>I'm not sure of the powers of 'nix-store --verify-path', but so far I >was under the (wrong) impression, that nix has methods that do not >require trust into the build farm (provider).
This works for checking that redistributor is honest, but not for original buildfarm which actually produces the hash. There is no way to verify that the build has been done honestly which is both quicker than redoing the build and doesn't require buildfarm to spend enormous resources on proof generation. _______________________________________________ nix-dev mailing list [email protected] http://lists.science.uu.nl/mailman/listinfo/nix-dev
