4x400: Early pass at a relay maintainer initcontainer

.circleci/config.yml

@@ -252,6 +252,47 @@ jobs:
           command: |
             cd /tmp/tbtc/contracts
             gsutil -m cp * gs://${CONTRACT_DATA_BUCKET}/tbtc
+  build_relay_maintainer_initcontainer:
+    executor: docker-node
+    steps:
+      - setup_remote_docker:
+          docker_layer_caching: true
+      - checkout
+      - run:
+          name: Run Docker build
+          command: |
+            mkdir -p /tmp/relay-maintainer/docker-images
+            cd infrastructure/kube/templates/relay-maintainer/initcontainer
+            npm upgrade @keep-network/tbtc
+            docker build \
+              -t $GCR_REGISTRY_URL/$GOOGLE_PROJECT_ID/initcontainer-provision-relay-maintainer:$DOCKER_IMAGE_TAG .
+      - run:
+          name: Save initcontainer-provision-relay-maintainer image
+          command: |
+            docker save -o /tmp/relay-maintainer/docker-images/initcontainer-provision-relay-maintainer.tar $GCR_REGISTRY_URL/$GOOGLE_PROJECT_ID/initcontainer-provision-relay-maintainer:$DOCKER_IMAGE_TAG
+      - persist_to_workspace:
+          root: /tmp/relay-maintainer
+          paths:
+            - docker-images
+  publish_relay_maintainer_initcontainer:
+    executor: gcp-gcr/default
+    steps:
+      - attach_workspace:
+          at: /tmp/relay-maintainer
+      - run:
+          name: Load Docker images
+          command: |
+            docker load -i /tmp/relay-maintainer/docker-images/initcontainer-provision-relay-maintainer.tar
+      - gcp-gcr/gcr-auth:
+          google-project-id: GOOGLE_PROJECT_ID
+          google-compute-zone: GOOGLE_COMPUTE_ZONE_A
+          # This param doesn't actually set anything, leaving here as a reminder to check when they fix it.
+          gcloud-service-key: GCLOUD_SERVICE_KEY
+      - gcp-gcr/push-image:
+          google-project-id: GOOGLE_PROJECT_ID
+          registry-url: $GCR_REGISTRY_URL
+          image: initcontainer-provision-relay-maintainer
+          tag: $DOCKER_IMAGE_TAG
 
 workflows:
   version: 2
@@ -286,28 +327,42 @@ workflows:
             - generate_docs_asciidoctor
   migrate_build_publish_keep_dev:
     jobs:
-      - compile_contracts
-      - migrate_contracts:
-          filters:
-            branches:
-              only: master
-          context: keep-dev
-          requires:
-            - compile_contracts
-      - publish_npm_package:
-          filters:
-            branches:
-              only: master
+      #- compile_contracts
+      #- migrate_contracts:
+      #    # filters:
+      #    #   branches:
+      #    #     only: master
+      #    context: keep-dev
+      #    requires:
+      #      - compile_contracts
+      #- publish_npm_package:
+      #    # filters:
+      #    #   branches:
+      #    #     only: master
+      #    context: keep-dev
+      #    requires:
+      #      - migrate_contracts
+      #- publish_contract_data:
+      #    # filters:
+      #    #   branches:
+      #    #     only: master
+      #    context: keep-dev
+      #    requires:
+      #      - migrate_contracts
+      - build_relay_maintainer_initcontainer:
+          # filters:
+          #   branches:
+          #     only: master
           context: keep-dev
-          requires:
-            - migrate_contracts
-      - publish_contract_data:
-          filters:
-            branches:
-              only: master
+          #requires:
+          #  - publish_npm_package
+      - publish_relay_maintainer_initcontainer:
+          # filters:
+          #   branches:
+          #     only: master
           context: keep-dev
           requires:
-            - migrate_contracts
+            - build_relay_maintainer_initcontainer
   migrate_build_publish_keep_test:
     jobs:
       - keep_test_approval:
@@ -352,3 +407,21 @@ workflows:
           context: keep-test
           requires:
             - migrate_contracts
+      - build_relay_maintainer_initcontainer:
+          filters:
+            tags:
+              only: /^v.*/
+            branches:
+              ignore: /.*/
+          context: keep-test
+          requires:
+            - publish_npm_package
+      - publish_relay_maintainer_initcontainer:
+          filters:
+            tags:
+              only: /^v.*/
+            branches:
+              ignore: /.*/
+          context: keep-test
+          requires:
+            - build_relay_maintainer_initcontainer

