Unreproducible Package: unbound.man

### Nixpkgs Revision

852ff1d9e153d8875a83602e03fdef8a63f0ecf8

### Introduction

Building unbound.man multiple times does not yield bit-by-bit identical
results, complicating the detection of Continuous Integration (CI) breaches. For
more information on this issue, visit [reproducible-builds.org](https://reproducible-builds.org/).

Fixing bit-by-bit reproducibility also has additional advantages, such as
avoiding hard-to-reproduce bugs, making content-addressed storage more effective
and reducing rebuilds in such systems.


### Steps to reproduce

### 1. Build the package

This step will build the package. Specific arguments are passed to the command
to keep the build artifacts so we can compare them in case of differences.

Execute the following command:

```
nix-build '<nixpkgs>' -A unbound.man && nix-build '<nixpkgs>' -A unbound.man --check --keep-failed
```

Or using the new command line style:

```
nix build nixpkgs#unbound.man && nix build nixpkgs#unbound.man --rebuild --keep-failed
```

### 2. Compare the build artifacts

If the previous command completes successfully, no differences were found and
there's nothing to do, builds are reproducible.
If it terminates with the error message `error: derivation '<X>' may not be
deterministic: output '<Y>' differs from '<Z>'`, use `diffoscope` to investigate
the discrepancies between the two build outputs. You may need to add the
`--exclude-directory-metadata recursive` option to ignore files and directories
metadata (*e.g. timestamp*) differences.

```
nix run nixpkgs#diffoscopeMinimal -- --exclude-directory-metadata recursive <Y> <Z>
```

### 3. Examine the build log

To examine the build log, use:

```
nix-store --read-log $(nix-instantiate '<nixpkgs>' -A unbound.man)
```

Or with the new command line style:

```
nix log $(nix path-info --derivation nixpkgs#unbound.man)
```


### Diffoscope log

https://reproducible.nixos.org/nixos-iso-minimal-runtime/diff/35eb81a1e97f3414a27f18a2e849f2646bd68f4f9b490cbcacc9de0918df2d2a-f32ed734f47e3ab6ac2e680e99d01224ca239fede3f91c047e570f9e71b4324d.html

### Notify maintainers

unbound is unmaintained, but perhaps a maintainer of a package that depends on it wants to have a look? @vcunat (gnutls)?

---

**Note for maintainers:** Please tag this issue in your pull request description. (i.e. `Resolves #ISSUE`.)


### I assert that this issue is relevant for Nixpkgs

- [x] I assert that this is not a [duplicate of any known issue](https://github.com/NixOS/nixpkgs/issues?q=is%3Aopen+is%3Aissue+label%3A%226.topic%3A+reproducible+builds%22).
- [x] I assert that I have read the [NixOS Code of Conduct](https://github.com/NixOS/.github/blob/master/CODE_OF_CONDUCT.md) and agree to abide by it.

### Is this issue important to you?

Add a :+1: [reaction] to [issues you find important].

[reaction]: https://github.blog/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/
[issues you find important]: https://github.com/NixOS/nixpkgs/issues?q=is%3Aissue+is%3Aopen+sort%3Areactions-%2B1-desc


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Unreproducible Package: unbound.man #380854

Nixpkgs Revision

Introduction

Steps to reproduce

1. Build the package

2. Compare the build artifacts

3. Examine the build log

Diffoscope log

Notify maintainers

I assert that this issue is relevant for Nixpkgs

Is this issue important to you?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development