mirror of
https://github.com/serai-dex/serai.git
synced 2025-12-09 12:49:23 +00:00
9a75f92864
For hash-pinned dependencies, adds comments documenting the associated versions. Adds a pin to `slither-analyzer` which was prior missing. Updates to Monero 0.18.4.4. `mimalloc` now has the correct option set when building for `musl`. A C++ compiler is no longer required in its Docker image. The runtime's `Dockerfile` now symlinks a `libc.so` already present on the image instead of creating one itself. It also builds the runtime within the image to ensure it only happens once. The test to ensure the methodology is reproducible has been updated to not simply create containers from the image, yet rebuild the image entirely, accordingly. This also is more robust and arguably should have already been done. The pin to the exact hash of the `patch-polkadot-sdk` repo in every `Cargo.toml` has been removed. The lockfile already serves that role, simplifying updating in the future. The latest Rust nightly is adopted as well (superseding https://github.com/serai-dex/serai/pull/697). The `librocksdb-sys` patch is replaced with a `kvdb-rocksdb` patch, removing a git dependency, thanks to https://github.com/paritytech/parity-common/pull/950.
85 lines
2.3 KiB
Rust
85 lines
2.3 KiB
Rust
use std::path::Path;
|
|
|
|
use crate::{Network, Os, mimalloc, write_dockerfile};
|
|
|
|
fn monero_internal(
|
|
network: Network,
|
|
os: Os,
|
|
orchestration_path: &Path,
|
|
folder: &str,
|
|
monero_binary: &str,
|
|
ports: &str,
|
|
) {
|
|
const MONERO_VERSION: &str = "0.18.4.4";
|
|
|
|
let arch = match std::env::consts::ARCH {
|
|
// We probably would run this without issues yet it's not worth needing to provide support for
|
|
"x86" | "arm" => panic!("unsupported architecture, please download a 64-bit OS"),
|
|
"x86_64" => "x64",
|
|
"aarch64" => "armv8",
|
|
_ => panic!("unsupported architecture"),
|
|
};
|
|
|
|
#[rustfmt::skip]
|
|
let download_monero = format!(r#"
|
|
FROM alpine:latest AS monero
|
|
|
|
RUN apk --no-cache add wget gnupg
|
|
|
|
# Download Monero
|
|
RUN wget -4 https://downloads.getmonero.org/cli/monero-linux-{arch}-v{MONERO_VERSION}.tar.bz2
|
|
|
|
# Verify Binary -- fingerprint from https://github.com/monero-project/monero-site/issues/1949
|
|
ADD orchestration/{}/networks/monero/hashes-v{MONERO_VERSION}.txt .
|
|
RUN gpg --keyserver hkp://keyserver.ubuntu.com:80 --keyserver-options no-self-sigs-only --receive-keys 81AC591FE9C4B65C5806AFC3F0AF4D462A0BDF92 && \
|
|
gpg --verify hashes-v{MONERO_VERSION}.txt && \
|
|
grep "$(sha256sum monero-linux-{arch}-v{MONERO_VERSION}.tar.bz2 | cut -c 1-64)" hashes-v{MONERO_VERSION}.txt
|
|
|
|
# Extract it
|
|
RUN tar -xvjf monero-linux-{arch}-v{MONERO_VERSION}.tar.bz2 --strip-components=1
|
|
"#,
|
|
network.label(),
|
|
);
|
|
|
|
let setup = mimalloc(os) + &download_monero;
|
|
|
|
let run_monero = format!(
|
|
r#"
|
|
COPY --from=monero --chown=monero:nogroup {monero_binary} /bin
|
|
|
|
EXPOSE {ports}
|
|
|
|
ADD /orchestration/{}/networks/{folder}/run.sh /
|
|
CMD ["/run.sh"]
|
|
"#,
|
|
network.label(),
|
|
);
|
|
|
|
let run =
|
|
crate::os(os, if os == Os::Alpine { "RUN apk --no-cache add gcompat" } else { "" }, "monero") +
|
|
&run_monero;
|
|
let res = setup + &run;
|
|
|
|
let mut monero_path = orchestration_path.to_path_buf();
|
|
monero_path.push("networks");
|
|
monero_path.push(folder);
|
|
monero_path.push("Dockerfile");
|
|
|
|
write_dockerfile(monero_path, &res);
|
|
}
|
|
|
|
pub fn monero(orchestration_path: &Path, network: Network) {
|
|
monero_internal(network, Os::Debian, orchestration_path, "monero", "monerod", "18080 18081")
|
|
}
|
|
|
|
pub fn monero_wallet_rpc(orchestration_path: &Path) {
|
|
monero_internal(
|
|
Network::Dev,
|
|
Os::Debian,
|
|
orchestration_path,
|
|
"monero-wallet-rpc",
|
|
"monero-wallet-rpc",
|
|
"18082",
|
|
)
|
|
}
|