jacobpascual/nix-bitcoin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
583 Commits 1 Branch 0 Tags
e5e07b91f7c8babdf216931b3c770a99eee2baaf
Commit Graph

21 Commits

Author SHA1 Message Date
nixbitcoin
e5e07b91f7 netns-isolation: netns architecture 
- Adds network namespace instantiation and routing architecture.
- netns-isolation disabled by default. Can be enabled with
  configuration.nix FIXME.
- Uses mkMerge to toggle certain options for non netns and netns
  systems.
- Adds security wrapper for netns-exec which allows operator to exec
  with cap_sys_admin
- User can select the 169.254.N.0/24 addressblock netns's are created in.
- nix-bitcoin-services IpAddressAllow is amended with link-local
  addresses
 2020-07-21 09:38:20 +00:00
nixbitcoin
23cd323ad1 assertions: add lnd, clightning exclusivity 2020-06-15 13:02:58 +00:00
nixbitcoin
0ad524ca2d example config: clarify nix-bitcoin will auto-detect invalid settings 2020-06-15 10:56:01 +00:00
nixbitcoin
c16924b850 example config: change hwi excluding dependency to high-memory 
HWI can be enabled if electrs is enabled as long as electrs.high-memory
is disabled.
 2020-06-15 10:55:59 +00:00
nixbitcoin
0fd99c4cc0 bitcoind: simplify pruning 
Remove the possible null value for bitcoind.prune and set prune = 0 in
bitcoind as a default. Remove prune = 0 in secure-node.nix and the
mkForce in configuration.nix (bitcoind.prune = lib.mkForce ).
 2020-06-15 10:55:57 +00:00
nixbitcoin
b9a7a71873 example config: document enabling pruning 2020-06-15 10:55:55 +00:00
Erik Arvstedt
0f1ee5f533 examples: improve shell session usability 
- Add usage prompt when starting shell sessions

- Give all examples an uniform interface ("c") for running commands
  or starting a shell on the node.
 2020-05-17 23:53:32 +02:00
Erik Arvstedt
719dcd77bb examples: execute bash sessions in script environment 
Previously, the sessions contained only explicitly exported variables
and functions.
This was fragile and in part buggy due to lacking exports.

Interactive features like user-defined aliases and functions are still
working as before.
 2020-05-17 14:30:39 +02:00
nixbitcoin
742aef1e0f Only set dataDirReadableByGroup if cfg.high-memory is enabled 2020-04-24 16:21:12 +02:00
Erik Arvstedt
ade3f84317 examples: add shell session snippets 2020-04-15 18:55:02 +02:00
Erik Arvstedt
1a63f0ca6a remove option 'services.nix-bitcoin.enable' 
Users can enable the node config just by importing secure-node.nix
 2020-04-08 17:35:12 +02:00
Erik Arvstedt
28792f79dc rename nix-bitcoin.nix -> presets/secure-node.nix 2020-04-08 17:35:12 +02:00
Jonas Nick
5ed0284db9 Add fetch-release script 
This allows getting the hash of the latest (or some other) release
using github releases and gpg verification.
 2020-04-08 07:01:35 +00:00
Erik Arvstedt
705d187a35 examples/shell.nix: don't run shellHook on subsequent nix-shells 
This avoids an extra delay and the unexpected creation of secrets when
run in another dir.

Needed for the 'fetch-release' script introduced in a later commit.
 2020-03-30 11:00:31 +02:00
Erik Arvstedt
9df22a2764 add deploy-qemu-vm.sh example 2020-03-30 10:56:57 +02:00
Erik Arvstedt
abcee651d3 add deploy-container.sh 2020-03-30 10:49:15 +02:00
Erik Arvstedt
5dadea310c add deploy-nixops.sh 2020-03-24 21:43:22 +00:00
Erik Arvstedt
0c74c365de mention performance loss with hardened kernel profile 2020-03-24 21:43:22 +00:00
Erik Arvstedt
f3121892ef move main module import to configuration.nix 2020-03-24 21:43:21 +00:00
Erik Arvstedt
0c0978c007 extract module 'deployment/nixops.nix', add option 'deployment.secretsDir' 2020-03-24 21:43:21 +00:00
Jonas Nick
87d0286498 Change the nix-bitcoin deployment from forking this repo to importing the module 
Instead of forking this repo, it is now recommended that users simply import the
nix-bitcoin module. This commit adds an example directory that contains the
network/ examples and a shell.nix for deployment with nixops.
 2020-03-24 21:43:17 +00:00