My understanding is that the Xcode compiler used to build Tunnelblick (the gcc compiler) does not create the same binary each time source is compiled. (I am a little hazy about this, but I think that some parts of the binary include timestamps of the compile time. There may be other reasons, too.) That makes it difficult to say that any particular binary was built from any particular source code.
I personally build each release (including betas and pre-release snapshots that I occasionally make available privately for testing), using the instructions at
Building from Source. I personally upload the built .dmg files to the SourceForger servers. I then download a copy and verify for myself that it is identical to the file I uploaded. (SourceForge provides MD5 and SHA1 checksums that you can use to verify that your downloaded copy is valid.)
Tunnelblick and its component parts are digitally signed by me (as an Apple-recognized developer) and Tunnelblick checks those digital signature each time it is launched.
Updates are done via https: and also are separately digitally signed by me (using a different digital signature scheme). When Tunnelblick updates itself, it verifies the signature and refuses to update if it is not correct.
It is possible that SourceForge, or an entity impersonating them, intercepts my downloads and always gives me good ones, and intercepts everyone else's and gives them copies of Tunnelblick that are subtly altered to include a backdoor, but I think that is unlikely.