Merge pull request #112 from mantlenetworkio/mantle-pectra

Mantle Pectra Upgrade

Author: pandainzoo

.circleci/check-releases.sh

@@ -0,0 +1,21 @@
+#!/bin/bash
+set -euo pipefail
+
+LATEST_RELEASE=$(curl -s --fail -L \
+  -H "Accept: application/vnd.github+json" \
+  -H "X-GitHub-Api-Version: 2022-11-28" \
+  https://api.github.com/repos/ethereum/go-ethereum/releases \
+  | jq -r '(.[] | select(.draft==false) | select(.prerelease==false)).tag_name' | head -n 1)
+
+echo "Detected latest go-ethereum release as ${LATEST_RELEASE}"
+
+git remote add upstream https://github.com/ethereum/go-ethereum
+git fetch upstream > /dev/null
+
+if git branch --contains "${LATEST_RELEASE}" 2>&1 | grep -e '^[ *]*optimism$' > /dev/null
+then
+  echo "Up to date with latest release.  Great job! 🎉"
+else
+  echo "Release has not been merged"
+  exit 1
+fi

.circleci/ci-docker-tag-op-geth-release.sh

@@ -0,0 +1,37 @@
+#!/usr/bin/env bash
+
+set -euo pipefail
+
+DOCKER_REPO=$1
+GIT_TAG=$2
+GIT_SHA=$3
+
+IMAGE_NAME="op-geth"
+IMAGE_TAG=$GIT_TAG
+
+SOURCE_IMAGE_TAG="$DOCKER_REPO/$IMAGE_NAME:$GIT_SHA"
+TARGET_IMAGE_TAG="$DOCKER_REPO/$IMAGE_NAME:$IMAGE_TAG"
+TARGET_IMAGE_TAG_LATEST="$DOCKER_REPO/$IMAGE_NAME:latest"
+
+echo "Checking if docker images exist for '$IMAGE_NAME'"
+echo ""
+tags=$(gcloud container images list-tags "$DOCKER_REPO/$IMAGE_NAME" --limit 1 --format json)
+if [ "$tags" = "[]" ]; then
+  echo "No existing docker images were found for '$IMAGE_NAME'. The code tagged with '$GIT_TAG' may not have an associated dockerfile or docker build job."
+  echo "If this service has a dockerfile, add a docker-publish job for it in the circleci config."
+  echo ""
+  echo "Exiting"
+  exit 0
+fi
+
+echo "Tagging $SOURCE_IMAGE_TAG with '$IMAGE_TAG'"
+gcloud container images add-tag -q "$SOURCE_IMAGE_TAG" "$TARGET_IMAGE_TAG"
+
+# Do not tag with latest if the release is a release candidate.
+if [[ "$IMAGE_TAG" == *"rc"* ]]; then
+  echo "Not tagging with 'latest' because the release is a release candidate."
+  exit 0
+fi
+
+echo "Tagging $SOURCE_IMAGE_TAG with 'latest'"
+gcloud container images add-tag -q "$SOURCE_IMAGE_TAG" "$TARGET_IMAGE_TAG_LATEST"

