Skip to content
/ nova Public

Streamlined Cosmos SDK upgrades for Celestia (and more), no binary switching required.

1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

01builders/nova

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

62 Commits
.github
.github
 
 
abci
abci
 
 
appd
appd
 
 
cmd
cmd
 
 
internal
internal
 
 
.gitignore
.gitignore
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

Improved Cosmos SDK Upgrading System

This repository contains an improved Cosmos SDK Upgrading system (codename: nova). Sync from genesis or upgrade a Cosmos SDK chain seamlessly for the node operators, without binary switch.

Features

  • Automatic Upgrading: The system automatically upgrades the chain to the latest version of the software after an AppVersion change.
  • No binary switch required: At the upgrade height, no binary switch is required, a huge improvement compared to solely relying on the x/upgrade module.
  • One binary: The system uses only one binary for all upgrades, which simplifies syncing from genesis, the upgrade process and reduces the risk of errors.
  • Passthrough mode: The system can be used in passthrough mode, where a user can interact with an older binary directly.
  • Speed of native: Nova is designed to minimize overhead and is only used for the duration of the upgrade process. Once the upgrade is complete, the system use the native app.

How it works

The system works by running embedded the previous consensus breaking version within the binary and running a single CometBFT instance for all chains.

This means nova manages:

  • the CometBFT instance for all chains
  • the embedded binaries and their lifecycle
  • the version switch (upgrade process)
  • the connection between the standalone app, native app and CometBFT instance.

By sitting between the standalone app and the CometBFT instance, nova is able to listen to an AppVersion change and trigger the upgrade process automatically.

In order to limit any P2P disruption, like it happens today when no using nova; it uses one single CometBFT instance for all versions. This is possible because there has been no P2P and Block breaking changes in CometBFT.

Nova supports ABCI 1.0 and ABCI 2.0, which means it can be used with any version of CometBFT, including the latest versions. This is done via the ABCIClientVersion. Nova has two remote clients, those remote clients interact with the App and CometBFT via gRPC:

  • RemoteABCIClientV1: This client is used for CometBFT v0.34 and below. It uses the ABCIClientVersion 1.
  • RemoteABCIClientV2: This client is used for CometBFT v0.38 and above. It uses the ABCIClientVersion 2.

A chain defines a list of versions per AppVersion up until the last one. The Appd field a slice of []byte which holds a compressed archive of the binary (tar.gz). This archive is umcompressed and extracted to a temporary directory, which is then used to start the embedded binary.

 v3, err := appd.New("v3", v3AppBinary)
 if err != nil {
  panic(err)
 }

versions, err := abci.NewVersions(abci.Version{
 Appd:        v3,
 ABCIVersion: abci.ABCIClientVersion1,
 AppVersion:  3,
})

Multiple versions can be defined, allowing to sync from genesis with only one binary (for the node operators).

Once the AppVersion changes, nova takes the best matching embedded binary (useful when syncing from genesis) or switch to the native binary if none matches (useful when upgrading).

Installation

Nova integrates seamlessly in any Cosmos SDK chain. It simply replaces the StartCommandHandler of the chain:

server.AddCommandsWithStartCmdOptions(
 rootCommand,
 app.DefaultNodeHome,
 NewApp,
 appExporter,
 server.StartCmdOptions{
  AddFlags:            addStartFlags,
+ StartCommandHandler: nova.New(versions),
 },
)

Optionally add the passthrough mode command:

rootCommand.AddCommand(
 nova.NewPassthroughCmd(versions),
)

Customizing the embedded binaries

As nova manages the start and stop of embedded binaries and the connection between the standalone app <-> nova <-> CometBFT instance, it is important to ensure that the embedded binaries are properly started.

Some chains may require custom flags while starting the binaries. This can be done when setting up the abci.Version:

versions, err := abci.NewVersions(abci.Version{
 Appd:        v3,
 ABCIVersion: abci.ABCIClientVersion1,
 AppVersion:  3,
 StartArgs: []string{
  "--grpc.address=0.0.0.0:9090",
  "--grpc.enable=false",
  "--api.enable=false",
  "--api.swagger=false",
  "--with-tendermint=false",
  "--transport=grpc",
 },
})

The default list of flags, unless overridden is the following:

"--grpc.enable",
"--api.enable",
"--api.swagger=false",
"--with-tendermint=false",
"--transport=grpc",

Note: Flags passed when starting the application are passed down to each embedded binary. Nova then adds the extra flags. For instance, when calling appd start --force-no-bbr, the native app runs with only --force-no-bbr flag, while the embedded app runs with --force-no-bbr and the default flags.

Note 2: The remote clients work via gRPC connection, when overriding the start flags, please always make sure to include with-tendermint-false / with-comet=false and --transport=grpc in the list of flags.

Passthrough mode

Passthrough mode is an optional command that can be added to a chain. It allows an user to interact via an embedded binary via CLI.

appd passthrough v2 q bank balances <foo>

For instance, the above command queries the bank balances by using the embedded binary of v2 and not the current version of the chain.

Assumptions

While nova is designed to work with any Cosmos SDK-based chain, it is specifically tailored to the needs of Celestia due to the following assumptions:

  • RemoteABCIClientV1 is tailored to work with celestia-core v0.34
  • RemoteABCIClientV2 is tailored to work with celestia-core v0.38

For other chains, the remote clients should be configured to work solely with an unforked version of CometBFT.

Additionally, Celestia enjoys a better UX thanks to their x/signal module, that ensures, regardless of nova usage, that all nodes are on the latest version of the software before upgrading. Traditionally, there are no confirmation steps for the upgrade process, when relying on the x/upgrade module.

Lastly, nova watches any AppVersion changes. This means a change cannot solely rely on x/upgrade, which sets the AppVersion in its PreBlocker. Setting the new AppVersion should happen in the EndBlocker of the last block prior to the upgrade. This can be done with minimal changes in Cosmos SDK mainline, but wasn't required for Celestia thanks to their x/signal module.

Alternatives

The current alternative to nova is cosmovisor.

Cosmovisor simplifies the upgrade process by automatically switching the whole binary at the upgrade height. However, node operators need, in addition, to download the new binary and add it to cosmovisor. Additionally, cosmovisor restarts the whole binary, including the consensus layer, which can lead to P2P disruption and a longer downtime for the node operators. Cosmovisor is a great tool, but it is not the best solution for all chains. Nova is designed to be a more flexible and powerful solution for upgrading Cosmos SDK-based chains.

About

Streamlined Cosmos SDK upgrades for Celestia (and more), no binary switching required.

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Contributors 5

Languages