-
Notifications
You must be signed in to change notification settings - Fork 0
Split this repo into individual projects #13
Comments
Good idea, However we might not necessarily want to build on every single push as I'm also storing other stuff in the contrib/ folder which doesn't yet warrant a project, but closely related.
|
Agreed about building, I've already solved it - each git push/merge gets build and tested, but only git tags get pushed to Docker Cloud. I'm yet to look what's in How long does it take to build the ln database? What are the security trade-offs of bundling it in? Config generators sound interesting and useful! I think it should be run on the pi upon first boot (not sure how you have it done?) I think we should abandon support for non-docker images and focus on getting one flow as good as possible :). Also, if you mean systemd services, they're not used on Alpine |
the lightningd.sqlite3 is from an existing lightning instance but I run some sql on it to remove any identifyable data. Then I upload it. This is so that lightningd does not fetch blocks from the beginning and focuses on getting blocks from where It is left off. It should be bundled in for sure. The config generator actually works. It builds a bitcoin.conf , and both config files for clightning and lnd. The service scripts is actually not based on systemd. Its its own bash scripts which check the containers and restarts containers too. The idea is that they should be running (because we are pruned remember). I've added some non docker support too, but the focus is still docker. |
My security question was more about what exactly would people using that file, need to trust we don't do - how can this file be meddled with? Is using this file DL-ed from somewhere a security risk? Shouldn't we use docker compose to manage the containers for us? |
I don't think its a big security risk more than people downloading a pruned blockchain off us. The alternative is they set up a Pi with enough storage for the entire blockchain, and download+verify it themselves in 2+ weeks. Running lnd in neutrino mode has its own set of challenges right now. I'd probably wait till BIP157/158 gets implemented into core first. docker compose so far doesn't work with raspbian. Just have a lack of available devices right now to test the alpine image out at this time. If all goes well I'll probably deprecate the script as we'll have more control over networking. Otherwise that service is a good replacement. |
Ideally we use docker-compose, the OpenRC init System and cronjobs for periodic tasks as much as possible It’s far more maintainable, composable and modular. This way others can mix and match instead of picking apart a monolithic script |
thats the plan to get docker-compose working. But its good to have a plan B. |
I think we shouldn't be going the path of we compromised on X, so we can also compromise on Y. I think the approach should be more like: if we compromised on X let's make sure that Y, Z and W are sound, so that we can later just replace X and everything falls in place nicely. But then again, I don't know how long the process of building of this database could take(?) is it significantly longer than the first fully-confirmed Bitcoin deposit? 30 mins - 2 hours?
I think our initial approach will indeed be having nodes DL our weekly/monthly trusted pruned
We're no longer using Raspbian, so it might make sense to see if the same issues are present on Alpine - what exactly are the issues you encounter with compose? What doesn't work?
👍
Just a note on that: probably best if each container/"app" manages its own tasks, and only system-wide ones (ex. periodic backups of everything?) are run on the host OS. |
It requires a full node to build the database. No idea how Long it takes but it isn’t immediate. |
I strongly believe we should at least know that before we go with introducing another source of trust and potential malice. |
Its only until we can use neutrino properly, or theres official support with pruned nodes |
Lnd has official support for pruned nodes. I want to get the box deployed ASAP so I’m in favor of skipping lightningd for now
…On Wed, Nov 7, 2018 at 19:07, BT ***@***.***> wrote:
Its only until we can use neutrino properly, or theres official support with pruned nodes
—
You are receiving this because you were mentioned.
Reply to this email directly, [view it on GitHub](#13 (comment)), or [mute the thread](https://github.com/notifications/unsubscribe-auth/AjESee2acFJ6bfK3-RtShDUY4IAAUGHdks5uss0HgaJpZM4YR69W).
|
FYI: I'm working on |
In @meeDamian ‘s favourite place so I can now pick up some more testing devices |
Some of this is in progress already such as what I started doing with invoicer, however where this repo can still have its merits to exist is for:
Will start offloading stuff off slowly and see how it all works out though |
Let's revive this issue. Let's split all dockerfiles into separate repos: |
This issue can be closed when:
|
One benefit to doing that is that we can automate image generation upon version tag creation:
amd64
andarm
imagesIt should also be possible to have all images in one repo, but that might necessitate some odd and complicated setup.
cc. @AnotherDroog @nolim1t - opinions?
The text was updated successfully, but these errors were encountered: