docs: Phase D release engineering evidence (#264 #276 #277)

Made-with: Cursor

Author: TheNewAutonomy

docs/README.md

@@ -7,6 +7,7 @@ These docs are written against the current `catalyst-node-rust` implementation (
 - **Pre-deploy checklist (executable gates):** [`mainnet-pre-deploy-checklist.md`](./mainnet-pre-deploy-checklist.md)
 - **Roadmap + GitHub epics (`#260`–`#284`):** [`mainnet-roadmap.md`](./mainnet-roadmap.md)
 - **#275 / C2 reset–recovery evidence (retrospective template):** [`evidence/track275-reset-recovery-evidence.md`](./evidence/track275-reset-recovery-evidence.md)
+- **Phase D / #264–#277 release + upgrade evidence:** [`evidence/phase-d-release-engineering-evidence.md`](./evidence/phase-d-release-engineering-evidence.md)
 
 ## Guides
 

docs/evidence/README.md

@@ -21,3 +21,11 @@ Reset / recovery / backfill sign-off for GitHub issue **#275** (checklist **C2**
 - **Purpose:** retrospective documentation when resets were performed but not logged per event.
 - **Location:** [`track275-reset-recovery-evidence.md`](./track275-reset-recovery-evidence.md)
 - **Action:** fill in, commit, then close **#275** with the doc link.
+
+---
+
+## `phase-d-release-engineering-evidence.md`
+
+Release process, provenance (**#264**, **#276**), and upgrade/rollback matrix (**#277**) for checklist **Phase D**.
+
+- **Location:** [`phase-d-release-engineering-evidence.md`](./phase-d-release-engineering-evidence.md)

docs/evidence/phase-d-release-engineering-evidence.md

@@ -0,0 +1,85 @@
+# Phase D — Release engineering + upgrade safety (issues **#264**, **#276**, **#277**)
+
+This document supports closing checklist **Phase D** in [`mainnet-pre-deploy-checklist.md`](../mainnet-pre-deploy-checklist.md).
+
+---
+
+## D1 — Release build process + provenance (**#264**, **#276**)
+
+### What is already defined in this repository
+
+| Topic | Where / what |
+|--------|----------------|
+| **Release steps** | [`release-process.md`](../release-process.md) — tags `v*.*.*`, GitHub Release, artifact names |
+| **CI gate before ship** | `.github/workflows/ci.yml` — `cargo test --workspace --locked` |
+| **Release artifacts** | `.github/workflows/release.yml` — `cargo build -p catalyst-cli --release --locked`, tarball `catalyst-cli-<tag>-x86_64-unknown-linux-gnu.tar.gz`, **SHA256** sidecar |
+| **Checksums** | Per-binary `SHA256SUMS` inside tarball + `.sha256` for the `.tar.gz` (see workflow) |
+| **Wire compatibility** | [`release-process.md`](../release-process.md) — golden vectors in `crates/catalyst-core/tests/wire_vectors.rs` |
+| **Version reporting** | `catalyst_version` RPC / `catalyst-cli --version` (per `release-process.md`) |
+
+### Reproducible builds + SBOM (**#276**)
+
+- **Bit-for-bit reproducible** Linux binaries are **not** asserted by automation in this repo today.
+- **Provenance** that *is* available for operators:
+  - **Git tag** + **commit** on `main`
+  - **GitHub Actions** run for the tag (`release.yml`)
+  - **SHA256** of the published tarball (verify after download)
+  - **`--locked`** builds in CI/release for dependency determinism from `Cargo.lock`
+
+_(Optional — add your org’s policy: e.g. “SBOM deferred to post-mainnet” or link to an external SBOM artifact.)_
+
+### D1 sign-off (fill in)
+
+- [ ] We accept the **documented release process** ([`release-process.md`](../release-process.md)) + **checksums + locked builds** as sufficient provenance for mainnet v1.
+- [ ] **Release tag used for mainnet binaries:** `v_____` **Commit:** `__________`
+- [ ] **Notes (optional):** …
+
+| Name | Date |
+|------|------|
+| | |
+
+---
+
+## D2 — Upgrade matrix + rollback (**#277**)
+
+### Documented rollback path (code + docs)
+
+- **Before upgrade:** `catalyst-cli db-backup` — [`node-operator-guide.md`](../node-operator-guide.md) § *Upgrades, backups, and rollback safety*
+- **If upgrade fails:** `catalyst-cli db-restore` from the backup directory
+- **Chain identity:** do not change `chain_id` / `network_id` / genesis for a “running” network except as a **new chain** — [`protocol-params.md`](../protocol-params.md)
+- **On-disk marker:** `storage:version` helps detect mismatches across upgrades (see node-operator guide)
+
+### Suggested upgrade matrix (fill in what you actually tested)
+
+| Scenario | Binary / version | Data dir | Tested? | Result / notes |
+|----------|------------------|----------|---------|----------------|
+| Same tag, restart only | … | … | ☐ | |
+| New patch release, same `Cargo.lock` line / compatible | … | … | ☐ | |
+| After `db-backup`, replace binary, start | … | … | ☐ | |
+| Rollback: `db-restore` + previous binary | … | … | ☐ | |
+
+**Local dev example (optional):** stop testnet → backup `testnet/node1/data` → upgrade binary → `testnet-up` → smoke `catalyst_status` / head advancing; rollback = restore backup + old binary.
+
+### D2 sign-off (fill in)
+
+- [ ] **Coordinated upgrade** assumption documented: operators agree on **tag**, **backup window**, and **rollback** using **db-backup / db-restore**.
+- [ ] **Residual:** cross-version P2P / consensus incompatibility is handled by **release notes** + **not** mixing incompatible majors on one network.
+
+| Name | Date |
+|------|------|
+| | |
+
+---
+
+## Close on GitHub
+
+Comment on **#264**, **#276**, **#277** (or umbrella **#260**):  
+*“Phase D evidence: `docs/evidence/phase-d-release-engineering-evidence.md` @ \<commit\>”*
+
+---
+
+## Related
+
+- [`release-process.md`](../release-process.md)
+- [`node-operator-guide.md`](../node-operator-guide.md) — upgrades, backups, rollback
+- [`mainnet-roadmap.md`](../mainnet-roadmap.md) — epics **#264**, **#276**, **#277**

