Initial Upload

TaonaProject · web-flow · commit 3d29b1f2eaa5 · 2019-12-12T13:57:07.000-05:00
diff --git a/installnode.sh b/installnode.sh
@@ -0,0 +1,396 @@
+#!/bin/bash
+
+#############################
+# Script by Thanos          #
+#############################
+
+LOG_FILE=/tmp/install.log
+
+decho () {
+  echo `date +"%H:%M:%S"` $1
+  echo `date +"%H:%M:%S"` $1 >> $LOG_FILE
+}
+
+error() {
+  local parent_lineno="$1"
+  local message="$2"
+  local code="${3:-1}"
+  echo "Error on or near line ${parent_lineno}; exiting with status ${code}"
+  exit "${code}"
+}
+trap 'error ${LINENO}' ERR
+
+
+clear
+
+cat <<'FIG'
+
+__/\\\________/\\\__/\\\\\\\\\\\\________/\\\\\\\\\_____________________________
+__\/\\\_____/\\\//__\/\\\////////\\\____/\\\\\\\\\\\\\__________________________
+___\/\\\__/\\\//_____\/\\\______\//\\\__/\\\/////////\\\________________________
+____\/\\\\\\//\\\_____\/\\\_______\/\\\_\/\\\_______\/\\\_______________________
+_____\/\\\//_\//\\\____\/\\\_______\/\\\_\/\\\\\\\\\\\\\\\______________________
+______\/\\\____\//\\\___\/\\\_______\/\\\_\/\\\/////////\\\_____________________
+_______\/\\\_____\//\\\__\/\\\_______/\\\__\/\\\_______\/\\\____________________
+________\/\\\______\//\\\_\/\\\\\\\\\\\\/___\/\\\_______\/\\\___________________
+_________\///________\///__\////////////_____\///________\///___________________
+__/\\\\\_____/\\\_______/\\\\\_______/\\\\\\\\\\\\_____/\\\\\\\\\\\\\\\_________
+__\/\\\\\\___\/\\\_____/\\\///\\\____\/\\\////////\\\__\/\\\///////////_________
+___\/\\\/\\\__\/\\\___/\\\/__\///\\\__\/\\\______\//\\\_\/\\\___________________
+____\/\\\//\\\_\/\\\__/\\\______\//\\\_\/\\\_______\/\\\_\/\\\\\\\\\\\__________
+_____\/\\\\//\\\\/\\\_\/\\\_______\/\\\_\/\\\_______\/\\\_\/\\\///////__________
+______\/\\\_\//\\\/\\\_\//\\\______/\\\__\/\\\_______\/\\\_\/\\\________________
+_______\/\\\__\//\\\\\\__\///\\\__/\\\____\/\\\_______/\\\__\/\\\_______________
+________\/\\\___\//\\\\\____\///\\\\\/_____\/\\\\\\\\\\\\/___\/\\\\\\\\\\\\\\\__
+_________\///_____\/////_______\/////_______\////////////_____\///////////////__
+
+FIG
+
+# Check if executed as root user
+if [[ $EUID -ne 0 ]]; then
+	echo -e "This script has to be run as \033[1mroot\033[0m user."
+	exit 1
+fi
+
+
+# Print variable on a screen
+decho "Make sure you double check information before hitting enter!"
+
+read -e -p "Please enter the domain where the Kadena server will run: " whereami
+if [[ "$whereami" == "" ]]; then
+	decho "WARNING: No domain entered, exiting!!!"
+	exit 3
+fi
+
+# Check for systemd
+systemctl --version >/dev/null 2>&1 || { decho "systemd is required. Are you using Ubuntu 18.04?"  >&2; exit 1; }
+
+
+# Install swap
+decho "Enabling a swap partition..." 
+
+if free | awk '/^Swap:/ {exit !$2}'; then
+	decho "Has swap..."
+else
+	touch /var/swap.img
+	chmod 600 /var/swap.img
+	dd if=/dev/zero of=/var/swap.img bs=1024k count=2048
+	mkswap /var/swap.img
+	swapon /var/swap.img
+	echo "/var/swap.img none swap sw 0 0" >> /etc/fstab
+fi
+
+
+# Update packages
+decho "Updating system..."   
+
+apt-get update -y >> $LOG_FILE 2>&1
+dpkg --configure -a
+
+# Install required packages
+decho "Installing base packages and dependencies..."
+decho "This may take a while..."
+
+apt-get install -y certbot >> $LOG_FILE 2>&1
+apt-get install -y librocksdb5.8  >> $LOG_FILE 2>&1
+apt-get install -y curl  >> $LOG_FILE 2>&1
+
+decho "Installing ufw..."