.gitignore

@@ -17,3 +17,6 @@ node_modules/
 .mypy_cache
 # Visual Studio Code
 *.code-workspace
+
+# infrastructure
+.secrets

infrastructure/kube/keep-dev/bcoin-service.yaml

@@ -0,0 +1,20 @@
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: bcoin
+  namespace: default
+  labels:
+    app: bitcoin-node
+    type: bcoin
+spec:
+  ports:
+  - port: 18332
+    targetPort: 18332
+    name: testnet-rpc
+  - port: 18333
+    targetPort: 18333
+    name: testnet
+  selector:
+    app: bitcoin-node
+    type: bcoin

infrastructure/kube/keep-dev/bcoin-statefulset.yaml

@@ -0,0 +1,63 @@
+---
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: bcoin
+  namespace: default
+  labels:
+    app: bitcoin-node
+    type: bcoin
+spec:
+  replicas: 1
+  serviceName: bcoin
+  volumeClaimTemplates:
+  - metadata:
+      name: bcoin-data
+    spec:
+      accessModes: [ReadWriteOnce]
+      resources:
+        requests:
+          storage: 40Gi
+  selector:
+    matchLabels:
+      app: bitcoin-node
+      type: bcoin
+  template:
+    metadata:
+      labels:
+        app: bitcoin-node
+        type: bcoin
+    spec:
+      containers:
+      - name: bcoin
+        image: gcr.io/keep-dev-fe24/bcoin
+        ports:
+          - containerPort: 18332
+          - containerPort: 18333
+        env:
+          - name: BCOIN_NETWORK
+            value: testnet
+          - name: BCOIN_HTTP_HOST
+            value: '0.0.0.0'
+          - name: BCOIN_HTTP_PORT
+            value: '18332'
+          - name: BCOIN_PORT
+            value: '18333'
+          - name: BCOIN_LOG_LEVEL
+            value: info
+          - name: BCOIN_PREFIX
+            value: /mnt/.bcoin
+          - name: BCOIN_API_KEY
+            valueFrom:
+              secretKeyRef:
+                name: bcoin
+                key: http-api-key
+        volumeMounts:
+          - name: bcoin-data
+            mountPath: /mnt/.bcoin
+        command:
+          ["bcoin"]
+      volumes:
+      - name: bcoin-data
+        persistentVolumeClaim:
+          claimName: bcoin-data

infrastructure/kube/keep-dev/relay-maintainer-deployment.yaml

@@ -0,0 +1,110 @@
+---
+apiVersion: extensions/v1beta1
+kind: Deployment
+metadata:
+  name: relay-maintainer
+  namespace: default
+  labels:
+    keel.sh/policy: all
+    app: maintainer
+    type: relay
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: maintainer
+      type: relay
+  template:
+    metadata:
+      labels:
+        app: maintainer
+        type: relay
+    spec:
+
+      initContainers:
+        - name: initcontainer-provision-relay-maintainer
+          image: gcr.io/keep-dev-fe24/initcontainer-provision-relay-maintainer
+          imagePullPolicy: Always
+          env:
+
+            - name: ETH_RPC_URL
+              valueFrom:
+                configMapKeyRef:
+                  name: eth-network-internal
+                  key: rpc-url
+
+            - name: ETH_NETWORK_ID
+              valueFrom:
+                configMapKeyRef:
+                  name: eth-network-internal
+                  key: network-id
+
+            - name: ETH_NETWORK_NAME
+              value: internal
+
+            - name: RELAY_MAINTAINER_ETH_ACCOUNT_ADDRESS
+              valueFrom:
+                configMapKeyRef:
+                  name: eth-account-info
+                  key: account-0-address
+
+            - name: RELAY_MAINTAINER_ETH_ACCOUNT_PRIVATE_KEY
+              valueFrom:
+                secretKeyRef:
+                  name: eth-account-privatekeys
+                  key: account-0
+
+            - name: CONTRACT_OWNER_ETH_ACCOUNT_ADDRESS
+              valueFrom:
+                configMapKeyRef:
+                  name: eth-network-internal
+                  key: contract-owner-eth-account-address
+
+            - name: CONTRACT_OWNER_ETH_ACCOUNT_PRIVATE_KEY
+              valueFrom:
+                secretKeyRef:
+                  name: eth-network-internal
+                  key: contract-owner-eth-account-private-key
+
+            - name: BCOIN_HOST
+              value: bcoin.default.svc.cluster.local
+
+            - name: BCOIN_PORT
+              value: '18332'
+
+            - name: BCOIN_API_KEY
+              valueFrom:
+                secretKeyRef:
+                  name: bcoin
+                  key: http-api-key
+
+          volumeMounts:
+            - name: relay-maintainer-env
+              mountPath: /mnt/relay-maintainer
+          command: ['node', '/tmp/provision-relay-maintainer.js']
+
+      containers:
+        - name: relay-maintainer
+          image: gcr.io/keep-dev-fe24/relay-maintainer
+          imagePullPolicy: Always
+          volumeMounts:
+            - name: relay-maintainer-env
+              mountPath: /mnt/relay-maintainer
+
+      volumes:
+        - name: relay-maintainer-env
+          persistentVolumeClaim:
+            claimName: relay-maintainer-env
+
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: relay-maintainer-env
+  namespace: default
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 5Mi

infrastructure/kube/keep-test/bcoin-service.yaml

@@ -0,0 +1,20 @@
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: bcoin
+  namespace: default
+  labels:
+    app: bitcoin-node
+    type: bcoin
+spec:
+  ports:
+  - port: 18332
+    targetPort: 18332
+    name: testnet-rpc
+  - port: 18333
+    targetPort: 18333
+    name: testnet
+  selector:
+    app: bitcoin-node
+    type: bcoin