One-Click PoS Pool deployment - GS PoS Pool

One-Click PoS Pool deployment – TIER 1 (3 000$)

APPLICATION INTRODUCTION:
As explained on the Conflux Technical Grant Proposition page (https://confluxglobal.notion.site/One-Click-PoS-Pool-deployment-64ab57df915844f9ad871bad6d96f20b 1).
Setting up a PoS pool is challenging. One needs to run a node, deploy and configure contracts on Core Space and eSpace, verify contracts, hosting the UI, etc. In this grant, we ask you to create a tool that automates this process.

PURPOSE OF THE SYSTEM:
The strategic objective of this grant is to make PoS pool deployment easier and through this, to lower the entry barrier. Project’s source code and created docker images will be open source and available on GitHub. Docker images will be available to use with docker directly via Docker hub (Easy to install).

SCOPE OF THE SYSTEM:
Application will be public and accessible to all. Deployed on Docker Hub for easy access and source code and docker images to GitHub repository.

REQUIREMENTS:
Functionalities include but are not limited to:

Run a Dockerized conflux-rust node with the appropriate configuration. This includes proper syncing (https://github.com/conflux-fans/archive-tool), PoS registration, etc.
Automatically deploy, configure, and verify pool contracts on both Core Space and eSpace.
Run a Dockerized preconfigured version of the PoS pool UI.
The contracts and UI should use the reference implementation with no modification: https://github.com/conflux-fans/pos-pool. The node should use the Dockerized conflux-rust distribution: https://hub.docker.com/r/confluxchain/conflux-rust.

DEFINITIONS, ACRONYMS, AND ABBREVIATIONS:
Conflux PoS Pool One-Click deployment, one-step install docker image, Proof-of-Stake Staking Pool installation

TEAM:

Frank 12 years experience on web 2 development, 3 years experience on blockchain development, here is our project on Conflux https://gspos.club. https://transfertool.gspos.club.

Jensen currently work on HK project.

1 Like

Hello @frank, thanks for applying for this grant. I have some questions:

  • What would be the basic requirements (hardware and knowledge) for a user to use the platform?
  • Can you share some more information about your previous experience and your github profile?

Thanks,

hardware: 16G RAM Ubuntu server.
knowledge: just run a few command, eg: a) run PoS Pool[will help user to install docker if not installed]. b) upgrade Node upgrade pool UI c) upgrade contract, all details was encapsulated behind our scripts.

we maintained a few PoS pool nodes, till now, we launched more than 50 times nodes on PoS, there are 4 servers are running for more than 5 months, we may encountered 100 errors during our test, but we try to let our end user forget what is error look like in PROD environment. here is my github https://github.com/chinajinwanjun.

image

1 Like

Project URL:

Features:

Create 3 dockers to manage the PoS pool

  1. Docker Node. Download snapshot via archive tool and run the node. (progress 90%)
  2. Docker Contract_eSpace, automatically deploy the core pool contract and espace contract, sync the profit from Core to eSpace. (progress 90%)
  3. Docker Webpage, a .net 6+sqlite web app, provide a webpage to monitor the pool status, can backup/apply PoS key, upgrade the node & contract. (progress 60%)

The first version will be released at Sep 18.

This is cool, when will your tool finished ?

It’s better to provide good and detail documentation for this tool.

And also do you have any thoughts on the security of node, PoS key and etc ?

Could be finished on Sep 18.

Pool admin have to provide email, password to encrypt the PoS node, private key to deploy the contract in a config file, which can be stolen easily if the server was hacked.

Can encrypt those information after release a workable version.

Welcome to run the experience version. https://github.com/cfx-gspos/PoSOneClick/

Hi Guys
Frank has finished his first version, everyone can try it if interested @0xn1c0 @tonyycc

2 Likes

After several hundreds of test and upgrade, we are very happy to release a stable version of v3.0.0, it support backup and restore whole One Click System from one server to another, it support send system status to admin via email, it support automatically resume all services after reboot the server.

As server from Chinese mainland is hard to access github, we migrated our repository to bitbucket as following.

https://bitbucket.org/abc-cfxpool/posoneclick/commits/tag/v3.0.0

One of our partner created a PoS pool by just a few effort within less than 1 hour, welcome anyone to join us.
http://pool.bitcoinos.org.cn:3000/

To run a One -Click PoS Pool you ONLY need 3 items.

  1. 1100 CFX in Core 50 CFX in eSpace
  2. A cloud server (The fee is around 800 RMB per month in aliyun)
  3. 30 minutes to deploy

Anyone without program skill can do it.

Our PoS pool GS and *** have provided stable service to more than 300 users for more than half year.

1 Like

Hello @frank I approve this grant proposal. One more positive vote is needed for final approval.

I strongly disagree to this grant to be approved. This implementation is not secure to run and should not be run in production server of any kind.

Here is a feedback from Parfinex Pool.
a14880367adc5e063c152c52e9514d1
Following pool run quite well in production server and no error nearly one year/one month.

We feel sorry some users leave web-o-matic pool and come to GS PoS Pool during the period of your Pool down just because we are stable.

No need for talking about pools. It is irrelevant.

It’s about the docker images, scripts and code you provide in this grant, which are not secure and not production ready.

What security issues does this project contain? Maybe a list is straightforward to help the developer solve them.

Hello @frank I approve this grant proposal.

Agree with this comment

There is fundamental issues with how the Docker Images are built. They cannot be run on production as they contain multiple security issues that need to be mitigated.
I will not be building a list, as I’m not paid member of Conflux Team that is responsible for the security audits themselves.
I will say though that there is no troubleshooting provided if errors arise in the scripts. The scripts are too rudimentary to make it when any issue arises with them.
As said, this should not be used in production because of the fundamental issues with security and no troubleshooting provided.

Actually we applied to production server and work quite smoothly during past 11 months, no critical error occued, all assets are safe.

The way your docker containers are build and run, is not secure. So they are not production ready and viable and should not be handed over to any client.

Hi there,

A couple questions - it seems the chinese youtube and the english youtube instructions are slightly different.

For example, in the parameters, what should we use to run the actual pos? For our security settings, do we need to open all ports or just open 2?

  • for the four parameters, which one do we select? one uses test and the other nest888?
  • There is also an option for core - when do we select that one?
  • for the private key, how do we get our 66 hex key for the balacnes with 1k Core and 100 espace? Is there a easy way to get it from fluent? In the tutorial, they copied and pasted the eg. but that leads to zero CFX so I am assuming we need to put our own private key in?
  • How do we find our own private key that starts with 0x****? Is there instructions on how to do this? In Fluent, the private keys are words. It doesn’t seem to be the POS address or the POS binding info either.

“4/4. Please provide private key 0x**** to create the pool (make sure this address has equal or more than 1100 cfx in Core and 10 cfx in eSpace ) eg:0x1111111111111111111111111111111111111111111111111111111116421777”

Thank you!

1 Like