Skip to content

Commit

Permalink
Merge branch 'develop' into docs-add-codeowner
Browse files Browse the repository at this point in the history
  • Loading branch information
skosito authored Feb 13, 2024
2 parents b7f1523 + b4d6080 commit f5c5cc0
Show file tree
Hide file tree
Showing 2 changed files with 38 additions and 0 deletions.
4 changes: 4 additions & 0 deletions changelog.md
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,10 @@
* `zetaclientd start` : 2 inputs required from stdin
* Added docker-compose and make commands for launching full nodes. `make mainnet-zetarpc-node` `make mainnet-bitcoind-node`

### Docs

* [1731](https://github.com/zeta-chain/node/pull/1731) added doc for hotkey and tss key-share password prompts.

### Refactor

* [1630](https://github.com/zeta-chain/node/pull/1630) added password prompts for hotkey and tss keyshare in zetaclient
Expand Down
34 changes: 34 additions & 0 deletions docs/zetaclient/migration_v12.2->v12.3.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@
## Hot Key and TSS key-share Passwords

### Zetaclient
Previously there were two environment variables being used to store passwords encrypting the tss key file and local operator keyring file:

* HOTKEY_PASSWORD
* TSS_FRAGMENT_SEED

With this new change, these variables will no longer be valid.
Instead, a series of prompts will appear asking for passwords using STDIN during the startup process.

* Hot Key password
* TSS Key share password

If your key files are already encrypted, you can use the same passwords you provided in the environment variables.

**It's extremely important to take note of these passwords or commit them to memory.**

### Hot Key

#### File backend

* The hot key will use the existing keyring that holds your operator key. The file will be encrypted with your existing password,
make sure to use this same password when starting the client.

#### Test backend

* You will still be prompted for a password, but you need to leave it blank which indicates the test backend is being used.

### TSS Key-Share

During key-gen, the password you enter will be used to encrypt the generated key-share file. The key data will be stored in
memory once the process is running. If the client needs to be restarted, this key-share file needs to be present on your
machine and will be decrypted using the password you've entered.

0 comments on commit f5c5cc0

Please sign in to comment.