mirror of https://github.com/agessaman/meshcore-bot.git synced 2026-03-30 12:05:38 +00:00

Files

agessaman 652712eb0c Update documentation links and file references for consistency

- Renamed various documentation files to use lowercase for improved consistency, including `WEB_VIEWER.md`, `DOCKER.md`, and `PATH_COMMAND_CONFIG.md`.
- Updated references in `config.ini.example`, `docker-setup.sh`, `README.md`, and multiple documentation files to reflect the new file names.
- Removed obsolete documentation files related to the Discord Bridge, Map Uploader, Packet Capture, and Weather Service, streamlining the documentation structure.

2026-02-16 17:15:52 -08:00

11 KiB

Raw Blame History

Docker Deployment Guide

This guide explains how to deploy meshcore-bot using Docker and Docker Compose.

Prerequisites

Docker Engine 20.10+ or Docker Desktop
Docker Compose 2.0+ (included with Docker Desktop)

Quick Start

Clone the repository (if you haven't already):

git clone <repository-url>
cd meshcore-bot

Run the setup script (recommended):
```
./docker-setup.sh
```
This will create the necessary directories and copy the example config file.

Or manually:
```
mkdir -p data/{config,databases,logs,backups}
cp config.ini.example data/config/config.ini
```

Edit configuration file:

# Edit data/config/config.ini with your settings
nano data/config/config.ini  # or your preferred editor

Update database paths in config.ini: The setup script (./docker-setup.sh) will automatically update these paths, but you can also set them manually:
```
[Bot]
db_path = /data/databases/meshcore_bot.db

[Web_Viewer]
db_path = /data/databases/meshcore_bot.db

[Logging]
log_file = /data/logs/meshcore_bot.log
```
Important: The log file path must be absolute (/data/logs/...), not relative. Relative paths will resolve to the config directory which is read-only.
Start the container:
```
docker-compose up -d
```
View logs:
```
docker-compose logs -f
```

Configuration

Volume Mappings

The docker-compose.yml file maps the following directories:

./data/config → /data/config (read-only) - Configuration files
./data/databases → /data/databases - SQLite database files
./data/logs → /data/logs - Log files
./data/backups → /data/backups - Database backups

Serial Port Access

⚠️ Important: Docker Desktop on macOS does NOT support serial device passthrough.

If you're using a serial connection, you have several options:

Option 1: Use TCP Connection (Recommended for macOS) If your MeshCore device supports TCP/IP (via gateway or bridge), configure it in config.ini:

[Connection]
connection_type = tcp
hostname = 192.168.1.60  # Your device's IP or hostname
tcp_port = 5000

Then comment out or remove the devices section in docker-compose.yml.

Option 2: Serial-to-TCP Bridge (macOS workaround) Use a tool like socat to bridge the serial port to TCP on the host:

# On macOS host, create TCP bridge
socat TCP-LISTEN:5000,reuseaddr,fork FILE:/dev/cu.usbmodem1101,raw,nonblock,waitlock=/var/run/socat.pid

Then configure the bot to use TCP connection to localhost:5000.

Option 3: Device Mapping (Linux only) On Linux, you can map the serial device directly:

devices:
  - /dev/ttyUSB0:/dev/ttyUSB0

Option 4: Host Network Mode (Linux only, for BLE) For BLE connections on Linux, you may need host network access:

network_mode: host

Note: Host network mode gives the container full access to the host network, which has security implications.

Web Viewer Port

If you enable the web viewer, uncomment and adjust the ports section:

ports:
  - "8080:8080"

Make sure your config.ini has:

[Web_Viewer]
enabled = true
host = 0.0.0.0  # Required for Docker port mapping
port = 8080

Building the Image

Using Docker Compose

Important: To avoid pull warnings, build the image first:

docker compose build

Then start the container:

docker compose up -d

Or build and start in one command:

docker compose up -d --build

The --build flag ensures the image is built locally rather than attempting to pull from a registry.

Using Docker directly

docker build -t meshcore-bot:latest .

Running the Container

Start in background

docker-compose up -d

Start in foreground (see logs)

docker-compose up

Stop the container

docker-compose down

Restart the container

docker-compose restart

Managing the Container

View logs

# Follow logs
docker-compose logs -f

# Last 100 lines
docker-compose logs --tail=100

# Logs for specific service
docker-compose logs meshcore-bot

Execute commands in container

docker-compose exec meshcore-bot bash

Update the container

# Pull latest changes
git pull

# Rebuild and restart
docker-compose up -d --build

Using Pre-built Images

If you're using GitHub Container Registry images:

Update docker-compose.yml to use the image:

services:
  meshcore-bot:
    image: ghcr.io/your-username/meshcore-bot:latest
    # Remove or comment out the 'build' section

Pull and start:

docker-compose pull
docker-compose up -d

Troubleshooting

Permission Issues

If you encounter permission issues with database or log files:

Check file ownership:

ls -la data/databases/
ls -la data/logs/

Fix permissions (if needed):
```
sudo chown -R 1000:1000 data/
```

The container runs as user ID 1000 (meshcore user).

