[tor-commits] [orbot/master] make-release-build: use strip-nondeterminism to get reproducible build
n8fr8 at torproject.org
n8fr8 at torproject.org
Mon Jan 25 17:08:43 UTC 2016
commit 58d53ea347d2c923d781aed450bbb922b3888210
Author: Hans-Christoph Steiner <hans at eds.org>
Date: Thu Jan 14 20:59:17 2016 +0100
make-release-build: use strip-nondeterminism to get reproducible build
strip-nondeterminism sets the timestamps in the zip based on the timestamp
of the git commit.
---
make-release-build | 8 ++++++++
1 file changed, 8 insertions(+)
diff --git a/make-release-build b/make-release-build
index 3c18ce0..2d5947a 100755
--- a/make-release-build
+++ b/make-release-build
@@ -71,6 +71,14 @@ faketime -f "$TIMESTAMP_5" ant release
apk=$projectroot/bin/$projectname-v$describe.apk
+# standardize timestamps in ZIP headers, requires strip-nondeterminism 0.014
+if which strip-nondeterminism > /dev/null; then
+ strip-nondeterminism -t zip -T $(git log -n1 --format=format:%at) $apk
+fi
+
+# echo the checksum to build logs
+sha256sum $apk
+
if which gpg > /dev/null; then
if [ -z "`gpg --list-secret-keys`" ]; then
echo "No GPG secret keys found, not signing APK"
More information about the tor-commits
mailing list