Go to file
Alfredo Garcia f27fa21099
docs(audit): Add a list of Zebra dependencies for the audit (#5395)
* add a list of dependencies for auditors

* change intro

Co-authored-by: teor <teor@riseup.net>

* add zebra-checkpoints to audit

* replace colors in the legend as they don't render in github

* make crypto deps out of the scope

* add a reason to keep rocksdb out of the scope

* add a not of why chrono is out of the scope

* add note for bitvec dep

* move structopt to out of scope

* add zcash_script as partially in scope

* applies suggestion, updates versions, bolds ed25519-zebra

* adds zcash_proofs audit notes

* Splits list of zebra deps into sections for full audits, partial audits, and out of scope.

* Update book/src/dev/zebra-dependencies-for-audit.md

Co-authored-by: teor <teor@riseup.net>

* Update book/src/dev/zebra-dependencies-for-audit.md

* Add missing newline

* Update book/src/dev/zebra-dependencies-for-audit.md

Co-authored-by: teor <teor@riseup.net>

* updates crate versions

* Update zcash_script to 0.1.8

* Only link to the audit version of each crate or file

* Clarify out of scope versions

* Fix source paths

* Fix zcash_script paths

* Improve formatting

* Update zebra-dependencies-for-audit.md

Co-authored-by: teor <teor@riseup.net>
Co-authored-by: arya2 <aryasolhi@gmail.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
2022-11-02 02:42:20 +00:00
.cargo
.github docs: add user documentation on how to use Zebra with docker (#5504) 2022-11-01 05:47:37 +00:00
book docs(audit): Add a list of Zebra dependencies for the audit (#5395) 2022-11-02 02:42:20 +00:00
docker fix(build): restore Rust stable in builds and beta for CI (#5515) 2022-11-01 10:51:29 +10:00
grafana change(state): Add block channel metrics, in preparation for block fork metrics (#5327) 2022-10-20 20:02:58 +00:00
tower-batch release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
tower-fallback release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-chain release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-client
zebra-consensus release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-network release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-node-services release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-rpc release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-script release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-state release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-test release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebra-utils release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
zebrad release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
.codespellrc build(deps): Bump `zcash_proofs` to 0.8.0 (#5481) 2022-10-28 06:58:02 +00:00
.dockerignore
.gitignore
CHANGELOG.md release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
CODE_OF_CONDUCT.md
CONTRIBUTING.md
Cargo.lock release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
Cargo.toml
LICENSE-APACHE
LICENSE-MIT
README.md release(1.0.0-rc.1): bump versions and changelog for release (#5513) 2022-11-01 22:35:21 +00:00
SECURITY.md
clippy.toml
codecov.yml
deny.toml deps(bump): zcash_primitives, zcash_note_encryption, zcash_encoding, orchard, and zcash_script (#5505) 2022-10-31 14:15:11 +00:00
firebase.json
katex-header.html
prometheus.yaml

README.md

Zebra logotype


CI Docker CI OSes Continuous Delivery Coverage codecov Build docs Build lightwalletd Build Zcash Params

License

Contents

About

Zebra is the Zcash Foundation's independent, consensus-compatible implementation of a Zcash node, currently under development. It can be used to join the Zcash peer-to-peer network, which helps keeping Zcash working by validating and broadcasting transactions, and maintaining the Zcash blockchain state in a distributed manner.

Zcash is a cryptocurrency designed to preserve the user's privacy. If you just want to send and receive Zcash then you don't need to use Zebra directly. You can download a Zcash wallet application which will handle that for you.

Please join us on Discord if you'd like to find out more or get involved!

Using Zebra

You would want to run Zebra if you want to contribute to the Zcash network: the more nodes are run, the more reliable the network will be in terms of speed and resistance to denial of service attacks, for example.

Zebra aims to be faster, more secure, and more easily extensible than other Zcash implementations.

Release Candidates

Every few weeks, we release a new Zebra version.

Zebra's network stack is interoperable with zcashd, and Zebra implements all the features required to reach Zcash network consensus.

Zebra also supports the lightwalletd backend JSON-RPCs.

Currently, Zebra validates all of the Zcash consensus rules for the NU5 network upgrade.

Getting Started

You can run Zebra using our Docker image. This command will run our latest release, and sync it to the tip:

docker run zfnd/zebra:1.0.0-rc.1

For more information, read our Docker documentation.

You can also enable Zebra's RPC port and configure other features.

Build Instructions

If you want to build zebrad yourself, you'll need Rust, libclang, a C++ compiler, and some other dependencies.

To run zebrad, follow the instructions to compile zebrad for your platform:

  1. Install cargo and rustc.
    • Zebra is tested with the latest stable Rust version. Earlier versions are not supported or tested. Any Zebra release can remove support for older Rust versions, without any notice. (Rust 1.59 and earlier are definitely not supported, due to missing features.)
  2. Install Zebra's build dependencies:
    • libclang: the libclang, libclang-dev, llvm, or llvm-dev packages, depending on your package manager
    • clang or another C++ compiler: g++, Xcode, or MSVC
  3. Run cargo install --locked --git https://github.com/ZcashFoundation/zebra --tag v1.0.0-rc.1 zebrad
  4. Run zebrad start (see Running Zebra for more information)

For more detailed instructions, refer to the documentation.