+apt-get install -y ufw >> $LOG_FILE 2>&1
+ufw allow ssh/tcp >> $LOG_FILE 2>&1
+ufw allow sftp/tcp >> $LOG_FILE 2>&1
+ufw allow 80/tcp >> $LOG_FILE 2>&1
+ufw allow 443/tcp >> $LOG_FILE 2>&1
+ufw default deny incoming >> $LOG_FILE 2>&1
+ufw default allow outgoing >> $LOG_FILE 2>&1
+ufw logging on >> $LOG_FILE 2>&1
+ufw --force enable >> $LOG_FILE 2>&1
+
+decho "Create user kda (if necessary)"
+
+# Deactivate trap only for this command
+trap '' ERR
+getent passwd kda > /dev/null 2&>1
+
+if [ $? -ne 0 ]; then
+	trap 'error ${LINENO}' ERR
+	adduser --disabled-password --gecos "" kda >> $LOG_FILE 2>&1
+else
+	trap 'error ${LINENO}' ERR
+fi
+
+# Download Node
+decho 'Downloading Node...'
+cd /home/kda/
+wget --no-check-certificate https://github.com/kadena-io/chainweb-node/releases/download/1.3.1/chainweb.8.6.5.ubuntu-18.04.1e6c76b2.tar.gz >> $LOG_FILE 2>&1
+tar -xvf chainweb.8.6.5.ubuntu-18.04.1e6c76b2.tar.gz >> $LOG_FILE 2>&1
+wget --no-check-certificate https://github.com/kadena-io/chainweb-miner/releases/download/v1.0.3/chainweb-miner-1.0.3-ubuntu-18.04.tar.gz >> $LOG_FILE 2>&1
+tar -xvf chainweb-miner-1.0.3-ubuntu-18.04.tar.gz >> $LOG_FILE 2>&1
+
+# Create config.yaml
+decho "Creating config files and Health check..." 
+
+touch /home/kda/config.yaml
+cat << EOF > /home/kda/config.yaml
+chainweb:
+  # The defining value of the network. To change this means being on a
+  # completely independent Chainweb.
+  chainwebVersion: mainnet01
+
+  throttling:
+    local: 0.1
+    mining: 100000
+    global: 400
+    putPeer: 11
+
+  mining:
+    # Settings for how a Node can provide work for remote miners.
+    coordination:
+      enabled: true
+      # "public" or "private".
+      mode: public
+      # The number of "/mining/work" calls that can be made in total over a 5
+      # minute period.
+      limit: 102400
+      # The number of work requests per client per second.
+      mining: 100000
+      # When "mode: private", this is a list of miner account names who are
+      # allowed to have work generated for them.
+      miners:
+      - account: abc123
+        predicate: keys-all
+        public-keys:
+        - 3438e5bcfd086c5eeee1a2f227b7624df889773e00bd623babf5fc72c8f9aa63
+      - account: cfd7816f15bd9413e5163308e18bf1b13925f3182aeac9b30ed303e8571ce997
+        predicate: keys-all
+        public-keys:
+        - cfd7816f15bd9413e5163308e18bf1b13925f3182aeac9b30ed303e8571ce997
+
+  p2p:
+    # Your node's network identity.
+    peer:
+      # Filepath to the "fullchain.pem" of the certificate of your domain.
+      # If "null", this will be auto-generated.
+      certificateChainFile: null
+      # Filepath to the "privkey.pem" of the certificate of your domain.
+      # If "null", this will be auto-generated.
+      keyFile: null
+
+      # You.
+      hostaddress:
+        # This should be your public IP or domain name.
+        hostname: $whereami
+        # The port you'd like to run the Node on. 443 is a safe default.
+        port: 443
+
+    # Initial peers to connect to in order to join the network for the first time.
+    # These will share more peers and block data to your Node.
+    peers:
+      - address:
+          hostname: akami.chainweb.tech
+          port: 443
+        id: null
+      - address:
+          hostname: arboretum.tech
+          port: 443
+        id: null
+      - address:
+          hostname: chainweb.xyz
+          port: 443
+        id: null
+      - address:
+          hostname: tsundere.waifuwars.org
+          port: 35090
+        id: null
+      - address:
+          hostname: kadena1.block77.io
+          port: 443
+        id: null
+      - address:
+          hostname: kadena2.block77.io
+          port: 443
+        id: null
+      - address:
+          hostname: ponzu.banteg.xyz
+          port: 1337
+        id: null
+      - address:
+          hostname: dumpling.banteg.xyz
+          port: 1337
+        id: null
+      - address:
+          hostname: sg.blockventur.es
+          port: 44444
+        id: null
+      - address:
+          hostname: sg.kadena.asymmetry.ventures
+          port: 44444
+        id: null
+      - address:
+          hostname: kadena.wayi.cn
+          port: 443
+        id: null
+      - address:
+          hostname: kadenamerkletree.com
+          port: 443
+        id: null
+      - address:
+          hostname: chungle.constant.gripe
+          port: 1343
+        id: null
+      - address:
+          hostname: fr1.chainweb.com
+          port: 443
+        id: null
+      - address:
+          hostname: pn.hyperioncn.net
+          port: 443
+        id: null
+      - address:
+          hostname: cw.hyperioncn.net
+          port: 443
+        id: null
+      - address:
+          hostname: us-w1.chainweb.com
+          port: 443
+        id: null
+      - address:
+          hostname: us-e1.chainweb.com
+          port: 443
+        id: null
+      - address:
+          hostname: jp1.chainweb.com
+          port: 443
+        id: null
+      - address:
+          hostname: fr1.chainweb.com
+          port: 443
+        id: null
+
+logging:
+  # All structural (JSON, etc.) logs.
