Guix: enable toolchain hardening by default #25484

pull fanquake wants to merge 3 commits into bitcoin:master from fanquake:guix_toolchain_hardening changing 1 files +17 −3
  1. fanquake commented at 3:06 pm on June 27, 2022: member

    The GCC (10.3.0) and glibcs (2.24 and 2.27) we build both support configuration option for turning on hardening features by default.

    For example, our GCC provides --enable-default-pie:

    Turn on -fPIE and -pie by default.

    --enable-default-ssp:

    Turn on -fstack-protector-strong by default.

    and --enable-cet options:

    Enable building target run-time libraries with control-flow instrumentation, see -fcf-protection option.

    It also provides --enable-standard-branch-protection, but we don’t do that here, because we don’t support building with it yet (#24123).

    You could verify the that the on-by-default pie flags are working by Guix building master + this change:

    0--- a/configure.ac
1+++ b/configure.ac
2@@ -971,7 +971,6 @@ if test "$use_hardening" != "no"; then
3   AX_CHECK_LINK_FLAG([-Wl,-z,relro], [HARDENED_LDFLAGS="$HARDENED_LDFLAGS -Wl,-z,relro"], [], [$LDFLAG_WERROR])
4   AX_CHECK_LINK_FLAG([-Wl,-z,now], [HARDENED_LDFLAGS="$HARDENED_LDFLAGS -Wl,-z,now"], [], [$LDFLAG_WERROR])
5   AX_CHECK_LINK_FLAG([-Wl,-z,separate-code], [HARDENED_LDFLAGS="$HARDENED_LDFLAGS -Wl,-z,separate-code"], [], [$LDFLAG_WERROR])
6-  AX_CHECK_LINK_FLAG([-fPIE -pie], [PIE_FLAGS="-fPIE"; HARDENED_LDFLAGS="$HARDENED_LDFLAGS -pie"], [], [$CXXFLAG_WERROR])

    and verifying that the PIE security checks fail. Then, build this PR branch, + the same change, and checking that they still pass.

    A similar thing can be done with the stack-protector, i.e perform a Guix build, and observe the security checks failing after applying this diff to master:

    0--- a/configure.ac
1+++ b/configure.ac
2@@ -936,8 +936,6 @@ dnl -fstack-reuse=none for all gcc builds. (Only gcc understands this flag)
3 AX_CHECK_COMPILE_FLAG([-fstack-reuse=none], [HARDENED_CXXFLAGS="$HARDENED_CXXFLAGS -fstack-reuse=none"])
4 if test "$use_hardening" != "no"; then
5   use_hardening=yes
6-  AX_CHECK_COMPILE_FLAG([-Wstack-protector], [HARDENED_CXXFLAGS="$HARDENED_CXXFLAGS -Wstack-protector"])
7-  AX_CHECK_COMPILE_FLAG([-fstack-protector-all], [HARDENED_CXXFLAGS="$HARDENED_CXXFLAGS -fstack-protector-all"])

    Then check that a build doesn’t fail when building this PR + that change. Although it should be noted that the security checks will pass for this + that change, even though the GCC option is for stack-protector-strong, rather than stack-protector-all. This is because our stack protector check is currently just for the presencse of the canary, and not a check that every function is instrumented.

    For glibc, we enable --enable-stack-protector=all (RISC-V only):

    Compile the C library and all other parts of the glibc package using the GCC -fstack-protector, -fstack-protector-strong or -fstack-protector-all options to detect stack overruns. Only the dynamic linker and a small number of routines called directly from assembler are excluded from this protection.

    and --enable-bind-now:

    Disable lazy binding for installed shared objects and programs. This provides additional security hardening because it enables full RELRO and a read-only global offset table (GOT), at the cost of slightly increased program load times.

    You could check that the stack-protector option is being used for the RISC-V builds, by comparing the contents of a function that comes from glibc, i.e atexit, in a build of master:

    0riscv64-linux-gnu/src/bitcoind:     file format elf64-littleriscv
1
200000000007aa078 <atexit>:
3  7aa078:	003a5617          	auipc	a2,0x3a5
4  7aa07c:	f8863603          	ld	a2,-120(a2) # b4f000 <__dso_handle>
5  7aa080:	4581                	li	a1,0
6  7aa082:	ff8b3317          	auipc	t1,0xff8b3
7  7aa086:	41e30067          	jr	1054(t1) # 5d4a0 <__cxa_atexit@plt>

    vs this PR:

     0riscv64-linux-gnu/src/bitcoind:     file format elf64-littleriscv
 1
 200000000007aa078 <atexit>:
 3  7aa078:	003aa797          	auipc	a5,0x3aa
 4  7aa07c:	3c87b783          	ld	a5,968(a5) # b54440 <__stack_chk_guard@GLIBC_2.27>
 5  7aa080:	6398                	ld	a4,0(a5)
 6  7aa082:	1101                	addi	sp,sp,-32
 7  7aa084:	ec06                	sd	ra,24(sp)
 8  7aa086:	e43a                	sd	a4,8(sp)
 9  7aa088:	6722                	ld	a4,8(sp)
10  7aa08a:	639c                	ld	a5,0(a5)
11  7aa08c:	00f71d63          	bne	a4,a5,7aa0a6 <atexit+0x2e>
12  7aa090:	60e2                	ld	ra,24(sp)
13  7aa092:	003a5617          	auipc	a2,0x3a5
14  7aa096:	f6e63603          	ld	a2,-146(a2) # b4f000 <__dso_handle>
15  7aa09a:	4581                	li	a1,0
16  7aa09c:	6105                	addi	sp,sp,32
17  7aa09e:	ff8b3317          	auipc	t1,0xff8b3
18  7aa0a2:	40230067          	jr	1026(t1) # 5d4a0 <__cxa_atexit@plt>
19  7aa0a6:	ff8b3097          	auipc	ra,0xff8b3
20  7aa0aa:	2ba080e7          	jalr	698(ra) # 5d360 <__stack_chk_fail@plt>

    Note that none of the above means we would actually remove the use of hardening flags from our configure.

    Guix Build (x86_64):

     08de8ceac0f34729f17c64cd3b788d8e73e8a29cf51ec88ae33e04b1002f07162  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/SHA256SUMS.part
 1d638d329d2d23324aa8cb491b5fa9cfc59e7998cc95f6c47540ae34767316764  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/bitcoin-c99a1ecc52d8-aarch64-linux-gnu-debug.tar.gz
 2ce57cfd97109e2cebc91936653e291073230e9da1197d60edd6703c2c8e4961a  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/bitcoin-c99a1ecc52d8-aarch64-linux-gnu.tar.gz
 3917770f42ca696048c11ce3e7a100b9cc59cbe482878bccf11c1d84e327e61a7  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/SHA256SUMS.part
 4a5e6ea54cb58941b2dceaa036495c65d83e3ae65b806af7124718df428206b38  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf-debug.tar.gz
 5c035aa6599aeab74445bcf15966886fafb1e4397d6f4e66e4e5ff05770f3af94  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf.tar.gz
 6a48654be85a540b393fefa87f75f10fcb1652cfb824eb5cb32da9aeffdbe9843  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/SHA256SUMS.part
 78cf48b00d6cbe7bc203043dde34ca51a82e25bc3b4e91802730209a90637a8ed  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.dmg
 86ff1c1f0fbf64303421f71a91c14020554ab96673f2461aae80ef2249a846ebd  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.tar.gz
 90df1d3d95759b26a9cc448dba29291c5d940e9faf9a79c7658775285498809eb  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin.tar.gz
103556666828f68205b8b82771a7046e10e10cf31bd894c6ed389bbaa2397b917c  guix-build-c99a1ecc52d8/output/dist-archive/bitcoin-c99a1ecc52d8.tar.gz
11970390a724f2b9e40731942a427a5893a489fdac9c970a5a2f52cd684c4e2bcb  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/SHA256SUMS.part
12c281257c8f9466aca2d68971ff8cd219288f62a601396d4f8f1497a4404fac11  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu-debug.tar.gz
1379e68965a50907f4c3382143f7c58dd71b927f87fe80a62c06b434232d764b93  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu.tar.gz
14b65be16861b1d11225f5497c58adbc585bb1b192096018f006ae11c851235d65  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/SHA256SUMS.part
155edb31e2d6702ab3e24189db1a1151bb40dc009a2d6f196eca19124947400a24  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu-debug.tar.gz
16d6e0414082f91a443bcfee9647f8cf9ad09d13fdf6acd6070866505b420db8eb  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu.tar.gz
1789edc84604ea960dff7598999cabb14e2dbd7d585021acfd3065e0e8ebb77786  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/SHA256SUMS.part
18091d582c7797792ab62653e61aa2192db768fb624615a2393284d7fad2a643bd  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu-debug.tar.gz
19fcc20f8f7e2889f544e10d77e714496fd44e3dfdb2d1919b12ec5d41aeb9a8ac  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu.tar.gz
204b736dbfca1c0eb37390d791a9cdfe12aa3111f65a0c92775cd68044696f5b17  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/SHA256SUMS.part
21dc51605e5c0f25e25aa1672471c2096e2c95f59d9c7adbee81714ad33da559a0  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.dmg
2296a7b7b0144049215a4e51a01c4c90dcbf8469590a380fe2b1faca652f80c545  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.tar.gz
238d0a9e33e02db7c234d3cff2cf8489a93ae83a0efb9c02dd0a4a43b1615d5f75  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin.tar.gz
2460e21c7d8eb8422bf3280d63fca7e3983b8d62949b46f582e483bfadf42d9838  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/SHA256SUMS.part
2593cce61cbd237e8d63a7b60fd7c0611834d2587899f241c80ad3e7c31ce9f5c6  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu-debug.tar.gz
2686e6d35ced80385dbebc9d0b4e443a86d9b5dfecff4928fccb4331fc37b7c8bc  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu.tar.gz
27cdf1045063b8ad18735d623fa45867a3b6fbcabefac6ef763ad4d04e956ef2b7  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/SHA256SUMS.part
28e032c517396d818f2a5f7a2f8453966de37a1734f2f2d95ad0e39358647f5068  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-debug.zip
29b09cc098672215e810b4a11df0ebce760f716546d76745367898bb1850a6a8b4  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-setup-unsigned.exe
30a27108b306be7099a426bf2e02009b7271c8c04394bf5c5aa4f592b69be77fb5  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-unsigned.tar.gz
31a682fe68b09de24e1bdef49836d4fc5080e779fac66a73c9dcafb8fc6126af3a  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64.zip