Configuring JSON-RPC for lightwalletd

To use zebrad as a lightwalletd backend, give it this ~/.config/zebrad.toml:

[rpc]
# listen for RPC queries on localhost
listen_addr = '127.0.0.1:8232'

# automatically use multiple CPU threads
parallel_cpu_threads = 0

WARNING: This config allows multiple Zebra instances to share the same RPC port. See the RPC config documentation for details.

Optional Features

For performance reasons, some debugging and monitoring features are disabled in release builds.

You can enable these features using:

cargo install --features=<name> ...

System Requirements

The recommended requirements for compiling and running zebrad are:

  • 4 CPU cores
  • 16 GB RAM
  • 300 GB available disk space for building binaries and storing cached chain state
  • 100 Mbps network connection, with 300 GB of uploads and downloads per month

We continuously test that our builds and tests pass on:

The latest GitHub Runners for:

  • macOS
  • Ubuntu

Docker:

  • Debian Bullseye

Zebra's tests can take over an hour, depending on your machine. We're working on making them faster.

zebrad might build and run fine on smaller and slower systems - we haven't tested its exact limits yet.

For more detailed requirements, refer to the documentation.

Memory Troubleshooting

If Zebra's build runs out of RAM, try setting: export CARGO_BUILD_JOBS=2

If Zebra's tests timeout or run out of RAM, try running: cargo test -- --test-threads=2

(cargo uses all the processor cores on your machine by default.)

macOS Test Troubleshooting

Some of Zebra's tests deliberately cause errors that make Zebra panic. macOS records these panics as crash reports.

If you are seeing "Crash Reporter" dialogs during Zebra tests, you can disable them using this Terminal.app command:

defaults write com.apple.CrashReporter DialogType none

Network Ports and Data Usage

By default, Zebra uses the following inbound TCP listener ports:

  • 8233 on Mainnet
  • 18233 on Testnet

Zebra needs some peers which have a round-trip latency of 2 seconds or less. If this is a problem for you, please open a ticket.

zebrad's typical mainnet network usage is:

  • Initial sync: 100 GB download, we expect the initial download to grow to hundreds of gigabytes over time
  • Ongoing updates: 10 MB - 10 GB upload and download per day, depending on user-created transaction size and peer requests

Zebra performs an initial sync every time its internal database version changes, so some version upgrades might require a full download of the whole chain.

For more detailed information, refer to the documentation.

Network Troubleshooting

Some of Zebra's tests download Zcash blocks, so they might be unreliable depending on your network connection. You can set ZEBRA_SKIP_NETWORK_TESTS=1 to skip the network tests.

Zebra may be unreliable on Testnet, and under less-than-perfect network conditions. See our roadmap for details.

Disk Usage

Zebra uses around 200 GB of space for cached mainnet data, and 10 GB of space for cached testnet data. We expect disk usage to grow over time, so we recommend reserving at least 300 GB for mainnet nodes.

Zebra's database cleans up outdated data periodically, and when Zebra is shut down and restarted.

Disk Troubleshooting

Zebra's state commits changes using RocksDB database transactions.

If you forcibly terminate Zebra, or it panics, any incomplete changes will be rolled back the next time it starts.

So Zebra's state should always be valid, unless your OS or disk hardware is corrupting data.

Known Issues

There are a few bugs in Zebra that we're still working on fixing:

  • Zebra falsely estimates that it's close to the tip when the network connection goes down #4649

    • One of the consequences of this issue is that Zebra might add unwanted load to other peers when the connection goes back up. This load will last only for a short period of time because Zebra will quickly find out that it's still not close to the tip.
  • If Zebra fails downloading the Zcash parameters, use the Zcash parameters download script instead. This script might be needed on macOS, even with Rust stable.

  • No Windows support #3801

    • We used to test with Windows Server 2019, but not anymore; see issue for details
  • Experimental Tor support is disabled until arti-client upgrades to x25519-dalek 2.0.0 or later

    • This happens due to a Rust dependency conflict, which can only be resolved by changing the dependencies of x25519-dalek

Future Work

Performance and Reliability:

  • Reliable syncing under poor network conditions
  • Additional batch verification
  • Performance tuning

Currently, the following features are out of scope:

  • Optional Zcash network protocol messages
  • Consensus rules removed before Canopy activation (Zebra checkpoints on Canopy activation)

Documentation

The Zebra website contains user documentation, such as how to run or configure Zebra, set up metrics integrations, etc., as well as developer documentation, such as design documents. We also render API documentation for the external API of our crates, as well as internal documentation for private APIs.

Security

Zebra has a responsible disclosure policy, which we encourage security researchers to follow.

License

Zebra is distributed under the terms of both the MIT license and the Apache License (Version 2.0).

See LICENSE-APACHE and LICENSE-MIT.