Merge pull request #289840 from PigeonF/master

Make `dockerTools.buildImageWithNixDb` reproducible
2024-11-17 06:06:13 +03:00 · 2024-02-29 13:03:07 +01:00 · 2024-02-29 13:03:07 +01:00 · 2bf7ff4806
commit 2bf7ff4806
parent 575147aed7 2cea1dce6d
1 changed files with 2 additions and 0 deletions
--- a/pkgs/build-support/docker/default.nix
+++ b/pkgs/build-support/docker/default.nix
@ -64,6 +64,8 @@ let
      # https://github.com/NixOS/nix/blob/9348f9291e5d9e4ba3c4347ea1b235640f54fd79/src/libutil/util.cc#L478
      export USER=nobody
      ${buildPackages.nix}/bin/nix-store --load-db < ${closureInfo {rootPaths = contentsList;}}/registration
+      # Reset registration times to make the image reproducible
+      ${buildPackages.sqlite}/bin/sqlite3 nix/var/nix/db/db.sqlite "UPDATE ValidPaths SET registrationTime = ''${SOURCE_DATE_EPOCH}"

      mkdir -p nix/var/nix/gcroots/docker/
      for i in ${lib.concatStringsSep " " contentsList}; do