€•ÐY      Œsphinx.addnodes”Œdocument”“”)”}”(Œ	rawsource”Œ ”Œchildren”]”(Œtranslations”ŒLanguagesNode”“”)”}”(hhh]”(h Œpending_xref”“”)”}”(hhh]”Œdocutils.nodes”ŒText”“”ŒChinese (Simplified)”…””}”Œparent”hsbaŒ
attributes”}”(Œids”]”Œclasses”]”Œnames”]”Œdupnames”]”Œbackrefs”]”Œ	refdomain”Œstd”Œreftype”Œdoc”Œ	reftarget”Œ./translations/zh_CN/kbuild/reproducible-builds”Œmodname”NŒ	classname”NŒrefexplicit”ˆuŒtagname”hhhubh)”}”(hhh]”hŒChinese (Traditional)”…””}”hh2sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ./translations/zh_TW/kbuild/reproducible-builds”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒItalian”…””}”hhFsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ./translations/it_IT/kbuild/reproducible-builds”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒJapanese”…””}”hhZsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ./translations/ja_JP/kbuild/reproducible-builds”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒKorean”…””}”hhnsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ./translations/ko_KR/kbuild/reproducible-builds”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒSpanish”…””}”hh‚sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ./translations/sp_SP/kbuild/reproducible-builds”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubeh}”(h]”h ]”h"]”h$]”h&]”Œcurrent_language”ŒEnglish”uh1h
hhŒ	_document”hŒsource”NŒline”NubhŒsection”“”)”}”(hhh]”(hŒtitle”“”)”}”(hŒReproducible builds”h]”hŒReproducible builds”…””}”(hh¨hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¦hh£hžhhŸŒH/var/lib/git/docbuild/linux/Documentation/kbuild/reproducible-builds.rst”h KubhŒ	paragraph”“”)”}”(hX–  It is generally desirable that building the same source code with
the same set of tools is reproducible, i.e. the output is always
exactly the same.  This makes it possible to verify that the build
infrastructure for a binary distribution or embedded system has not
been subverted.  This can also make it easier to verify that a source
or tool change does not make any difference to the resulting binaries.”h]”hX–  It is generally desirable that building the same source code with
the same set of tools is reproducible, i.e. the output is always
exactly the same.  This makes it possible to verify that the build
infrastructure for a binary distribution or embedded system has not
been subverted.  This can also make it easier to verify that a source
or tool change does not make any difference to the resulting binaries.”…””}”(hh¹hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h Khh£hžhubh¸)”}”(hŒÁThe `Reproducible Builds project`_ has more information about this
general topic.  This document covers the various reasons why building
the kernel may be unreproducible, and how to avoid them.”h]”(hŒThe ”…””}”(hhÇhžhhŸNh NubhŒ	reference”“”)”}”(hŒ`Reproducible Builds project`_”h]”hŒReproducible Builds project”…””}”(hhÑhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œname”ŒReproducible Builds project”Œrefuri”Œ https://reproducible-builds.org/”uh1hÏhhÇŒresolved”KubhŒŸ has more information about this
general topic.  This document covers the various reasons why building
the kernel may be unreproducible, and how to avoid them.”…””}”(hhÇhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h Khh£hžhubh¢)”}”(hhh]”(h§)”}”(hŒ
Timestamps”h]”hŒ
Timestamps”…””}”(hhñhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¦hhîhžhhŸh¶h Kubh¸)”}”(hŒ-The kernel embeds timestamps in three places:”h]”hŒ-The kernel embeds timestamps in three places:”…””}”(hhÿhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KhhîhžhubhŒbullet_list”“”)”}”(hhh]”(hŒ	list_item”“”)”}”(hŒLThe version string exposed by ``uname()`` and included in
``/proc/version``
”h]”h¸)”}”(hŒKThe version string exposed by ``uname()`` and included in
``/proc/version``”h]”(hŒThe version string exposed by ”…””}”(hj  hžhhŸNh NubhŒliteral”“”)”}”(hŒ``uname()``”h]”hŒuname()”…””}”(hj"  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  ubhŒ and included in
