search

fboucquez / symbol-bootstrap

A tool that allows you to quickly configure and setup Symbol testnets and nodes.
Apache License 2.0
47 stars 27 forks source link

errors when trying to update the node #153

Closed myxmaster closed 3 years ago

myxmaster commented 3 years ago

Describe the bug After updating symbol-bootstrap and restarting the node with --upgrade parameter, I see this: grafik

Tried all this, but doesn't help:

To Reproduce To reproduce the behavior:

  1. symbol-bootstrap stop
  2. npm install -g symbol-bootstrap
  3. symbol-bootstrap start -p testnet -a dual --upgrade -c enable-voting-preset.yml

enable-voting-preset.yml:

nodes:
- voting: true

Logs Please tell me if you need any other logs and how/where to get those. logs-20210216.zip

Desktop (please complete the following information):

Additional context I noticed something is wrong with docker. It didn't react at all (docker -v or docker ps... I had to CTRL+C), so I did docker system prune -a and after that it is responding again, but the problem with starting the node (screenshot above) stays.

myxmaster commented 3 years ago

In case it helps:

addresses.yml: grafik

fboucquez commented 3 years ago

Why there is no main account in addresses.yml? Did you manually remove it from the file?

myxmaster commented 3 years ago

yes, i don't want the private key of an account with funds on a VPS of course...

myxmaster commented 3 years ago

Was it wrong to delete the main account from addresses.yml? If so, why does the node start and function normally, but only updates are not possible?

fboucquez commented 3 years ago

Atm, the main account private key needs to be provided to generate the server ca certificate, redone on the --upgrade. To mitigate this we are adding encrypt/decrypt commands to bootstrap. When required, bootstrap will ask for the password to decrypt the custom preset, preset.yml and addresses.yml.

Have a look at this PR https://github.com/nemtech/symbol-bootstrap/pull/160

fboucquez commented 3 years ago

Hi @myxmaster ,

I've added privateKeySecurityMode to Bootstrap. I think it will address some of your security concerns around the main private keys.

Please have a look at the docs https://github.com/nemtech/symbol-bootstrap/blob/dev/docs/presetGuides.md#private-keys-and-security. You can try it out by installing bootstrap 0.4.5-alpha-202103011623

You may want to use this setup:

https://github.com/nemtech/symbol-bootstrap/blob/dev/docs/presetGuides.md#never-stored-main-private-key

fboucquez commented 3 years ago

fixed in dev with the private key security modes