aboutsummaryrefslogtreecommitdiff
path: root/doc/release-process.md
AgeCommit message (Collapse)Author
2017-03-13Merge #9514: release: Windows signing scriptWladimir J. van der Laan
09fe2d9 release: update docs to show basic codesigning procedure (Cory Fields) f642753 release: create a bundle for the new signing script (Cory Fields) 0068361 release: add win detached sig creator and our cert chain (Cory Fields) Tree-SHA512: 032ad84697c70faaf857b9187f548282722cffca95d658e36413dc048ff02d9183253373254ffcc1158afb71140753f35abfc9fc8781ea5329c04d13c98759c0
2017-01-13Introduce assumevalid setting to skip presumed valid scripts.Gregory Maxwell
This disentangles the script validation skipping from checkpoints. A new option is introduced "assumevalid" which specifies a block whos ancestors we assume all have valid scriptsigs and so we do not check them when they are also burried under the best header by two weeks worth of work. Unlike checkpoints this has no influence on consensus unless you set it to a block with an invalid history. Because of this it can be easily be updated without risk of influencing the network consensus. This results in a massive IBD speedup. This approach was independently recommended by Peter Todd and Luke-Jr since POW based signature skipping (see PR#9180) does not have the verifiable properties of a specific hash and may create bad incentives. The downside is that, like checkpoints, the defaults bitrot and older releases will sync slower. On the plus side users can provide their own value here, and if they set it to something crazy all that will happen is more time will be spend validating signatures. Checkblocks and checklevel are also moved to the hidden debug options: Especially now that checkblocks has a low default there is little need to change these settings, and users frequently misunderstand them as influencing security or IBD speed. By hiding them we offset the space added by this new option.
2017-01-10release: update docs to show basic codesigning procedureCory Fields
2016-11-07[doc] release-process: Mention GitHub release and archived release notesMarcoFalke
2016-11-02IBD check uses minimumchain work instead of checkpoints.Gregory Maxwell
This introduces a 'minimum chain work' chainparam which is intended to be the known amount of work in the chain for the network at the time of software release. If you don't have this much work, you're not yet caught up. This is used instead of the count of blocks test from checkpoints. This criteria is trivial to keep updated as there is no element of subjectivity, trust, or position dependence to it. It is also a more reliable metric of sync status than a block count.
2016-10-04[doc] Rework docsMarcoFalke
* Minor formatting such as adjusting links * Move sections of `doc/multiwallet-qt.md` to the source code and delete the file, as it is outdated * Fix typo in the release notes * Amend release process to mention update of BLOCK_CHAIN_SIZE
2016-09-30Merge #8852: Mention Gitian building script in doc (Laudaa)Wladimir J. van der Laan
203e2dd Mention Gitian building script in doc. (Lauda)
2016-09-30Mention Gitian building script in doc.Lauda
2016-09-25Remove old manpages from contrib/debianfanquake
2016-08-26[trivial][doc] Mention gpg --refresh-keys in release-process.mdfanquake
2016-07-18[doc] gbuild: Set memory explicitly (default is too low)MarcoFalke
2016-06-22Merge #8233: Mention Linux ARM executables in release process and notesWladimir J. van der Laan
06f40ef depends: Mention aarch64 as common cross-compile target (Wladimir J. van der Laan) 05f64c9 doc: Mention Linux ARM builds in release notes (Wladimir J. van der Laan) b7bf037 doc: Mention ARM executables in release process (Wladimir J. van der Laan)
2016-06-21doc: Mention ARM executables in release processWladimir J. van der Laan
Mention ARM executables in the release process documentation (these were introduced in #8188). As well as that Linux tarballs have changed name to contain an architecture tuple, instead of `linux32`/`linux64`. Also mention that `-debug` files should not be uploaded (these were introduced in #8167).
2016-06-20[Doc] Update OS X build notes for 10.11 SDKfanquake
2016-04-29[doc] Update bitcoin-core GitHub linksMarcoFalke
2016-04-25doc: Update release processWladimir J. van der Laan
The actual release process quite diverged from what was written here, also clarify things a bit.
2016-04-15[gitian] Move keys to contrib/gitian-keysMarcoFalke
2016-03-01[doc] Fix markdownMarcoFalke
2016-02-04[doc] Update release-process.mdMarcoFalke
2016-01-26Minor improvements to the release processPaul Rabahy
Instruct people to "git fetch" so that if this is their 2nd+ gitian build they will have a fresh bitcoin repo. Instruct people to add all the known pgp keys to their keyring so that gverify will print more useful info.
2015-10-18Correct spelling mistakes in doc folderMitchell Cash
- OSX —> OS X - XCode —> Xcode - github —> GitHub - homebrew —> Homebrew - gitian —> Gitian - Other miscellaneous obvious spelling fixes and whitespace removal
2015-10-14[doc] Cleanup release-process documentationMichael
2015-09-17Clarifying offline build process using gbuild --url and noting it is notMidnight Magic
done automatically. At some point along the line, fully offline builds were no longer happening when strictly following the release-process.md instructions. We should ensure that users who might want to torify or build offline need to take extra steps to remain offline. Also, corrections to build process: including gverify examples for new builders.
