This repository contains Docker configurations for blockchain protocol nodes and their associated clients. It includes automated build processes and version management for both protocol implementations and client software.
.
├── clients/ # Client-specific Dockerfiles and configurations
│ ├── consensus/ # Consensus client implementations
│ │ └── lighthouse/ # Lighthouse client
│ └── exec/ # Execution client implementations
│ ├── erigon/ # Erigon client
│ └── reth/ # Reth client
├── ethereum/ # Ethereum protocol configurations
│ ├── ethereum-erigon/ # Erigon-based Ethereum node
│ └── ethereum-reth/ # Reth-based Ethereum node
├── example-chain/ # Example of a new protocol structure
│ ├── example-client1/ # First client implementation
│ └── example-client2/ # Second client implementation
└── node-base/ # Base image with common utilities and monitor
The repository uses GitHub Actions for continuous integration and deployment. The main workflow is docker-build.yml which handles:
-
Building and pushing Docker images for:
- Base images
- Client images
- Protocol images
-
Protocol Image Validation:
- Each protocol image is built from its Dockerfile
- The workflow checks all variants defined in the protocol's
babel.yaml - Each variant is validated using
nib image check - The workflow will fail if any variant check fails
-
Version-Based Deployment:
- The workflow tracks the
versionfield in each protocol'sbabel.yaml - On every run, it compares the current version with the previous commit
- The image is only pushed to the API if:
- The version number has changed
- AND all variant checks have passed
- This ensures that protocol images are only deployed when intentionally versioned
- The workflow tracks the
-
Automated Updates:
- Renovate bot monitors dependencies in:
- Dockerfiles
- All
babel.yamlfiles (container URIs)
- Creates pull requests for available updates
- Renovate bot monitors dependencies in:
This versioning system ensures that protocol images are only pushed to production when explicitly versioned and validated, preventing accidental deployments.
Renovate bot manages dependency updates with the following features:
- Version Control:
- Prevents major version updates for clients by default
- Allows excluding specific problematic versions using regex patterns
- Docker Updates:
- Monitors and updates base images
- Updates client versions in Dockerfiles
- Automated PRs: Creates pull requests for version updates that pass the configured rules
- Create a new directory under
clients/:
clients/
└── [consensus|exec]/
└── your-client/
├── Dockerfile
└── ... (additional files)- Dockerfile requirements:
# 1. Use the base image
ARG BASE_IMAGE=ghcr.io/blockjoy/node-base:v176
FROM ${BASE_IMAGE}
# 2. Set client version (required for automation)
ENV YOUR_CLIENT_VERSION=v1.2.3
# 3. Add your build steps
RUN ...- Create a new directory in the root for your protocol:
.
└── your-protocol/
└── your-protocol-client/
├── Dockerfile
└── ... (additional files)- Dockerfile requirements:
# 1. Reference client images using ARG
ARG CLIENT_IMAGE=ghcr.io/blockjoy/your-client:latest
FROM ${CLIENT_IMAGE}
# 2. Add protocol-specific configurations
COPY . .- Local Testing:
# Build node-base image
docker build \
-t blockjoy/node-base:latest \
node-base/
# Build client image using local node-base
docker build \
--build-arg BASE_IMAGE=blockjoy/node-base:latest \
-t blockjoy/your-client:latest \
clients/[consensus|exec]/your-client/
# Build protocol image using local client
docker build \
--build-arg CLIENT_IMAGE=blockjoy/your-client:latest \
-t blockjoy/your-protocol:latest \
your-protocol/your-protocol-client/- Automated Builds:
- Push changes to a branch
- Create a pull request
- GitHub Actions will:
- Build affected images
- Tag with version and SHA
- Push to ghcr.io
The repository includes a GitHub Actions workflow (docker-build.yml) that handles testing and deployment of protocol nodes. Here's how it works:
The test-nodes job automatically deploys test instances of nodes when:
- A PR is created
- A PR is updated
- Changes are pushed to a PR
For each variant in the protocol's babel.yaml:
- Creates a unique node name using a random adjective-adjective-animal format
- Deploys the node on the test environment
- Posts a comment on the PR with the deployed node names and their variants
- Stores node information for cleanup
Key features:
- Each PR gets its own set of test nodes
- Nodes are deployed on the same host for consistent testing
- If a PR is updated, existing nodes are cleaned up and new ones are deployed
- Failed node deployments are handled gracefully - the workflow continues even if some variants fail
The cleanup job automatically removes test nodes when:
- A PR is merged
- A PR is closed
- A PR is updated (before new nodes are deployed)
The cleanup process:
- Extracts node names from PR comments
- Deletes each node using the
bvCLI - Posts a confirmation comment on the PR
- Node names are tracked through PR comments, ensuring nodes are cleaned up even if the workflow is triggered without running the test-nodes job
- The workflow ignores Renovate bot PRs to avoid unnecessary deployments
- Each variant specified in the protocol's
babel.yamlwill be tested - The workflow uses GitHub secrets for authentication and access control
- Node deployment status and errors are reported in PR comments for transparency
- Client versions are managed in their respective Dockerfiles using
*_VERSIONenvironment variables - To exclude problematic versions, add regex patterns to
renovate.json:
{
"packageRules": [
{
"matchPaths": ["clients/your-client/**"],
"matchPackagePatterns": ["YOUR_CLIENT_VERSION"],
"ignoreVersions": ["/^1\\.2\\.3-.*/" ]
}
]
}- All images are built from the
node-baseimage which provides common utilities and monitoring capabilities - Version tags are generated daily with an incremental counter (e.g.,
v20250108.1,v20250108.2) - Each image also includes the git SHA for traceability
- Protocol images are named using their protocol directory name (e.g.,
ethereum-erigon)