Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Improve Set Up Validator #257

Merged
merged 7 commits into from
Jan 22, 2025
Merged

Improve Set Up Validator #257

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
1dce14b
Improve download
0xLucca Dec 13, 2024
ec7097e
Apply suggestions from code review
0xLucca Dec 16, 2024
1abdd59
Add checksum verification
0xLucca Jan 14, 2025
e6c9c3f
Apply suggestions
0xLucca Jan 15, 2025
36bc02f
Fix variable
0xLucca Jan 15, 2025
8332970
Verify signature
0xLucca Jan 16, 2025
17ee72f
Update note
0xLucca Jan 16, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
52 changes: 42 additions & 10 deletions infrastructure/running-a-validator/onboarding-and-offboarding/set-up-validator.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -78,26 +78,58 @@ Depending on your preference and operating system setup, there are multiple meth

The preferred, most straightforward method to install the required binaries is downloading the latest versions from the official releases. You can visit the [Github Releases](https://github.com/paritytech/polkadot-sdk/releases){target=\_blank} page for the most current versions of the `polkadot`, `polkadot-prepare-worker`, and `polkadot-execute-worker` binaries.

You can also download the binaries by using the following direct links and replacing `INSERT_VERSION_NUMBER` with the version number, e.g. `v1.16.1`
You can also download the binaries by using the following direct links:

=== "`polkadot`"

``` text
https://github.com/paritytech/polkadot-sdk/releases/download/polkadot-INSERT_VERSION_NUMBER/polkadot
``` bash
# Download the binary
curl -LO https://github.com/paritytech/polkadot-sdk/releases/download/{{ dependencies.polkadot_sdk.version }}/polkadot

# Verify signature
curl -LO https://github.com/paritytech/polkadot-sdk/releases/download/{{ dependencies.polkadot_sdk.version }}/polkadot.asc

gpg --keyserver hkps://keyserver.ubuntu.com --receive-keys 90BD75EBBB8E95CB3DA6078F94A4029AB4B35DAE

gpg --verify polkadot.asc
```

=== "`polkadot-prepare-worker`"

``` text
https://github.com/paritytech/polkadot-sdk/releases/download/polkadot-INSERT_VERSION_NUMBER/polkadot-prepare-worker
``` bash
# Download the binary
curl -LO https://github.com/paritytech/polkadot-sdk/releases/download/{{ dependencies.polkadot_sdk.version }}/polkadot-prepare-worker

# Verify signature
curl -LO https://github.com/paritytech/polkadot-sdk/releases/download/{{ dependencies.polkadot_sdk.version }}/polkadot-prepare-worker.asc

gpg --keyserver hkps://keyserver.ubuntu.com --receive-keys 90BD75EBBB8E95CB3DA6078F94A4029AB4B35DAE

gpg --verify polkadot-prepare-worker.asc
```

=== "`polkadot-execute-worker`"

``` text
https://github.com/paritytech/polkadot-sdk/releases/download/polkadot-INSERT_VERSION_NUMBER/polkadot-execute-worker
``` bash
# Download the binary
curl -LO https://github.com/paritytech/polkadot-sdk/releases/download/{{ dependencies.polkadot_sdk.version }}/polkadot-execute-worker

# Verify signature
curl -LO https://github.com/paritytech/polkadot-sdk/releases/download/{{ dependencies.polkadot_sdk.version }}/polkadot-execute-worker.asc

gpg --keyserver hkps://keyserver.ubuntu.com --receive-keys 90BD75EBBB8E95CB3DA6078F94A4029AB4B35DAE

gpg --verify polkadot-execute-worker.asc
```

!!!warning
Signature verification cryptographically ensures the downloaded binaries are authentic and have not been tampered with by using GPG signing keys. Polkadot releases use two different signing keys:

- ParityReleases ([email protected]) with key [`90BD75EBBB8E95CB3DA6078F94A4029AB4B35DAE`](https://keyserver.ubuntu.com/pks/lookup?search=9D4B2B6EB8F97156D19669A9FF0812D491B96798&fingerprint=on&op=index){target=\_blank} for current and new releases
- Parity Security Team ([email protected]) with key [`9D4B2B6EB8F97156D19669A9FF0812D491B96798`](https://keyserver.ubuntu.com/pks/lookup?search=90BD75EBBB8E95CB3DA6078F94A4029AB4B35DAE&fingerprint=on&op=index){target=\_blank} for old releases

When verifying a signature, a "Good signature" message indicates successful verification, while any other output signals a potential security risk.

### Install with Package Managers

Users running Debian-based distributions like Ubuntu, or RPM-based distributions such as Fedora or CentOS can install the binaries via package managers.
Expand Down Expand Up @@ -147,10 +179,10 @@ You can also manage Polkadot installations using Ansible. This approach can be b

If you prefer using Docker or an OCI-compatible container runtime, the official Polkadot Docker image can be pulled directly from Docker Hub.

To pull the latest image, run the following command. Make sure to replace `INSERT_VERSION_NUMBER` with the appropriate version number, e.g. `v1.16.1`
To pull the latest stable image, run the following command:

```sh
docker.io/parity/polkadot:INSERT_VERSION_NUMBER
```bash
docker pull parity/polkadot:{{ dependencies.polkadot_sdk.docker_image_version }}
```

### Build from Sources
Expand Down
6 changes: 5 additions & 1 deletion variables.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,4 +20,8 @@ dependencies:
repository_url: https://github.com/paritytech/srtool
version: v0.16.0
docker_image_name: paritytech/srtool
docker_image_version: 1.62.0
docker_image_version: 1.62.0
polkadot_sdk:
repository_url: https://github.com/paritytech/polkadot-sdk
version: polkadot-stable2412
docker_image_version: stable2412