Skip to content

Commit

Permalink
Update README
Browse files Browse the repository at this point in the history 
Add mithril infra scripts documentation and fast genesis process
  • Loading branch information
@jpraynaud
jpraynaud committed Nov 29, 2022
1 parent f839c09 commit 6655609
Showing 1 changed file with 157 additions and 0 deletions.
157 changes: 157 additions & 0 deletions mithril-infra/README.md
View file
Expand Up @@ -92,3 +92,160 @@ The commands to run when bootstrapping is:
```bash
docker exec mithril-aggregator /app/bin/mithril-aggregator -vvv genesis bootstrap
```
## Tools
The Mithril infrastructre comes with some scripts that help handle common tasks.
### Utils
This script is mainly used by the GitHub Actions workflows in the terraform deployments.
| Script | Description | Usage |
|--------|-------------|-------|
| `google-credentials-public-key.sh` | Extract a public key from a GCP credentials file and adds it to an authorized `ssh_keys` file for a specific user. | `./google-credentials-public-key.sh credentials.json ssh_keys username` |
### Pool
These scripts are used to create and maintain a **Cardano Stake Pool Operator (SPO)** on a Mithril network, for **Tests only**.
Connect to the VM and select the Cardano node and the Mithril signer node:
```
# Show debug output
export DEBUG=1
# Select Cardano network
export NETWORK=preview
export NETWORK_MAGIC=2
# Selet Cardano node
export CARDANO_NODE=cardano-node-signer-1
# Select Mithril signer node
export SIGNER_NODE=mithril-signer-1
```
In order to create a stake pool from scratch:
* Create keys with `create-keys.sh`
* Register the stake address of the pool with `register-stake-address.sh`
* Register the stake pool with `register-stake-pool.sh`
In order to query a stake pool information:
* Query the stake pool with `query-stake-pool.sh`
In order to maintain the stake pool:
* Renew the operational certificate of the stake pool with `renew-opcert.sh`
In order to retire a stake pool:
* Retire a stake poool with `retire-stake-pool.sh`
| Script | Description | Usage |
|--------|-------------|-------|
| `create-keys.sh` | Script for creating keys for a Cardano pool (SPO) | `./tools/pool/create-keys.sh` |
| `query-stake-pool.sh` | Script for querying info about a Cardano pool (SPO) | `./tools/pool/query-stake-pool.sh` |
| `register-stake-address.sh` | Script for registering stake address of a Cardano pool (SPO) | `TX_IN=***YOUR_TX_IN*** ./tools/pool/register-stake-address.sh` |
| `register-stake-pool.sh` | Script for registering a Cardano stake pool (SPO) | `TX_IN=***YOUR_TX_IN*** SIGNER_DOMAIN=***YOUR_SIGNER_DOMAIN_NAME*** POOL_TICKER=***YOUR_TICKER*** ./tools/pool/register-stake-pool.sh` |
| `renew-opcert.sh` | Script for renewing Operational Certificate for a Cardano pool (SPO) | `./tools/pool/renew-opcert.sh` |
| `retire-stake-pool.sh` | Script for retiring a Cardano pool (SPO) | `TX_IN=***YOUR_TX_IN*** VALUE_OUT=***YOUR_VALUE_OUT*** ./tools/pool/retire-stake-pool.sh` |
### Genesis
These scripts are used to fast bootstrap the genesis cerificates of a Mithril network, for **Tests only**.
The principle is to antedate the databases of the signers and aggregators so that we can bootstrap then a valid genesis certificate.
:warning: This process is experimental and recommended for expert users only.
| Script | Description | Usage |
|--------|-------------|-------|
| `fast-genesis-aggregator.sh` | Script for antedating an aggregator database to run after the first signer registration (create fake `2` previous epochs with current epoch data for `stake`, `verification_key` and `protocol_parameters`) | `./tools/genesis/fast-genesis-aggregators.sh` |
| `fast-genesis-signer.sh` | Script for antedating a signer database to run after the first signer registration (create fake `2` previous epochs with current epoch data for `stake`, `protocol_initializer`) | `./tools/genesis/fast-genesis-signer.sh` |
| `update-genesis-certificate.sh` | Script for updating the content of the genesis certificate in the aggregator database | `./tools/genesis/update-genesis-certificate.sh` |
| `update-stake-distribution-aggregator.sh` | Script for adding a Pool Id to an existing stake distribution in the aggregator database | `./tools/genesis/update-stake-distribution-aggregator.sh` |
| `update-stake-distribution-signer.sh` | Script for adding a Pool Id to an existing stake distribution in the signer database | `./tools/genesis/update-stake-distribution-signer.sh` |
Here is an example process to fast bootstrap a Mithril network on preview with `2` signer nodes:
```
# Set env var
export NETWORK=preview
export NETWORK_MAGIC=2
