Menu

#1311 Is it possible to make reproducible builds?

3.0 Series
open
nobody
None
5
2024-08-06
2024-07-12
Protocol Droid
No
  1. NSIS v3.10
  2. I cannot get identical outputs for identical inputs
  3. Any script
  4. N/A

I have begun automatically hashing all of my binaries on publish and tracking them in version control. This way, anyone who builds from my source can verify that their output is identical to what I got during development.

While all of my other build artifacts are deterministic, the hash of the NSIS installer changes on each publish. Thus, I don't get identical outputs for identical inputs.

There is likely some timestamping or other such meta data happening. Are there any options or switches that can ensure deterministic reproducible builds of NSIS installer packages?

https://reproducible-builds.org

Discussion

  • Anders

    Anders - 2024-07-15

    If you are building NSIS from source, pass SOURCE_DATE_EPOCH to SCons.

     
    👍
    1

    • Protocol Droid

      Protocol Droid - 2024-07-16

      Thanks. I usually just use the published binaries.

       

      • Anders

        Anders - 2024-08-06

        example1.nsi produces the same output every time IIRC.

         

Log in to post a comment.