    Guix Build (arm64):

     0917770f42ca696048c11ce3e7a100b9cc59cbe482878bccf11c1d84e327e61a7  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/SHA256SUMS.part
 1a5e6ea54cb58941b2dceaa036495c65d83e3ae65b806af7124718df428206b38  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf-debug.tar.gz
 2c035aa6599aeab74445bcf15966886fafb1e4397d6f4e66e4e5ff05770f3af94  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf.tar.gz
 31a306a6dc68183f210aa56c6eb07785654e1c2e21ac9e2bd866d8fdec34a527c  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/SHA256SUMS.part
 47da1d43adabf4725b6244df9625b683f47669949ffbcf37184619e431151138f  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.dmg
 5ac38ae4188927e2e0b0d3bdaae9d314424e4f7e3ab2a90c6cbedc8a985ae237e  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.tar.gz
 61b1653f3b3dff1bf5737223a4e5c2b674b700baba4ef594e3c7a040b5e81f3f6  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin.tar.gz
 73556666828f68205b8b82771a7046e10e10cf31bd894c6ed389bbaa2397b917c  guix-build-c99a1ecc52d8/output/dist-archive/bitcoin-c99a1ecc52d8.tar.gz
 8970390a724f2b9e40731942a427a5893a489fdac9c970a5a2f52cd684c4e2bcb  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/SHA256SUMS.part
 9c281257c8f9466aca2d68971ff8cd219288f62a601396d4f8f1497a4404fac11  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu-debug.tar.gz
1079e68965a50907f4c3382143f7c58dd71b927f87fe80a62c06b434232d764b93  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu.tar.gz
11b65be16861b1d11225f5497c58adbc585bb1b192096018f006ae11c851235d65  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/SHA256SUMS.part
125edb31e2d6702ab3e24189db1a1151bb40dc009a2d6f196eca19124947400a24  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu-debug.tar.gz
13d6e0414082f91a443bcfee9647f8cf9ad09d13fdf6acd6070866505b420db8eb  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu.tar.gz
1489edc84604ea960dff7598999cabb14e2dbd7d585021acfd3065e0e8ebb77786  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/SHA256SUMS.part
15091d582c7797792ab62653e61aa2192db768fb624615a2393284d7fad2a643bd  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu-debug.tar.gz
16fcc20f8f7e2889f544e10d77e714496fd44e3dfdb2d1919b12ec5d41aeb9a8ac  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu.tar.gz
174b736dbfca1c0eb37390d791a9cdfe12aa3111f65a0c92775cd68044696f5b17  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/SHA256SUMS.part
18dc51605e5c0f25e25aa1672471c2096e2c95f59d9c7adbee81714ad33da559a0  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.dmg
1996a7b7b0144049215a4e51a01c4c90dcbf8469590a380fe2b1faca652f80c545  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.tar.gz
208d0a9e33e02db7c234d3cff2cf8489a93ae83a0efb9c02dd0a4a43b1615d5f75  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin.tar.gz
2160e21c7d8eb8422bf3280d63fca7e3983b8d62949b46f582e483bfadf42d9838  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/SHA256SUMS.part
2293cce61cbd237e8d63a7b60fd7c0611834d2587899f241c80ad3e7c31ce9f5c6  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu-debug.tar.gz
2386e6d35ced80385dbebc9d0b4e443a86d9b5dfecff4928fccb4331fc37b7c8bc  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu.tar.gz
24cdf1045063b8ad18735d623fa45867a3b6fbcabefac6ef763ad4d04e956ef2b7  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/SHA256SUMS.part
25e032c517396d818f2a5f7a2f8453966de37a1734f2f2d95ad0e39358647f5068  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-debug.zip
26b09cc098672215e810b4a11df0ebce760f716546d76745367898bb1850a6a8b4  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-setup-unsigned.exe
27a27108b306be7099a426bf2e02009b7271c8c04394bf5c5aa4f592b69be77fb5  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-unsigned.tar.gz
28a682fe68b09de24e1bdef49836d4fc5080e779fac66a73c9dcafb8fc6126af3a  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64.zip
  2. fanquake added the label Build system on Jun 27, 2022
  3. fanquake added the label DrahtBot Guix build requested on Jun 27, 2022
  4. DrahtBot commented at 4:15 pm on June 27, 2022: contributor

    The following sections might be updated with supplementary metadata relevant to reviewers and maintainers.

    Conflicts

    Reviewers, this pull request conflicts with the following ones:

    • #25573 ([POC] guix: produce a fully -static-pie x86_64 bitcoind using GCC and glibc by fanquake)
    • #24123 ([POC] build: enable Pointer Authentication and Branch Target Identification for aarch64 (Linux) by fanquake)

    If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first.

  5. jarolrod commented at 2:42 am on June 28, 2022: member

    GUIX hashes

    x86:

     0$ find guix-build-$(git rev-parse --short=12 HEAD)/output/ -type f -print0 | env LC_ALL=C sort -z | xargs -r0 sha256sum
 1
 28de8ceac0f34729f17c64cd3b788d8e73e8a29cf51ec88ae33e04b1002f07162  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/SHA256SUMS.part
 3d638d329d2d23324aa8cb491b5fa9cfc59e7998cc95f6c47540ae34767316764  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/bitcoin-c99a1ecc52d8-aarch64-linux-gnu-debug.tar.gz
 4ce57cfd97109e2cebc91936653e291073230e9da1197d60edd6703c2c8e4961a  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/bitcoin-c99a1ecc52d8-aarch64-linux-gnu.tar.gz
 5917770f42ca696048c11ce3e7a100b9cc59cbe482878bccf11c1d84e327e61a7  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/SHA256SUMS.part
 6a5e6ea54cb58941b2dceaa036495c65d83e3ae65b806af7124718df428206b38  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf-debug.tar.gz
 7c035aa6599aeab74445bcf15966886fafb1e4397d6f4e66e4e5ff05770f3af94  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf.tar.gz
 8a48654be85a540b393fefa87f75f10fcb1652cfb824eb5cb32da9aeffdbe9843  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/SHA256SUMS.part
 98cf48b00d6cbe7bc203043dde34ca51a82e25bc3b4e91802730209a90637a8ed  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.dmg
106ff1c1f0fbf64303421f71a91c14020554ab96673f2461aae80ef2249a846ebd  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.tar.gz
110df1d3d95759b26a9cc448dba29291c5d940e9faf9a79c7658775285498809eb  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin.tar.gz
123556666828f68205b8b82771a7046e10e10cf31bd894c6ed389bbaa2397b917c  guix-build-c99a1ecc52d8/output/dist-archive/bitcoin-c99a1ecc52d8.tar.gz
13970390a724f2b9e40731942a427a5893a489fdac9c970a5a2f52cd684c4e2bcb  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/SHA256SUMS.part
14c281257c8f9466aca2d68971ff8cd219288f62a601396d4f8f1497a4404fac11  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu-debug.tar.gz
1579e68965a50907f4c3382143f7c58dd71b927f87fe80a62c06b434232d764b93  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu.tar.gz
16b65be16861b1d11225f5497c58adbc585bb1b192096018f006ae11c851235d65  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/SHA256SUMS.part
175edb31e2d6702ab3e24189db1a1151bb40dc009a2d6f196eca19124947400a24  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu-debug.tar.gz
18d6e0414082f91a443bcfee9647f8cf9ad09d13fdf6acd6070866505b420db8eb  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu.tar.gz
1989edc84604ea960dff7598999cabb14e2dbd7d585021acfd3065e0e8ebb77786  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/SHA256SUMS.part
20091d582c7797792ab62653e61aa2192db768fb624615a2393284d7fad2a643bd  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu-debug.tar.gz
21fcc20f8f7e2889f544e10d77e714496fd44e3dfdb2d1919b12ec5d41aeb9a8ac  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu.tar.gz
224b736dbfca1c0eb37390d791a9cdfe12aa3111f65a0c92775cd68044696f5b17  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/SHA256SUMS.part
23dc51605e5c0f25e25aa1672471c2096e2c95f59d9c7adbee81714ad33da559a0  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.dmg
2496a7b7b0144049215a4e51a01c4c90dcbf8469590a380fe2b1faca652f80c545  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.tar.gz
258d0a9e33e02db7c234d3cff2cf8489a93ae83a0efb9c02dd0a4a43b1615d5f75  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin.tar.gz
2660e21c7d8eb8422bf3280d63fca7e3983b8d62949b46f582e483bfadf42d9838  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/SHA256SUMS.part
2793cce61cbd237e8d63a7b60fd7c0611834d2587899f241c80ad3e7c31ce9f5c6  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu-debug.tar.gz
2886e6d35ced80385dbebc9d0b4e443a86d9b5dfecff4928fccb4331fc37b7c8bc  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu.tar.gz
29cdf1045063b8ad18735d623fa45867a3b6fbcabefac6ef763ad4d04e956ef2b7  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/SHA256SUMS.part
30e032c517396d818f2a5f7a2f8453966de37a1734f2f2d95ad0e39358647f5068  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-debug.zip
31b09cc098672215e810b4a11df0ebce760f716546d76745367898bb1850a6a8b4  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-setup-unsigned.exe
32a27108b306be7099a426bf2e02009b7271c8c04394bf5c5aa4f592b69be77fb5  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-unsigned.tar.gz
33a682fe68b09de24e1bdef49836d4fc5080e779fac66a73c9dcafb8fc6126af3a  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64.zip

    arm64:

