Add an intermediate tuto for baking using a Ledger device #506
Conversation
|
@spalmer25 is attempting to deploy a commit to the Trili Tech Team on Vercel. A member of the Team first needs to authorize it. |
|
|
||
| :::note | ||
|
|
||
| You won't need `Ledger Live` for the rest of the tutorial. |
There was a problem hiding this comment.
You dont need to mention this note.
|
|
||
| ## Download `Tezos Wallet (XTZ)` | ||
|
|
||
| The `Tezos Baking` application does not allow you to sign some operations used in this tutorial. You will also need the `Tezos Wallet (XTZ)` application to sign them. |
There was a problem hiding this comment.
Rephrase it like , to sign operations to setup baking you need Tezos wallet app. No need to mention tezos baking does not allow ...
There was a problem hiding this comment.
Yes, indeed. I'll change it.
| ``` | ||
|
|
||
| A validation from your Ledger device will be required. | ||
|
|
There was a problem hiding this comment.
a series of screenshots might help here. Not sure.
There was a problem hiding this comment.
I've added the screen flows.
The original document can be found here :
https://lucid.app/lucidchart/26df7357-40e6-4c1b-8ffe-0e4b8eebf707/edit?beaconFlowId=D98D3B908C0603CC&invitationId=inv_08b134b7-3e40-4429-af31-101e36489cc3&page=0_0#
Do you have access to it?
| In a new terminal, run: | ||
|
|
||
| ```bash | ||
| octez-client -R 'tcp://localhost:7732' config update |
There was a problem hiding this comment.
Does this end here? Need to complete the command and some text below
There was a problem hiding this comment.
The command is complete.
I will add an explanatory text below.
|
|
||
| In the `Tezos Baking` application, in order to avoid signing blocks or operations that could lead to double-baking, double-attesting or double-preattesting, checks are carried out on the blocks and operations whose signature has been requested. | ||
| These verifications require a High Watermark (HWM) to be stored in the RAM of your Ledger device. Saving information in RAM can be slow and can therefore slow down the performance of your device during baking. | ||
| You can disable this by disabling the `High Watermark` option in the `Settings` section of the `Tezos Baking` application. However, when this option is no longer active, it becomes possible to sign operations that would lead to double-baking, double-attesting or double-preattesting. You are therefore strongly advised not to deactivate this option if your block and operations provider does not also prevent double-baking, double-attesting and double-preattesting. |
There was a problem hiding this comment.
Not a wording we want, also incorrect.
THe HWM is stored in NVRAM (non-volatile memory) .
Refer to the wording i have put in word document.
There was a problem hiding this comment.
You're right, I will use the text of the reference doc.
spalmer25
force-pushed
the
palmer@functori@tuto-running-baker-with-ledger
branch
from
e91e9b9 to
cfd18d4
Compare
docs/tutorials/bake-with-ledger.md
Outdated
| In this tutorial, we'll look at: | ||
| - how to install the Tezos baking application on your Ledger device | ||
| - how to configure your Ledger device so that the [Ledger baking application of Tezos](https://github.com/trilitech/ledger-app-tezos-baking) works properly | ||
| - how to launch a baker daemon by signing from your Ledger device using `octez-signer` |
There was a problem hiding this comment.
How to use an external signer (octez-signer) while running your baker for enhanced protection
| ``` | ||
|
|
||
| A validation from your Ledger device will be required. | ||
|
|
|
|
||
| :::note Warning | ||
|
|
||
| This step is not necessary to be able to bake. However, if the HWM is not initialized, the first level encountered in an operation or block to be signed will be used as the initialization level. For this first operation or block, double baking, double-attesting or double pre-attesting will not be detected. It is therefore **strongly recommended** to at least initialize the HWM with the level of the block at the head of the chain. |
There was a problem hiding this comment.
Dont give extra information. make it compulsory for the user.
LIne 30 to 36 can be replaced by
"Always reset HWM to highest block value before starting to bake. The highest block can be obtained from Tzkt"
spalmer25
force-pushed
the
palmer@functori@tuto-running-baker-with-ledger
branch
from
9c9a8a9 to
6d92a85
Compare
There was a problem hiding this comment.
As the page run-baker complements the existing tutorial written by Tim (run a node in 5 steps), @timothymcmackin will review this to make sure the content integrates well.
An orthogonal discussion is: these pages seem to belong to document the "Ledger support" product, so I assume you're committed to maintain them with every evolution of your code base, right? For that purpose, I wonder whether it would not be safer to keep all this doc in the repos of these products (https://github.com/trilitech/ledger-app-tezos-baking and https://github.com/trilitech/ledger-app-tezos-wallet), and only refer to them in docs.tezos.com?
I believe the baking app tutorial will not change much as the app is expected to be phased out after BLS signatures are introduced ( No timeline yet). Therefore its alright if they are here. |
There was a problem hiding this comment.
This may be a little tricky for people to follow because they have to switch between two tutorials to get it to work, but it may be doable. After we merge this I'll add a note to the other tutorial to remind you to set up your Ledger before you start that tutorial. A few other comments:
- What do I do if I want to use a separate consensus key as in the baker tutorial?
- In the intro, recommend that you add a section that explains the relationship between this tutorial and the main baker tutorial. Something like: Follow this tutorial before setting up your baker with the tutorial "Run a Tezos node in 5 steps." This tutorial will tell you when to switch to that tutorial and what changes to make so the baker you set up will use the accounts on your Ledger device."
docs/tutorials/bake-with-ledger.md
Outdated
|
|
||
| A Ledger device is a physical wallet provided by [Ledger](https://www.ledger.com). Its main purpose is to store the holder's private keys without ever disclosing them. | ||
|
|
||
| Applications can be installed on your Ledger device so that you can take advantage of the many features of the blockchain without any entity having direct access to your private key. |
There was a problem hiding this comment.
