Trezor T v2.4.2 reproducible build
Digital Ocean Debian 10 x64
sudo apt-get update && sudo apt-get install -y \
apt-transport-https \
ca-certificates \
curl \
gnupg \
lsb-release
curl -fsSL https://download.docker.com/linux/debian/gpg | sudo gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg
echo \
"deb [arch=amd64 signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/debian \
$(lsb_release -cs) stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
sudo apt-get update && sudo apt-get install -y docker-ce docker-ce-cli containerd.io
git clone -b core/v2.4.2 https://github.com/trezor/trezor-firmware.git
pushd trezor-firmware/
./build-docker.sh core/v2.4.2
popd
curl -O https://data.trezor.io/firmware/2/trezor-2.4.2.bin
# Strip 65 bytes of signature data from downloaded binary
dd if=/dev/zero of=trezor-2.4.2.bin bs=1 seek=5567 count=65 conv=notrunc
sha256sum trezor-2.4.2.bin trezor-firmware/build/core/firmware/firmware.bin