     0$ env HOSTS='arm-linux-gnueabihf arm64-apple-darwin powerpc64-linux-gnu powerpc64le-linux-gnu riscv64-linux-gnu x86_64-apple-darwin x86_64-linux-gnu x86_64-w64-mingw32' ./contrib/guix/guix-build
 1$ find guix-build-$(git rev-parse --short=12 HEAD)/output/ -type f -print0 | env LC_ALL=C sort -z | xargs -r0 sha256sum
 2
 3917770f42ca696048c11ce3e7a100b9cc59cbe482878bccf11c1d84e327e61a7  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/SHA256SUMS.part
 4a5e6ea54cb58941b2dceaa036495c65d83e3ae65b806af7124718df428206b38  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf-debug.tar.gz
 5c035aa6599aeab74445bcf15966886fafb1e4397d6f4e66e4e5ff05770f3af94  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf.tar.gz
 61a306a6dc68183f210aa56c6eb07785654e1c2e21ac9e2bd866d8fdec34a527c  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/SHA256SUMS.part
 77da1d43adabf4725b6244df9625b683f47669949ffbcf37184619e431151138f  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.dmg
 8ac38ae4188927e2e0b0d3bdaae9d314424e4f7e3ab2a90c6cbedc8a985ae237e  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.tar.gz
 91b1653f3b3dff1bf5737223a4e5c2b674b700baba4ef594e3c7a040b5e81f3f6  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin.tar.gz
103556666828f68205b8b82771a7046e10e10cf31bd894c6ed389bbaa2397b917c  guix-build-c99a1ecc52d8/output/dist-archive/bitcoin-c99a1ecc52d8.tar.gz
11970390a724f2b9e40731942a427a5893a489fdac9c970a5a2f52cd684c4e2bcb  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/SHA256SUMS.part
12c281257c8f9466aca2d68971ff8cd219288f62a601396d4f8f1497a4404fac11  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu-debug.tar.gz
1379e68965a50907f4c3382143f7c58dd71b927f87fe80a62c06b434232d764b93  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu.tar.gz
14b65be16861b1d11225f5497c58adbc585bb1b192096018f006ae11c851235d65  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/SHA256SUMS.part
155edb31e2d6702ab3e24189db1a1151bb40dc009a2d6f196eca19124947400a24  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu-debug.tar.gz
16d6e0414082f91a443bcfee9647f8cf9ad09d13fdf6acd6070866505b420db8eb  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu.tar.gz
1789edc84604ea960dff7598999cabb14e2dbd7d585021acfd3065e0e8ebb77786  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/SHA256SUMS.part
18091d582c7797792ab62653e61aa2192db768fb624615a2393284d7fad2a643bd  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu-debug.tar.gz
19fcc20f8f7e2889f544e10d77e714496fd44e3dfdb2d1919b12ec5d41aeb9a8ac  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu.tar.gz
204b736dbfca1c0eb37390d791a9cdfe12aa3111f65a0c92775cd68044696f5b17  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/SHA256SUMS.part
21dc51605e5c0f25e25aa1672471c2096e2c95f59d9c7adbee81714ad33da559a0  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.dmg
2296a7b7b0144049215a4e51a01c4c90dcbf8469590a380fe2b1faca652f80c545  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.tar.gz
238d0a9e33e02db7c234d3cff2cf8489a93ae83a0efb9c02dd0a4a43b1615d5f75  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin.tar.gz
2460e21c7d8eb8422bf3280d63fca7e3983b8d62949b46f582e483bfadf42d9838  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/SHA256SUMS.part
2593cce61cbd237e8d63a7b60fd7c0611834d2587899f241c80ad3e7c31ce9f5c6  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu-debug.tar.gz
2686e6d35ced80385dbebc9d0b4e443a86d9b5dfecff4928fccb4331fc37b7c8bc  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu.tar.gz
27cdf1045063b8ad18735d623fa45867a3b6fbcabefac6ef763ad4d04e956ef2b7  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/SHA256SUMS.part
28e032c517396d818f2a5f7a2f8453966de37a1734f2f2d95ad0e39358647f5068  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-debug.zip
29b09cc098672215e810b4a11df0ebce760f716546d76745367898bb1850a6a8b4  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-setup-unsigned.exe
30a27108b306be7099a426bf2e02009b7271c8c04394bf5c5aa4f592b69be77fb5  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-unsigned.tar.gz
31a682fe68b09de24e1bdef49836d4fc5080e779fac66a73c9dcafb8fc6126af3a  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64.zip
  6. hebasto commented at 5:27 am on June 28, 2022: member

    Guix builds on x86_64:

