f1445c396e
Use bitcoind consistently without GUI. The 'bitcoin' package includes the GUI.
2019-05-17 22:39:00 +00:00
3f9a2aec68
Disable miniupnpc. It's only useful for introducing vulnerabilities.
2019-05-17 22:30:16 +00:00
2a4e5fb16f
Merge branch 'hwi'
2019-05-12 18:09:17 +00:00
48f6bc5f81
Fix clightning port typo (9375 instead of 9735)
2019-05-12 18:29:22 +02:00
7416ec4a29
Limit syscalls with Docker whitelist
2019-05-10 12:42:06 +02:00
c2f8bf8067
Add support for ledger and trezor with bitcoin-core/HWI
2019-05-05 20:49:31 +00:00
54a6a3363e
Merge branch 'service-hardening'
2019-05-03 15:51:38 +00:00
e1ee5023e2
Rename service settings for 'node' to 'nodejs' to avoid confusion
2019-05-03 10:44:16 +00:00
469c1de6a9
Fix electrum after disallowing anything but localhost by adding ipv6 local address
2019-04-28 18:54:13 +00:00
7fb1cc1e93
Add security section to README
2019-04-28 13:15:17 +00:00
6f8dac6e07
Restrict namespaces for systemd services by default
2019-04-28 13:15:17 +00:00
eaaf8e9aab
Use IPAddress{Allow,Deny} by default for systemd services
2019-04-28 13:15:17 +00:00
d9533edad1
Fix memory deny write execute for nodejs services
2019-04-28 13:15:16 +00:00
a089d65d25
Move service hardening flags into separate file
2019-04-28 13:15:12 +00:00
a79c4db7a9
added missing semicolon to recurring-donations
2019-04-28 12:30:59 +02:00
37b71d87b8
electrs ssl
2019-04-26 23:41:55 +02:00
bb9aa8fb29
Fix invoice amount check in recurring-donations
2019-04-22 00:37:45 +00:00
492eab0e26
Add recurring donations module
2019-04-17 22:11:55 +00:00
c9e6397763
Merge branch 'user-config' of https://github.com/nixbitcoin/nix-bitcoin into nixbitcoin-user-config
2019-04-12 09:03:59 +00:00
58ba467ffd
Stop assuming that clightning is always enabled
2019-04-10 15:48:55 +00:00
6d723e896f
Remove profiles and replace with options to enable/disable each module separately in configuration.nix
2019-04-10 11:13:39 +02:00
0b364718d3
Make deployment faster by importing banlist in background instead of waiting for it to finish
2019-04-08 08:36:28 +00:00
8b9972f078
Fix typo "ngninx" in nix-bitcoin.nix services.onion-chef.access.operator
2019-04-06 18:56:58 +02:00
c440dfba9f
Merge branch 'electrum-server' of https://github.com/nixbitcoin/nix-bitcoin into nixbitcoin-electrum-server
2019-04-02 15:35:09 +00:00
0d5c67c1cf
Fix spark wallet QR code display by providing the onion hostname as public url
2019-04-02 15:10:21 +00:00
aba1b7dfc2
Give operator access to onion hostnames through new onion-manager module
2019-04-02 15:02:31 +00:00
4000829002
Use rust stable 1.31 instead of rust nightly for electrs, update electrs, specify electrum-rpc
2019-04-01 17:43:07 +02:00
687bf8017d
Make repository importable as NUR (including an overlay)
...
https://github.com/nix-community/NUR is a Nix community project that
aims to make out of tree derivations more easily discoverable and
accessible to Nix users. Converting the nix-bitcoin repo to conform to
that style is a minor change and enhances reusability of its
components. For instance, I could slap on the clightning module more
easily onto my existing bitcoin node without having to redeploy the
whole as nixops driven installation. Having the repo in NUR style
would make that easier.
2019-03-29 11:12:05 +01:00
95b42b62a8
Give pkgs their own directory and convert everything to callPackage.
