"Reproducible build" definition in OpenSSF glossary
Holger Levsen
holger at layer-acht.org
Sun Jul 13 17:07:03 UTC 2025
On Sun, Jul 13, 2025 at 06:30:50PM +0200, Bernhard M. Wiedemann via rb-general wrote:
> 1. would require that one set of given build inputs always produce one
> certain output - similar to a mathematical function where f(const1)=const2
>
> 2. would include 1. and require extra properties for build inputs - that
> they be produced from sources - and ideally that includes all toolchain
> packages (gcc, glibc) as well and transitively their respective build
> inputs... and that sounds a lot like what we called "bootstrappable builds"
> so far.
> And when we already have this nice word for that concept that is clearly a
> superset of reproducible builds, we can keep calling 1. "reproducible
> builds".
*grin*
thanks, agreed.
--
cheers,
Holger
⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org
⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
⠈⠳⣄
War is peace. Freedom is slavery. Covid is like the flu.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.reproducible-builds.org/pipermail/rb-general/attachments/20250713/74b9c618/attachment.sig>
More information about the rb-general
mailing list