Skip to content

Fix multifaucet DB exec in CI by replacing docker_container_exec with… #736

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
vivekgsharma wants to merge 30 commits into from
Closed

Fix multifaucet DB exec in CI by replacing docker_container_exec with… #736

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
30 commits
Select commit Hold shift + click to select a range
a883620
fix exit before apply
vivekgsharma Mar 3, 2026
f06a0e4
fix main_domain is empty in generated .tfvars
vivekgsharma Mar 3, 2026
23c4081
fix : congi repo psuh
vivekgsharma Mar 3, 2026
7887582
Harden create-devnet: retry ET repo, fix tfvars main_domain, improve …
vivekgsharma Mar 3, 2026
c080f7e
[infra] fix destory workfllow
vivekgsharma Mar 3, 2026
ebfe46c
Fix filebeat SSL conditional for newer ansible-core
vivekgsharma Mar 3, 2026
153a9fa
Fix multifaucet DB wait retry condition for missing stdout
vivekgsharma Mar 5, 2026
e456676
Harden multifaucet DB wait condition for variable module response shape
vivekgsharma Mar 5, 2026
2619eb6
Fix multifaucet DB exec in CI by replacing docker_container_exec with…
vivekgsharma Mar 5, 2026
d6d3778
Fix mn_init iteration for empty/dict mnlist on newer Ansible
vivekgsharma Mar 28, 2026
20f92a4
Add devnet resume mode and guard mn_protx_config loops
vivekgsharma Mar 28, 2026
3ab4b34
Make masternode role conditionals unambiguously boolean
vivekgsharma Mar 28, 2026
58ac3a0
small fix
vivekgsharma Mar 28, 2026
4169c9b
Temporarily skip early deploy plays to resume HP masternode debugging
vivekgsharma Mar 28, 2026
627b4d4
Split collateral funding into per-address transactions
vivekgsharma Mar 28, 2026
03e610f
Pin CI Ansible to 2.16.3 and restore Ansible roles to v1.0-dev behavior
vivekgsharma Mar 28, 2026
423874a
Install jmespath in CI and temporarily resume deploy from masternode …
vivekgsharma Mar 28, 2026
1b8362a
Fix EHF spork activation handling and align with v3
vivekgsharma Mar 28, 2026
6f0771b
Fix EHF spork activation and temporarily resume deploy from sporks
vivekgsharma Mar 28, 2026
e6b2011
Skip unsupported EHF spork activation
vivekgsharma Mar 28, 2026
920b004
Use explicit Dashmate config selection on HP nodes
vivekgsharma Mar 28, 2026
636236c
Run dashmate commands with dashmate HOME like v1.0-dev
vivekgsharma Mar 28, 2026
6e5cb5e
Fix empty quorum-list RPC password in generated Dashmate config
vivekgsharma Mar 28, 2026
bf599ed
Retry dashmate letsencrypt obtain on transient ACME failures
vivekgsharma Mar 28, 2026
08fbc95
Restore full deploy playbook after CI debugging
vivekgsharma Mar 30, 2026
2c895a6
Use write key fallback when removing devnet configs
vivekgsharma Mar 30, 2026
01ec6ac
Split fee and collateral funding paths for masternode registration
vivekgsharma Mar 30, 2026
329878c
Restore masternode funding roles to v1.0-dev behavior
vivekgsharma Mar 30, 2026
00fceb3
Fund HPMN collaterals one at a time to avoid oversized transactions
vivekgsharma Mar 30, 2026
4afc26a
Use explicit Dashmate config selection for HP node setup
vivekgsharma Mar 30, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
109 changes: 101 additions & 8 deletions .github/workflows/create-devnet.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,11 @@ on:
required: true
type: string
default: "2.0.0-rc.16"
deploy_tags:
description: "Ansible tags to run. Use full_deploy for full flow, or a narrower tag such as unban_hp_masternodes to resume faster."
required: true
type: string
default: "full_deploy"
# Advanced options - sane defaults, only change if you know what you're doing
hp_masternodes_arm_count:
description: "Advanced: Number of ARM HP masternodes"
Expand Down Expand Up @@ -52,7 +57,7 @@ on:
jobs:
create:
name: Create Devnet
runs-on: ubuntu-latest
runs-on: ubuntu-22.04
timeout-minutes: 120
concurrency:
group: "devnet-${{ github.event.inputs.devnet_name }}"
Expand Down Expand Up @@ -112,7 +117,7 @@ jobs:
- name: Install Ansible
run: |
python3 -m pip install --upgrade pip
python3 -m pip install ansible
python3 -m pip install ansible-core==2.16.3 jmespath

