Jump to: navigation, search


< Dev


Developers only!

These are notes for producing official downloadable binary Whonix images.

Pre Building[edit]

Only required if you want to redistribute (official) Whonix builds.

Clean source code

  • [1]
  • [2]
  • You can get a list of unwanted files with git clean -dfxn and remove them with git clean -dfx.

  • Update Whonix debian package repository.

  • update download readme
  • add your own default-key to your own /home/user/.gnupg/gpg.conf
  • Check that all packages point to signed git commits. (Optional.)
packages/whonix-developer-meta-files/debug-steps/packaging-helper-script pkg_verify_signed_commit
  • Git tag sign all packages. (Needs some testing.) (Optional.)
packages/whonix-developer-meta-files/debug-steps/packaging-helper-script pkg_git_sign_and_push_tags
  • Check that all packages point to a signed git commit and signed git tag.
packages/whonix-developer-meta-files/debug-steps/packaging-helper-script pkg_verify_signed_commit_and_tag
  • push the source code to github
git push origin master
  • Check, that the current git commit is a signed.
## You might wish using a git or bash alias to safe typing.
git log --show-signature HEAD^..HEAD

Or use the generic makefile as a shortcut.

make git-commit-verify
  • Create an OpenPGP signed git tag. This will also be used as Whonix version number.
git tag -s version
  • Make sure the current git head is a signed git commit and signed git tag.

To simplify this, you could use the generic makefile.

make git-verify
  • Push the OpenPGP signed git tag to github.
git push origin version
  • Remember to build both ova images as well as qcow2 images by using these build script command line arguments.
--target qcow2 --target virtualbox

Post Building[edit]

Only required if you want to redistribute (official) Whonix builds.

  • OpenPGP sign the images.
packages/whonix-developer-meta-files/whonix_build --gnw -- ./release/prepare_release --target qcow2 --target virtualbox --build
  • Upload the images.


  • At least a few testers should test final releases before posting a news. Testers may be found by posting a news.
  • LeakTests!
  • Test the images before final release! (Testers-only releases can be uploaded straight away.)

Wiki Page Updates[edit]

Only next time:


   Remove https://github.com/Whonix/sdwdate-plugin-anon-shared-streamiso was replaced by:
   Remove https://github.com/Whonix/sdwdate-plugin-anon-shared-con-check was replace by:

remove packages that were merged into upstream packages


  • Finally announce: Post a news. (Not nagging external lists. Common sense. Mostly only final releases.)

    • In Whonix Important and Feature Blog.

    • full-disclosure@lists.grok.org.uk

Source Code[edit]


sudo ./debug-steps/download-source -tg


sudo ./debug-steps/download-source -tw

Compress. Upload.


  1. get rid of .directory files inside the source code:
    dolphin -> preferences -> general -> behavior -> use common view properties for all folders
  2. get rid of ~backup files:
    find ./ -name '*~' | xargs trash-put

Random News:

We are looking for video makers.

Impressum | Datenschutz | Haftungsausschluss

https | (forcing) onion
Share: Twitter | Facebook | Google+
This is a wiki. Want to improve this page? Help welcome, volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation. Whonix (g+) is a licensee of the Open Invention Network. Unless otherwise noted above, content of this page is copyrighted and licensed under the same Free (as in speech) license as Whonix itself.