”…””}”(hj  hžhhŸNh Nubj!  )”}”(hŒ``/proc/version``”h]”hŒ/proc/version”…””}”(hj4  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h Khj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj  hžhhŸh¶h Nubj  )”}”(hŒ*File timestamps in the embedded initramfs
”h]”h¸)”}”(hŒ)File timestamps in the embedded initramfs”h]”hŒ)File timestamps in the embedded initramfs”…””}”(hjR  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KhjN  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj  hžhhŸh¶h Nubj  )”}”(hŒ If enabled via ``CONFIG_IKHEADERS``, file timestamps of kernel
headers embedded in the kernel or respective module,
exposed via ``/sys/kernel/kheaders.tar.xz``
”h]”h¸)”}”(hŒŸIf enabled via ``CONFIG_IKHEADERS``, file timestamps of kernel
headers embedded in the kernel or respective module,
exposed via ``/sys/kernel/kheaders.tar.xz``”h]”(hŒIf enabled via ”…””}”(hjj  hžhhŸNh Nubj!  )”}”(hŒ``CONFIG_IKHEADERS``”h]”hŒCONFIG_IKHEADERS”…””}”(hjr  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hjj  ubhŒ], file timestamps of kernel
headers embedded in the kernel or respective module,
exposed via ”…””}”(hjj  hžhhŸNh Nubj!  )”}”(hŒ``/sys/kernel/kheaders.tar.xz``”h]”hŒ/sys/kernel/kheaders.tar.xz”…””}”(hj„  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hjj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h Khjf  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj  hžhhŸh¶h Nubeh}”(h]”h ]”h"]”h$]”h&]”Œbullet”Œ*”uh1j  hŸh¶h Khhîhžhubh¸)”}”(hŒÿBy default the timestamp is the current time and in the case of
``kheaders`` the various files' modification times. This must
be overridden using the `KBUILD_BUILD_TIMESTAMP`_ variable.
If you are building from a git commit, you could use its commit date.”h]”(hŒ@By default the timestamp is the current time and in the case of
”…””}”(hj¦  hžhhŸNh Nubj!  )”}”(hŒ``kheaders``”h]”hŒkheaders”…””}”(hj®  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj¦  ubhŒL the various filesâ€™ modification times. This must
be overridden using the ”…””}”(hj¦  hžhhŸNh NubhÐ)”}”(hŒ`KBUILD_BUILD_TIMESTAMP`_”h]”hŒKBUILD_BUILD_TIMESTAMP”…””}”(hjÀ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œname”ŒKBUILD_BUILD_TIMESTAMP”háŒ"kbuild.html#kbuild-build-timestamp”uh1hÏhj¦  hãKubhŒP variable.
If you are building from a git commit, you could use its commit date.”…””}”(hj¦  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h Khhîhžhubh¸)”}”(hX  The kernel does *not* use the ``__DATE__`` and ``__TIME__`` macros,
and enables warnings if they are used.  If you incorporate external
code that does use these, you must override the timestamp they
correspond to by setting the `SOURCE_DATE_EPOCH`_ environment
variable.”h]”(hŒThe kernel does ”…””}”(hjÛ  hžhhŸNh NubhŒemphasis”“”)”}”(hŒ*not*”h]”hŒnot”…””}”(hjå  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jã  hjÛ  ubhŒ	 use the ”…””}”(hjÛ  hžhhŸNh Nubj!  )”}”(hŒ``__DATE__``”h]”hŒ__DATE__”…””}”(hj÷  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hjÛ  ubhŒ and ”…””}”(hjÛ  hžhhŸNh Nubj!  )”}”(hŒ``__TIME__``”h]”hŒ__TIME__”…””}”(hj	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hjÛ  ubhŒ© macros,
and enables warnings if they are used.  If you incorporate external
code that does use these, you must override the timestamp they
correspond to by setting the ”…””}”(hjÛ  hžhhŸNh NubhÐ)”}”(hŒ`SOURCE_DATE_EPOCH`_”h]”hŒSOURCE_DATE_EPOCH”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œname”ŒSOURCE_DATE_EPOCH”háŒ7https://reproducible-builds.org/docs/source-date-epoch/”uh1hÏhjÛ  hãKubhŒ environment
variable.”…””}”(hjÛ  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h K#hhîhžhubeh}”(h]”Œ
timestamps”ah ]”h"]”Œ
timestamps”ah$]”h&]”uh1h¡hh£hžhhŸh¶h Kubh¢)”}”(hhh]”(h§)”}”(hŒ
User, host”h]”hŒ
User, host”…””}”(hjA  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¦hj>  hžhhŸh¶h K*ubh¸)”}”(hŒïThe kernel embeds the building user and host names in
