mirror of https://github.com/runcitadel/core.git synced 2024-09-23 01:30:23 +00:00

History

AaronDewes af91f4e348 Merge branch 'beta' into c-lightning		2022-07-19 15:49:38 +00:00
..
.updateignore	Merge remote-tracking branch 'origin/release/0.0.5' into c-lightning	2022-06-10 18:59:22 +00:00
.updateignore.license	Move to GPL 3	2022-01-21 21:37:48 +01:00
.updateinclude	Merge branch 'beta' into c-lightning	2022-07-19 15:49:38 +00:00
.updateinclude.license	Move to GPL 3	2022-01-21 21:37:48 +01:00
01-run.sh	Revert "[Feat] Docker compose isolation (#62 )" (#64 )	2022-07-14 20:35:59 -04:00
02-run.sh	Update copyright year	2022-01-28 01:52:26 -05:00
03-run.sh	Update copyright year	2022-01-28 01:52:26 -05:00
00-run.sh	Update copyright year	2022-01-28 01:52:26 -05:00
README.md	Revert "[Feat] Docker compose isolation (#62 )" (#64 )	2022-07-14 20:35:59 -04:00
update	More preparations for branch rename	2022-02-28 20:49:13 +01:00

README.md

Over-The-Air (OTA) Updates

How over-the-air updates work on Citadel.

Execution Flow

New developments across the any/entire fleet of Citadel's services (bitcoind, lnd, dashboard, middleware, etc) are made, which maintain their own independent version-control and release-schedule. Subsequently, their new docker images are built, tagged and pushed to Docker Hub.
The newly built and tagged images are updated in the main repository's (i.e. this repo) docker-compose.yml file.
Any new developments to the main repository (i.e. this repo) are made, eg. adding a new directory or a new config file.
To prepare a new release of Citadel, called vX.Y.Z, a PR is opened that updates the version in README.md and info.json file to:

{
    "version": "X.Y.Z",
    "name": "Citadel vX.Y.Z",
    "notes": "This release contains a number of bug fixes and new features.",
    "requires": ">=A.B.C"
}

Once the PR is merged, the main branch is immediately tagged vX.Y.Z and released on GitHub.
Thus the new info.json will automatically be available at https://raw.githubusercontent.com/runcitadel/core/main/info.json. This is what triggers the OTA update.
When the user opens his dashboard, it periodically polls manager to check for new updates.
manager fetches the latest info.json from Citadel's main repo's main branch using GET https://raw.githubusercontent.com/runcitadel/core/main/info.json, compares it's version with the version of the local $CITADEL_ROOT/info.json file, and exits if both the versions are same.
If fetched version > local version, manager checks if local version satisfies the requires condition in the fetched info.json.
If not, manager computes the minimum satisfactory version, called L.M.N, required for update. Eg, for "requires": ">=1.2.2" the minimum satisfactory version would be 1.2.2. manager then makes a GET request to https://raw.githubusercontent.com/runcitadel/core/vL.M.N/info.json and repeats step 8 and 9 until local version < fetched version AND local version fulfills the fetched requires condition.
manager then returns the satisfying info.json to dashboard.
dashboard then alerts the user regarding the available update, and after the user consents, it makes a POST request to manager to start the update process.
manager adds the updateTo key to $CITADEL_ROOT/statuses/update-status.json (a file used to continuosly update the user with the update status and progress) with the update release tag.

{
    ...
    "updateTo": "vX.Y.Z"
    ...
}

manager then creates an update signal file on the mounted host OS volume ($CITADEL_ROOT/events/signals/update) and returns OK to the dashboard.
karen is triggered (obviously) as soon as $CITADEL_ROOT/events/signals/update is touched/updated, and immediately runs the update trigger script $CITADEL_ROOT/events/triggers/update as root.
$CITADEL_ROOT/events/triggers/update clones release vX.Y.Z from github in $CITADEL_ROOT/.citadel-vX.Y.Z.
$CITADEL_ROOT/events/triggers/update then executes all of the following update scripts from the new release $CITADEL_ROOT/.citadel-vX.Y.Z one-by-one:

$CITADEL_ROOT/.citadel-vX.Y.Z/scripts/update/00-run.sh: Pre-update preparation script (does things like making a backup)
$CITADEL_ROOT/.citadel-vX.Y.Z/scripts/update/01-run.sh: Install update script (installs the update)
$CITADEL_ROOT/.citadel-vX.Y.Z/scripts/update/02-run.sh: Post-update script (used to run unit-tests to make sure the update was successfully installed)
$CITADEL_ROOT/.citadel-vX.Y.Z/scripts/update/03-run.sh: Success script (runs after the updated has been successfully downloaded and installed)

All of the above scripts continuously update $CITADEL_ROOT/statuses/update-status.json with the progress of update, which the dashboard periodically fetches every 2s via manager to keep the user updated.

Further improvements

OTA updates should not trust GitHub, they should verify signed checksums before installing
Catch any error during the update and restore from the backup
Restore from backup on power-failure