It may not be clear why this is relevant without mentioning that Tezos is one of the applications. Maybe something like "Ledger devices support many blockchains by installing applications, such as an application to manage Tezos accounts and keys and an application to allow a Tezos baker to use keys on the Ledger."
docs/tutorials/bake-with-ledger.md
Outdated
| - You need Ledger device. | ||
| - Baker program needs to run constantly, so you need a computer / cloud vm which can run without interruptions. |
There was a problem hiding this comment.
| - You need Ledger device. | |
| - Baker program needs to run constantly, so you need a computer / cloud vm which can run without interruptions. | |
| - A Ledger device | |
| - A computer or cloud VM that can run without interruptions, because the baker program must run persistently | |
| - The latest version of the Octez suite, including the `octez-signer` program |
Do we need to list supported Ledger devices here?
There was a problem hiding this comment.
All Ledgers support the 2 Tezos apps, but I think we should add the list of supported devices.
If future Ledgers are developed, which we have not supported in our applications, the reader should be informed.
If you want to use a consensus key, then unlike what is currently written in the tutorial, the baking key is not the ledger key. The Ledger key will be used as the consensus key. The only command line that changes in the tutorial is: And should be: I will modify the section |
Still, if you want to place them here, can you commit testing all the tutorial at every major Octez release, at least the pages using Octez tools? We don't have enough resources in the doc squad to do that. Also, on a more conceptual level, the architecture of the ecosystem documentation separates the Tezos-wide docs (on docs.tezos.com) from docs of each product, such as Octez, LIGO, etc. So conceptually, is this tutorial more than the doc of the Ledger apps? |
spalmer25
force-pushed
the
palmer@functori@tuto-running-baker-with-ledger
branch
from
c192bdd to
19ccfab
Compare
|
Maybe mention that you should use a UPS to keep your Ledger active and logged-in during power outages? That's mentioned here: https://opentezos.com/node-baking/baking/persistent-baker/#running-tezos-binaries-as-services |
We definitely need to inform readers of this information, thank you! |
Co-authored-by: Ajinkya <[email protected]>
Co-authored-by: NicNomadic <[email protected]> Co-authored-by: Tim McMackin <[email protected]>
Co-authored-by: Tim McMackin <[email protected]>
Co-authored-by: Tim McMackin <[email protected]>
Co-authored-by: Tim McMackin <[email protected]>
spalmer25
force-pushed
the
palmer@functori@tuto-running-baker-with-ledger
branch
from
b4bca39 to
4279b22
Compare
I have no other changes to make. |
|
@timothymcmackin can you approve please the deployment on Vercel, to see the rendering of this tutorial? I don't have the rights for that. |
OK, let's consider that most of the pages concern the interaction between the Ledger apps and the Octez suite, and thereby this tutorial belongs to the Tezos docs. Only two pages deviate from this: install_app and setup_ledger; but they are quite small and co-locating them in the same tutorial (here) can make some sense, even though they could as well live in the ledger-app repo. Up to you @ajinkyaraj-23 to decide on that. |
We can commit to testing this tutorial for every major octez-release, we will always have resource to maintain ledger apps because they are critical piece of Tezos ecosystem as long as ledger is in use. Regarding the placement, the tutorial in its detailed form is already present in the Ledger-app repo, but it does not have visibility and is overly technical for a newbie. This tutorial will serve a wider audience by keeping things simple. Just like setup DAL as a baker tutorial does not have any thing which is not present in tezos gitlab docs but it makes things very simple and straighforward and easy to find. I would use the same logic here for using ledger baking app and octez-signer with ledger. |
I also second this approval. But i would request a Vercel deployment first to test how the rendering would look on preview website. Who has the rights to do that? |
Thanks!
I agree, distilling a more digest form is one valid reason to include this in the Tezos docs, so let's go for it. |
Tim does, see my message above |
|
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
|
I've approved the vercel deployment and run it a few times. It throws an error I don't understand: I've run the tests and build locally and it's fine so I suggest we merge. I deployed a preview version manually here; it will not update automatically: |
|
I just ran the vercel preview and it works for me
…On Tue, Jan 21, 2025, 11:35 AM Tim McMackin ***@***.***> wrote:
I've approved the vercel deployment and run it a few times. It throws an
error I don't understand:
Screenshot.2025-01-21.at.6.29.47.AM.png (view on web)
<https://github.com/user-attachments/assets/b1697e55-a5b4-46b5-b440-db8660ac0b02>
I've run the tests and build locally and it's fine so I suggest we merge.
I deployed a preview version manually here; it will not update
automatically:
https://timothymcmackin.github.io/previews/docs/ledger/tutorials/bake-with-ledger
—
Reply to this email directly, view it on GitHub
<#506 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/BCZ3ZOBCDW2HUFWGM576SYD2LYWIDAVCNFSM6AAAAABU6UFESOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDMMBUGQ3TSMJWHA>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
|
LGTM. Go ahead and merge or ask me to. |
|
@timothymcmackin could you please merge it? |
This PR adds an intermediate tutorial to present how to bake with a Ledger device.
It is presented all steps from the installation of the Ledger baking app of Tezos to security verifications.
Reference: Ledger maintainance announcement for Tezos Bakers