After the installers are built in CI, they need to be copied to the installer updates S3 bucket, and an update proposal needs to be submitted to the cardano-sl network.
This is how wallet clients will self-update.
This document is mainly intended for use by IOHK DevOps working from the mainnet, staging mainnet, or testnet deployers.
It can also be used for testing the update system against a developer cluster.
ssh into the deployer get a nix-shell in the iohk-ops checkout.
cd mainnet
nix-shell -A withAuxx
You can see the list of subcommands with:
io update-proposal --help
Each update-proposal subcommand has its own usage information
accessible with the --help option.
| Subcommand | Synopsis |
|---|---|
| init | Create template config file and working directory. |
| find-installers | Download installer files from the Daedalus build. |
| sign-installers | Sign downloaded installer files with GPG. |
| upload-s3 | Upload installer files to the S3 bucket. |
| set-version-json | Update the version info file in the the S3 bucket. |
| submit | Send update proposal transaction to the network. |
The commands are run in order with manual checks between each step.
-
The keys for core nodes should be in the
keyssubdirectory. -
You need to know the following things:
- Daedalus revision to propose. Note: this should be the same revision as specified in the release candidate announcement and signed off by QA.
- The
lastKnownBlockVersion, according to the table below. - The
voterIndex, according to the table below. - Signing key passphrase (optional).
- IP address of a privileged relay (use
io info).
io -c NETWORK.yaml update-proposal init [DATE] --revision REVISION --block-version VER --voter-index N
Where DATE is a string which identifies the update proposal. By
default it will be today's date in YYYY-MM-DD format. The other
values should be set as required.
This command will create a template config file like
update-proposals/mainnet-2018-04-03/params.yaml.
The directory that the config file is created in is called the work dir. It will contain logs, a node db, keys, installers, hashes, and other information generated by the update proposal.
Open params.yaml in the work dir and double-check that it has
correct values. The contents will look similar to this:
voterIndex: 2
daedalusRevision: 32daff63e1fb1590cd7320e4253e61b2a47b0963
lastKnownBlockVersion: '0.1.0'
io -c NETWORK.yaml update-proposal find-installers DATE
The DATE parameter is required to be specified and should be the
same as what was reported after running the init step.
This will locate the CI builds for the previously configured revision
and download their installer artifacts to the installers
subdirectory of the work dir. It will then use the file program to
check that they are actually installers for the correct platform, and
calculate their hashes using both cardano-auxx and sha256sum.
After it has finished, inspect the following values in params.yaml:
-
The
grApplicationVersionvalue must be a value greater than all previous update proposals on the target cluster. This is recorded in Daedalus Installer History. -
The
grApplicationVersionfound should match what you have set incardano-sl. -
The
ciResultBuildNumberfor allciResultsshould be the correct build. -
The
grCardanoCommitvalue should matchcardano-sl-src.jsonin the Daedalus tree. -
The installer filenames should look normal, have the right network and versions, and correspond to the same build as was approved for release by QA (if updating mainnet installers).
-
The
installerHashesandinstallerSHA256values should be present.
These values will also be summarised in the file wiki.md within the
work dir.
Important: If an update proposal is made with the wrong
applicationVersion, the update mechanism may fail and users will be
required to intervene by manually installing an update.
Sometimes there can be multiple builds corresponding to a given Daedalus revision.
In this case, find-installers will list the builds and then exit
without downloading anything. You need to re-run the command with
--buildkite-build-num or --appveyor-build-num arguments added.
This step requires a signing key available on the deployer host.
io -c NETWORK.yaml update-proposal sign-installers -u [email protected] DATE
If the signing key is protected with a passphrase, you will be prompted to enter it.
This will place detached signatures in .asc files within the work
dir. These will be uploaded to S3 at the same time as the installer
files.
io -c NETWORK.yaml update-proposal upload-s3 DATE
This will upload the hashed installers to S3, under their original filename, as well as by their hash.
There will also be a file daedalus-latest-version.json added to the
work dir with download links and SHA-256 hashes.
Hint: The destination S3 bucket is configured with the
installer-bucket value in NETWORK.yaml. You can edit this for
debugging purposes.
If you get an error like this: AesonException "Error in $['mainnet_staging_short_epoch_wallet_win64']: key \"infra\" not present"),
ensure that the cardano-sl-auxx that you are using matches that
cardano-sl version used by Daedalus.
io -c NETWORK.yaml update-proposal set-version-json DATE
This will drop the previously created daedalus-latest-version.json
into the S3 bucket. If done with the mainnet settings, it will have
the effect of immediately updating the download links on
The Daedalus Wallet download page.
Find the IP address of a privileged relay with io info. This is
normally private info so don't leak it.
io -c NETWORK.yaml update-proposal submit DATE --relay-ip 1.2.3.4
[--without-linux] [--without-macos] [--without-windows]
Updated 2018-12-17
By default, installers will be proposed for Linux, Windows and macOS.
Use the --without-OS flag to exclude certain installers from the
update proposal.
This will generate a new node db, copy keys from the top-level keys
directory, then "rearrange" the copied keys.
It will then send a transaction to the given relay.
Note the proposal ID which is printed at the end of the output.
If the update proposal was successful, the ratified proposal will take effect in k slots time, where k is the security parameter. On mainnet/staging/testnet with k=2160 and 20 second slot duration, this will be 12 hours.
Useful generic search: keywords
- Search Papertrail for
We'll request data for key Tagged (UpdateProposal,[UpdateVote])and confirm it references the first 8 chars of the proposal ID from the previous step. - Search Papertrail for
Processing of proposal csl-daedalus:and confirm that- the number following
:matches the intendedapplicationVersion - the correct
UpId:is referenced - the tags for the supported platforms are mentioned:
tags: [win64, macos64, linux] - matching lines end with
is successful
- the number following
12 hours after proposal acceptance, it should be confirmed.
Search papertrail for Proposal 6e2f23c1 is confirmed on a core node, using the first 8 characters of the proposal ID from the previous step.
Work in progress: DEVOPS-651.
This is also covered in how-to/test-update-system.md, section Check update taken by wallet.
Copy the contents of wiki.md from the work dir and paste into
Daedalus Installer History.
Also update any other documentation which is missing or out of date.
The lastKnownBlockVersion reflects the current adopted protocol
version of the network. Use the following values depending on the
network where the update will be proposed.
| Network | lastKnownBlockVersion |
|---|---|
| mainnet | 0.2.0 |
| staging | 0.2.0 |
| testnet | 0.1.0 |
The update proposal procedure requires a voter index which selects the secret key used to sign the update proposal.
Note: The voterIndex needs to be ≥ 0 and < 7 (where 7 is the
number of core nodes), otherwise you will receive the error
Prelude.!!: index too large.
-
The
lastKnownBlockVersionparameter should be investigated to determine whether it is really needed to be configured, or can be determined from the configuration. -
When printing paths to work dir, show them as relative to the
iohk-opscheckout, rather than as absolute paths. -
Automatically make sure that the version of auxx and tools used corresponds to the
cardano-slversion of Daedalus. Currently, the version used is that built by the nix-shell. -
DEVOPS-816 Automated testing of update proposals.