osvm 0.8.3

OpenSVM CLI tool for managing SVM nodes and deployments
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229

//! Hot-swap capability for Solana validators

use crate::utils::ssh_deploy::{client::SshClient, errors::DeploymentError};

/// Configure hot-swap capability for Solana validator
///
/// # Arguments
/// * `client` - SSH client
/// * `install_dir` - Installation directory
///
/// # Returns
/// * `Result<(String, String), DeploymentError>` - Paths to staked and unstaked keypairs
pub fn configure_hot_swap(
    client: &mut SshClient,
    install_dir: &str,
) -> Result<(String, String), DeploymentError> {
    // Create keypair directory
    let keypair_dir = format!("{}/keypairs", install_dir);
    client.execute_command(&format!("mkdir -p {}", keypair_dir))?;

    // Generate staked keypair if it doesn't exist
    let staked_keypair_path = format!("{}/staked.json", keypair_dir);
    if !client.file_exists(&staked_keypair_path)? {
        client.execute_command(&format!(
            "solana-keygen new -o {} --no-passphrase",
            staked_keypair_path
        ))?;
    }

    // Generate unstaked keypair if it doesn't exist
    let unstaked_keypair_path = format!("{}/unstaked.json", keypair_dir);
    if !client.file_exists(&unstaked_keypair_path)? {
        client.execute_command(&format!(
            "solana-keygen new -o {} --no-passphrase",
            unstaked_keypair_path
        ))?;
    }

    // Create identity transition script
    create_identity_transition_script(
        client,
        &keypair_dir,
        &staked_keypair_path,
        &unstaked_keypair_path,
    )?;

    // Set up monitoring for automatic failover
    setup_failover_monitoring(client, &keypair_dir)?;

    Ok((staked_keypair_path, unstaked_keypair_path))
}

/// Create script for identity transition between staked and unstaked identities
///
/// # Arguments
/// * `client` - SSH client
/// * `keypair_dir` - Keypair directory
/// * `staked_keypair_path` - Path to staked keypair
/// * `unstaked_keypair_path` - Path to unstaked keypair
///
/// # Returns
/// * `Result<(), DeploymentError>` - Success/failure
fn create_identity_transition_script(
    client: &mut SshClient,
    keypair_dir: &str,
    staked_keypair_path: &str,
    unstaked_keypair_path: &str,
) -> Result<(), DeploymentError> {
    let script_content = format!(
        r#"#!/bin/bash
# Script for transitioning between validator identities
# Based on the Identity Transition methodology by Pumpkin

SERVICE_NAME="solana-validator.service"
IDENTITY_FILE="/home/$(whoami)/validator-identity.json"

# Function to switch to staked identity
switch_to_staked() {{
    echo "Switching to staked identity"
    cp {} "$IDENTITY_FILE"
    sudo systemctl restart $SERVICE_NAME
    echo "Transition to staked identity completed"
}}

# Function to switch to unstaked identity
switch_to_unstaked() {{
    echo "Switching to unstaked identity"
    cp {} "$IDENTITY_FILE"
    sudo systemctl restart $SERVICE_NAME
    echo "Transition to unstaked identity completed"
}}

# Main execution
case "$1" in
    staked)
        switch_to_staked
        ;;
    unstaked)
        switch_to_unstaked
        ;;
    *)
        echo "Usage: $0 {{staked|unstaked}}"
        exit 1
        ;;
esac

# Verify switch was successful
sleep 5
sudo systemctl status $SERVICE_NAME
"#,
        staked_keypair_path, unstaked_keypair_path
    );

    let script_path = format!("{}/switch-identity.sh", keypair_dir);
    client.execute_command(&format!(
        "cat > {} << 'EOL'\n{}\nEOL",
        script_path, script_content
    ))?;
    client.execute_command(&format!("chmod +x {}", script_path))?;