+  telemetryBackend:
+    enabled: true
+    configuration:
+      handle: stdout
+      color: auto
+      # "text" or "json"
+      format: text
+
+  # Simple text logs.
+  backend:
+    handle: stdout
+    color: auto
+    # "text" or "json"
+    format: text
+
+  logger:
+    log_level: warn
+
+  filter:
+    rules:
+      - key: component
+        value: cut-monitor
+        level: info
+      - key: component
+        value: pact-tx-replay
+        level: info
+      - key: component
+        value: connection-manager
+        level: info
+      - key: component
+        value: miner
+        level: info
+      - key: component
+        value: local-handler
+        level: info
+    default: error
+
+EOF
+
+touch /etc/systemd/system/node.service
+cat <<EOF > /etc/systemd/system/node.service
+[Unit]
+Description=Node Service
+
+[Service]
+User=root
+WorkingDirectory=/home/kda
+ExecStart=/home/kda/node.sh
+Restart=always
+RestartSec=3
+
+[Install]
+WantedBy=multi-user.target
+EOF
+
+touch /home/kda/health.sh
+chmod +x /home/kda/health.sh
+cat <<EOF > /home/kda/health.sh
+#!/bin/bash
+#!/bin/bash
+status_code=\$(timeout 5s curl --write-out %{http_code} https://$whereami:443/chainweb/0.0/mainnet01/cut --silent --output /dev/null)
+echo \$status_code
+if [[ "\$status_code" -ne 200 ]]; then
+   echo "RESTART DUE TO NO API RESULT"
+   systemctl daemon-reload
+   systemctl restart node
+fi
+
+PID=`pidof chainweb-node`
+FD=`ss -tnp | grep 443 | grep ESTAB | wc -l`
+if [[ "\$FD" -gt 10000 ]]; then
+   echo "RESTART DUE TO TOO MANY OPEN FILES"
+   systemctl daemon-reload
+   systemctl restart node
+fi
+EOF
+
+touch /home/kda/node.sh
+chmod +x /home/kda/node.sh
+cat <<EOF > /home/kda/node.sh
+#!/bin/bash
+/home/kda/chainweb-node                \
+  --config-file /home/kda/config.yaml  \
+  --certificate-chain-file=/etc/letsencrypt/live/$whereami/fullchain.pem  \
+  --certificate-key-file=/etc/letsencrypt/live/$whereami/privkey.pem
+#  1>/home/kda/node.log 2>&1
+EOF
+
+chmod +x -R /home/kda/
+
+# Setup crontab
+
+echo "*/5 * * * * /home/kda/health.sh >/home/kda/health.out 2>/home/kda/health.err" >> newCrontab
+crontab -u kda newCrontab >> $LOG_FILE 2>&1
+rm newCrontab >> $LOG_FILE 2>&1
+
+certbot certonly --standalone --agree-tos --register-unsafely-without-email -d $whereami  >> $LOG_FILE 2>&1
+systemctl daemon-reload
+systemctl enable node.service
+systemctl start node.service
+sleep 10
+systemctl stop node.service
+
+#Download recent Bootstrap......" 
+echo "Downloading recent Bootstrap..."
+echo "This may take a while..."
+
+sudo systemctl stop node.service
+cd ~/.local/share/chainweb-node/mainnet01/0/
+sudo rm -fr rocksDb sqlite
+wget https://s3.us-east-2.amazonaws.com/node-dbs.chainweb.com/db-chainweb-node-ubuntu.18.04-latest.tar.gz
+sudo tar xvfz db-chainweb-node-ubuntu.18.04-latest.tar.gz
+sudo systemctl start node.service
+clear
+# Installation Completed
+echo 'Installation completed...'
+echo 'Kadena Node is installed'
+echo 'Watchdogs are in place'
+echo 'Everything is automated from now on'
+echo 'Type "sudo nano /home/kda/config.yaml"'
+echo 'Change the coordination mode to "private"'
+echo 'Edit the miners section for your addresses'
+echo 'CTRL+x to save Y to confirm then "sudo systemctl restart node.service"'
+echo 'to restart it with your addresses whitelisted'
+echo 'Type "journalctl -fu node.service" to see the node log'