2015-06-30Ideal release process for Windows detached signingMicha
This is an ideal version of what the release process should look like, making it more consistent with the OS X process. Some of the changes described here would need to be made in the descriptors, which is somewhat beyond what I would feel comfortable doing, not really understanding the signature process in depth. [skip ci]
2015-06-18gitian: add a gitian-win-signer descriptorCory Fields
This is exactly like the current OSX signing process. osslsigncode has been patched to detach and re-attach Windows signatures. The changes can be seen here: https://github.com/theuni/osslsigncode/commits/attach-signature There's a pull-request open upstream for the changes: https://sourceforge.net/p/osslsigncode/osslsigncode/merge-requests/3/ This work has been back-ported to the stable 1.7.1 release of osslsigncode, so that a smaller patch can be reviewed.
2015-06-10gitian: Use the new bitcoin-detached-sigs git repo for OSX signaturesCory Fields
Rather than fetching a signature.tar.gz from somewhere on the net, instruct Gitian to use a signature from a tag in the bitcoin-detached-sigs repository which corresponds to the tag of the release being built. This changes detached-sig-apply.sh to take a dirname rather than a tarball as an argument, though detached-sig-create.sh still outputs a tarball for convenience.
2015-06-05Bugfix: Correct links for Xcode downloadLuke Dashjr
2015-05-02Non-grammatical language improvementsLuke Dashjr
2015-04-03Docs: Use new Bitcoin.org download URLsDavid A. Harding
2015-02-16doc: Add note-to-self about SHA256SUMS to release-process.mdWladimir J. van der Laan
2015-01-20osx: bump build sdk to 10.9Cory Fields
2014-12-30dmg: fix deterministic dmg creation and docsCory Fields
2014-12-11docs: release process fixupsCory Fields
Add instructions for manually fetching sources, as well as some misc. fixes.
2014-11-26docs: add/update docs for osx dmg signingCory Fields
2014-11-25release: update docs to reflect new layoutCory Fields
- Split linux32/linux64 releases - Split win32/win64 zips - Post-processing should no longer be required. The deterministic outputs are ready for consumption.
2014-11-19gitian: quick docs updateCory Fields
2014-10-02Merge pull request #4991Wladimir J. van der Laan
0dcb0a5 doc: Add instructions for consistent Mac OS X build names (Saivann)
2014-09-29doc: update gpg command line for SHA256SUMS.asc in release processWladimir J. van der Laan
2014-09-27doc: Add instructions for consistent Mac OS X build namesSaivann
2014-09-27doc: Update SHA256SUMS.asc step in release-process.mdWladimir J. van der Laan
- The Hash: header is prepended by gpg, and states the hashing used by gpg, not what is used to hash the files - Add more detailed steps
2014-09-22build: change cdrkit location in build-process.mdWladimir J. van der Laan
The cdrkit.org domain expired. Thanks to gdm85 on IRC for reporting this.
2014-08-04doc: Modernize steps to be followed after releaseWladimir J. van der Laan
Remove old references to sourceforge, add what actually should be done and provide some more details.
2014-07-02Fix formatting in release-process.mdMichael Ford
2014-07-01Clean up release-process.md after OS X gitian changesMicha
This is PR #4271, but with the changes to the descriptors, both the names of the files and the names of the intermediate build artifact archives, removed. This also closes #3775 if it goes in, because it covers the changes in that PR.
2014-06-24Add dependencies for Mac OSX gitian buildsDrak
2014-06-23doc: Remove unused section from release-process.mdWladimir J. van der Laan
It is outdated information. If we ever resurrect gitian-downloader it can be brought back from history and updated.
2014-06-21Fix formattingDrak
2014-06-05gitian: upgrade OpenSSL to 1.0.1hWladimir J. van der Laan
Upgrade for https://www.openssl.org/news/secadv_20140605.txt Just in case - there is no vulnerability that affects ecdsa signing or verification. The MITM attack vulnerability (CVE-2014-0224) may have some effect on our usage of SSL/TLS. As long as payment requests are signed (which is the common case), usage of the payment protocol should also not be affected. The TLS usage in RPC may be at risk for MITM attacks. If you have `-rpcssl` enabled, be sure to update OpenSSL as soon as possible.
2014-06-02doc: Update hash in release process for new windows deps intermediateWladimir J. van der Laan
This was forgotten in 25d4911.
2014-06-02gitian: make linux qt intermediate deterministicWladimir J. van der Laan
A qt installation date snuck into the host utils (lrelease etc) This doesn't affect the end product, so no dependency version bump. It also doesn't explain why gavin's and mine build is different