Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add endpoints to migrate an encrypted key-value store dump for upgrading entropy-tss #1259

Closed
wants to merge 18 commits into from
Closed

Add endpoints to migrate an encrypted key-value store dump for upgrading entropy-tss #1259

wants to merge 18 commits into from

Conversation

ameba23
Copy link
Contributor

@ameba23 ameba23 commented Jan 22, 2025
edited
Loading

This relates to, #1247 and is described in this comment: #1247 (comment)

This provides HTTP endpoints which allow us to export the key-value store as a raw encrypted key-value pair dump, and import it again on a new version of entropy-tss.

The workflow will be something like:

  • Do GET /backup_encrypted_db to get a payload containing the encrypted db, as well as details of the 'key provider'.
  • Stop the VM.
  • Start a new VM with the new version of entropy-tss
  • Do POST /backup_encrypted_db giving the payload from step 1 in the request body, which would put the db / key provider files back. This route can only be used when the node is in a 'not yet ready' state.

Currently based off #1249

Following core sync call - it seems like we maybe don't want or need this feature.

@ameba23 ameba23 marked this pull request as draft January 22, 2025 11:44
@ameba23 ameba23 added this to the v0.4.0 milestone Jan 22, 2025
@ameba23 ameba23 self-assigned this Jan 22, 2025
ameba23 added 15 commits January 22, 2025 12:49
@ameba23
Merge branch 'peg/recovery-feature' into peg/backup-encrypted-db
d56928d 
* peg/recovery-feature:
  Fix staking pallet benchmarks
  Fix staking pallet mock
@ameba23
Comments
4d59afd
@ameba23
Merge branch 'peg/recovery-feature' into peg/backup-encrypted-db
c97fc11 
* peg/recovery-feature:
  Flatten HTTP API structure following review
  Clippy
  Minor edits from PR review
  Rename struct field following review
  Use sp_core::crypto::AccountId32 as key for hashmap to be more explicit
  Fix client tests
  Fix attestation pallet tests
@ameba23
Improve backup encrypted db route and add recover fn
92cce2b
@ameba23
Comments
f848865
@ameba23
Graceful shutdown on db recovery, client functions
1ccff06
@ameba23
Error handling
11d935a
@ameba23
Clippy
8cf65ac
@ameba23
Merge branch 'peg/recovery-feature' into peg/backup-encrypted-db
337b57b 
* peg/recovery-feature:
  Add an extra TSS state for connected to chain but not funded / fully ready (#1263)
@ameba23
Improve backup encrypted db route and add recover fn
7d5f0f3
@ameba23
Add test for backup part (but not yet recovery)
d98feef
@ameba23
Make test for recovery as well as backup
f4c37e2
@ameba23
Add negative test for backup when not signer
8e540f8
@ameba23
Add negative test for unauthorized recovery
cd27ff2
@ameba23
Add CLI commands for backup / recover TSS for version upgrade
d93af8e
@ameba23
Copy link
Contributor Author

ameba23 commented Jan 31, 2025

@JesseAbram @HCastano as it looks like we maybe don't want this, i am thinking to close it for now and possibly re-open later if we do a version upgrade runthrough and find that it is a problem that all TSS nodes change their IDs.

@ameba23
Copy link
Contributor Author

ameba23 commented Feb 4, 2025

Closing re: comment above #1259 (comment)

@ameba23 ameba23 closed this Feb 4, 2025
@HCastano HCastano deleted the peg/backup-encrypted-db branch February 4, 2025 17:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@ameba23 ameba23

Labels
None yet
Projects
Entropy Core
Status: Done
Milestone
v0.4.0
Development

Successfully merging this pull request may close these issues.
1 participant
@ameba23