- name: Install Ansible roles
run: |
Expand All @@ -124,6 +129,7 @@ jobs:
env:
DEPLOY_SERVER_KEY: ${{ secrets.DEPLOY_SERVER_KEY }}
EVO_APP_DEPLOY_KEY: ${{ secrets.EVO_APP_DEPLOY_KEY }}
EVO_APP_DEPLOY_WRITE_KEY: ${{ secrets.EVO_APP_DEPLOY_WRITE_KEY }}
run: |
mkdir -p ~/.ssh

Expand All @@ -139,6 +145,12 @@ jobs:
printf '%s\n' "$EVO_APP_DEPLOY_KEY" > ~/.ssh/id_ed25519
chmod 600 ~/.ssh/id_ed25519

# Optional write key for pushing to configs repo
if [[ -n "$EVO_APP_DEPLOY_WRITE_KEY" ]]; then
printf '%s\n' "$EVO_APP_DEPLOY_WRITE_KEY" > ~/.ssh/id_ed25519_write
chmod 600 ~/.ssh/id_ed25519_write
fi

# SSH config
cat > ~/.ssh/config << 'EOL'
Host github.com
Expand Down Expand Up @@ -168,7 +180,39 @@ jobs:
TERRAFORM_DYNAMODB_TABLE=$TERRAFORM_DYNAMODB_TABLE
EOF

- name: Check for existing devnet configs
id: existing_configs
run: |
git clone git@github.com:dashpay/dash-network-configs.git /tmp/dash-network-configs-source

FOUND=0
MISSING=0
for ext in yml tfvars inventory; do
SRC="/tmp/dash-network-configs-source/$NETWORK_NAME.$ext"
if [[ -f "$SRC" ]]; then
FOUND=$((FOUND + 1))
else
MISSING=$((MISSING + 1))
fi
done

if [[ $FOUND -eq 3 ]]; then
echo "resume_mode=true" >> "$GITHUB_OUTPUT"
echo "Found existing config set for $NETWORK_NAME. Reusing config repo files and skipping Terraform."
cp "/tmp/dash-network-configs-source/$NETWORK_NAME.yml" networks/
cp "/tmp/dash-network-configs-source/$NETWORK_NAME.tfvars" networks/
cp "/tmp/dash-network-configs-source/$NETWORK_NAME.inventory" networks/
elif [[ $FOUND -eq 0 ]]; then
echo "resume_mode=false" >> "$GITHUB_OUTPUT"
echo "No existing config set found for $NETWORK_NAME. Running full create flow."
else
echo "Error: Partial config set found for $NETWORK_NAME in dash-network-configs."
ls -la /tmp/dash-network-configs-source/$NETWORK_NAME.* 2>/dev/null || true
exit 1
fi

- name: Generate network configs
if: steps.existing_configs.outputs.resume_mode != 'true'
env:
MN_AMD: ${{ github.event.inputs.masternodes_amd_count }}
MN_ARM: ${{ github.event.inputs.masternodes_arm_count }}
Expand Down Expand Up @@ -236,9 +280,21 @@ jobs:
DISK_SIZE: ${{ github.event.inputs.hpmn_disk_size }}
run: |
TFVARS_FILE="networks/$NETWORK_NAME.tfvars"
DEFAULT_MAIN_DOMAIN="networks.dash.org"

