From fe7c52272ff00e0e4c41eba2eb3df972c7fc71f8 Mon Sep 17 00:00:00 2001 From: pascallapointe <3847945+pascallapointe@users.noreply.github.com> Date: Tue, 6 Aug 2024 20:41:37 -0400 Subject: [PATCH 1/2] Fixed default workdir. --- Dockerfiles/mithril-client/Dockerfile | 8 ++++---- Dockerfiles/mithril-signer/Dockerfile | 8 ++++---- Dockerfiles/node/Dockerfile | 8 ++++---- Dockerfiles/submit/Dockerfile | 8 ++++---- 4 files changed, 16 insertions(+), 16 deletions(-) diff --git a/Dockerfiles/mithril-client/Dockerfile b/Dockerfiles/mithril-client/Dockerfile index 3143fd8..8d685d0 100644 --- a/Dockerfiles/mithril-client/Dockerfile +++ b/Dockerfiles/mithril-client/Dockerfile @@ -50,10 +50,6 @@ RUN cabal clean &&\ apt-get clean &&\ apt-get autoclean -# Switch user -# USER cardano:cardano -WORKDIR /cardano - FROM ubuntu:jammy COPY --from=base / / @@ -62,4 +58,8 @@ ENV CARDANO_NODE_SOCKET_PATH=/cardano/socket/node.sock ENV LD_LIBRARY_PATH="/usr/local/lib:$LD_LIBRARY_PATH" ENV PKG_CONFIG_PATH="/usr/local/lib/pkgconfig:$PKG_CONFIG_PATH" +# Switch user +# USER cardano:cardano +WORKDIR /cardano + CMD ["/bin/bash", "-c", "tail","-f","/dev/null"] diff --git a/Dockerfiles/mithril-signer/Dockerfile b/Dockerfiles/mithril-signer/Dockerfile index 4febfab..0844032 100644 --- a/Dockerfiles/mithril-signer/Dockerfile +++ b/Dockerfiles/mithril-signer/Dockerfile @@ -75,10 +75,6 @@ RUN cabal clean &&\ apt-get clean &&\ apt-get autoclean -# Switch user -# USER cardano:cardano -WORKDIR /cardano - FROM ubuntu:jammy COPY --from=base / / @@ -87,4 +83,8 @@ ENV CARDANO_NODE_SOCKET_PATH=/cardano/socket/node.sock ENV LD_LIBRARY_PATH="/usr/local/lib:$LD_LIBRARY_PATH" ENV PKG_CONFIG_PATH="/usr/local/lib/pkgconfig:$PKG_CONFIG_PATH" +# Switch user +# USER cardano:cardano +WORKDIR /cardano + CMD ["/bin/bash", "-c", "start.sh"] diff --git a/Dockerfiles/node/Dockerfile b/Dockerfiles/node/Dockerfile index 869d3d5..0decb40 100644 --- a/Dockerfiles/node/Dockerfile +++ b/Dockerfiles/node/Dockerfile @@ -74,10 +74,6 @@ RUN cabal clean &&\ apt-get clean &&\ apt-get autoclean -# Switch user -# USER cardano:cardano -WORKDIR /cardano - FROM ubuntu:jammy COPY --from=base / / @@ -86,4 +82,8 @@ ENV CARDANO_NODE_SOCKET_PATH=/cardano/socket/node.sock ENV LD_LIBRARY_PATH="/usr/local/lib:$LD_LIBRARY_PATH" ENV PKG_CONFIG_PATH="/usr/local/lib/pkgconfig:$PKG_CONFIG_PATH" +# Switch user +# USER cardano:cardano +WORKDIR /cardano + CMD ["/bin/bash", "-c", "start-relay.sh"] diff --git a/Dockerfiles/submit/Dockerfile b/Dockerfiles/submit/Dockerfile index c136a50..8555c81 100644 --- a/Dockerfiles/submit/Dockerfile +++ b/Dockerfiles/submit/Dockerfile @@ -58,10 +58,6 @@ RUN cabal clean &&\ apt-get clean &&\ apt-get autoclean -# Switch user -#USER cardano:cardano -WORKDIR /cardano - FROM ubuntu:jammy COPY --from=base / / @@ -70,4 +66,8 @@ ENV CARDANO_NODE_SOCKET_PATH=/cardano/socket/node.sock ENV LD_LIBRARY_PATH="/usr/local/lib:$LD_LIBRARY_PATH" ENV PKG_CONFIG_PATH="/usr/local/lib/pkgconfig:$PKG_CONFIG_PATH" +# Switch user +#USER cardano:cardano +WORKDIR /cardano + CMD ["/bin/bash", "-c", "start.sh"] From 5843499c15515b0de99a55fce645b0fdc6ea825d Mon Sep 17 00:00:00 2001 From: pascallapointe <3847945+pascallapointe@users.noreply.github.com> Date: Thu, 15 Aug 2024 17:05:18 -0400 Subject: [PATCH 2/2] Updated environment files URL. --- README.md | 39 +++++++++++++-------------------------- 1 file changed, 13 insertions(+), 26 deletions(-) diff --git a/README.md b/README.md index 2399847..fd639c8 100644 --- a/README.md +++ b/README.md @@ -150,37 +150,24 @@ Your container will bind to this folder, so you can access your configuration fr mkdir config cd config -If your OS is unix based, you can use the `wget` utility to download all configuration files from the -[official source](https://hydra.iohk.io/job/Cardano/cardano-node/cardano-deployment/latest-finished/download/1/index.html). +You can find required configuration files here: +[https://book.play.dev.cardano.org/env-mainnet.html](https://book.play.dev.cardano.org/env-mainnet.html). - wget -O config.json https://hydra.iohk.io/job/Cardano/cardano-node/cardano-deployment/latest-finished/download/1/mainnet-config.json - wget -O byron-genesis.json https://hydra.iohk.io/job/Cardano/cardano-node/cardano-deployment/latest-finished/download/1/mainnet-byron-genesis.json - wget -O shelley-genesis.json https://hydra.iohk.io/job/Cardano/cardano-node/cardano-deployment/latest-finished/download/1/mainnet-shelley-genesis.json - wget -O topology.json https://hydra.iohk.io/job/Cardano/cardano-node/cardano-deployment/latest-finished/download/1/mainnet-topology.json +Here's the files you'll need: -#### !!! Important !!!! -We rename them to `byron-genesis.json`, `shelley-genesis.json`, `topology.json` and `config.json` to make the scripts network agnostic! -Don't forget to update the reference to the `*-genesis.json` file in your `config.json`. +- `config.json` +- `topology.json` +- `byron-genesis.json` (referenced to in **config.json**) +- `shelley-genesis.json` (referenced to in **config.json**) +- `alonzo-genesis.json` (referenced to in **config.json**) +- `conway-genesis.json` (referenced to in **config.json**) -#### Bind folder permissions +Note that a producer node will need 3 more file to run: -Your user living inside your container need to have access to your configuration files and need to be able -to write in `db` and socket `folder`. -The easy way is to add public read permission to all your files under `/config`: +- `node.cert` (node operational certificat) +- `vrf.skey` +- `kes.skey` - chmod 644 config/* - -The **correct** way is to give read and/or write access to the `cardano` user group. That group exists only in your -container, but might have an equivalent (They share the same UID) group on your system. -Usually the default/first user group UID: 1000. - -You can log in your container using `root` in order to change files ownership and permission: - - docker exec -it --user root cardano_node bash - -You can later check on your host what is the equivalent group. All sub-folders and files under `/Cardano` folder should be -owned (in the container) by the host equivalent of the container `cardano` group to ensure that the container can write inside them. - #### Port configuration All node are listening to the port 3000 inside the container. You can bind that port to the host port you like.