On 14 January 2014 15:19, Paolo Bonzini <pbonz...@redhat.com> wrote: > Il 14/01/2014 15:47, Richard Henderson ha scritto: >> Build systems like we use at Red Hat want to be able to produce bit-for-bit >> identical binaries when given the exact same input. Using random numbers >> during the build process prevents that. > > I totally agree, but AIUI people wanted the symbol to be something that > you couldn't know in advance (e.g. when compiling an out-of-tree > module). For some definition of "couldn't" and "in advance". > > I think we should simply drop the requirement to check a symbol in the > modules.
I definitely think we want at least a basic molly-guard on "module not compiled for this qemu"; we need not attempt to make it impervious to somebody who's determined to get around it, because that's impossible. Something like the git hash / file hash rth proposes seems reasonable. thanks -- PMM
