On 05/11/19 15:05, Mickaël Bucas wrote: > I remember reading an article about a man trying to reproduce binary > packages of a binary distribution and failing to do so, because there > are so many parts involved. I've read later that distributions have > done some work to have reproducible builds, but I'm not sure how > successful they are, even when all choices are predefined.
It gets worse ... a major cause of two consecutive compiles on the same system not agreeing is that a lot of this contains date stamps etc. Reproducible builds are coming along, but they've got to analyze out or remove all the compile time info that ends up in the binary. They're coming because they're needed for security purposes. Cheers, Wol
