This document describes in how to:
- configure different types of DCLedger nodes: genesis, validator and observer
- create a node administrator (or admin) account as a necessary part of validator and genesis node configuration
- Common release artifacts:
- Binary artifacts (part of the release):
- dcld: The binary used for both running a node and interacting with it.
- The service configuration file
dcld.service(either part of the release or deployment folder).
- Binary artifacts (part of the release):
- Additional generated data (for validators and observers):
- Genesis transactions file:
genesis.json - The list of alive peers:
persistent_peers.txtwith the following format:<node id>@<ip:port>,<node2 id>@<ip:port>,....
- Genesis transactions file:
Please check Get the artifacts for the details how to get them.
Minimal:
- 1GB RAM
- 25GB of disk space
- 1.4 GHz CPU
Recommended (for highload applications):
- 2GB RAM
- 100GB SSD
- x64 2.0 GHz 2v CPU
Current delivery is compiled and tested under Ubuntu 20.04 LTS so we recommend using this distribution for now.
In future, it will be possible to compile the application for a wide range of operating systems (thanks to Go language).
Notes
- A part of the deployment commands below will try to enable and run
dcldas a systemd service, it means:- that will require
sudofor a user - you may consider to use non-Ubuntu systemd systems but it's not officially supported for the moment
- in case non systemd system you would need to take care about
dlcdservice enablement and run as well
- that will require
Required if a host has been already used in another DCLedger setup.
Cleanup (click to expand)
$ sudo systemctl stop dcld
$ sudo rm -f "$(which dcld)"
$ rm -rf "$HOME/.dcl" - download
dcldanddcld.servicefrom GitHub release page - Get setup scripts either from release page or from repository if you need latest development version.
- (for validator and observer) Get the running DCLedegr network data:
genesis.jsoncan be found in a<chain-id>sub-directory of the persistent_chains folderpersistent_peers.txt: that file may be published there as well or can be requested from the DCLedger network admins otherwise
Example (click to expand)
# release artifacts
curl -L -O https://github.com/zigbee-alliance/distributed-compliance-ledger/releases/download/<release>/dcld
curl -L -O https://github.com/zigbee-alliance/distributed-compliance-ledger/releases/download/<release>/dcld.service
# deployment scripts
# from release (if available)
curl -L -O https://github.com/zigbee-alliance/distributed-compliance-ledger/releases/download/<release>/run_dcl_node
# OR latest dev version
curl -L -O https://raw.githubusercontent.com/zigbee-alliance/distributed-compliance-ledger/master/deployment/scripts/run_dcl_node
# genesis file
curl -L -O https://raw.githubusercontent.com/zigbee-alliance/distributed-compliance-ledger/master/deployment/persistent_chains/<chain-id>/genesis.json
# persistent peers file (if available)
curl -L -O https://raw.githubusercontent.com/zigbee-alliance/distributed-compliance-ledger/master/deployment/persistent_chains/<chain-id>/persistent_peers.txt- put
dlcdbinary in a folder listed in$PATH(e.g./usr/bin/) - set a proper owner and executable permissions
Example for ubuntu user (click to expand)
$ sudo cp -f ./dcld -t /usr/bin
$ sudo chown ubuntu /usr/bin/dcld
$ sudo chmod u+x /usr/bin/dcld
$ dcld version- ports
26656(p2p) and26657(RPC) should be available for TCP connections - if you use IP filtering rules they should be in sync with the persistent peers list
Example for Ubuntu (click to expand)
$ sudo ufw allow 26656/tcp
$ sudo ufw allow 26657/tcpThis part describes how to configure a genesis node - a starting point of any new network.
The following steps automates a set of instructions that you can find in Running Genesis Node document.
Note This part is not required for all validator owners: it is performed only once for the initial (genesis) node of a DCLedger network. If you are not going to become a genesis node admin you may jump to Validator Node.
Every network (e.g. test-net, main-net etc.) must have a unique chain ID.
dcld keys add <key-name> 2>&1 | tee <key-name>.dclkey.dataNotes
- it's improtant to keep the generated data (especially a mnemonic that allows to recover a key) in a safe place
Run
$ ./run_dcl_node -t genesis -c <chain-id> --gen-key-name <node-admin-key> [--gen-key-name-trustee <trustee-key>] node0This command:
- generates
genesis.jsonfile with the following entries:- a genesis account with
NodeAdminrole - (if a trustee key is provided) a genesis account with
Trusteerole - a genesis txn that makes the local node a validator
- a genesis account with
- configures and starts the node
Notes
- the script assumes that:
- current user is going to be used for
dcldservice to run as - current user is in sudoers list
- current user is going to be used for
- if it's not acceptable for your case please consult a less automated guide Running Genesis Node
- you may likely want to note the summary that this script prints, in particular: node's address, public key and ID.
This part describes how to configure a validator node and add it to the existing network.
The following steps automates a set of instructions that you can find in Running Validator Node document
Run the following to create a key:
dcld keys add <key-name> 2>&1 | tee -a <key-name>.dclkey.dataAnd provide the output address and a public key to the network trustees.
Notes
- it's improtant to keep the generated data (especially a mnemonic that allows to recover the key) in a safe place
Run
$ ./run_dcl_node -c <chain-id> <node-name>Notes
- the script assumes that:
- current user is going to be used for
dcldservice to run as - current user is in sudoers list
- current user is going to be used for
- if it's not acceptable for your case please consult a less automated guide Running Validator Node
This command:
- properly locates
genesis.json - configures and starts the node
Provide generated node admin key address and pubkey to any Trustee(s). So they may create
an account with NodeAdmin role. And wait until:
- Account is created
- The node completed a catch-up:
dcld status --node tcp://<ip:port>returnsfalseforcatching_upfield
$ dcld tx validator add-node --pubkey=<validator pubkey> \
--moniker=<node name> --from=<key name>If the transaction has been successfully written you would find "code": 0 in the output JSON.
Provide the node's ID, IP and a peer port (by default 26656) to other validator admins.
Note Node ID can be found either in the output of the run_dcl_node script or using dcld status command.
If necessary you may also create a key to be used for a new Trustee account.
The procedure is similar to NodeAdmin account creation.
This part describes how to configure an observer node and add it to the existing network.
The following command automates a set of instructions that you can find in Running Observer Node document
Run
$ ./run_dcl_node -t observer -c <chain-id> <node-name>Notes
- the script assumes that:
- current user is going to be used for
dcldservice to run as - current user is in sudoers list
- current user is going to be used for
- if it's not acceptable for your case please consult a less automated guide Running Observer Node
The list of persistent peers for an observer is not required to match the one used by the validators.
As a general guidance you may consider to use only the peers you own and/or trust.
- Check the account:
dcld query auth account --address=<address>
- Check the node is running properly:
dcld status --node tcp://<ip:port>- The value of
<ip:port>matches to[rpc] laddrfield in$HOME/.dcld/config/config.toml - Make sure that
result.sync_info.latest_block_heightis increasing over the time (once in about 5 sec).
- Get the list of nodes participating in the consensus for the last block:
dcld query tendermint-validator-set.- You can pass the additional value to get the result for a specific height:
dcld query tendermint-validator-set 100.
-
persistent_peersfield in$HOME/.dcl/config/config.tomlshould include the latest version of the validators list-
you can use update_peers
# by default path to a file is './persistent_peers' ./update_peers [PATH-TO-PEERS-FILE] -
Notes
dcldservice should be restarted on any configuration changes- in case of any IP filtering firewall rules they should be updated as well
-