Merge pull request #2862 from CounterpartyXCP/bootstrap

Refactor bootstrap
CounterpartyXCP · Dec 18, 2024 · f310c3d · f310c3d
2 parents 0180b29 + bd32bb5
commit f310c3d
Show file tree

Hide file tree

Showing 9 changed files with 207 additions and 141 deletions.
diff --git a/counterparty-core/counterpartycore/cli.py b/counterparty-core/counterpartycore/cli.py
@@ -8,7 +8,7 @@
 from termcolor import cprint
 
 from counterpartycore import server
-from counterpartycore.lib import config, sentry, setup
+from counterpartycore.lib import bootstrap, config, sentry, setup
 from counterpartycore.lib.api import dbbuilder
 
 logger = logging.getLogger(config.LOGGER_NAME)
@@ -504,7 +504,7 @@ def main():
 
     # Bootstrapping
     if args.action == "bootstrap":
-        server.bootstrap(no_confirm=args.no_confirm, snapshot_url=args.bootstrap_url)
+        bootstrap.bootstrap(no_confirm=args.no_confirm, snapshot_url=args.bootstrap_url)
 
     # PARSING
     elif args.action == "reparse":

diff --git a/counterparty-core/counterpartycore/lib/bootstrap.py b/counterparty-core/counterpartycore/lib/bootstrap.py
@@ -0,0 +1,175 @@
+import glob
+import io
+import os
+import shutil
+import sys
+import tempfile
+import time
+import urllib.request
+from multiprocessing import Process
+
+import gnupg
+import pyzstd
+from termcolor import colored, cprint
+
+from counterpartycore.lib import config
+from counterpartycore.lib.public_keys import PUBLIC_KEYS
+
+
+def download_zst(data_dir, zst_url):
+    print(f"Downloading {zst_url}...")
+    start_time = time.time()
+    zst_filename = os.path.basename(zst_url)
+    zst_filepath = os.path.join(data_dir, zst_filename)
+    urllib.request.urlretrieve(zst_url, zst_filepath)  # nosec B310  # noqa: S310
+    print(f"Downloaded {zst_url} in {time.time() - start_time:.2f}s")
+    return zst_filepath
+
+
+def decompress_zst(zst_filepath):
+    print(f"Decompressing {zst_filepath}...")
+    start_time = time.time()
+    filename = zst_filepath.replace(".latest.zst", "")
+    filepath = os.path.join(os.path.dirname(zst_filepath), filename)
+    with io.open(filepath, "wb") as output_file:
+        with open(zst_filepath, "rb") as input_file:
+            pyzstd.decompress_stream(input_file, output_file, read_size=16 * 1024)
+    os.remove(zst_filepath)
+    os.chmod(filepath, 0o660)
+    print(f"Decompressed {zst_filepath} in {time.time() - start_time:.2f}s")
+    return filepath
+
+
+def download_and_decompress(data_dir, zst_url):
+    # download and decompress .tar.zst file
+    print(f"Downloading and decompressing {zst_url}...")
+    start_time = time.time()
+    response = urllib.request.urlopen(zst_url)  # nosec B310  # noqa: S310
+    zst_filename = os.path.basename(zst_url)
+    filename = zst_filename.replace(".latest.zst", "")
+    filepath = os.path.join(data_dir, filename)
+    with io.open(filepath, "wb") as output_file:
+        pyzstd.decompress_stream(response, output_file, read_size=16 * 1024)
+    os.chmod(filepath, 0o660)
+    print(f"Downloaded and decompressed {zst_url} in {time.time() - start_time:.2f}s")
+    return filepath
+
+
+def verify_signature(public_key_data, signature_path, snapshot_path):
+    temp_dir = tempfile.mkdtemp()
+    verified = False
+
+    try:
+        gpg = gnupg.GPG(gnupghome=temp_dir)
+        gpg.import_keys(public_key_data)
+        with open(signature_path, "rb") as s:
+            verified = gpg.verify_file(s, snapshot_path, close_file=False)
+    finally:
+        shutil.rmtree(temp_dir)
+
+    return verified
+
+
+def check_signature(filepath, sig_url):
+    sig_filename = os.path.basename(sig_url)
+    sig_filepath = os.path.join(tempfile.gettempdir(), sig_filename)
+    urllib.request.urlretrieve(sig_url, sig_filepath)  # nosec B310  # noqa: S310
+
+    print(f"Verifying signature for {filepath}...")
+    start_time = time.time()
+    signature_verified = False
+    for key in PUBLIC_KEYS:
+        if verify_signature(key, sig_filepath, filepath):
+            signature_verified = True
+            break
+    os.remove(sig_filepath)
+    print(f"Verified signature for {filepath} in {time.time() - start_time:.2f}s")
+
+    if not signature_verified:
+        print(f"{filepath} was not signed by any trusted keys, deleting...")
+        os.remove(filepath)
+        sys.exit(1)
+
+
+def decompress_and_verify(zst_filepath, sig_url):
+    filepath = decompress_zst(zst_filepath)
+    check_signature(filepath, sig_url)
+
+
+def verfif_and_decompress(zst_filepath, sig_url):
+    check_signature(zst_filepath, sig_url)
+    decompress_zst(zst_filepath)
+
+
+def clean_data_dir(data_dir):
+    if not os.path.exists(data_dir):
+        os.makedirs(data_dir, mode=0o755)
+        return
+    files_to_delete = glob.glob(os.path.join(data_dir, "*.db"))
+    files_to_delete += glob.glob(os.path.join(data_dir, "*.db-wal"))
+    files_to_delete += glob.glob(os.path.join(data_dir, "*.db-shm"))
+    for file in files_to_delete:
+        os.remove(file)
+
+
+def download_bootstrap_files(data_dir, files):
+    decompressors = []
+    for zst_url, sig_url in files:
+        zst_filepath = download_zst(data_dir, zst_url)
+        decompressor = Process(
+            target=verfif_and_decompress,
+            args=(zst_filepath, sig_url),
+        )
+        decompressor.start()
+        decompressors.append(decompressor)
+
+    for decompressor in decompressors:
+        decompressor.join()
+
+
+def confirm_bootstrap():
+    warning_message = """WARNING: `counterparty-server bootstrap` downloads a recent snapshot of a Counterparty database
+from a centralized server maintained by the Counterparty Core development team.
+Because this method does not involve verifying the history of Counterparty transactions yourself,
+the `bootstrap` command should not be used for mission-critical, commercial or public-facing nodes.
+        """
+    cprint(warning_message, "yellow")
+
+    confirmation_message = colored("Continue? (y/N): ", "magenta")
+    if input(confirmation_message).lower() != "y":
+        exit()
+
+
+def generate_urls(counterparty_zst_url):
+    state_zst_url = counterparty_zst_url.replace("/counterparty.db", "/state.db")
+    return [
+        (
+            counterparty_zst_url,
+            counterparty_zst_url.replace(".zst", ".sig"),
+        ),
+        (
+            state_zst_url,
+            state_zst_url.replace(".zst", ".sig"),
+        ),
+    ]
+
+
+def bootstrap(no_confirm=False, snapshot_url=None):
+    if not no_confirm:
+        confirm_bootstrap()
+
+    start_time = time.time()
+
+    clean_data_dir(config.DATA_DIR)
+
+    if snapshot_url is None:
+        files = config.BOOTSTRAP_URLS[config.NETWORK_NAME]
+    else:
+        files = generate_urls(snapshot_url)
+
+    download_bootstrap_files(config.DATA_DIR, files)
+
+    cprint(
+        f"Databases have been successfully bootstrapped to {config.DATA_DIR} in {time.time() - start_time:.2f}s.",
+        "green",
+    )
diff --git a/counterparty-core/counterpartycore/lib/config.py b/counterparty-core/counterpartycore/lib/config.py
@@ -173,10 +173,29 @@
 PROTOCOL_CHANGES_URL = "https://counterparty.io/protocol_changes.json"
 # PROTOCOL_CHANGES_URL = "https://raw.githubusercontent.com/CounterpartyXCP/counterparty-core/refs/heads/master/counterparty-core/counterpartycore/protocol_changes.json"
 