     0$ find guix-build-$(git rev-parse --short=12 HEAD)/output/ -type f -print0 | env LC_ALL=C sort -z | xargs -r0 sha256sum
 1cfc47615d8e310f76e867c17ea263e4510d12226085442efe3f98dea3a002adb  guix-build-189045e34b1d/output/aarch64-linux-gnu/SHA256SUMS.part
 22c6dbdb3d8e91ac2bc98c96c102b3c76f6a36bccf762fc26a62ed2cf57a63e8f  guix-build-189045e34b1d/output/aarch64-linux-gnu/bitcoin-189045e34b1d-aarch64-linux-gnu-debug.tar.gz
 36cd624eb658db9a27d6503efea8e592557c1a0abe5463af905da416c12912ee8  guix-build-189045e34b1d/output/aarch64-linux-gnu/bitcoin-189045e34b1d-aarch64-linux-gnu.tar.gz
 445c7361159f6de00c147bf4ed179d8bc877278a07ce29eca7b9150f2139f9dc7  guix-build-189045e34b1d/output/arm-linux-gnueabihf/SHA256SUMS.part
 5a2cad7e2414aa817de9d0c66b63dbb58f00135bb3afa120160b7366e219067e8  guix-build-189045e34b1d/output/arm-linux-gnueabihf/bitcoin-189045e34b1d-arm-linux-gnueabihf-debug.tar.gz
 6239f41d9be7f3ed9bec62fc33a1f98348260874dc04b2bdfebf3ca1459687cf4  guix-build-189045e34b1d/output/arm-linux-gnueabihf/bitcoin-189045e34b1d-arm-linux-gnueabihf.tar.gz
 7f1968b115cf7d195900f439d4d27d1b0e0ef534b9573429c6aff75671b7c5899  guix-build-189045e34b1d/output/arm64-apple-darwin/SHA256SUMS.part
 8ebc97bb522aba146d84bdf560c8b6180b4d75fee4b634ec5b013f5a803959be5  guix-build-189045e34b1d/output/arm64-apple-darwin/bitcoin-189045e34b1d-arm64-apple-darwin-unsigned.dmg
 925976f5ba935672919ef6096a60e8c8941a81a4c14aa4e022e9a4027793f5bcf  guix-build-189045e34b1d/output/arm64-apple-darwin/bitcoin-189045e34b1d-arm64-apple-darwin-unsigned.tar.gz
10d3ce7eb40ae280e1aad204be1c742430670947c17b2e9e68f33368d15a32d07f  guix-build-189045e34b1d/output/arm64-apple-darwin/bitcoin-189045e34b1d-arm64-apple-darwin.tar.gz
11dca866ae54fec9ecfa1bf26d136f6e2dc5ff1697588336f46e38c264e42ca74f  guix-build-189045e34b1d/output/dist-archive/bitcoin-189045e34b1d.tar.gz
12dfd313d056626c38f1de0afd71fbbeca8e92da6979322d0800206767d6af1051  guix-build-189045e34b1d/output/powerpc64-linux-gnu/SHA256SUMS.part
13e376b42964f0ddc76e40e336ddd383a9cb49b62f5a9702dc1270e1270c697a2e  guix-build-189045e34b1d/output/powerpc64-linux-gnu/bitcoin-189045e34b1d-powerpc64-linux-gnu-debug.tar.gz
14c3ce025e0e4ad2d87d9d45a0a2d4a6dee4458b11e3e6dd605110aa8b568f3606  guix-build-189045e34b1d/output/powerpc64-linux-gnu/bitcoin-189045e34b1d-powerpc64-linux-gnu.tar.gz
15049508c870319b2486c535a772c7031d526f6fed797d76d0e8a89f20cd6209ed  guix-build-189045e34b1d/output/powerpc64le-linux-gnu/SHA256SUMS.part
16e8ea96b13d59aa36240fe3db74bb03508832d0b69ad931541352e14ca53916c6  guix-build-189045e34b1d/output/powerpc64le-linux-gnu/bitcoin-189045e34b1d-powerpc64le-linux-gnu-debug.tar.gz
17127cd17dac34f61961a8478873d0f68774698868902e5ba2762f55ca21801ba0  guix-build-189045e34b1d/output/powerpc64le-linux-gnu/bitcoin-189045e34b1d-powerpc64le-linux-gnu.tar.gz
182a6bd0ea4e72b8b09528e0a3871181fb2e0a825a20f7852f0d8afe674d5bb726  guix-build-189045e34b1d/output/riscv64-linux-gnu/SHA256SUMS.part
19d2142e44b07d3c54583d62db4b249a04817df322ebd9a5e6173ea9a6d7682f70  guix-build-189045e34b1d/output/riscv64-linux-gnu/bitcoin-189045e34b1d-riscv64-linux-gnu-debug.tar.gz
20089598ff876a4fc4e674876f48ade77254c6179c58ca879dd6dcd1dd7704f0fd  guix-build-189045e34b1d/output/riscv64-linux-gnu/bitcoin-189045e34b1d-riscv64-linux-gnu.tar.gz
215436aac4c39dfa6e8c1e2cd58fa80fbf132ea96fb802d6587060b866dc4d7a44  guix-build-189045e34b1d/output/x86_64-apple-darwin/SHA256SUMS.part
22533d2c132c44ef1753ccd24db9e5d84e87544744529100547dcc58c26e3df2a7  guix-build-189045e34b1d/output/x86_64-apple-darwin/bitcoin-189045e34b1d-x86_64-apple-darwin-unsigned.dmg
23b1b4fbba8859535cdff100d5a2fc9e38fd015f962ba6e7c2b81fe098715e63f1  guix-build-189045e34b1d/output/x86_64-apple-darwin/bitcoin-189045e34b1d-x86_64-apple-darwin-unsigned.tar.gz
243420fd1926957dc88744bf69b9f97c22e28e118bd4f77c7585dbc3c5c66c43d9  guix-build-189045e34b1d/output/x86_64-apple-darwin/bitcoin-189045e34b1d-x86_64-apple-darwin.tar.gz
252904c29f2f3ed31774b539bf82812b53e7e92585daa830b32ac592688bfa78d5  guix-build-189045e34b1d/output/x86_64-linux-gnu/SHA256SUMS.part
2629b651047ba9e8a0b217f2ac00d60281846fc3fe0aa052b78f8d41449d1f61b9  guix-build-189045e34b1d/output/x86_64-linux-gnu/bitcoin-189045e34b1d-x86_64-linux-gnu-debug.tar.gz
2715e57c7563d1488c3951c214ee1e73c3fbeca5eff4cbe6047c1b7d74f503ab4d  guix-build-189045e34b1d/output/x86_64-linux-gnu/bitcoin-189045e34b1d-x86_64-linux-gnu.tar.gz
28e1c9d6a32570d69950f96c1e9dcd2bbb6940591105e82fb0848d5ff3f159be7a  guix-build-189045e34b1d/output/x86_64-w64-mingw32/SHA256SUMS.part
296c48dea1fa5d38e993eb23bc00479950fa8659096c12cd8e2f112fb403a44b70  guix-build-189045e34b1d/output/x86_64-w64-mingw32/bitcoin-189045e34b1d-win64-debug.zip
30a0414b5b5baa14aecd310f9dc4995ddfec616baf583eceae5ba1970e00b23776  guix-build-189045e34b1d/output/x86_64-w64-mingw32/bitcoin-189045e34b1d-win64-setup-unsigned.exe
31ade5c49bfbc3725742bad7d2988a3a7f667c430c5e22e1c3a4dacaca828e0ed0  guix-build-189045e34b1d/output/x86_64-w64-mingw32/bitcoin-189045e34b1d-win64-unsigned.tar.gz
325eb5e59a3f1c4b1c62311f2510d4f67e6595ce7efac7a49dcdfc5292af8f0e75  guix-build-189045e34b1d/output/x86_64-w64-mingw32/bitcoin-189045e34b1d-win64.zip
  7. laanwj commented at 7:59 am on June 28, 2022: member
    Concept ACK on enabling hardening in the toolchain and libc where possible. This is no substitute for doing so in bitcoin’s build itself (because it’s still important when building manually), but is a good way for defense in depth. It also makes sure all dependencies are built with hardening.
  8. DrahtBot commented at 4:08 am on June 29, 2022: contributor

    Guix builds

    File commit 2111f32f2a6998531871e7792b5208992868ba7f(master) commit 54ae90141f4f16f48018190e23b928fbe417cca8(master and this pull)
    SHA256SUMS.part 6b6d88ae06d04799... f87fd6aa69fe4432...
    *-aarch64-linux-gnu-debug.tar.gz f29aebd0a6dc0fc0... f697da297cfd3a84...
    *-aarch64-linux-gnu.tar.gz f36ee5b656153652... f10a1b679002fc43...
    *-arm-linux-gnueabihf-debug.tar.gz a9e0853cb53ed4d3... 1607ec3aa1b09ceb...
    *-arm-linux-gnueabihf.tar.gz e492eb474249ba99... de5ace9e1bccb8bb...
    *-arm64-apple-darwin-unsigned.dmg e5e481bed928b9a6... 498ec30bcd340427...
    *-arm64-apple-darwin-unsigned.tar.gz 18ee3cf458d26010... cac8305c2e778417...
    *-arm64-apple-darwin.tar.gz 27863b5f4e2b8c6a... d52527de3be3e2b8...
    *-powerpc64-linux-gnu-debug.tar.gz 650e507a2adcaf86... 211d9179e057da24...
    *-powerpc64-linux-gnu.tar.gz bff9c32db364fe99... 3c6661dd41cbe395...
    *-powerpc64le-linux-gnu-debug.tar.gz c6a92ba8062e3b06... 1258ffdf19d265ec...
    *-powerpc64le-linux-gnu.tar.gz 94910b6977c11829... 054457a51458deee...
    *-riscv64-linux-gnu-debug.tar.gz 65bfcdd28d25bd3c... 8bb92cff7691226c...
    *-riscv64-linux-gnu.tar.gz 8cea54e73460fc8e... ecf97d69de22a072...
    *-win64-debug.zip 14b962b6f54a1935... fd30f7f53c6863c0...
    *-win64-setup-unsigned.exe 05761e6d60e6297d... bbc6d45724370a19...
    *-win64-unsigned.tar.gz 9acd95477005eed2... 7d27ec8c242f5302...
    *-win64.zip fb3305e6ef089ee9... 460e06934be6f06d...
    *-x86_64-apple-darwin-unsigned.dmg f7a9132173d15b26... 154306a947d2b312...
    *-x86_64-apple-darwin-unsigned.tar.gz a7a44e66c9463128... 9bc9d54a74dafaf9...
    *-x86_64-apple-darwin.tar.gz fa31ba0530be56b2... 3e39cd1d9ddaf3d1...
    *-x86_64-linux-gnu-debug.tar.gz 9c7e46d4c7c3deee... 0436dba5bfaeaec0...
    *-x86_64-linux-gnu.tar.gz 2dd2f6d3d32ff8cb... 4edbc4fbb1ff863c...
    *.tar.gz 67733080b97377a4... fdb4b15cdd87afa0...
    guix_build.log cc5c7529de008059... d39b3fb37ef08b58...
    guix_build.log.diff db77dc9a1e56a2ca...
  9. DrahtBot removed the label DrahtBot Guix build requested on Jun 29, 2022
  10. fanquake force-pushed on Jun 29, 2022
  11. hebasto commented at 8:33 am on June 30, 2022: member

    Guix builds on x86_64:

     0$ find guix-build-$(git rev-parse --short=12 HEAD)/output/ -type f -print0 | env LC_ALL=C sort -z | xargs -r0 sha256sum
 1884c9c9ae0b0dc214a49e65d5d000137d5387ec409eb723e91905422083e5363  guix-build-0fe391736b7a/output/aarch64-linux-gnu/SHA256SUMS.part
 2758f17be002cfa907f3832bfb2af0b4694f22a0daeefdf71ca51fd82416bcfa6  guix-build-0fe391736b7a/output/aarch64-linux-gnu/bitcoin-0fe391736b7a-aarch64-linux-gnu-debug.tar.gz
 3a40102e9893848461ce82420a398553f70f12b63a4b32cbabf3e69ee0d4c79d2  guix-build-0fe391736b7a/output/aarch64-linux-gnu/bitcoin-0fe391736b7a-aarch64-linux-gnu.tar.gz
 4404ce7f37b603c2076fc52527b6e1781e2bd6f43ff3bf2c3f7d5bf26075f2bfb  guix-build-0fe391736b7a/output/arm-linux-gnueabihf/SHA256SUMS.part
 509eb9dc0947ce913be951c36f606b64622a3521aac064f6b8b3f4a5c24fa8c86  guix-build-0fe391736b7a/output/arm-linux-gnueabihf/bitcoin-0fe391736b7a-arm-linux-gnueabihf-debug.tar.gz
 66bc244f72cd5c8b361602e878dc78944c9a35a2666cba6db4fa3c34e09c31d6d  guix-build-0fe391736b7a/output/arm-linux-gnueabihf/bitcoin-0fe391736b7a-arm-linux-gnueabihf.tar.gz
 72e27706ccea308312906276be29db642744874eaa83f3858f6806604254eb09e  guix-build-0fe391736b7a/output/arm64-apple-darwin/SHA256SUMS.part
 84205e54af806c6defa34afe7eac296a4e258d7d8634fa7f4e36830a567aaf24c  guix-build-0fe391736b7a/output/arm64-apple-darwin/bitcoin-0fe391736b7a-arm64-apple-darwin-unsigned.dmg
 94038aa34120901d309a7b67fe5086d1eb8c1ebd26291802e82459f9576996f9c  guix-build-0fe391736b7a/output/arm64-apple-darwin/bitcoin-0fe391736b7a-arm64-apple-darwin-unsigned.tar.gz
101fced2d3ebd5a76239e83cb291fd144849cabd14a9a9591afaeacff7ecc3472b  guix-build-0fe391736b7a/output/arm64-apple-darwin/bitcoin-0fe391736b7a-arm64-apple-darwin.tar.gz
11a213fef4fede1b1d803ebc3812d8812d31bbb42b30d41d9c138ca3aa295c292d  guix-build-0fe391736b7a/output/dist-archive/bitcoin-0fe391736b7a.tar.gz
123c8481f36e0c0aeef8386bef0e908e851bbae44f827961d62d00b1306b9224bd  guix-build-0fe391736b7a/output/powerpc64-linux-gnu/SHA256SUMS.part
13f3db030e641b93b91c3ef14eb01eb5882abc55fac0ea30a30253a259dcd43ff3  guix-build-0fe391736b7a/output/powerpc64-linux-gnu/bitcoin-0fe391736b7a-powerpc64-linux-gnu-debug.tar.gz
14112c0acf7de22354ebe61097a404e54a1e0e7a135deca881d89c0c7fbd721a0e  guix-build-0fe391736b7a/output/powerpc64-linux-gnu/bitcoin-0fe391736b7a-powerpc64-linux-gnu.tar.gz
15bb4300faf6cb077c2945555db32f5b4fda45f30e567888ba7422d0ff69754c93  guix-build-0fe391736b7a/output/powerpc64le-linux-gnu/SHA256SUMS.part
168190d871c452274ec2c0f93000f4fbfd948a687e96e59d8259d9163eee3b67f7  guix-build-0fe391736b7a/output/powerpc64le-linux-gnu/bitcoin-0fe391736b7a-powerpc64le-linux-gnu-debug.tar.gz
17cf8c72403ef736a8f038f3b81b86ba6cee7bdd833f7a0fb237c37887305159e2  guix-build-0fe391736b7a/output/powerpc64le-linux-gnu/bitcoin-0fe391736b7a-powerpc64le-linux-gnu.tar.gz
189b29da599b7186aa1c31b77d24756a328ad0504740a445d46da71f8521a36a8c  guix-build-0fe391736b7a/output/riscv64-linux-gnu/SHA256SUMS.part
19145adf8f7071c83f79767a5f56017615dc11576cc663302292561f43927f2867  guix-build-0fe391736b7a/output/riscv64-linux-gnu/bitcoin-0fe391736b7a-riscv64-linux-gnu-debug.tar.gz
20c1902a800178798333daf39f3115ac122d01b9c916cbaaa483eade61030b9144  guix-build-0fe391736b7a/output/riscv64-linux-gnu/bitcoin-0fe391736b7a-riscv64-linux-gnu.tar.gz
21cc80ece1a91c921e0e56b7fdecf4899109f674dcb5a506dc72739942eda53efb  guix-build-0fe391736b7a/output/x86_64-apple-darwin/SHA256SUMS.part
2226f732866531d2a12b3f1a198f38db1b65826d80d64cbe10d55080946a2290fb  guix-build-0fe391736b7a/output/x86_64-apple-darwin/bitcoin-0fe391736b7a-x86_64-apple-darwin-unsigned.dmg
23efb00bed76403f3b5208f40fd27f53f6e37a49fb8ad13ce5060a560ad22c722b  guix-build-0fe391736b7a/output/x86_64-apple-darwin/bitcoin-0fe391736b7a-x86_64-apple-darwin-unsigned.tar.gz
245714b9de37857b682e9909078cac76d410db14d226901e39144b30ec4c900200  guix-build-0fe391736b7a/output/x86_64-apple-darwin/bitcoin-0fe391736b7a-x86_64-apple-darwin.tar.gz
25fe96584f0f1dbb8fa543d01f5945417797c431e32fac14556f6c54cb583fc69a  guix-build-0fe391736b7a/output/x86_64-linux-gnu/SHA256SUMS.part
26f0de7e2d212bc46c8dd5ed9aa46b0ce6845eef0a03a55b3270fd09dd13871922  guix-build-0fe391736b7a/output/x86_64-linux-gnu/bitcoin-0fe391736b7a-x86_64-linux-gnu-debug.tar.gz
2795895058ac48cfd6e06f837d5c18a4f9edeaa672772fbefbd6b0bccd003ba06e  guix-build-0fe391736b7a/output/x86_64-linux-gnu/bitcoin-0fe391736b7a-x86_64-linux-gnu.tar.gz
281240448c8bc0d27102daefe9995e9ff3261c818c4acea935e78bc43901741bd7  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/SHA256SUMS.part
2942fe418e85db542d4e899c48d37305a9f3ff4cdcf35a73e43195ce88d2339e28  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/bitcoin-0fe391736b7a-win64-debug.zip
30002903664b3d313f7d3e371b0fcea294d4c4915a7097e8ea9aacf2bd4cf44634  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/bitcoin-0fe391736b7a-win64-setup-unsigned.exe
31d4d86dad7d5af60e388a9f4e3976eb16ef1fcb6f487c52cc690322029526007c  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/bitcoin-0fe391736b7a-win64-unsigned.tar.gz
3220728029b07d3292fe1d9bbb56a7be117cd727428a0470dd55d82cc018db3dde  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/bitcoin-0fe391736b7a-win64.zip
  12. hebasto commented at 6:03 pm on July 1, 2022: member

    Guix builds on arm64:

     0# find guix-build-$(git rev-parse --short=12 HEAD)/output/ -type f -print0 | env LC_ALL=C sort -z | xargs -r0 sha256sum
 1b044f6101f75078aecf13dfdc15897287ac014a0824f5368c378deeec2f38544  guix-build-0fe391736b7a/output/arm-linux-gnueabihf/SHA256SUMS.part
 20f04334056ae8f22416fa310fd935889085ac9cfc16da7023acf21a626cc1ad7  guix-build-0fe391736b7a/output/arm-linux-gnueabihf/bitcoin-0fe391736b7a-arm-linux-gnueabihf-debug.tar.gz
 30bded62506246a493c6b741bc3c893b0c1ac79f46f087a89f8c8c9fefa1dddc5  guix-build-0fe391736b7a/output/arm-linux-gnueabihf/bitcoin-0fe391736b7a-arm-linux-gnueabihf.tar.gz
 43bb677f4f3110e8a339b276d5b4b2cf2e5849302ace09c4ee7b435ab05fa19dd  guix-build-0fe391736b7a/output/arm64-apple-darwin/SHA256SUMS.part
 56bb01c4df38f25db9d1a1e0115386d0d460aa5f48a5808a530b0468135e7a050  guix-build-0fe391736b7a/output/arm64-apple-darwin/bitcoin-0fe391736b7a-arm64-apple-darwin-unsigned.dmg
 692748be9fd297fdac84c4b7cdf94c53ddfb6b181efae0bdaac6756c6736bd101  guix-build-0fe391736b7a/output/arm64-apple-darwin/bitcoin-0fe391736b7a-arm64-apple-darwin-unsigned.tar.gz
 75473c27c223d7a8efc62fff50cd4c489d9a3a76f38ece72fff3ad2baf8edaf25  guix-build-0fe391736b7a/output/arm64-apple-darwin/bitcoin-0fe391736b7a-arm64-apple-darwin.tar.gz
 8a213fef4fede1b1d803ebc3812d8812d31bbb42b30d41d9c138ca3aa295c292d  guix-build-0fe391736b7a/output/dist-archive/bitcoin-0fe391736b7a.tar.gz
 9c2a96346c9ab605ec5bad2aa26e8cfe7cbcc1acd1e345791b8e150de5573d1ab  guix-build-0fe391736b7a/output/powerpc64-linux-gnu/SHA256SUMS.part
10d99814e4970a8d7d37a7d40465ac4eef6a5ebb2f03ec4d271f0fd99c6e2d1faa  guix-build-0fe391736b7a/output/powerpc64-linux-gnu/bitcoin-0fe391736b7a-powerpc64-linux-gnu-debug.tar.gz
11ed66dff700f9c2fbf680f7eb77140fe5cd0879446c7a307a92e56c3efbfd01e9  guix-build-0fe391736b7a/output/powerpc64-linux-gnu/bitcoin-0fe391736b7a-powerpc64-linux-gnu.tar.gz
12511e512cbe313043daa677bdce0b96920a6120666dcd5192734bc99eec88feb6  guix-build-0fe391736b7a/output/powerpc64le-linux-gnu/SHA256SUMS.part
13a094163d8324e8d921ed4c2db689e6116bf2cf96b4a53b7e3981001aa28272c3  guix-build-0fe391736b7a/output/powerpc64le-linux-gnu/bitcoin-0fe391736b7a-powerpc64le-linux-gnu-debug.tar.gz
1479df5e214cd7675290fe1111840be20af2591e15c842b81294c839be9d7b7df0  guix-build-0fe391736b7a/output/powerpc64le-linux-gnu/bitcoin-0fe391736b7a-powerpc64le-linux-gnu.tar.gz
15d1a1012ede01d6b5c3d3fe3ce638e5142b913de546d27ea44d7b40276482d1cb  guix-build-0fe391736b7a/output/riscv64-linux-gnu/SHA256SUMS.part
165c319a6af935e734d217f4323423570ede0bd531bfdcbc0222986ff1602b5045  guix-build-0fe391736b7a/output/riscv64-linux-gnu/bitcoin-0fe391736b7a-riscv64-linux-gnu-debug.tar.gz
17e174047bb10997783cae63b34186303027afeab00854c7ffbfc85f2656570534  guix-build-0fe391736b7a/output/riscv64-linux-gnu/bitcoin-0fe391736b7a-riscv64-linux-gnu.tar.gz
18cc80ece1a91c921e0e56b7fdecf4899109f674dcb5a506dc72739942eda53efb  guix-build-0fe391736b7a/output/x86_64-apple-darwin/SHA256SUMS.part
1926f732866531d2a12b3f1a198f38db1b65826d80d64cbe10d55080946a2290fb  guix-build-0fe391736b7a/output/x86_64-apple-darwin/bitcoin-0fe391736b7a-x86_64-apple-darwin-unsigned.dmg
20efb00bed76403f3b5208f40fd27f53f6e37a49fb8ad13ce5060a560ad22c722b  guix-build-0fe391736b7a/output/x86_64-apple-darwin/bitcoin-0fe391736b7a-x86_64-apple-darwin-unsigned.tar.gz
215714b9de37857b682e9909078cac76d410db14d226901e39144b30ec4c900200  guix-build-0fe391736b7a/output/x86_64-apple-darwin/bitcoin-0fe391736b7a-x86_64-apple-darwin.tar.gz
22ce6f385cb037349e5bca5be43d6969ab0ff57bf8e9c219a72648a46f45a908a9  guix-build-0fe391736b7a/output/x86_64-linux-gnu/SHA256SUMS.part
233a35961a8e1fbeb656da7d8f20ecf6465b10d7c021993e62f2f9b5cce2279199  guix-build-0fe391736b7a/output/x86_64-linux-gnu/bitcoin-0fe391736b7a-x86_64-linux-gnu-debug.tar.gz
24055143cab92e45220f7d1f47557ef0bac440819aa14d5a0b20c938f2b02bccfc  guix-build-0fe391736b7a/output/x86_64-linux-gnu/bitcoin-0fe391736b7a-x86_64-linux-gnu.tar.gz
25df5bf9af787b596acc312daf956288d7b28729d94252ac4cff6d3899597fb233  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/SHA256SUMS.part
26a563c5ab7a1968266c0329199bb5b36eb41ab7d7d28edb64f10c53408ab78dff  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/bitcoin-0fe391736b7a-win64-debug.zip
27002903664b3d313f7d3e371b0fcea294d4c4915a7097e8ea9aacf2bd4cf44634  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/bitcoin-0fe391736b7a-win64-setup-unsigned.exe
28d4d86dad7d5af60e388a9f4e3976eb16ef1fcb6f487c52cc690322029526007c  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/bitcoin-0fe391736b7a-win64-unsigned.tar.gz
2964bdcd052c10f78b8d59ee257293d783c917d71376a0623e53c2248c9f888bca  guix-build-0fe391736b7a/output/x86_64-w64-mingw32/bitcoin-0fe391736b7a-win64.zip
  13. luke-jr commented at 11:20 pm on July 5, 2022: member

    The GCC (10.3.0) and glibcs (2.24 and 2.27) we build both support configuration option for turning on hardening features by default.

    But in #25437, you said the minimum was glibc 2.25…? Confused.

  14. fanquake commented at 8:41 am on July 6, 2022: member

    But in #25437, you said the minimum was glibc 2.25…? Confused.

    I said 2.25 was the minimum for using --enable-stack-protector. Which we are not using, with glibc 2.24, in this PR.

  15. theuni commented at 3:18 pm on July 7, 2022: member
    Concept ACK
  16. dongcarl commented at 6:14 pm on July 18, 2022: contributor

    Concept ACK

    Was able to find --enable-stack-protector=all and --enable-bind-now in gentoo’s configs: https://github.com/gentoo/gentoo/blob/9fe8087634d878eeed259019bf6f3eb19ef209b8/eclass/toolchain-glibc.eclass#L789

    https://github.com/gentoo/gentoo/blob/9fe8087634d878eeed259019bf6f3eb19ef209b8/eclass/toolchain-glibc.eclass#L848

    The gentoo repo serve as a good resource for evaluating future build changes like this along with debian’s salsa.

  17. DrahtBot added the label Needs rebase on Jul 19, 2022
  18. fanquake force-pushed on Jul 19, 2022
  19. DrahtBot removed the label Needs rebase on Jul 19, 2022
  20. fanquake commented at 10:23 am on July 20, 2022: member
    Rebased for #25639. Updated builds in description.
  21. fanquake added the label DrahtBot Guix build requested on Jul 20, 2022
  22. DrahtBot commented at 2:26 am on July 22, 2022: contributor

    Guix builds

    File commit d1e42659bbdd8da170542d8c638242cd94f71a7d(master) commit e8a27af0fa7e68b7807b6684ae0870db45e6876e(master and this pull)
    SHA256SUMS.part 8e5ea9fd6444ce59... 816c7d99732d8dae...
    *-aarch64-linux-gnu-debug.tar.gz 50cfddba4f8f7f4c... 83771276c1401bb7...
    *-aarch64-linux-gnu.tar.gz d38da8f51bc2fba7... ec63b312b0c35b86...
    *-arm-linux-gnueabihf-debug.tar.gz 31661110b6a95a26... fba421ef075c930c...
    *-arm-linux-gnueabihf.tar.gz 3ec9c6638710e863... d813f94198ffcb67...
    *-arm64-apple-darwin-unsigned.dmg f483e4fd1a543216... acc77ae7f1e4d1ac...
    *-arm64-apple-darwin-unsigned.tar.gz 2f9373633ba249c4... cd9f39a4d75feab1...
    *-arm64-apple-darwin.tar.gz efc980eabb42c674... d0d028975db5ca98...
    *-powerpc64-linux-gnu-debug.tar.gz f6d65e7afe3e94f0... f8dd288b4622eaf5...
    *-powerpc64-linux-gnu.tar.gz 8f698cb48b872b9e... 0bb7729ff8b31c87...
    *-powerpc64le-linux-gnu-debug.tar.gz 6485d86010c9504f... 1707cfe5eec9e394...
    *-powerpc64le-linux-gnu.tar.gz da064bd68c44fcce... bc65cd877fea1a87...
    *-riscv64-linux-gnu-debug.tar.gz a039daaf5cdffcad... ca17d9ebef855b51...
    *-riscv64-linux-gnu.tar.gz a689c50b125147da... 1442bec62f547c0e...
    *-win64-debug.zip 7e2b6adde59b99a1... 21ce5d04063dbde9...
    *-win64-setup-unsigned.exe edf3222bc6441028... 4631556b7bd99b41...
    *-win64-unsigned.tar.gz 996af79f1ddbb4bc... 27b68b5bd364291f...
    *-win64.zip 6483f3cc4f0516bf... 12c8dc89472bf492...
    *-x86_64-apple-darwin-unsigned.dmg 2d1fa357f7ca4667... 05884b593f3a0677...
    *-x86_64-apple-darwin-unsigned.tar.gz 8c8fb06c86aa57b6... 5f9807399774d46b...
    *-x86_64-apple-darwin.tar.gz dce517bd800d7150... 578a30fdf99699fc...
    *-x86_64-linux-gnu-debug.tar.gz a935341aed8b1e21... 881ce49837618035...
    *-x86_64-linux-gnu.tar.gz da3ecbd2887fce7a... ddf49622deab6de6...
    *.tar.gz 9d3e14e65162f284... 62cad125171e4693...
    guix_build.log fdf15d3848265400... aa12000bee940995...
    guix_build.log.diff 6f129dcd19220221...
  23. DrahtBot removed the label DrahtBot Guix build requested on Jul 22, 2022
  24. fanquake requested review from dongcarl on Jul 27, 2022
  25. fanquake requested review from hebasto on Jul 27, 2022
  26. fanquake requested review from theuni on Jul 27, 2022
  27. hebasto commented at 1:10 pm on July 28, 2022: member
    Concept ACK.
  28. hebasto commented at 1:26 pm on July 28, 2022: member
    Maybe rebase to include changes from #25643?
  29. guix: enable SSP for RISC-V glibc (2.27) 
    Pass `--enable-stack-protector=all` when building the glibc used for the
RISC-V toolchain, to enable stack smashing protection on all functions,
in the glibc code.
    3897a131d0
  30. guix: pass enable-bind-now to glibc 
    Both glibcs we build support `--enable-bind-now`:
Disable lazy binding for installed shared objects and programs.
This provides additional security hardening because it enables full RELRO
and a read-only global offset table (GOT), at the cost of slightly
increased program load times.