2019-03-29 11:12:05 +01:00
bf184c17e0
fix making banlist importer wait for bitcoind to start up
2019-03-29 09:44:30 +00:00
e2f3f38876
Import bitcoind banlist in separate service
2019-03-27 10:46:36 +00:00
66d9650f48
Create /var/lib/bitcoind/blocks
...
Otherwise:
Mar 25 13:33:22 nix-bitcoin systemd[1]: Starting Bitcoin daemon...
Mar 25 13:33:22 nix-bitcoin f3ickn20fqrz5gd0zm7hgm247b9ajdl8-unit-script-bitcoind-pre-start[1883]: chmod: cannot access '/var/lib/bitcoind/blocks': No such fi>
Mar 25 13:33:22 nix-bitcoin systemd[1]: bitcoind.service: Control process exited, code=exited status=1
Mar 25 13:33:22 nix-bitcoin systemd[1]: bitcoind.service: Failed with result 'exit-code'.
2019-03-25 14:59:36 +01:00
5e40066c7f
nanopos, lightning-charge and spark-wallet: Package via node2nix
...
The strategy of invoking node2nix inside a derivation (installPhase in
this case) does not work, as under NixOS installations there is no
network traffic allowed during a derivation build. Hence, we move
node2nix outside and rewrite the packaging into the modules.
Also switch to callPackage instead of plain imports. This could
probably be done on all other imported packages inside of
nix-bitcoin-pkgs.nix.
2019-03-25 14:32:55 +01:00
0c83f87233
Don't include electrs in 'all' profile
2019-03-24 20:46:33 +00:00
d39a253d20
Fix definition of high memory systems
2019-03-24 20:46:29 +00:00
7eed67278d
Merge branch 'electrum-server' of https://github.com/nixbitcoin/nix-bitcoin into nixbitcoin-electrum-server
2019-03-24 20:45:26 +00:00
eb4968d292
Add high-memory description
2019-03-24 11:38:37 +01:00
fca4af59ac
Remove mentions of electrs in the bitcoind module, set sysperms & disablewallet only when electrs is enabled, electrs enabled in "all" setting, remove
...
unnecessary newline, make sysperms & disablewallet optional
2019-03-21 11:27:28 +01:00
fbc78ce6ed
Add Greg Maxwell's banlist to bitcoind postStart
2019-03-21 10:11:18 +01:00
d6facee486
Add config.services.liquidd.port
2019-03-18 14:17:38 +01:00
eacd057963
Fix electrs and add electrs hidden service
2019-03-16 16:11:54 +01:00
de889d584f
Add proxy and hidden service to liquidd
2019-03-14 11:19:28 +01:00
132703637c
Tor proxy, always-use-proxy, bind to localhost clightning
2019-03-07 13:37:00 +01:00
6005307129
Enable validatepegin in liquid module
2019-02-11 08:02:11 +00:00
5404907e3e
Turn off pruning
2019-02-10 18:46:07 +00:00
52b8cae70d
update README
2019-01-26 22:16:26 +00:00
1d020a7ca8
move nixpkgs-pinned.nix
2019-01-26 18:12:08 +00:00
6763459b62
Move nix-bitcoin.nix into modules
2019-01-26 18:06:25 +00:00
2dd5e4e8b0
Disable pruning
2019-01-26 17:44:36 +00:00
8a56a994fd
Fix spark-wallet login
2019-01-21 12:24:17 +00:00
ead037c753
Disable electrs while it's not working
2019-01-13 20:21:40 +00:00
197155fb0b
Fixed typo and replaced tab with spaces
2019-01-04 10:47:06 +01:00
9ada1d32f3
Incorproate PR comments, correct erroneous description in clightning module, add electrs module, add electrs package, add electrs to nix-bitcoin.nix, add electrs to modules/nix-bitcoin.nix
