Email or username:

Password:

Forgot your password?
All posts Christine's posts Post Back to profile
Top-level
Christine Lemmer-Webber

@mcc yup. it's reproducible++. We finally have an operating-system wide path out from the famous Thompson "trusting trust" attack!

26 Apr 2023 at 15:00 | Open on octodon.social
6 comments
Christine Lemmer-Webber

@mcc Guix is the best thing to run on your computer basically

26 Apr 2023 at 15:00 | Reply | Open on octodon.social
mcc

@cwebber well, i'm probably installing a desktop linux distro in the near future, so i'll probably give you a chance to sell me on this sometime soon D:

26 Apr 2023 at 15:05 | Reply | Open on mastodon.social
Dieu

@cwebber @mcc every once in a while consider switching from Nixos, but I don't know how how software availability compares, and community support. I have no doubt that guile is more attractive than nix-the-language, but don't know whether it's actually worth the extra effort.

26 Apr 2023 at 23:51 | Reply | Open on hespere.de
mcc

@cwebber OK and just checking, which hash algorithm(s) would need to go soft before you need to rebuild the hash tree there

26 Apr 2023 at 15:04 | Reply | Open on mastodon.social
Raito Bezarius

@cwebber @mcc time to focus on the kernel bootstrap now :P

26 Apr 2023 at 17:24 | Reply | Open on nixos.paris
Vagrant Cascadian

@cwebber @mcc

Well, at best I have seen #guix at about 86% #reproducible ...

data.guix.gnu.org/repository/1

Today, it is about 92% unknown... the two build farms have a fair amount of catching up to do after the core-updates merge.

"guix" itself is not particularly reproducible, due to non-determinism with parallelism in guile. Parallelism in the Debian package of guix is disabled so is reproducible there, at least!

Would be good to see how much of the #bootstrap is bit-for-bit reproducible!

@cwebber @mcc

Well, at best I have seen #guix at about 86% #reproducible ...

data.guix.gnu.org/repository/1

Today, it is about 92% unknown... the two build farms have a fair amount of catching up to do after the core-updates merge.

26 Apr 2023 at 21:12 | Reply | Open on floss.social
Go Up