See:
https://www.gnu.org/software/libc/manual/html_node/Configuring-and-compiling.html
    aa87879a77
  31. guix: enable hardening options in GCC Build 
    Pass `--enable-default-pie` and `--enable-default-ssp` when configuring
our GCCs. This achieves the following:

--enable-default-pie
	Turn on -fPIE and -pie by default.

--enable-default-ssp
	Turn on -fstack-protector-strong by default.

Note that this isn't a replacement for passing hardneing flags
ourselves, but introduces some redundency, and there isn't really a
reason to not build a more "hardenings enabled" toolchain by default.

See also:
https://gcc.gnu.org/install/configure.html
    c99a1ecc52
  32. fanquake force-pushed on Jul 28, 2022
  33. fanquake commented at 1:31 pm on July 28, 2022: member

    Maybe rebase to include changes from #25643?

    Done. Will update build hashes in description shortly.

  34. in contrib/guix/manifest.scm:531 in c99a1ecc52 
    526@@ -520,6 +527,12 @@ inspecting signatures in Mach-O binaries.")
527 (define (make-glibc-without-werror glibc)
528   (package-with-extra-configure-variable glibc "enable_werror" "no"))
529 
530+(define (make-glibc-with-stack-protector glibc)
531+  (package-with-extra-configure-variable glibc "--enable-stack-protector" "all"))
    hebasto commented at 1:59 pm on July 28, 2022:

    glibs docs suggest:

    It is recommended to build glibc with --enable-stack-protector=strong.

    Why has --enable-stack-protector=all been suggested?

    fanquake commented at 2:08 pm on July 28, 2022:

    Why has –enable-stack-protector=all been suggested?

    because I’m turning it on for all functions.

    hebasto commented at 5:28 pm on July 28, 2022:

    Why has –enable-stack-protector=all been suggested?

    because I’m turning it on for all functions.

    Yes, I see this. But my question was about not following glibs docs recommendations. I assume glibc authors have reasons for them. As you suggest a different option value, why do you think it is better than the recommended one?

    fanquake commented at 7:17 pm on July 28, 2022:
    I choose all because I want to instrument all functions, rather than leaving it up to compiler heuristics/params (ssp-buffer-size) to decide which functions to instrument or not.
  35. hebasto commented at 2:00 pm on July 28, 2022: member
    From the first commit(3897a131d022c29301809c3d6edfcb46e100dc21) message and from the PR description it follows that SSP enabling is RISC-V-specific. Isn’t it rather glibc version specific? If minimum glibc version would be 2.25, this option can be enabled for all platforms, no?
  36. fanquake commented at 2:08 pm on July 28, 2022: member

    From the first commit(https://github.com/bitcoin/bitcoin/commit/3897a131d022c29301809c3d6edfcb46e100dc21) message and from the PR description it follows that SSP enabling is RISC-V-specific. Isn’t it rather glibc version specific?

    It’s RISC-V specific here because we are enabling it only for the glibc built for RISC-V.

    If minimum glibc version would be 2.25, this option can be enabled for all platforms, no?

    Yes, but our minimum glibc isn’t currently 2.25+ for any other platform.

  37. hebasto commented at 5:37 pm on July 28, 2022: member

    Third commit (c99a1ecc52d8594b9dac4266770d8156693f35e3) message:

    Note that this isn’t a replacement for passing hardneing flags ourselves, but introduces some redundency, and there isn’t really a reason to not build a more “hardenings enabled” toolchain by default.

    Tbh, any redundancy will be a cause of confusion and errors at some point in the future. I don’t see a strong justification for such a change.

  38. fanquake commented at 5:43 pm on July 28, 2022: member

    Tbh, any redundancy will be a cause of confusion and errors at some point in the future. I don’t see a strong justification for such a change.

    Can you elaborate on what is confusing about turning on hardening options? Compilers are migrating to turning these options on by default. How would this cause errors in the future?

  39. hebasto commented at 5:50 pm on July 28, 2022: member

    Tbh, any redundancy will be a cause of confusion and errors at some point in the future. I don’t see a strong justification for such a change.

    Can you elaborate on what is confusing about turning on hardening options? Compilers are migrating to turning these options on by default. How would this cause errors in the future?

    A redundancy is confusing, not turning on hardening options. Here is a future scenario: (a) hardening options get removed from our build system because “all compilers have these options on by default now”, and (b) users with very old compilers will get unhardened binaries when compiling from source.

  40. fanquake commented at 5:54 pm on July 28, 2022: member

    (a) hardening options get removed from our build system because “all compilers have these options on by default now”

    This isn’t something we are going to do, because then you’re just trusting compiler defaults. I said this in the commit message.

    (b) users with very old compilers will get unhardened binaries when compiling from source.

    This is one of the reasons we wouldn’t do (a).

  41. hebasto commented at 9:28 am on July 29, 2022: member

    Guix build on x86_64:

     08de8ceac0f34729f17c64cd3b788d8e73e8a29cf51ec88ae33e04b1002f07162  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/SHA256SUMS.part
 1d638d329d2d23324aa8cb491b5fa9cfc59e7998cc95f6c47540ae34767316764  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/bitcoin-c99a1ecc52d8-aarch64-linux-gnu-debug.tar.gz
 2ce57cfd97109e2cebc91936653e291073230e9da1197d60edd6703c2c8e4961a  guix-build-c99a1ecc52d8/output/aarch64-linux-gnu/bitcoin-c99a1ecc52d8-aarch64-linux-gnu.tar.gz
 3917770f42ca696048c11ce3e7a100b9cc59cbe482878bccf11c1d84e327e61a7  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/SHA256SUMS.part
 4a5e6ea54cb58941b2dceaa036495c65d83e3ae65b806af7124718df428206b38  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf-debug.tar.gz
 5c035aa6599aeab74445bcf15966886fafb1e4397d6f4e66e4e5ff05770f3af94  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf.tar.gz
 6a48654be85a540b393fefa87f75f10fcb1652cfb824eb5cb32da9aeffdbe9843  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/SHA256SUMS.part
 78cf48b00d6cbe7bc203043dde34ca51a82e25bc3b4e91802730209a90637a8ed  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.dmg
 86ff1c1f0fbf64303421f71a91c14020554ab96673f2461aae80ef2249a846ebd  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.tar.gz
 90df1d3d95759b26a9cc448dba29291c5d940e9faf9a79c7658775285498809eb  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin.tar.gz
103556666828f68205b8b82771a7046e10e10cf31bd894c6ed389bbaa2397b917c  guix-build-c99a1ecc52d8/output/dist-archive/bitcoin-c99a1ecc52d8.tar.gz
11970390a724f2b9e40731942a427a5893a489fdac9c970a5a2f52cd684c4e2bcb  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/SHA256SUMS.part
12c281257c8f9466aca2d68971ff8cd219288f62a601396d4f8f1497a4404fac11  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu-debug.tar.gz
1379e68965a50907f4c3382143f7c58dd71b927f87fe80a62c06b434232d764b93  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu.tar.gz
14b65be16861b1d11225f5497c58adbc585bb1b192096018f006ae11c851235d65  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/SHA256SUMS.part
155edb31e2d6702ab3e24189db1a1151bb40dc009a2d6f196eca19124947400a24  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu-debug.tar.gz
16d6e0414082f91a443bcfee9647f8cf9ad09d13fdf6acd6070866505b420db8eb  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu.tar.gz
1789edc84604ea960dff7598999cabb14e2dbd7d585021acfd3065e0e8ebb77786  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/SHA256SUMS.part
18091d582c7797792ab62653e61aa2192db768fb624615a2393284d7fad2a643bd  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu-debug.tar.gz
19fcc20f8f7e2889f544e10d77e714496fd44e3dfdb2d1919b12ec5d41aeb9a8ac  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu.tar.gz
204b736dbfca1c0eb37390d791a9cdfe12aa3111f65a0c92775cd68044696f5b17  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/SHA256SUMS.part
21dc51605e5c0f25e25aa1672471c2096e2c95f59d9c7adbee81714ad33da559a0  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.dmg
2296a7b7b0144049215a4e51a01c4c90dcbf8469590a380fe2b1faca652f80c545  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.tar.gz
238d0a9e33e02db7c234d3cff2cf8489a93ae83a0efb9c02dd0a4a43b1615d5f75  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin.tar.gz
2460e21c7d8eb8422bf3280d63fca7e3983b8d62949b46f582e483bfadf42d9838  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/SHA256SUMS.part
2593cce61cbd237e8d63a7b60fd7c0611834d2587899f241c80ad3e7c31ce9f5c6  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu-debug.tar.gz
2686e6d35ced80385dbebc9d0b4e443a86d9b5dfecff4928fccb4331fc37b7c8bc  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu.tar.gz
27cdf1045063b8ad18735d623fa45867a3b6fbcabefac6ef763ad4d04e956ef2b7  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/SHA256SUMS.part
28e032c517396d818f2a5f7a2f8453966de37a1734f2f2d95ad0e39358647f5068  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-debug.zip
29b09cc098672215e810b4a11df0ebce760f716546d76745367898bb1850a6a8b4  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-setup-unsigned.exe
30a27108b306be7099a426bf2e02009b7271c8c04394bf5c5aa4f592b69be77fb5  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-unsigned.tar.gz
31a682fe68b09de24e1bdef49836d4fc5080e779fac66a73c9dcafb8fc6126af3a  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64.zip
  42. hebasto commented at 11:48 am on July 29, 2022: member