.circleci/config.yml

@@ -0,0 +1,195 @@
+version: 2.1
+
+orbs:
+  gcp-cli: circleci/gcp-cli@3.0.1
+  slack: circleci/slack@4.10.1
+
+commands:
+  gcp-oidc-authenticate:
+    description: "Authenticate with GCP using a CircleCI OIDC token."
+    parameters:
+      project_id:
+        type: env_var_name
+        default: GCP_PROJECT_ID
+      workload_identity_pool_id:
+        type: env_var_name
+        default: GCP_WIP_ID
+      workload_identity_pool_provider_id:
+        type: env_var_name
+        default: GCP_WIP_PROVIDER_ID
+      service_account_email:
+        type: env_var_name
+        default: GCP_SERVICE_ACCOUNT_EMAIL
+      gcp_cred_config_file_path:
+        type: string
+        default: /home/circleci/gcp_cred_config.json
+      oidc_token_file_path:
+        type: string
+        default: /home/circleci/oidc_token.json
+    steps:
+      - run:
+          name: "Create OIDC credential configuration"
+          command: |
+            # Store OIDC token in temp file
+            echo $CIRCLE_OIDC_TOKEN > << parameters.oidc_token_file_path >>
+            # Create a credential configuration for the generated OIDC ID Token
+            gcloud iam workload-identity-pools create-cred-config \
+                "projects/${<< parameters.project_id >>}/locations/global/workloadIdentityPools/${<< parameters.workload_identity_pool_id >>}/providers/${<< parameters.workload_identity_pool_provider_id >>}"\
+                --output-file="<< parameters.gcp_cred_config_file_path >>" \
+                --service-account="${<< parameters.service_account_email >>}" \
+                --credential-source-file=<< parameters.oidc_token_file_path >>
+      - run:
+          name: "Authenticate with GCP using OIDC"
+          command: |
+            # Configure gcloud to leverage the generated credential configuration
+            gcloud auth login --brief --cred-file "<< parameters.gcp_cred_config_file_path >>"
+            # Configure ADC
+            echo "export GOOGLE_APPLICATION_CREDENTIALS='<< parameters.gcp_cred_config_file_path >>'" | tee -a "$BASH_ENV"
+jobs:
+  docker-release:
+    environment:
+      DOCKER_BUILDKIT: 1
+    parameters:
+      docker_name:
+        description: Docker image name
+        type: string
+        default: "op-geth"
+      docker_tags:
+        description: Docker image tags as csv
+        type: string
+      registry:
+        description: Docker registry
+        type: string
+        default: "us-docker.pkg.dev"
+      repo:
+        description: Docker repo
+        type: string
+        default: "oplabs-tools-artifacts/images"
+      push_tags:
+        description: Push release push tags
+        type: boolean
+        default: false
+    machine:
+      image: ubuntu-2204:2022.07.1
+      resource_class: xlarge
+    steps:
+      - gcp-cli/install
+      - gcp-oidc-authenticate
+      - checkout
+      - run:
+          name: Configure Docker
+          command: |
+            gcloud auth configure-docker <<parameters.registry>>
+      - run:
+          name: Build and push
+          command: |
+            RAW_TAGS="<<parameters.docker_tags>>"
+            if [ "$CIRCLE_BRANCH" = "optimism" ]; then
+              RAW_TAGS="$RAW_TAGS,optimism"
+            fi
+            IMAGE_BASE="<<parameters.registry>>/<<parameters.repo>>/<<parameters.docker_name>>"
+            DOCKER_TAGS=$(echo -ne "$RAW_TAGS" | sed "s/,/\n/g" | sed "s/[^a-zA-Z0-9\n.]/-/g" | sed -e "s|^|-t ${IMAGE_BASE}:|")
+            docker context create buildx-build
+            docker buildx create --use buildx-build
+            docker buildx build --push \
+              $(echo -ne $DOCKER_TAGS | tr '\n' ' ') \
+              --platform=linux/arm64,linux/amd64 \
+              --build-arg VERSION=$CIRCLE_TAG \
+              --build-arg COMMIT=$CIRCLE_SHA \
+              --build-arg BUILDNUM=$CIRCLE_BUILD_NUM \
+              --progress plain \
+              -f Dockerfile .
+      - when:
+          condition:
+            equal: [ true, <<parameters.push_tags>> ]
+          steps:
+            - run:
+                name: Tag
+                command: |
+                  ./.circleci/ci-docker-tag-op-geth-release.sh <<parameters.registry>>/<<parameters.repo>> $CIRCLE_TAG $CIRCLE_SHA1
+  build-geth:
+    docker:
+      - image: cimg/go:1.19
+    resource_class: xlarge
+    steps:
+      - checkout
+      - run:
+          command: go run build/ci.go install
+  unit-test:
+    resource_class: xlarge
+    docker:
+      - image: cimg/go:1.19
+    steps:
+      - checkout
+      - run:
+          command: go run build/ci.go test
+  lint-geth:
+    resource_class: medium
+    docker:
+      - image: cimg/go:1.19
+    steps:
+      - checkout
+      - run:
+          command: go run build/ci.go lint
+  check-releases:
+    docker:
+      - image: cimg/go:1.19
+    steps:
+      - checkout
+      - run:
+          command: .circleci/check-releases.sh
+      - slack/notify:
+          channel: C03N11M0BBN
+          branch_pattern: optimism
+          event: fail
+          template: basic_fail_1
+
+
+workflows:
+  main:
+    jobs:
+      - build-geth:
+          name: Build geth
+      - unit-test:
+          name: Run unit tests for geth
+      - lint-geth:
+          name: Run linter over geth
+      - docker-release:
+          name: Push to Docker
+          docker_tags: <<pipeline.git.revision>>
+          context:
+            - oplabs-gcr
+  release:
+    jobs:
+      - hold:
+          type: approval
+          filters:
+            tags:
+              only: /^v.*/
+            branches:
+              ignore: /.*/
+      - docker-release:
+          name: Push to Docker (release)
+          filters:
+            tags:
+              only: /^v.*/
+            branches:
+              ignore: /.*/
+          docker_tags: <<pipeline.git.revision>>,<<pipeline.git.tag>>
+          push_tags: true
+          context:
+            - oplabs-gcr-release
+          requires:
+            - hold
+  scheduled:
+    triggers:
+      - schedule:
+          # run daily
+          cron: "0 0 * * *"
+          filters:
+            branches:
+              only: [ "optimism" ]
+    jobs:
+      - check-releases:
+          name: Check for new upstream releases
+          context: slack

