While working on reproducible builds for openSUSE+ALP, I found that
our libcamera package varies in every build
because during build it creates a random keypair,
embeds the pubkey
adds .so.sign files

When I asked upstream about it long ago, it was said to prevent smuggling in of
3rd party modules that shall not receive the same level of permissions
as modules that are shipped as part of the main codebase.

Can we patch src/libcamera/ipa_module.cpp to not use .sign files
or is there another way to get reproducible build results for libcamera?