From owner-freebsd-current@freebsd.org  Mon Sep 10 15:08:20 2018
Return-Path: <owner-freebsd-current@freebsd.org>
Delivered-To: freebsd-current@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 20EBA109264C
 for <freebsd-current@mailman.ysv.freebsd.org>;
 Mon, 10 Sep 2018 15:08:20 +0000 (UTC)
 (envelope-from wlosh@bsdimp.com)
Received: from mail-it0-x22e.google.com (mail-it0-x22e.google.com
 [IPv6:2607:f8b0:4001:c0b::22e])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 9E78685358
 for <freebsd-current@freebsd.org>; Mon, 10 Sep 2018 15:08:19 +0000 (UTC)
 (envelope-from wlosh@bsdimp.com)
Received: by mail-it0-x22e.google.com with SMTP id d10-v6so29935289itj.5
 for <freebsd-current@freebsd.org>; Mon, 10 Sep 2018 08:08:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=bsdimp-com.20150623.gappssmtp.com; s=20150623;
 h=mime-version:references:in-reply-to:from:date:message-id:subject:to
 :cc; bh=CHZTUmZm/WbofM0OMGBdDHLh9+wnWRbtFyGhNJ1djBU=;
 b=lWHGvMy4YU9iG9uwoBurMjHR1zEAd/tUhenkvTd9SBhZL4ynjeBKqvhB+LCq6lgD8g
 6lcTNGBeGBRaAY2IloJUlpnm3Oh+xxRdWNwFsYEXZ7NUELHZFwwwDOx+9tjebnok+FT9
 I35UCEQDnfjI1xvLCCwaV8SK2B5DXbq5LUpjD00YHSt5+pZzIJUZsbipPGLA0u15V53K
 oy3alaorg8QiIlrfNm3lkRS3wg1kBXE0/YlV5+6+8FqJqG/vSmmDMMXN9FE7PuboXHd7
 DgqpzoNKT16lnNLqAwJ8xf7IXCu8XiqtYVZ8uIGIaQ+thRlrbQau07eUL533Zp1er/sZ
 IFFQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:references:in-reply-to:from:date
 :message-id:subject:to:cc;
 bh=CHZTUmZm/WbofM0OMGBdDHLh9+wnWRbtFyGhNJ1djBU=;
 b=tcGOY1s5Bfpz1vXfdWa6EHuJvz+Z7Kh9HH0EjqDLipP0N7YueFePtigf0DyY9G9OB+
 FbZSpqgYhG1SL3krCafvvwBJ4k7OYMz8Iu3/8LpvaCb1NO13wKCy6Qw6P4p7mKcuJbn3
 KbqlmU5ydwQ/JQsteP2CCAUbqXhwLFkUMXB9CwmWBf7Su6yXPEcVGTUxjpuVhJ5CXEpf
 ULVHshyctvwltey7Ld2G/Hln6cLIjX3Y5juOhtEEJeMQNP/5u2WMpl7Lb9MhtfaEaq/r
 vsBGwWBSgRMemW5MzJX9IUrS4GQ3/92hk4ffBtFiR+9xr92UXcn4MBiekCoiA1V8g/3a
 eowg==
X-Gm-Message-State: APzg51DvSgcVjzQkl3mmnSsbnRHV44/wmc5B6gb4IwRKn13WEQID06KB
 PxPv+IKax1hEtXVVtahlqyOi50feWD7S6HhyVcxxjg==
X-Google-Smtp-Source: ANB0VdYaMrrI2OxmZzfynO7F8oG7nfgOkW4qc3X/dFkpkn7HQl7BrRPR0JZdJ1O8SkRGv9bnDqfZMnmgBvREjT1/WVw=
X-Received: by 2002:a24:c902:: with SMTP id
 h2-v6mr18015514itg.75.1536592098667; 
 Mon, 10 Sep 2018 08:08:18 -0700 (PDT)
MIME-Version: 1.0
References: <CAPyFy2C6=trSndoNmNn8SZv1Taq9n+tUqj3wY04DCqJ+-OuF5Q@mail.gmail.com>
In-Reply-To: <CAPyFy2C6=trSndoNmNn8SZv1Taq9n+tUqj3wY04DCqJ+-OuF5Q@mail.gmail.com>
From: Warner Losh <imp@bsdimp.com>
Date: Mon, 10 Sep 2018 09:08:07 -0600
Message-ID: <CANCZdfrnW64naSHWk5n7bxWXUBAhrBbPMSe4pOUHnGWbYFsNLQ@mail.gmail.com>
Subject: Re: Enabling the WITH_REPRODUCIBLE_BUILD knob for 12.0-REL
To: Ed Maste <emaste@freebsd.org>
Cc: FreeBSD Current <freebsd-current@freebsd.org>
Content-Type: text/plain; charset="UTF-8"
X-Content-Filtered-By: Mailman/MimeDel 2.1.27
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
 <freebsd-current.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current/>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Sep 2018 15:08:20 -0000

On Mon, Sep 10, 2018 at 8:58 AM Ed Maste <emaste@freebsd.org> wrote:

> The FreeBSD base system is a reproducible build[1] with a minor
> exception: the build metadata (timestamps, user, hostname, etc.)
> included in the kernel and loader.
>
> With the default, non-reproducible build the kernel ident looks like:
>
> FreeBSD 12.0-ALPHA5 #4 r338195: Mon Jan 1 10:11:12 EDT 2018
>    user@hostname:/path/to/freebsd/src
>
> and the loader ident:
>
> FreeBSD/amd64 EFI loader, Revision 1.1
> (Mon Jan 1 10:11:12 EDT 2018 user@hostname)
>
> With reproducible builds enabled the kernel ident looks like:
>
> FreeBSD 12.0-ALPHA5  r338195
>
> and the loader ident:
>
> FreeBSD/amd64 EFI loader, Revision 1.1
>
> I would like to enable the REPRODUCIBLE_BUILD knob by default for the
> 12.0 release, and propose we do this by adding a step to switch the
> default to the list of changes[2] that re@ commits to the branch as
> part of the release process.
>
> [1] https://reproducible-builds.org
> [2]
> https://www.freebsd.org/doc/en_US.ISO8859-1/articles/freebsd-releng/releng-head.html


Turning it on, like we turn off WITNESS, for stable branches, I think this
is a good idea. The loader doesn't really need the extra stuff to function
properly, so dropping it is OK.

Warner