-BOOTSTRAP_URL_MAINNET = "https://bootstrap.counterparty.io/counterparty.latest.tar.gz"
-BOOTSTRAP_URL_MAINNET_SIG = "https://bootstrap.counterparty.io/counterparty.latest.sig"
-BOOTSTRAP_URL_TESTNET = "https://bootstrap.counterparty.io/counterparty-testnet.latest.tar.gz"
-BOOTSTRAP_URL_TESTNET_SIG = "https://bootstrap.counterparty.io/counterparty-testnet.latest.sig"
+
+BOOTSTRAP_URLS = {
+    "mainnet": [
+        (
+            "https://storage.googleapis.com/counterparty-bootstrap/counterparty.db.latest.zst",
+            "https://storage.googleapis.com/counterparty-bootstrap/counterparty.db.latest.sig",
+        ),
+        (
+            "https://storage.googleapis.com/counterparty-bootstrap/state.db.latest.zst",
+            "https://storage.googleapis.com/counterparty-bootstrap/state.db.latest.sig",
+        ),
+    ],
+    "testnet": [
+        (
+            "https://storage.googleapis.com/counterparty-bootstrap/counterparty.testnet.db.latest.zst",
+            "https://storage.googleapis.com/counterparty-bootstrap/counterparty.testnet.db.latest.sig",
+        ),
+        (
+            "https://storage.googleapis.com/counterparty-bootstrap/state.testnet.db.latest.zst",
+            "https://storage.googleapis.com/counterparty-bootstrap/state.testnet.db.latest.sig",
+        ),
+    ],
+}
 
 API_MAX_LOG_SIZE = (
     10 * 1024 * 1024

diff --git a/counterparty-core/counterpartycore/lib/util.py b/counterparty-core/counterpartycore/lib/util.py
@@ -8,14 +8,11 @@
 import os
 import random
 import re
-import shutil
 import sys
-import tempfile
 import threading
 import time
 from operator import itemgetter
 
-import gnupg
 import requests
 from counterparty_rs import utils as pycoin_rs_utils
 
@@ -535,24 +532,6 @@ def clean_url_for_log(url):
     return url
 
 
-def verify_signature(public_key_data, signature_path, snapshot_path):
-    temp_dir = tempfile.mkdtemp()
-    verified = False
-
-    try:
-        gpg = gnupg.GPG(gnupghome=temp_dir)
-
-        gpg.import_keys(public_key_data)
-
-        with open(signature_path, "rb") as s:
-            verified = gpg.verify_file(s, snapshot_path, close_file=False)
-
-    finally:
-        shutil.rmtree(temp_dir)
-
-    return verified
-
-
 # ORACLES
 def satoshirate_to_fiat(satoshirate):
     return round(satoshirate / 100.0, 2)