    Guix builds on arm64:

     0917770f42ca696048c11ce3e7a100b9cc59cbe482878bccf11c1d84e327e61a7  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/SHA256SUMS.part
 1a5e6ea54cb58941b2dceaa036495c65d83e3ae65b806af7124718df428206b38  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf-debug.tar.gz
 2c035aa6599aeab74445bcf15966886fafb1e4397d6f4e66e4e5ff05770f3af94  guix-build-c99a1ecc52d8/output/arm-linux-gnueabihf/bitcoin-c99a1ecc52d8-arm-linux-gnueabihf.tar.gz
 31a306a6dc68183f210aa56c6eb07785654e1c2e21ac9e2bd866d8fdec34a527c  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/SHA256SUMS.part
 47da1d43adabf4725b6244df9625b683f47669949ffbcf37184619e431151138f  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.dmg
 5ac38ae4188927e2e0b0d3bdaae9d314424e4f7e3ab2a90c6cbedc8a985ae237e  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin-unsigned.tar.gz
 61b1653f3b3dff1bf5737223a4e5c2b674b700baba4ef594e3c7a040b5e81f3f6  guix-build-c99a1ecc52d8/output/arm64-apple-darwin/bitcoin-c99a1ecc52d8-arm64-apple-darwin.tar.gz
 73556666828f68205b8b82771a7046e10e10cf31bd894c6ed389bbaa2397b917c  guix-build-c99a1ecc52d8/output/dist-archive/bitcoin-c99a1ecc52d8.tar.gz
 8970390a724f2b9e40731942a427a5893a489fdac9c970a5a2f52cd684c4e2bcb  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/SHA256SUMS.part
 9c281257c8f9466aca2d68971ff8cd219288f62a601396d4f8f1497a4404fac11  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu-debug.tar.gz
1079e68965a50907f4c3382143f7c58dd71b927f87fe80a62c06b434232d764b93  guix-build-c99a1ecc52d8/output/powerpc64-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64-linux-gnu.tar.gz
11b65be16861b1d11225f5497c58adbc585bb1b192096018f006ae11c851235d65  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/SHA256SUMS.part
125edb31e2d6702ab3e24189db1a1151bb40dc009a2d6f196eca19124947400a24  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu-debug.tar.gz
13d6e0414082f91a443bcfee9647f8cf9ad09d13fdf6acd6070866505b420db8eb  guix-build-c99a1ecc52d8/output/powerpc64le-linux-gnu/bitcoin-c99a1ecc52d8-powerpc64le-linux-gnu.tar.gz
1489edc84604ea960dff7598999cabb14e2dbd7d585021acfd3065e0e8ebb77786  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/SHA256SUMS.part
15091d582c7797792ab62653e61aa2192db768fb624615a2393284d7fad2a643bd  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu-debug.tar.gz
16fcc20f8f7e2889f544e10d77e714496fd44e3dfdb2d1919b12ec5d41aeb9a8ac  guix-build-c99a1ecc52d8/output/riscv64-linux-gnu/bitcoin-c99a1ecc52d8-riscv64-linux-gnu.tar.gz
174b736dbfca1c0eb37390d791a9cdfe12aa3111f65a0c92775cd68044696f5b17  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/SHA256SUMS.part
18dc51605e5c0f25e25aa1672471c2096e2c95f59d9c7adbee81714ad33da559a0  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.dmg
1996a7b7b0144049215a4e51a01c4c90dcbf8469590a380fe2b1faca652f80c545  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin-unsigned.tar.gz
208d0a9e33e02db7c234d3cff2cf8489a93ae83a0efb9c02dd0a4a43b1615d5f75  guix-build-c99a1ecc52d8/output/x86_64-apple-darwin/bitcoin-c99a1ecc52d8-x86_64-apple-darwin.tar.gz
2160e21c7d8eb8422bf3280d63fca7e3983b8d62949b46f582e483bfadf42d9838  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/SHA256SUMS.part
2293cce61cbd237e8d63a7b60fd7c0611834d2587899f241c80ad3e7c31ce9f5c6  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu-debug.tar.gz
2386e6d35ced80385dbebc9d0b4e443a86d9b5dfecff4928fccb4331fc37b7c8bc  guix-build-c99a1ecc52d8/output/x86_64-linux-gnu/bitcoin-c99a1ecc52d8-x86_64-linux-gnu.tar.gz
24cdf1045063b8ad18735d623fa45867a3b6fbcabefac6ef763ad4d04e956ef2b7  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/SHA256SUMS.part
25e032c517396d818f2a5f7a2f8453966de37a1734f2f2d95ad0e39358647f5068  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-debug.zip
26b09cc098672215e810b4a11df0ebce760f716546d76745367898bb1850a6a8b4  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-setup-unsigned.exe
27a27108b306be7099a426bf2e02009b7271c8c04394bf5c5aa4f592b69be77fb5  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64-unsigned.tar.gz
28a682fe68b09de24e1bdef49836d4fc5080e779fac66a73c9dcafb8fc6126af3a  guix-build-c99a1ecc52d8/output/x86_64-w64-mingw32/bitcoin-c99a1ecc52d8-win64.zip
  43. hebasto approved
  44. hebasto commented at 1:14 pm on July 29, 2022: member
    ACK c99a1ecc52d8594b9dac4266770d8156693f35e3
  45. fanquake merged this on Jul 30, 2022
  46. fanquake closed this on Jul 30, 2022
  47. fanquake deleted the branch on Jul 30, 2022
  48. sidhujag referenced this in commit 3557a90d76 on Aug 1, 2022
  49. kittywhiskers referenced this in commit 476c9d4095 on May 13, 2023
  50. kittywhiskers referenced this in commit b0b7fe01a6 on May 13, 2023
  51. kittywhiskers referenced this in commit 8fe29b33ed on May 13, 2023
  52. kittywhiskers referenced this in commit 9e287f89ed on May 19, 2023
  53. kittywhiskers referenced this in commit 279de80f5e on May 31, 2023
  54. kittywhiskers referenced this in commit 9f7ae3874f on May 31, 2023
  55. kittywhiskers referenced this in commit ba287d9ef0 on Jun 3, 2023
  56. kittywhiskers referenced this in commit 733f8c58ee on Jun 6, 2023
  57. kittywhiskers referenced this in commit 2efc165895 on Jun 7, 2023
  58. kittywhiskers referenced this in commit eea03d2f77 on Jun 8, 2023
  59. kittywhiskers referenced this in commit a16f6c6357 on Jun 10, 2023
  60. kittywhiskers referenced this in commit 4dfb302f5c on Jun 11, 2023
  61. kittywhiskers referenced this in commit bf30c1754f on Jun 11, 2023
  62. kittywhiskers referenced this in commit 46847a58b4 on Jun 11, 2023
  63. kittywhiskers referenced this in commit 2dd90be5f9 on Jun 19, 2023
  64. kittywhiskers referenced this in commit 8ebc0732d1 on Jun 20, 2023
  65. kittywhiskers referenced this in commit 290ca63428 on Jun 20, 2023
  66. kittywhiskers referenced this in commit 87a382c27b on Jun 20, 2023
  67. kittywhiskers referenced this in commit d74d98e080 on Jun 20, 2023
  68. kittywhiskers referenced this in commit 992b3dea1d on Jun 21, 2023
  69. kittywhiskers referenced this in commit 8e9152b4c8 on Jun 22, 2023
  70. kittywhiskers referenced this in commit 5e9badb379 on Jun 25, 2023
  71. kittywhiskers referenced this in commit 867ebdadbc on Jun 25, 2023
  72. kittywhiskers referenced this in commit 53779d029a on Jun 27, 2023
  73. kittywhiskers referenced this in commit 0e0c52b7b6 on Jun 27, 2023
  74. kittywhiskers referenced this in commit 60b8ea36ec on Jun 28, 2023
  75. kittywhiskers referenced this in commit 2e3568c369 on Jun 28, 2023
  76. PastaPastaPasta referenced this in commit 205aa83eaa on Jun 29, 2023
  77. PastaPastaPasta referenced this in commit bfb3f4b0e0 on Jun 29, 2023
  78. bitcoin locked this on Jul 30, 2023


fanquake DrahtBot jarolrod hebasto laanwj luke-jr theuni dongcarl


theuni dongcarl

Labels
Build system

github-metadata-mirror

This is a metadata mirror of the GitHub repository bitcoin/bitcoin. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2025-01-02 12:12 UTC
This site is hosted by @0xB10C
More mirrored repositories can be found on mirror.b10c.me