``/proc/version``.  These must be overridden using the
`KBUILD_BUILD_USER and KBUILD_BUILD_HOST`_ variables.  If you are
building from a git commit, you could use its committer address.”h]”(hŒ6The kernel embeds the building user and host names in
”…””}”(hjO  hžhhŸNh Nubj!  )”}”(hŒ``/proc/version``”h]”hŒ/proc/version”…””}”(hjW  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hjO  ubhŒ&.  These must be overridden using the
”…””}”(hjO  hžhhŸNh NubhÐ)”}”(hŒ*`KBUILD_BUILD_USER and KBUILD_BUILD_HOST`_”h]”hŒ'KBUILD_BUILD_USER and KBUILD_BUILD_HOST”…””}”(hji  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œname”Œ'KBUILD_BUILD_USER and KBUILD_BUILD_HOST”háŒ/kbuild.html#kbuild-build-user-kbuild-build-host”uh1hÏhjO  hãKubhŒX variables.  If you are
building from a git commit, you could use its committer address.”…””}”(hjO  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h K,hj>  hžhubeh}”(h]”Œ	user-host”ah ]”h"]”Œ
user, host”ah$]”h&]”uh1h¡hh£hžhhŸh¶h K*ubh¢)”}”(hhh]”(h§)”}”(hŒ"Generated files in source packages”h]”hŒ"Generated files in source packages”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¦hjŒ  hžhhŸh¶h K2ubh¸)”}”(hXb  The build processes for some programs under the ``tools/``
subdirectory do not completely support out-of-tree builds.  This may
cause a later source package build using e.g. ``make rpm-pkg`` to
include generated files.  You should ensure the source tree is
pristine by running ``make mrproper`` or ``git clean -d -f -x`` before
building a source package.”h]”(hŒ0The build processes for some programs under the ”…””}”(hj  hžhhŸNh Nubj!  )”}”(hŒ
``tools/``”h]”hŒtools/”…””}”(hj¥  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  ubhŒt
subdirectory do not completely support out-of-tree builds.  This may
cause a later source package build using e.g. ”…””}”(hj  hžhhŸNh Nubj!  )”}”(hŒ``make rpm-pkg``”h]”hŒmake rpm-pkg”…””}”(hj·  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  ubhŒW to
include generated files.  You should ensure the source tree is
pristine by running ”…””}”(hj  hžhhŸNh Nubj!  )”}”(hŒ``make mrproper``”h]”hŒmake mrproper”…””}”(hjÉ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  ubhŒ or ”…””}”(hj  hžhhŸNh Nubj!  )”}”(hŒ``git clean -d -f -x``”h]”hŒgit clean -d -f -x”…””}”(hjÛ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  ubhŒ" before
building a source package.”…””}”(hj  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h K4hjŒ  hžhubeh}”(h]”Œ"generated-files-in-source-packages”ah ]”h"]”Œ"generated files in source packages”ah$]”h&]”uh1h¡hh£hžhhŸh¶h K2ubh¢)”}”(hhh]”(h§)”}”(hŒModule signing”h]”hŒModule signing”…””}”(hjþ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¦hjû  hžhhŸh¶h K<ubh¸)”}”(hX  If you enable ``CONFIG_MODULE_SIG_ALL``, the default behaviour is to
generate a different temporary key for each build, resulting in the
modules being unreproducible.  However, including a signing key with
your source would presumably defeat the purpose of signing modules.”h]”(hŒIf you enable ”…””}”(hj  hžhhŸNh Nubj!  )”}”(hŒ``CONFIG_MODULE_SIG_ALL``”h]”hŒCONFIG_MODULE_SIG_ALL”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  ubhŒê, the default behaviour is to
generate a different temporary key for each build, resulting in the
modules being unreproducible.  However, including a signing key with
your source would presumably defeat the purpose of signing modules.”…””}”(hj  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h K>hjû  hžhubh¸)”}”(hŒrOne approach to this is to divide up the build process so that the
unreproducible parts can be treated as sources:”h]”hŒrOne approach to this is to divide up the build process so that the
unreproducible parts can be treated as sources:”…””}”(hj,  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KChjû  hžhubhŒenumerated_list”“”)”}”(hhh]”(j  )”}”(hŒZGenerate a persistent signing key.  Add the certificate for the key
to the kernel source.
