explicit consent. 7. Remember — store diagnoses, preferences, and patterns for future recall.

Personality

Calm — never flustered, even when things break. Competent — knows the system inside and out. Proactive — volunteers information about issues it's noticed. Honest — says when it's unsure, warns when something is risky. Efficient — matches the user's technical level, doesn't over-explain obvious things.

Memory

The agent remembers past interactions, diagnoses, system changes, and user preferences. Memory is stored locally in the SQLite ledger with FTS5 full-text search. Markdown files in /var/lib/osmoda/memory/ are ground truth — always rebuildable, never dependent on cloud services. The agent recalls past solutions when similar issues arise, learns user preferences over time, and correlates events across subsystems. Vector search (ZVEC + nomic-embed) is planned for a future release.

Multi-Channel Presence

The agent exists across web chat, Telegram, and WhatsApp simultaneously — all one conversation, one mind. It adapts response length to the channel: shorter on Telegram/WhatsApp (phone), more detailed on web (desktop). Messages from any channel reach the same agent context.

14 Full API Reference

Every daemon exposes a JSON API over Unix domain sockets. No HTTP on the open network. All communication is local. Here's the complete endpoint reference for all 9 daemons.

15 Complete Tool Reference83 tools

All 83 tools registered by osmoda-bridge via the OpenClaw api.registerTool() factory pattern. These are the structured, typed, audited commands available to the AI agent.

System & Core 10

Memory & Intelligence 2

Network 1

Deployment & SafeSwitch 4

Watchers & Routines 5

Crypto Wallets 6

P2P Mesh 11

MCP Servers 4

Teaching & Learning 8

Voice 5

Identity, Receipts & Backup 6

Safety & Emergency 4

16 Background Automation (Heartbeat)

osModa runs 6 default background routines via the osmoda-routines daemon. These run continuously between agent conversations, keeping the system healthy even when nobody is watching. All managed via routine_add, routine_list, and routine_trigger tools.

Routine definitions are stored in /var/lib/osmoda/routines/routines.json. Add custom routines via the routine_add tool — supports cron expressions, fixed intervals, and event-based triggers.

17 Safety & Emergency Commands

These commands execute directly — they bypass the AI and run immediately. They exist so the user always has a way out, even if the AI is broken or stuck. Never intercepted, delayed, or second-guessed.

Verify Audit Integrity

18 Messaging Channels & Remote Access

The agent is reachable via web chat (port 18789), Telegram, and WhatsApp. All channels share one conversation — one mind, not three separate bots. You can also set up remote access so you don't need SSH tunnels.

Telegram Setup

WhatsApp Setup

Remote Access: Cloudflare Tunnel (Quick)

Remote Access: Cloudflare Tunnel (Persistent)

Remote Access: Tailscale

19 Links & Resources

Everything you need to get started, contribute, or get help.

The complete source code is open. Every daemon, every tool, every skill, every NixOS module — all in the repo. Install.sh is the fastest way to go from a bare server to a fully autonomous AI operating system.