Assuming you have an existing address to pay your desposit cost and pledge fee with TTL is the time in slots to wait until considering this transaction failed if not processed
In this example we will use
Relay Node IP: 1.1.1.1 Relay Node Port: 3000 Core Node IP: 2.2.2.2 Core Node Port: 3001
Steps:
./make-cardano-sudo-user.sh
./harden-node.sh
See also: Harden Ubuntu See also: Secure Ubuntu
- SSL only via keys, not password
- Change SSL default port from 22
- Allow SSL only from your relay node(s)
- Close all unneeded ports except SSL and the core node port 3001
- Ensure chrony/NTPdate is active
See also: Harden Ubuntu See also: Secure Ubuntu
- SSL only via keys, not password
- Change SSL default port from 22
- Allow SSL only from where absolutely needed
- Close all unneeded ports except SSL and the relay node port 3000
- Ensure chrony/NTPdate is active
./build-node-code.sh CABAL_VERSION GHC_VERSION CARDANO_NODE_VERSION
Latest current versions are 3.6.2.0 for CABAL_VERSION, 8.10.7 for GHC_VERSION and 1.35.3 for CARDANO_NODE_VERSION
./set-net.sh mainnet|testnet [TESTNET_MAGIC_ID]
Set the net you want to run on (testnet or mainnet)
Will also automatically download the respective configuration files, i.e. it will automatically run ./get-config.sh conf testnet|mainnet
./create-node-runner-binary.sh full|relay|core NETWORK_INTERFACE_NODE_IP NETWORK_INTERFACE_NODE_PORT
Create the executable that will run your cardano node. Determine which node type (you will start with a full node first, so you can get the blockchain and perform the transactions required to register your stakepool, before you can create a relay or core node) Make sure to use the IP and port that your network interface has, which could be different (for example in AWS) from your public IP4 address.
./create-node-runner-service.sh full|relay|core
Create a systemd script for your node and install it. This will ensure your node will auto-restart if it crashes or if the server restarts. You can now run your node with
sudo systemctl start cardano-node
and get its status with
sudo systemctl status cardano-node
current log files with
journalctl --unit=cardano-node --follow
./offline-make-stake-and-payment-addresses.sh stake stake-payment
- Create a payfrom.addr file containing the address you will pay from (WARNING: All funds in that address will be transferred and it can only have one transaction in it!)
./make-keys-and-address.sh payfrom
Copy addr/payfrom.addr to your online node
./offline-create-stake-registration-cert.sh stake
./register-stake-address.sh TTL payfrom stake-payment stake
Sign the transaction on the offline machine
./offline-register-stake-address-sign.sh
Copy the transaction back to your core node and submit it
./submit-transaction.sh
./query.sh stake-payment
./create-pool-topology-files.sh
sudo systemctl restart cardano-node
sudo systemctl restart cardano-node
./create-pool-metadata-file.sh POOLNAME POOLDESCRIPTION POOLTICKER POOLHOMEPAGE
Copy the topology and metadata folders to your airgapped offline machine
./offline-create-pool-keys.sh
./offline-generate-stake-pool-registration-certificate.sh METADATAURL
./build-stake-pool-registration-transaction.sh TTL
./offline-build-stake-pool-registration-transaction.sh
Transfer it using your wallet of choice to the address in addr/payfrom.addr
./submit-transaction.sh
Ensure bech32, catalyst-toolbox and cardano-signer are in a subfolder called catalyst and executable on both your relay and offline machine (see also: https://forum.cardano.org/t/registering-several-wallets-accounts-to-the-same-catalyst-voting-key/120829)
From the main scripts folder on your offline machine, run this and replace the pin with your desired voting pin, stake address name and stake payment address name
catalyst-offline-register-pledge-for-vote.sh PIN STAKEADDRESS STAKEPAYMENTADDRESS
After running this, retrieve the png file from the catalyst subfolder and store it in a safe place (this QR code image combined with your PIN lets you vote in Catalyst). Copy the catalyst/*.cbor file to your relay (also into the catalyst subfolder). Now run
query.sh STAKEPAYMENTADDRESS
Find a usable UTXO and index, then run the below and replace UTXO_IN with the UTXO from above in the format txHash#txIndex
catalyst-build-register-transaction.sh STAKEPAYMENTADDRESS UTXO_IN
