pacman

History

Allan McRae 1c5a56884f libmakepkg: reproducibilty for python packages Arch Linux has been setting PYTHONHASHSEED=0 to create deterministic .pyc files. After a thorough review by the Arch Security Team, setting this variable was determined not to generated vulnerable .pyc files, as when the loader loads the .pyc file and unmarshalls it, the internal runtime will just populate the unordered data structures and use a new runtime hash for them. Signed-off-by: Allan McRae <allan@archlinux.org>	2021-08-08 22:49:32 +10:00
..
meson.build	libmakepkg: reproducibilty for python packages	2021-08-08 22:49:32 +10:00
python.sh.in	libmakepkg: reproducibilty for python packages	2021-08-08 22:49:32 +10:00

Allan McRae 1c5a56884f libmakepkg: reproducibilty for python packages

Arch Linux has been setting PYTHONHASHSEED=0 to create deterministic
.pyc files.  After a thorough review by the Arch Security Team, setting
this variable was determined not to generated vulnerable .pyc files, as
when the loader loads the .pyc file and unmarshalls it, the internal
runtime will just populate the unordered data structures and use a new
runtime hash for them.

Signed-off-by: Allan McRae <allan@archlinux.org>

2021-08-08 22:49:32 +10:00

meson.build

libmakepkg: reproducibilty for python packages

2021-08-08 22:49:32 +10:00

python.sh.in

libmakepkg: reproducibilty for python packages

2021-08-08 22:49:32 +10:00