export SIGNER_DOMAIN=dev-${NETWORK}.api.mithril.network
# Check that all cardano nodes are synced
docker exec mithril-aggregator /app/bin/cardano-cli query tip --testnet-magic $NETWORK_MAGIC
docker exec mithril-signer-1 /app/bin/cardano-cli query tip --testnet-magic $NETWORK_MAGIC
docker exec mithril-signer-2 /app/bin/cardano-cli query tip --testnet-magic $NETWORK_MAGIC
## Clean signer db
sqlite3 data/$NETWORK/mithril-signer-1/mithril/stores/signer.sqlite3 "DELETE FROM protocol_initializer; DELETE FROM stake;"
sqlite3 data/$NETWORK/mithril-signer-2/mithril/stores/signer.sqlite3 "DELETE FROM protocol_initializer; DELETE FROM stake;"
## Clean aggregator db
sqlite3 data/$NETWORK/mithril-aggregator/mithril/stores/aggregator.sqlite3 "DELETE FROM certificate; DELETE FROM single_signature; DELETE FROM verification_key; DELETE FROM pending_certificate; DELETE FROM snapshot; DELETE FROM stake;"
## Restart nodes
docker restart mithril-aggregator
docker restart mithril-signer-1
docker restart mithril-signer-2
## If with certified signer
### Create certified signer and retrieve its pool id
CARDANO_NODE=cardano-node-signer-1 SIGNER_NODE=mithril-signer-1 POOL_TICKER=MSI01 ./tools/pool/create-keys-pool.sh
CARDANO_NODE=cardano-node-signer-1 SIGNER_NODE=mithril-signer-1 POOL_TICKER=MSI01 ./tools/pool/register-stake-address.sh
CARDANO_NODE=cardano-node-signer-1 SIGNER_NODE=mithril-signer-1 POOL_TICKER=MSI01 ./tools/pool/register-stake-pool.sh
CARDANO_NODE=cardano-node-signer-2 SIGNER_NODE=mithril-signer-2 POOL_TICKER=MSI02 ./tools/pool/create-keys-pool.sh
CARDANO_NODE=cardano-node-signer-2 SIGNER_NODE=mithril-signer-2 POOL_TICKER=MSI02 ./tools/pool/register-stake-address.sh
CARDANO_NODE=cardano-node-signer-2 SIGNER_NODE=mithril-signer-2 POOL_TICKER=MSI02 ./tools/pool/register-stake-pool.sh
## If with certified signer
### Update stake distribution with new pool ids
#### This is not completely working: you will have to wait for one epoch before going to the next step
./tools/genesis/update-stake-distribution-aggregator.sh $NETWORK mithril-aggregator $(cat ./data/$NETWORK/mithril-signer-1/cardano/pool/pool_id.txt) 100000000123456
./tools/genesis/update-stake-distribution-signer.sh $NETWORK mithril-signer-1 $(cat ./data/$NETWORK/mithril-signer-1/cardano/pool/pool_id.txt) 100000000123456
./tools/genesis/update-stake-distribution-signer.sh $NETWORK mithril-signer-2 $(cat ./data/$NETWORK/mithril-signer-1/cardano/pool/pool_id.txt) 100000000123456
./tools/genesis/update-stake-distribution-aggregator.sh $NETWORK mithril-aggregator $(cat ./data/$NETWORK/mithril-signer-2/cardano/pool/pool_id.txt) 100000000123456
./tools/genesis/update-stake-distribution-signer.sh $NETWORK mithril-signer-1 $(cat ./data/$NETWORK/mithril-signer-2/cardano/pool/pool_id.txt) 100000000123456
./tools/genesis/update-stake-distribution-signer.sh $NETWORK mithril-signer-2 $(cat ./data/$NETWORK/mithril-signer-2/cardano/pool/pool_id.txt) 100000000123456
## Wait until stake distribution is updated and signer is registered
docker logs -f --tail 250 mithril-aggregators
docker logs -f --tail 250 mithril-signer-1
docker logs -f --tail 250 mithril-signer-2
## Run fast genesis scripts
./tools/genesis/fast-genesis-aggregator.sh $NETWORK mithril-aggregator
./tools/genesis/fast-genesis-signer.sh $NETWORK mithril-signer-1
./tools/genesis/fast-genesis-signer.sh $NETWORK mithril-signer-2
## Bootstrap genesis certificate
docker exec mithril-aggregator /app/bin/mithril-aggregator -vvv genesis bootstrap
## Update genesis certificate to previous epoch
### Select current genesis certificate in the aggregator database
sqlite3 data/$NETWORK/mithril-aggregator/mithril/stores/aggregator.sqlite3 "SELECT * FROM certificate;"
### Recompute the genesis certificate hash
Run the following Rust snippet (see below)
### Update the current genesis certificate of the aggregator database
./tools/genesis/update-genesis-certificate.sh $NETWORK mithril-aggregator ***YOUR_UPDATED_CERTIFICATE_HASH*** '***YOUR_UPDATED_JSON_CERTIFICATE***'
```
Snippet code to re-compute a valid genesis certificate:
```rust
### Add this test to the **mithril-common/src/crypto_helper/genesis.rs** file and run the test
#[test]
fn update_genesis_certificate() {
use crate::entities::Certificate;
let certificate_json = "***YOUR_GENESIS_CERTIFICATE***";
let mut certificate: Certificate = serde_json::from_str(certificate_json).unwrap();
certificate.beacon.epoch -= 1;
certificate.hash = certificate.compute_hash();
println!(
"UPDATED_CERTIFICATE_JSON={}",
serde_json::to_string(&certificate).unwrap()
);
}
```

0 comments on commit 6655609

Please sign in to comment.