”h]”h¸)”}”(hŒYGenerate a persistent signing key.  Add the certificate for the key
to the kernel source.”h]”hŒYGenerate a persistent signing key.  Add the certificate for the key
to the kernel source.”…””}”(hjC  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KFhj?  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj<  hžhhŸh¶h Nubj  )”}”(hŒÏSet the ``CONFIG_SYSTEM_TRUSTED_KEYS`` symbol to include the
signing key's certificate, set ``CONFIG_MODULE_SIG_KEY`` to an
empty string, and disable ``CONFIG_MODULE_SIG_ALL``.
Build the kernel and modules.
”h]”h¸)”}”(hŒÎSet the ``CONFIG_SYSTEM_TRUSTED_KEYS`` symbol to include the
signing key's certificate, set ``CONFIG_MODULE_SIG_KEY`` to an
empty string, and disable ``CONFIG_MODULE_SIG_ALL``.
Build the kernel and modules.”h]”(hŒSet the ”…””}”(hj[  hžhhŸNh Nubj!  )”}”(hŒ``CONFIG_SYSTEM_TRUSTED_KEYS``”h]”hŒCONFIG_SYSTEM_TRUSTED_KEYS”…””}”(hjc  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj[  ubhŒ8 symbol to include the
signing keyâ€™s certificate, set ”…””}”(hj[  hžhhŸNh Nubj!  )”}”(hŒ``CONFIG_MODULE_SIG_KEY``”h]”hŒCONFIG_MODULE_SIG_KEY”…””}”(hju  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj[  ubhŒ! to an
empty string, and disable ”…””}”(hj[  hžhhŸNh Nubj!  )”}”(hŒ``CONFIG_MODULE_SIG_ALL``”h]”hŒCONFIG_MODULE_SIG_ALL”…””}”(hj‡  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj[  ubhŒ.
Build the kernel and modules.”…””}”(hj[  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KIhjW  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj<  hžhhŸh¶h Nubj  )”}”(hŒICreate detached signatures for the modules, and publish them as
sources.
”h]”h¸)”}”(hŒHCreate detached signatures for the modules, and publish them as
sources.”h]”hŒHCreate detached signatures for the modules, and publish them as
sources.”…””}”(hj©  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KNhj¥  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj<  hžhhŸh¶h Nubj  )”}”(hŒ|Perform a second build that attaches the module signatures.  It
can either rebuild the modules or use the output of step 2.
”h]”h¸)”}”(hŒ{Perform a second build that attaches the module signatures.  It
can either rebuild the modules or use the output of step 2.”h]”hŒ{Perform a second build that attaches the module signatures.  It
can either rebuild the modules or use the output of step 2.”…””}”(hjÁ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KQhj½  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj<  hžhhŸh¶h Nubeh}”(h]”h ]”h"]”h$]”h&]”Œenumtype”Œarabic”Œprefix”hŒsuffix”Œ.”uh1j:  hjû  hžhhŸh¶h KFubeh}”(h]”Œmodule-signing”ah ]”h"]”Œmodule signing”ah$]”h&]”uh1h¡hh£hžhhŸh¶h K<ubh¢)”}”(hhh]”(h§)”}”(hŒStructure randomisation”h]”hŒStructure randomisation”…””}”(hjë  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¦hjè  hžhhŸh¶h KUubh¸)”}”(hŒÔIf you enable ``CONFIG_RANDSTRUCT``, you will need to pre-generate
the random seed in ``scripts/basic/randstruct.seed`` so the same
value is used by each build. See ``scripts/gen-randstruct-seed.sh``
for details.”h]”(hŒIf you enable ”…””}”(hjù  hžhhŸNh Nubj!  )”}”(hŒ``CONFIG_RANDSTRUCT``”h]”hŒCONFIG_RANDSTRUCT”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hjù  ubhŒ3, you will need to pre-generate
the random seed in ”…””}”(hjù  hžhhŸNh Nubj!  )”}”(hŒ!``scripts/basic/randstruct.seed``”h]”hŒscripts/basic/randstruct.seed”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hjù  ubhŒ. so the same
value is used by each build. See ”…””}”(hjù  hžhhŸNh Nubj!  )”}”(hŒ"``scripts/gen-randstruct-seed.sh``”h]”hŒscripts/gen-randstruct-seed.sh”…””}”(hj%  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hjù  ubhŒ
for details.”…””}”(hjù  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KWhjè  hžhubeh}”(h]”Œstructure-randomisation”ah ]”h"]”Œstructure randomisation”ah$]”h&]”uh1h¡hh£hžhhŸh¶h KUubh¢)”}”(hhh]”(h§)”}”(hŒDebug info conflicts”h]”hŒDebug info conflicts”…””}”(hjH  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¦hjE  hžhhŸh¶h K]ubh¸)”}”(hŒ\This is not a problem of unreproducibility, but of generated files
being *too* reproducible.”h]”(hŒIThis is not a problem of unreproducibility, but of generated files
being ”…””}”(hjV  hžhhŸNh Nubjä  )”}”(hŒ*too*”h]”hŒtoo”…””}”(hj^  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jã  hjV  ubhŒ reproducible.”…””}”(hjV  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h K_hjE  hžhubh¸)”}”(hŒûOnce you set all the necessary variables for a reproducible build, a
vDSO's debug information may be identical even for different kernel
versions.  This can result in file conflicts between debug information
packages for the different kernel versions.”h]”hŒýOnce you set all the necessary variables for a reproducible build, a
vDSOâ€™s debug information may be identical even for different kernel
versions.  This can result in file conflicts between debug information
packages for the different kernel versions.”…””}”(hjv  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KbhjE  hžhubh¸)”}”(hŒ½To avoid this, you can make the vDSO different for different
kernel versions by including an arbitrary string of "salt" in it.
