Git-Mirrors/qusal
1
0
Fork 0
mirror of https://github.com/ben-grande/qusal.git synced 2024-10-01 02:35:49 -04:00
Code Issues Packages Projects Releases Wiki Activity

feat: add disposable qubes to bitcoin clients

Browse Source
This commit is contained in:
Ben Grande 2024-06-04 11:00:06 +02:00
parent a4848e1932
commit 6e8541672f
No known key found for this signature in database
GPG Key ID: 00C64E14F51F9E56
2 changed files with 202 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

134
salt/electrum/create.sls
View File

@ -46,11 +46,76 @@ tags:
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: dvm-{{ slsdotpath }}
force: True
require:
- qvm: tpl-{{ slsdotpath }}
present:
- template: tpl-{{ slsdotpath }}
- label: gray
prefs:
- template: tpl-{{ slsdotpath }}
- label: gray
- netvm: ""
- audiovm: ""
- vcpus: 1
- memory: 400
- maxmem: 600
- autostart: False
- include_in_backups: False
- template_for_dispvms: True
features:
- enable:
- appmenus-dispvm
- disable:
- service.cups
- service.cups-browsed
- set:
- menu-items: "qubes-run-terminal.desktop qubes-start.desktop qubes-open-file-manager.desktop electrum.desktop"
tags:
- add:
- "electrum-client"
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: disp-{{ slsdotpath }}
force: True
require:
- qvm: dvm-{{ slsdotpath }}
present:
- template: dvm-{{ slsdotpath }}
- label: gray
- class: DispVM
prefs:
- template: dvm-{{ slsdotpath }}
- label: gray
- netvm: ""
- audiovm: ""
- vcpus: 1
- memory: 400
- maxmem: 600
- autostart: False
- include_in_backups: False
features:
- disable:
- appmenus-dispvm
- service.cups
- service.cups-browsed
- set:
- menu-items: "qubes-run-terminal.desktop qubes-start.desktop qubes-open-file-manager.desktop electrum.desktop"
tags:
- add:
- "electrum-client"
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: {{ slsdotpath }}
force: True
require:
- sls: {{ slsdotpath }}.clone
- qvm: tpl-{{ slsdotpath }}
present:
- template: tpl-{{ slsdotpath }}
- label: gray
@ -76,11 +141,76 @@ tags:
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: dvm-{{ slsdotpath }}-hot
force: True
require:
- qvm: {{ whonix_workstation.template }}
present:
- template: {{ whonix_workstation.template }}
- label: orange
prefs:
- template: {{ whonix_workstation.template }}
- label: orange
- audiovm: ""
- netvm: sys-bitcoin-gateway
- vcpus: 1
- memory: 400
- maxmem: 600
- autostart: False
- include_in_backups: True
- template_for_dispvms: True
features:
- enable:
- appmenus-dispvm
- disable:
- service.cups
- service.cups-browsed
- set:
- menu-items: "qubes-run-terminal.desktop qubes-start.desktop qubes-open-file-manager.desktop electrum.desktop"
tags:
- add:
- "anon-vm"
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: disp-{{ slsdotpath }}-hot
force: True
require:
- qvm: dvm-{{ slsdotpath }}-hot
present:
- template: dvm-{{ slsdotpath }}-hot
- label: orange
- class: DispVM
prefs:
- template: dvm-{{ slsdotpath }}-hot
- label: orange
- audiovm: ""
- netvm: sys-bitcoin-gateway
- vcpus: 1
- memory: 400
- maxmem: 600
- autostart: False
- include_in_backups: True
features:
- disable:
- appmenus-dispvm
- service.cups
- service.cups-browsed
- set:
- menu-items: "qubes-run-terminal.desktop qubes-start.desktop qubes-open-file-manager.desktop electrum.desktop"
tags:
- add:
- "anon-vm"
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: {{ slsdotpath }}-hot
force: True
require:
- sls: {{ slsdotpath }}.clone
- qvm: {{ whonix_workstation.template }}
present:
- template: {{ whonix_workstation.template }}
- label: orange

73
salt/sys-bitcoin/create.sls
View File

@ -68,7 +68,7 @@ tags:
name: {{ slsdotpath }}
force: True
require:
- sls: {{ slsdotpath }}.clone
- qvm: tpl-{{ slsdotpath }}
present:
- template: tpl-{{ slsdotpath }}
- label: yellow
@ -168,11 +168,78 @@ tags:
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: dvm-bitcoin
force: True
require:
- qvm: tpl-{{ slsdotpath }}
present:
- template: tpl-{{ slsdotpath }}
- label: gray
prefs:
- template: tpl-{{ slsdotpath }}
- label: gray
- netvm: ""
- audiovm: ""
- default_dispvm: ""
- vcpus: 4
- memory: 400
- maxmem: 600
- autostart: False
- include_in_backups: False
- template_for_dispvms: True
features:
- enable:
- appmenus-dispvm
- disable:
- service.cups
- service.cups-browsed
- set:
- menu-items: "bitcoin-qt.desktop qubes-open-file-manager.desktop qubes-run-terminal.desktop qubes-start.desktop"
tags:
- del:
- "bitcoin-client"
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: disp-bitcoin
force: True
require:
- qvm: dvm-bitcoin
present:
- template: dvm-bitcoin
- label: gray
- class: DispVM
prefs:
- template: dvm-bitcoin
- label: gray
- netvm: ""
- audiovm: ""
- default_dispvm: ""
- vcpus: 4
- memory: 400
- maxmem: 600
- autostart: False
- include_in_backups: False
features:
- disable:
- appmenus-dispvm
- service.cups
- service.cups-browsed
- set:
- menu-items: "bitcoin-qt.desktop qubes-open-file-manager.desktop qubes-run-terminal.desktop qubes-start.desktop"
tags:
- del:
- "bitcoin-client"
{%- endload %}
{{ load(defaults) }}
{% load_yaml as defaults -%}
name: bitcoin
force: True
require:
- sls: {{ slsdotpath }}.clone
- qvm: tpl-{{ slsdotpath }}
present:
- template: tpl-{{ slsdotpath }}
- label: gray
@ -208,7 +275,7 @@ tags:
"{{ slsdotpath }}-extend-builder-private-volume":
cmd.run:
- require:
- qvm: disp-bitcoin-builder
- qvm: dvm-bitcoin-builder
- name: qvm-volume extend dvm-bitcoin-builder:private 20Gi
{% from 'utils/macros/policy.sls' import policy_set with context -%}