Serial Port Permission Denied

If you see [Errno 13] Permission denied when accessing serial devices:

Check device permissions (on host):

ls -l /dev/ttyUSB0  # or /dev/ttyACM0
# Should show: crw-rw---- 1 root dialout ...

Ensure device has dialout group (on host):

# Check current group
ls -l /dev/ttyUSB0 | awk '{print $4}'

# If not dialout, fix it (temporary - will reset on reboot)
sudo chmod 666 /dev/ttyUSB0

# Or make it permanent with udev rules:
sudo nano /etc/udev/rules.d/99-serial-permissions.rules
# Add: KERNEL=="ttyUSB[0-9]*", MODE="0666", GROUP="dialout"
# Then: sudo udevadm control --reload-rules

Rebuild the container (to ensure user is in dialout group):
```
docker compose build
docker compose up -d
```

Alternative: Use privileged mode (less secure, but works):

# In docker-compose.override.yml
services:
  meshcore-bot:
    privileged: true

Serial Port Not Found

Check device exists:
```
ls -l /dev/ttyUSB0  # or your device
```
Use host network mode if device mapping doesn't work:
```
network_mode: host
```

Database Locked Errors

If you see database locked errors:

Stop the container:
```
docker-compose down
```
Check for leftover database files:
```
ls -la data/databases/*.db-*
```

Remove lock files (if safe):

rm data/databases/*.db-shm data/databases/*.db-wal

Restart:
```
docker-compose up -d
```

Container Won't Start

Check logs:
```
docker-compose logs
```
Verify config file exists:
```
ls -la data/config/config.ini
```

Test config file syntax:

docker-compose run --rm meshcore-bot python3 -c "import configparser; c = configparser.ConfigParser(); c.read('/data/config/config.ini'); print('Config OK')"

Build Failures on ARM Devices (Orange Pi, Raspberry Pi, etc.)

If you encounter network errors during build like:

failed to add the host (veth...) <=> sandbox (veth...) pair interfaces: operation not supported

Try these solutions:

Restart Docker daemon:
```
sudo systemctl restart docker
```

Check kernel modules are loaded:

lsmod | grep bridge
lsmod | grep veth

If missing, load them:

sudo modprobe bridge
sudo modprobe veth

Build directly with docker build (bypasses compose networking - RECOMMENDED):

# Build the image directly
DOCKER_BUILDKIT=0 docker build -t meshcore-bot:latest .

# Then use docker compose normally (it will use the existing image)
docker compose up -d

This bypasses Docker Compose's networking setup during build, which often fails on ARM devices.

Use host network mode for build (alternative):

DOCKER_BUILDKIT=0 docker build --network=host -t meshcore-bot:latest .
docker compose up -d

Check Docker bridge configuration:
```
sudo brctl show
```
If bridge doesn't exist, Docker may need to be reconfigured.
Check Docker daemon logs:
```
sudo journalctl -u docker -n 50
```

Reinstall Docker (if other solutions fail):

# Backup your data first!
sudo apt-get remove docker docker-engine docker.io containerd runc
# Then reinstall Docker following Armbian/Docker official instructions

Production Deployment

For production deployments:

Use specific image tags instead of latest:

image: ghcr.io/your-username/meshcore-bot:v1.0.0

Set resource limits in docker-compose.yml:

deploy:
  resources:
    limits:
      cpus: '1.0'
      memory: 512M
    reservations:
      cpus: '0.5'
      memory: 256M

Use secrets management for sensitive configuration:
- Use Docker secrets (Docker Swarm)
- Use environment variables for API keys
- Mount secret files as read-only volumes

Enable log rotation (already configured in docker-compose.yml):

logging:
  driver: "json-file"
  options:
    max-size: "10m"
    max-file: "3"

Set up health checks (already included in Dockerfile): The container includes a basic health check. Monitor with:
```
docker-compose ps
```

Backup and Restore

Backup

# Backup databases
docker-compose exec meshcore-bot tar czf /data/backups/backup-$(date +%Y%m%d).tar.gz /data/databases

# Or from host
tar czf backups/backup-$(date +%Y%m%d).tar.gz data/databases/

Restore

# Stop container
docker-compose down

# Restore databases
tar xzf backups/backup-YYYYMMDD.tar.gz -C data/

# Start container
docker-compose up -d

Security Considerations

Non-root user: The container runs as a non-root user (UID 1000)
Read-only config: Config directory is mounted read-only to prevent accidental modifications
Network isolation: By default, containers are isolated. Only expose ports you need
Secrets: Never commit API keys or sensitive data to version control. Use environment variables or secrets management
Web viewer: If enabled, ensure it's only accessible on trusted networks or use a reverse proxy with authentication

Additional Resources

Docker Documentation
Docker Compose Documentation
Main README for general bot configuration.

11 KiB Raw Blame History