titan-iac/services/crypto/monerod/deployment.yaml

# services/crypto/monerod
apiVersion: apps/v1
kind: Deployment
metadata:
  name: monerod
  namespace: crypto
  labels: { app: monerod }
spec:
  replicas: 1
  strategy: { type: Recreate }
  selector: { matchLabels: { app: monerod } }
  template:
    metadata:
      labels: { app: monerod }
    spec:
      securityContext:
        fsGroup: 1000
        fsGroupChangePolicy: OnRootMismatch
      nodeSelector:
        node-role.kubernetes.io/worker: "true"
      affinity:
        nodeAffinity:
          requiredDuringSchedulingIgnoredDuringExecution:
            nodeSelectorTerms:
            - matchExpressions:
              - key: hardware
                operator: In
                values: ["rpi4","rpi5"]
          preferredDuringSchedulingIgnoredDuringExecution:
            - weight: 50
              preference:
                matchExpressions:
                - key: hardware
                  operator: In
                  values: ["rpi4"]
      containers:
      - name: monerod
        image: registry.bstein.dev/infra/monerod:0.18.4.1
        command: ["/opt/monero/monerod"]
        args:
          - --data-dir=/data
          - --non-interactive
          - --prune-blockchain
          - --rpc-bind-ip=0.0.0.0
          - --rpc-bind-port=18081
          - --confirm-external-bind
          - --p2p-bind-ip=0.0.0.0
          - --p2p-bind-port=18080
          - --zmq-pub=tcp://0.0.0.0:18083
          - --out-peers=32
          - --in-peers=64
          - --add-priority-node=p2pmd.xmrvsbeast.com:18080
          - --add-priority-node=nodes.hashvault.pro:18080
          - --disable-dns-checkpoints
          - --enable-dns-blocklist
        ports:
          - { name: rpc,  containerPort: 18081 }
          - { name: p2p,  containerPort: 18080 }
          - { name: zmq,  containerPort: 18083 }
        # securityContext:
        #   allowPrivilegeEscalation: false
        #   readOnlyRootFilesystem: true
        #   runAsNonRoot: true
        #   runAsUser: 1000
        #   capabilities: { drop: ["ALL"] }
        readinessProbe:
          httpGet: { path: /get_info, port: 18081 }
          initialDelaySeconds: 120
          periodSeconds: 10
          timeoutSeconds: 3
          failureThreshold: 6
        livenessProbe:
          httpGet: { path: /get_info, port: 18081 }
          initialDelaySeconds: 300
          periodSeconds: 20
          timeoutSeconds: 3
          failureThreshold: 6
        terminationGracePeriodSeconds: 120
        lifecycle:
          preStop:
            exec:
              command: ["sh","-lc","kill -TERM 1; for i in $(seq 1 110); do kill -0 1 2>/dev/null || exit 0; sleep 1; done; exit 0"]
        volumeMounts:
        - { name: data, mountPath: /data }
        - { name: tmp,  mountPath: /tmp }
      volumes:
      - name: data
        persistentVolumeClaim: { claimName: monerod-chain }
      - name: tmp
        emptyDir: {}
fixed monerod hopefully 2025-08-12 16:31:27 -05:00			`# services/crypto/monerod`
added monerod 2025-08-10 20:41:01 -05:00			`apiVersion: apps/v1`
			`kind: Deployment`
			`metadata:`
			`name: monerod`
fixed monerod hopefully 2025-08-12 14:30:04 -05:00			`namespace: crypto`
added monerod 2025-08-10 20:41:01 -05:00			`labels: { app: monerod }`
			`spec:`
			`replicas: 1`
			`strategy: { type: Recreate }`
			`selector: { matchLabels: { app: monerod } }`
			`template:`
			`metadata:`
			`labels: { app: monerod }`
			`spec:`
			`securityContext:`
			`fsGroup: 1000`