This is specified by the Kconfig symbol ``CONFIG_BUILD_SALT``.”h]”(hŒ«To avoid this, you can make the vDSO different for different
kernel versions by including an arbitrary string of â€œsaltâ€ in it.
This is specified by the Kconfig symbol ”…””}”(hj„  hžhhŸNh Nubj!  )”}”(hŒ``CONFIG_BUILD_SALT``”h]”hŒCONFIG_BUILD_SALT”…””}”(hjŒ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj„  ubhŒ.”…””}”(hj„  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h KghjE  hžhubeh}”(h]”Œdebug-info-conflicts”ah ]”h"]”Œdebug info conflicts”ah$]”h&]”uh1h¡hh£hžhhŸh¶h K]ubh¢)”}”(hhh]”(h§)”}”(hŒGit”h]”hŒGit”…””}”(hj¯  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¦hj¬  hžhhŸh¶h Klubh¸)”}”(hXg  Uncommitted changes or different commit ids in git can also lead
to different compilation results. For example, after executing
``git reset HEAD^``, even if the code is the same, the
``include/config/kernel.release`` generated during compilation
will be different, which will eventually lead to binary differences.
See ``scripts/setlocalversion`` for details.”h]”(hŒ€Uncommitted changes or different commit ids in git can also lead
to different compilation results. For example, after executing
”…””}”(hj½  hžhhŸNh Nubj!  )”}”(hŒ``git reset HEAD^``”h]”hŒgit reset HEAD^”…””}”(hjÅ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj½  ubhŒ$, even if the code is the same, the
”…””}”(hj½  hžhhŸNh Nubj!  )”}”(hŒ!``include/config/kernel.release``”h]”hŒinclude/config/kernel.release”…””}”(hj×  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj½  ubhŒg generated during compilation
will be different, which will eventually lead to binary differences.
See ”…””}”(hj½  hžhhŸNh Nubj!  )”}”(hŒ``scripts/setlocalversion``”h]”hŒscripts/setlocalversion”…””}”(hjé  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j   hj½  ubhŒ for details.”…””}”(hj½  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1h·hŸh¶h Knhj¬  hžhubhŒtarget”“”)”}”(hŒ>.. _KBUILD_BUILD_TIMESTAMP: kbuild.html#kbuild-build-timestamp”h]”h}”(h]”Œkbuild-build-timestamp”ah ]”h"]”Œkbuild_build_timestamp”ah$]”h&]”hájÐ  uh1j  h Kuhj¬  hžhhŸh¶Œ
referenced”Kubj  )”}”(hŒ\.. _KBUILD_BUILD_USER and KBUILD_BUILD_HOST: kbuild.html#kbuild-build-user-kbuild-build-host”h]”h}”(h]”Œ'kbuild-build-user-and-kbuild-build-host”ah ]”h"]”Œ'kbuild_build_user and kbuild_build_host”ah$]”h&]”hájy  uh1j  h Kvhj¬  hžhhŸh¶j  Kubj  )”}”(hŒA.. _Reproducible Builds project: https://reproducible-builds.org/”h]”h}”(h]”Œreproducible-builds-project”ah ]”h"]”Œreproducible builds project”ah$]”h&]”háhâuh1j  h Kwhj¬  hžhhŸh¶j  