# Read current value from file (empty if not set)
CURRENT_SIZE=$(grep -oP 'hpmn_node_disk_size\s*=\s*\K[0-9]+' "$TFVARS_FILE" 2>/dev/null || echo "")
CURRENT_MAIN_DOMAIN=$(grep -oP 'main_domain\s*=\s*"\K[^"]*' "$TFVARS_FILE" 2>/dev/null || echo "")

# Generated tfvars leaves main_domain empty; ensure ACM DNS names are valid.
if [[ -z "$CURRENT_MAIN_DOMAIN" ]]; then
echo "Setting main_domain to $DEFAULT_MAIN_DOMAIN..."
if grep -q '^main_domain\s*=' "$TFVARS_FILE"; then
sed -i "s|^main_domain\\s*=.*|main_domain = \"$DEFAULT_MAIN_DOMAIN\"|" "$TFVARS_FILE"
else
echo "main_domain = \"$DEFAULT_MAIN_DOMAIN\"" >> "$TFVARS_FILE"
fi
fi

if [[ -n "$DISK_SIZE" && "$DISK_SIZE" != "$CURRENT_SIZE" ]]; then
if [[ ! "$DISK_SIZE" =~ ^[0-9]+$ ]]; then
Expand All @@ -257,32 +313,69 @@ jobs:
cat "$TFVARS_FILE"

- name: Deploy devnet (Terraform + Ansible)
env:
TF_IN_AUTOMATION: "true"
TF_CLI_ARGS_apply: "-auto-approve"
DEPLOY_TAGS: ${{ github.event.inputs.deploy_tags }}
run: |
echo "============================================"
echo "Deploying $NETWORK_NAME"
echo "Ansible tags: $DEPLOY_TAGS"
echo "============================================"

chmod +x ./bin/deploy
# GitHub Actions checks out a detached HEAD; bypass branch safety check.
./bin/deploy -f "$NETWORK_NAME"
if [[ "${{ steps.existing_configs.outputs.resume_mode }}" == "true" ]]; then
echo "Resume mode enabled. Skipping Terraform and re-running provisioning only."
./bin/deploy -p -f --tags="$DEPLOY_TAGS" "$NETWORK_NAME"
else
./bin/deploy -f --tags="$DEPLOY_TAGS" "$NETWORK_NAME"
fi

- name: Push configs to dash-network-configs
if: always()
env:
EVO_APP_DEPLOY_WRITE_KEY: ${{ secrets.EVO_APP_DEPLOY_WRITE_KEY }}
run: |
# Clone the configs repo to a temp directory
git clone git@github.com:dashpay/dash-network-configs.git /tmp/dash-network-configs

# Copy generated config files
cp "networks/$NETWORK_NAME.yml" /tmp/dash-network-configs/
cp "networks/$NETWORK_NAME.tfvars" /tmp/dash-network-configs/
cp "networks/$NETWORK_NAME.inventory" /tmp/dash-network-configs/
# Copy generated config files if present
COPIED=0
for ext in yml tfvars inventory; do
SRC="networks/$NETWORK_NAME.$ext"
if [[ -f "$SRC" ]]; then
cp "$SRC" /tmp/dash-network-configs/
COPIED=$((COPIED + 1))
else
echo "Skipping missing file: $SRC"
fi
done

if [[ $COPIED -eq 0 ]]; then
echo "No config files found to push"
exit 0
fi

# Commit and push
cd /tmp/dash-network-configs
git config user.name "GitHub Actions"
git config user.email "actions@github.com"
git add .
git commit -m "Add configs for $NETWORK_NAME" || echo "No changes to commit"
git push