			`fsGroupChangePolicy: OnRootMismatch`
zot fixes, worker requirement 2025-08-13 18:09:28 -05:00			`nodeSelector:`
zot fixes, worker requirement 2025-08-13 18:11:03 -05:00			`node-role.kubernetes.io/worker: "true"`
pin stable jellyfin 2025-09-02 10:43:44 -05:00			`affinity:`
			`nodeAffinity:`
			`requiredDuringSchedulingIgnoredDuringExecution:`
			`nodeSelectorTerms:`
			`- matchExpressions:`
			`- key: hardware`
			`operator: In`
			`values: ["rpi4","rpi5"]`
			`preferredDuringSchedulingIgnoredDuringExecution:`
			`- weight: 50`
			`preference:`
			`matchExpressions:`
			`- key: hardware`
			`operator: In`
			`values: ["rpi4"]`
added monerod 2025-08-10 20:41:01 -05:00			`containers:`
			`- name: monerod`
added dockerfiles, starting to use custom images 2025-08-13 21:56:00 -05:00			`image: registry.bstein.dev/infra/monerod:0.18.4.1`
			`command: ["/opt/monero/monerod"]`
monerod deployment fix 2025-08-11 17:43:11 -05:00			`args:`
fixed monerod hopefully 2025-08-12 16:31:27 -05:00			`- --data-dir=/data`
			`- --non-interactive`
			`- --prune-blockchain`
			`- --rpc-bind-ip=0.0.0.0`
			`- --rpc-bind-port=18081`
			`- --confirm-external-bind`
			`- --p2p-bind-ip=0.0.0.0`
			`- --p2p-bind-port=18080`
add low priority mining 2025-08-13 01:00:20 -05:00			`- --zmq-pub=tcp://0.0.0.0:18083`
			`- --out-peers=32`
			`- --in-peers=64`
			`- --add-priority-node=p2pmd.xmrvsbeast.com:18080`
			`- --add-priority-node=nodes.hashvault.pro:18080`
			`- --disable-dns-checkpoints`
			`- --enable-dns-blocklist`
fixed monerod hopefully 2025-08-11 08:54:22 -05:00			`ports:`
fixed monerod hopefully 2025-08-12 16:31:27 -05:00			`- { name: rpc, containerPort: 18081 }`
			`- { name: p2p, containerPort: 18080 }`
get it working monero miner 2025-08-13 01:32:55 -05:00			`- { name: zmq, containerPort: 18083 }`
get it working monerod 2025-08-12 15:25:11 -05:00			`# securityContext:`
			`# allowPrivilegeEscalation: false`
			`# readOnlyRootFilesystem: true`
			`# runAsNonRoot: true`
			`# runAsUser: 1000`
			`# capabilities: { drop: ["ALL"] }`
added monerod 2025-08-10 20:41:01 -05:00			`readinessProbe:`
			`httpGet: { path: /get_info, port: 18081 }`
get it working monerod 2025-08-12 15:25:11 -05:00			`initialDelaySeconds: 120`
added monerod 2025-08-10 20:41:01 -05:00			`periodSeconds: 10`
fixed monerod hopefully 2025-08-11 08:54:22 -05:00			`timeoutSeconds: 3`
			`failureThreshold: 6`
added monerod 2025-08-10 20:41:01 -05:00			`livenessProbe:`
			`httpGet: { path: /get_info, port: 18081 }`
get it working monerod 2025-08-12 15:25:11 -05:00			`initialDelaySeconds: 300`
added monerod 2025-08-10 20:41:01 -05:00			`periodSeconds: 20`
fixed monerod hopefully 2025-08-11 08:54:22 -05:00			`timeoutSeconds: 3`
			`failureThreshold: 6`
added dockerfiles, starting to use custom images 2025-08-13 21:56:00 -05:00			`terminationGracePeriodSeconds: 120`
			`lifecycle:`
			`preStop:`
			`exec:`
			`command: ["sh","-lc","kill -TERM 1; for i in $(seq 1 110); do kill -0 1 2>/dev/null \|\| exit 0; sleep 1; done; exit 0"]`
monerod deployment fix 2025-08-11 17:43:11 -05:00			`volumeMounts:`
			`- { name: data, mountPath: /data }`
			`- { name: tmp, mountPath: /tmp }`
added monerod 2025-08-10 20:41:01 -05:00			`volumes:`
fixed monerod hopefully 2025-08-11 08:54:22 -05:00			`- name: data`
monerod deployment fix 2025-08-11 17:43:11 -05:00			`persistentVolumeClaim: { claimName: monerod-chain }`
fixed monerod hopefully 2025-08-11 08:54:22 -05:00			`- name: tmp`
added monerod 2025-08-10 20:41:01 -05:00			`emptyDir: {}`