2019-01-04 10:44:03 +01:00
bca40e23b1
Indentation cleanups
2019-01-02 15:17:57 +00:00
d2e203918b
Fix 'Remove unused paths in modules'
2019-01-02 11:23:43 +00:00
1c756379fb
Remove unused paths in modules
2019-01-02 11:05:25 +00:00
5e4e959e26
Switch to stable channel but pull the bitcoind and clightning packages and the tor module from unstable
2019-01-01 19:16:24 +00:00
ffcd311b70
Add sshd onion service
2018-12-27 21:22:52 +00:00
95dcf26f68
Don't assume virtual box deployments when copying authorized keys
2018-12-10 23:11:44 +00:00
25d52c4d10
Add spark-wallet
2018-12-10 16:34:41 +00:00
0210da091d
Cleanups
2018-12-06 15:59:41 +00:00
b108198dc0
Update nanopos
2018-12-06 15:58:41 +00:00
f58dab36d1
Add missing nixbitcoin webindex
2018-12-06 11:39:54 +00:00
6209873994
Use nixpkgs tor module
2018-12-06 11:37:26 +00:00
3c7d0c66fb
Add liquidd pruning
2018-12-06 10:45:45 +00:00
1927fda514
Allow operator to access liquid-cli
2018-12-03 22:33:21 +00:00
9ed888b9c2
Improve abstraction of deployment keys
2018-12-03 22:16:01 +00:00
c79aaf9695
Add liquid
2018-12-03 21:43:15 +00:00
4c55b8395c
Add 'minimal' and 'all' profiles
2018-12-03 15:31:44 +00:00
da1148595f
Clean up a bit
2018-12-01 22:00:39 +00:00
36327ae89e
Move webindex in own module
2018-12-01 21:38:08 +00:00
8fae70b80a
Add index page with nginx
2018-12-01 20:49:23 +00:00
b0594aaacd
Add nanopos package and module and make clightning service
2018-12-01 17:26:29 +00:00
21f9462651
Add lightning charge module
2018-12-01 16:36:07 +00:00
c61c21e2e1
fix nodeinfo.sh
2018-11-29 00:30:12 +00:00
95c706b1b0
Add operator user
2018-11-28 23:54:19 +00:00
94258c505e
Make RPC password a secret
2018-11-28 22:58:36 +00:00
c4935008dc
add lightning charge package
2018-11-24 22:34:39 +00:00
ab438a4d51
Another type correction in tor module
2018-11-23 22:15:27 +00:00
080251f060
fix tor module hidden service version type
2018-11-23 20:38:30 +00:00
c226ddce1f
fix bitcoind extraConfig and prune
2018-11-23 20:37:50 +00:00
ac2be00c7f
Add guest user with same ssh keys as root and fix nodeinfo not waiting for clightning to warm up
2018-11-23 15:49:13 +00:00
eca9864cf3
fix bitcoind config file linking bug in module
2018-11-23 01:05:53 +00:00
b1375df03a
Add Carl's bitcoind module
2018-11-23 00:48:13 +00:00
79aab1255a
Add rpc user and password as secrets
2018-11-22 23:51:16 +00:00
83eabcf952
Make bitcoin rpcuser and pass configurable
2018-11-22 23:06:41 +00:00
668d66085a
signed commit
2018-11-22 23:06:07 +00:00
aec819db81
add clightning
2018-11-22 18:32:26 +00:00
63e2c6d270
cleanups
2018-11-20 22:21:45 +00:00
986217d5d3
add nodeinfo package
2018-11-20 22:14:40 +00:00
14a073c35a
Add bitcoind onion service
2018-11-20 00:22:16 +00:00
cad0763c70
Add onion listening node with tor HS v3
2018-11-19 23:09:57 +00:00
d943e11647
non-working tor support
2018-11-14 00:33:34 +00:00
18dc2304c0
running bitcoin
2018-11-13 23:44:54 +00:00
Jonas Nick
nixbitcoin
0xB10C
Clemens Fruhwirth