Linux

6920 readers

239 users here now

A community for everything relating to the GNU/Linux operating system

Also check out:

Original icon base courtesy of [email protected] and The GIMP

founded 2 years ago

MODERATORS

[email protected]

Fedora change aims for 99% package reproducibility (lwn.net)

submitted 1 day ago by [email protected] to c/[email protected]

5 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 8 points 1 day ago (1 children)

"given the same source code, build environment and build instructions, any party can recreate bit-by-bit identical copies of all specified artifacts"

NixOS does not guarantee bit-by-bit identical results. NixOS hashes the inputs and provides a reproducible build environment but this does not necessarily mean the artifacts are identical.

E.g. if a build somehow includes a timestamp, each build will have a different checksum.

[–] [email protected] 2 points 1 day ago (1 children)

Neither does fedora

[–] [email protected] 1 points 4 hours ago (1 children)

given the same source code, build environment and build instructions, any party can recreate bit-by-bit identical copies of all specified artifacts

That's how Fedora defines it. I'm not sure of Nix OS meets this but I think Nix and Fedora have two very different use cases.

[–] [email protected] 1 points 3 hours ago

A build is reproducible if given the same source code, build environment and build instructions, and metadata from the build artifacts, any party can recreate copies of the artifacts that are identical except for the signatures and parts of metadata.

The reason Fedora is pursuing a different definition of reproducible build is that it cannot achieve ""bit-by-bit"" reproducibility by the original definition.