# Use optional write key if configured; otherwise try default key.
if [[ -n "$EVO_APP_DEPLOY_WRITE_KEY" && -f "$HOME/.ssh/id_ed25519_write" ]]; then
GIT_SSH_COMMAND='ssh -i ~/.ssh/id_ed25519_write -o StrictHostKeyChecking=no' git push || {
echo "::warning::Failed to push configs with EVO_APP_DEPLOY_WRITE_KEY"
exit 0
}
else
git push || {
echo "::warning::Failed to push configs (likely read-only EVO_APP_DEPLOY_KEY). Configure secret EVO_APP_DEPLOY_WRITE_KEY with write access."
exit 0
}
fi

echo "Configs pushed to dash-network-configs repo"

Expand Down
30 changes: 27 additions & 3 deletions .github/workflows/destroy-devnet.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@ on:
jobs:
destroy:
name: Destroy Devnet
runs-on: ubuntu-latest
runs-on: ubuntu-22.04
timeout-minutes: 60
concurrency:
group: "devnet-${{ github.event.inputs.devnet_name }}"
Expand Down Expand Up @@ -77,7 +77,7 @@ jobs:
- name: Install Ansible
run: |
python3 -m pip install --upgrade pip
python3 -m pip install ansible
python3 -m pip install ansible-core==2.16.3 jmespath

- name: Install Ansible roles
run: |
Expand All @@ -89,6 +89,7 @@ jobs:
env:
DEPLOY_SERVER_KEY: ${{ secrets.DEPLOY_SERVER_KEY }}
EVO_APP_DEPLOY_KEY: ${{ secrets.EVO_APP_DEPLOY_KEY }}
EVO_APP_DEPLOY_WRITE_KEY: ${{ secrets.EVO_APP_DEPLOY_WRITE_KEY }}
run: |
mkdir -p ~/.ssh

Expand All @@ -104,6 +105,12 @@ jobs:
printf '%s\n' "$EVO_APP_DEPLOY_KEY" > ~/.ssh/id_ed25519
chmod 600 ~/.ssh/id_ed25519

# Optional write key for pushing to configs repo
if [[ -n "$EVO_APP_DEPLOY_WRITE_KEY" ]]; then
printf '%s\n' "$EVO_APP_DEPLOY_WRITE_KEY" > ~/.ssh/id_ed25519_write
chmod 600 ~/.ssh/id_ed25519_write
fi

# SSH config
cat > ~/.ssh/config << 'EOL'
Host github.com
Expand Down Expand Up @@ -190,12 +197,17 @@ jobs:
echo ""

- name: Destroy devnet
env:
TF_IN_AUTOMATION: "true"
TF_CLI_ARGS_destroy: "-auto-approve"
run: |
chmod +x ./bin/destroy
./bin/destroy "$NETWORK_NAME" -t="$DESTROY_TARGET"

- name: Remove configs from dash-network-configs
if: github.event.inputs.destroy_target == 'all'
env:
EVO_APP_DEPLOY_WRITE_KEY: ${{ secrets.EVO_APP_DEPLOY_WRITE_KEY }}
run: |
cd /tmp/dash-network-configs
git config user.name "GitHub Actions"
Expand All @@ -207,7 +219,19 @@ jobs:
git rm "$NETWORK_NAME.inventory" 2>/dev/null || true

git commit -m "Remove configs for $NETWORK_NAME (destroyed)" || echo "No changes to commit"
git push

# Use optional write key if configured; otherwise try default key.
if [[ -n "$EVO_APP_DEPLOY_WRITE_KEY" && -f "$HOME/.ssh/id_ed25519_write" ]]; then
GIT_SSH_COMMAND='ssh -i ~/.ssh/id_ed25519_write -o StrictHostKeyChecking=no' git push || {
echo "::warning::Failed to push config removal with EVO_APP_DEPLOY_WRITE_KEY"
exit 0
}
else
git push || {
echo "::warning::Failed to push config removal (likely read-only EVO_APP_DEPLOY_KEY). Configure secret EVO_APP_DEPLOY_WRITE_KEY with write access."
exit 0
}
fi

echo "Configs removed from dash-network-configs repo"

Expand Down
Loading
Loading