    Ok(())
}

/// Set up monitoring for automatic failover
///
/// # Arguments
/// * `client` - SSH client
/// * `keypair_dir` - Keypair directory
///
/// # Returns
/// * `Result<(), DeploymentError>` - Success/failure
fn setup_failover_monitoring(
    client: &mut SshClient,
    keypair_dir: &str,
) -> Result<(), DeploymentError> {
    let monitor_script_content = r#"#!/bin/bash
# Validator health monitoring script for automatic failover

SERVICE_NAME="solana-validator.service"
SWITCH_SCRIPT="$(dirname "$0")/switch-identity.sh"
LOG_FILE="/home/$(whoami)/solana-validator.log"
CURRENT_STATE_FILE="$(dirname "$0")/current_state"

# Create state file if it doesn't exist (default to staked)
if [ ! -f "$CURRENT_STATE_FILE" ]; then
    echo "staked" > "$CURRENT_STATE_FILE"
fi

# Check if validator is running
if ! systemctl is-active --quiet "$SERVICE_NAME"; then
    echo "$(date): Validator service is not running, restarting..."
    sudo systemctl restart "$SERVICE_NAME"
    exit 1
fi

# Check if validator is catching up
if grep -q "behind by" "$LOG_FILE" | tail -n 100; then
    SLOTS_BEHIND=$(grep "behind by" "$LOG_FILE" | tail -n 1 | grep -oP "behind by \K[0-9]+")

    if [ -n "$SLOTS_BEHIND" ] && [ "$SLOTS_BEHIND" -gt 500 ]; then
        CURRENT_STATE=$(cat "$CURRENT_STATE_FILE")

        if [ "$CURRENT_STATE" = "staked" ]; then
            echo "$(date): Validator falling behind ($SLOTS_BEHIND slots), switching to unstaked identity"
            "$SWITCH_SCRIPT" unstaked
            echo "unstaked" > "$CURRENT_STATE_FILE"
        fi
    fi
fi

# Check if validator has caught up and can return to staked identity
if ! grep -q "behind by" "$LOG_FILE" | tail -n 100; then
    CURRENT_STATE=$(cat "$CURRENT_STATE_FILE")

    if [ "$CURRENT_STATE" = "unstaked" ]; then
        echo "$(date): Validator caught up, switching back to staked identity"
        "$SWITCH_SCRIPT" staked
        echo "staked" > "$CURRENT_STATE_FILE"
    fi
fi
"#;

    let monitor_script_path = format!("{}/monitor-health.sh", keypair_dir);
    client.execute_command(&format!(
        "cat > {} << 'EOL'\n{}\nEOL",
        monitor_script_path, monitor_script_content
    ))?;
    client.execute_command(&format!("chmod +x {}", monitor_script_path))?;

    // Create cron job to run monitoring every 5 minutes
    let cron_entry = format!("*/5 * * * * {}", monitor_script_path);
    client.execute_command(&format!(
        "(crontab -l 2>/dev/null | grep -v '{}' ; echo '{}') | crontab -",
        monitor_script_path, cron_entry
    ))?;

    Ok(())
}

/// Create a log rotation configuration for Solana validator
///
/// # Arguments
/// * `client` - SSH client
///
/// # Returns
/// * `Result<(), DeploymentError>` - Success/failure
pub fn configure_log_rotation(client: &mut SshClient) -> Result<(), DeploymentError> {
    let logrotate_content = r"/home/$(whoami)/solana-validator.log {
    rotate 7
    daily
    missingok
    postrotate
        systemctl kill -s USR1 solana-validator.service
    endscript
}";

    // Write log rotation configuration
    client.execute_command(&format!(
        "cat > /tmp/solana-logrotate << 'EOL'\n{}\nEOL",
        logrotate_content
    ))?;
    client.execute_command("sudo cp /tmp/solana-logrotate /etc/logrotate.d/solana")?;
    client.execute_command("rm /tmp/solana-logrotate")?;

    // Restart logrotate service
    client.execute_command("sudo systemctl restart logrotate.service")?;

    Ok(())
}