Kubj  )”}”(hŒN.. _SOURCE_DATE_EPOCH: https://reproducible-builds.org/docs/source-date-epoch/”h]”h}”(h]”Œsource-date-epoch”ah ]”h"]”Œsource_date_epoch”ah$]”h&]”háj+  uh1j  h Kxhj¬  hžhhŸh¶j  Kubeh}”(h]”Œgit”ah ]”h"]”Œgit”ah$]”h&]”uh1h¡hh£hžhhŸh¶h Klubeh}”(h]”Œreproducible-builds”ah ]”h"]”Œreproducible builds”ah$]”h&]”uh1h¡hhhžhhŸh¶h Kubeh}”(h]”h ]”h"]”h$]”h&]”Œsource”h¶uh1hŒcurrent_source”NŒcurrent_line”NŒsettings”Œdocutils.frontend”ŒValues”“”)”}”(h¦NŒ	generator”NŒ	datestamp”NŒsource_link”NŒ
source_url”NŒtoc_backlinks”Œentry”Œfootnote_backlinks”KŒsectnum_xform”KŒstrip_comments”NŒstrip_elements_with_classes”NŒstrip_classes”NŒreport_level”KŒ
halt_level”KŒexit_status_level”KŒdebug”NŒwarning_stream”NŒ	traceback”ˆŒinput_encoding”Œ	utf-8-sig”Œinput_encoding_error_handler”Œstrict”Œoutput_encoding”Œutf-8”Œoutput_encoding_error_handler”jg  Œerror_encoding”Œutf-8”Œerror_encoding_error_handler”Œbackslashreplace”Œlanguage_code”Œen”Œrecord_dependencies”NŒconfig”NŒ	id_prefix”hŒauto_id_prefix”Œid”Œdump_settings”NŒdump_internals”NŒdump_transforms”NŒdump_pseudo_xml”NŒexpose_internals”NŒstrict_visitor”NŒ_disable_config”NŒ_source”h¶Œ_destination”NŒ_config_files”]”Œ7/var/lib/git/docbuild/linux/Documentation/docutils.conf”aŒfile_insertion_enabled”ˆŒraw_enabled”KŒline_length_limit”M'Œpep_references”NŒpep_base_url”Œhttps://peps.python.org/”Œpep_file_url_template”Œpep-%04d”Œrfc_references”NŒrfc_base_url”Œ&https://datatracker.ietf.org/doc/html/”Œ	tab_width”KŒtrim_footnote_reference_space”‰Œsyntax_highlight”Œlong”Œsmart_quotes”ˆŒsmartquotes_locales”]”Œcharacter_level_inline_markup”‰Œdoctitle_xform”‰Œdocinfo_xform”KŒsectsubtitle_xform”‰Œimage_loading”Œlink”Œembed_stylesheet”‰Œcloak_email_addresses”ˆŒsection_self_link”‰Œenv”NubŒreporter”NŒindirect_targets”]”Œsubstitution_defs”}”Œsubstitution_names”}”Œrefnames”}”(Œreproducible builds project”]”hÑaŒkbuild_build_timestamp”]”jÀ  aŒsource_date_epoch”]”j  aŒ'kbuild_build_user and kbuild_build_host”]”ji  auŒrefids”}”Œnameids”}”(jA  j>  j;  j8  j‰  j†  jø  jõ  jå  jâ  jB  j?  j©  j¦  j9  j6  j  j	  j  j  j%  j"  j1  j.  uŒ	nametypes”}”(jA  ‰j;  ‰j‰  ‰jø  ‰jå  ‰jB  ‰j©  ‰j9  ‰j  ˆj  ˆj%  ˆj1  ˆuh}”(j>  h£j8  hîj†  j>  jõ  jŒ  jâ  jû  j?  jè  j¦  jE  j6  j¬  j	  j  j  j  j"  j  j.  j(  uŒfootnote_refs”}”Œcitation_refs”}”Œautofootnotes”]”Œautofootnote_refs”]”Œsymbol_footnotes”]”Œsymbol_footnote_refs”]”Œ	footnotes”]”Œ	citations”]”Œautofootnote_start”KŒsymbol_footnote_start”K Œ
id_counter”Œcollections”ŒCounter”“”}”…”R”Œparse_messages”]”Œtransform_messages”]”Œtransformer”NŒinclude_log”]”Œ
decoration”Nhžhub.