docs/mainnet-pre-deploy-checklist.md

@@ -47,7 +47,7 @@ Use this document to **drive execution** before cutting a public mainnet. It con
 | C1 | WAN soak / load / chaos gate meets thresholds (or failures have follow-up issues). | [`wan-soak-load-chaos-gate.md`](./wan-soak-load-chaos-gate.md) | `#263`, `#274` |
 | C2 | Reset / recovery / backfill reliability acceptable for operators. | [`evidence/track275-reset-recovery-evidence.md`](./evidence/track275-reset-recovery-evidence.md) (retrospective OK) | `#275` |
 
-**Sign-off:** Name / date: _______________
+**Sign-off:** Name / date: TheNewAutonomy 22nd March 2026
 
 **Note:** If you reset testnets many times but did not log each run, complete **C2** by filling in the retrospective sections in `evidence/track275-reset-recovery-evidence.md` and linking it when closing **#275**.
 
@@ -57,11 +57,13 @@ Use this document to **drive execution** before cutting a public mainnet. It con
 
 | # | Item | Evidence / doc | GitHub |
 |---|------|----------------|--------|
-| D1 | Release build process documented; binaries reproducible or provenance captured as required. | [`release-process.md`](./release-process.md) | `#264`, `#276` |
-| D2 | Upgrade matrix + rollback path tested (coordinated upgrade assumptions documented). | Operator notes | `#277` |
+| D1 | Release build process documented; binaries reproducible or provenance captured as required. | [`release-process.md`](./release-process.md), [`evidence/phase-d-release-engineering-evidence.md`](./evidence/phase-d-release-engineering-evidence.md) | `#264`, `#276` |
+| D2 | Upgrade matrix + rollback path tested (coordinated upgrade assumptions documented). | [`evidence/phase-d-release-engineering-evidence.md`](./evidence/phase-d-release-engineering-evidence.md) (matrix + [`node-operator-guide.md`](./node-operator-guide.md)) | `#277` |
 
 **Sign-off:** Name / date: _______________
 
+**Note:** Full bit-reproducible builds / SBOM may be optional for v1; this repo documents **tag + CI + `--locked` + SHA256 artifacts** — see the Phase D evidence file. Fill D1/D2 sign-offs and the upgrade matrix there to close the phase.
+
 ---
 
 ## Phase E — Operations