Now you have a raw transaction to witness and sign on your offline machine. Copy txtmp/tx.raw to your offline machine and run to sign the transaction with the key that pays for the fees
catalyst-offline-sign-register-transaction STAKEPAYMENTADDRESS
Copy the resulting txtmp/tx.signed to your relay and run
submit-transaction.sh
./transfer-rewards-create-transaction.sh TTL TARGETADDRESS
./transfer-rewards-sign-transaction.sh TARGETADDRESS
./submit-transaction.sh
First, on the live block producer node run
./prepare-new-kes-key-files.sh
Then copy the KES files over to your offline machine and as instructed, run
./offline-regenerate-nodecert-for-kes-key KES_PERIOD
Verify counter # is correct as described here: https://ecp.gitbook.io/how-to-guides-for-coincashew-method-cardano-spos/maintenance-and-daily-operations/maintenance-and-daily-operations/adjust-node.counter-for-kes
Copy the new node-op.cert file from the certs subfolder back onto your core node and run
sudo systemctl restart cardano-node or (if security updates are required) sudo reboot
Use the opportunity to reboot the relay(s) as well
On offline machine, make certs/pool-*.cert writable again Run
./offline-generate-stake-pool-registration-certificate METDATAURL
Copy the two certs/pool-*.cert files to your core node Run
./build-update-stake-pool-registration-transaction.sh TTL
Copy txtmp/tx.raw to your offline machine Run
./offline-build-stake-pool-registration-transaction.sh
Copy txtmp/tx.signed back to your core nore Run
./submit-transaction.sh
Build the cardano-cli and cardano with the new version
./update-node-code.sh GHC_VERSION CARDANO_NODE_VERSION
Stop the service
sudo systemctl stop cardano-node
Update the binaries and back up the old ones
./update-node-binary.sh GHC_VERSION CARDANO_NODE_VERSION
Start the service again
sudo systemctl start cardano-node
Install Ubuntu 22.04 Deploy these scripts into a script folder and make them executable Create a cardano user and make him sudo via
./make-cardano-sudo-user.sh
Log in as the cardano user
Install docker-compose
sudo apt install apt-transport-https ca-certificates curl software-properties-common
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add -
sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu jammy stable"
sudo apt-get install docker-ce docker-compose
sudo systemctl enable docker
sudo systemctl start docker
sudo usermod -aG docker cardano
sudo reboot
Log in as the cardano user again Execute
git clone https://github.com/IntersectMBO/cardano-db-sync.git
cd cardano-db-sync
git checkout tags/13.1.1.3
Edit the docker-compose.yml file and comment out the db-sync and postgres services and corresponding volumes and run docker-compose up -d
Run docker-compose stop after 30 seconds
Copy the backed up db directory of a fully synched node into the cardano-node-db volume location and set file permissions to match the existing file permissions. Make sure to delete the existing ledger files.
Run docker-compose start and wait until the the cardano-node is fully synched
Uncomment the previously commented out services in the docker-compose.yml file
Run this with the correct snapshot from https://update-cardano-mainnet.iohk.io/cardano-db-sync/index.html matching your cardano-db-sync version
RESTORE_SNAPSHOT=https://update-cardano-mainnet.iohk.io/cardano-db-sync/13/db-sync-snapshot-schema-13-block-7770734-x86_64.tgz NETWORK=mainnet docker-compose up -d
Then to see the progress, run
docker-compose logs -f
Add to .bashrc
export MITHRIL_IMAGE_ID_PREPROD=main-25bb9a6 export AGGREGATOR_ENDPOINT_PREPROD=https://aggregator.release-preprod.api.mithril.network/aggregator export GENESIS_VERIFICATION_KEY_PREPROD=5b3132372c37332c3132342c3136312c362c3133372c3133312c3231332c3230372c3131372c3139382c38352c3137362c3139392c3136322c3234312c36382c3132332c3131392c3134352c31332c3233322c3234332c34392c3232392c322c3234392c3230352c3230352c33392c3233352c34345d
mithril_client_preprod () {
docker run --rm -e NETWORK=preprod -e GENESIS_VERIFICATION_KEY=$GENESIS_VERIFICATION_KEY_PREPROD -e AGGREGATOR_ENDPOINT=$AGGREGATOR_ENDPOINT_PREPROD --name='mithril-client' -v
Run source .bashrc
Run mithril_client_preprod snapshot list`` Find latest snapshot Run mithril_client_preprod snapshot download $DIGEST_ID`
Copy db folder into docker-compose db mounted folder for node you are planning to run
start node