.github/workflows/check-docker-build.yml

@@ -0,0 +1,29 @@
+name: Check Docker Build
+on:
+  pull_request:
+    branches:
+      - main
+      - develop
+      - 'release/**'
+    paths:
+      - '**'
+jobs:
+  CheckDockerBuild:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@main
+        with:
+          submodules: recursive
+          token: ${{ secrets.PAT }}
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Checking Docker Build
+        run: |
+          URL="https://api.github.com/repos/${{ github.repository }}/pulls/${{ github.event.pull_request.number }}/files"
+          response=$(curl -H 'authorization: Bearer ${{ secrets.PAT }}' -H "Accept: application/vnd.github.v3+json" -s -X GET -G $URL)
+          UPDATEFILE_DIR=$(echo "${response}" | jq -r '.[] | .filename')
+          echo $UPDATEFILE_DIR
+          cmd="docker build -f Dockerfile -t test:v1 ."
+          echo -e "\e[32m$cmd\e[0m"
+          $cmd

.github/workflows/check-make-build.yml

@@ -0,0 +1,27 @@
+name: Check Make Build
+on:
+  pull_request:
+    branches:
+      - main
+      - develop
+      - 'release/**'
+    paths:
+      - '**'
+jobs:
+  CheckMakeBuild:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@main
+        with:
+          submodules: recursive
+          token: ${{ secrets.PAT }}
+      - name: Setup Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: '1.20'
+      - name: Checking Make Build
+        run: |
+          sudo apt update
+          sudo apt install -y build-essential  coreutils libuv1 libudev-dev libusb-1.0-0-dev
+          make geth

.github/workflows/pages.yaml

@@ -0,0 +1,35 @@
+name: Build and publish forkdiff github-pages
+permissions:
+  contents: write
+on:
+  push:
+    branches:
+      - optimism
+jobs:
+  deploy:
+    concurrency: ci-${{ github.ref }}
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+        with:
+          fetch-depth: 1000  # make sure to fetch the old commit we diff against
+
+      - name: Build forkdiff
+        uses: "docker://protolambda/forkdiff:latest"
+        with:
+          args: -repo=/github/workspace -fork=/github/workspace/fork.yaml -out=/github/workspace/index.html
+
+      - name: Build pages
+        run: |
+          mkdir -p tmp/pages
+          mv index.html tmp/pages/index.html
+          touch tmp/pages/.nojekyll
+          if [ "$GITHUB_REPOSITORY" == "ethereum-optimism/op-geth" ]; then
+              echo "op-geth.optimism.io" > tmp/pages/CNAME
+          fi;
+      - name: Deploy
+        uses: JamesIves/github-pages-deploy-action@v4
+        with:
+          folder: tmp/pages
+          clean: true

.gitignore

@@ -30,6 +30,7 @@
 /geth*.zip.sig
 /geth*.zip.asc
 
+vendor
 
 # travis
 profile.tmp
@@ -55,4 +56,5 @@ cmd/ethkey/ethkey
 cmd/evm/evm
 cmd/geth/geth
 cmd/rlpdump/rlpdump
-cmd/workload/workload
+cmd/workload/workload
+cmd/geth/op_geth*

Dockerfile

@@ -19,11 +19,15 @@ RUN cd /go-ethereum && go run build/ci.go install -static ./cmd/geth
 # Pull Geth into a second stage deploy alpine container
 FROM alpine:latest
 
-RUN apk add --no-cache ca-certificates
+RUN apk add --no-cache ca-certificates  jq
 COPY --from=builder /go-ethereum/build/bin/geth /usr/local/bin/
+COPY entrypoint.sh /app/entrypoint.sh
 
 EXPOSE 8545 8546 30303 30303/udp
-ENTRYPOINT ["geth"]
+
+WORKDIR /app
+
+ENTRYPOINT ["/bin/sh", "/app/entrypoint.sh"]
 
 # Add some metadata labels to help programmatic image consumption
 ARG COMMIT=""