| 19 Aug 2021 |
 tomberek | no. it just reports it | 18:42:38 |
 nrdxp | so I guess I would have to make something that takes this list, and then runs each build with datefudge to see if it helps any of them. If it fixes a substantial amount of them, then we will have more information on whether such an endeavor would be worth it. | 18:48:45 |
| nrdxp | oh but this only tracks the iso, which is already mostly reproducible 🤔 | 18:50:43 |
| 20 Aug 2021 |
| nrdxp | I still agree with andi that package builders should do a more excellent job of making sure time doesn't matter for the final result. However, I "feel" somehow that a world where time is immutable fits better into the world of pure nix 🤔 | 01:02:42 |
 baloo | for what it's worth, datefudge works as an ld preload, I don't expect all that much support in nix environment | 03:26:08 |
| baloo | moreover, I don't think that covers anything that does system call directly (golang for example). | 03:26:58 |
| baloo | can't we use the new time namespace for that or an ebpf based syscall hook? to just return 0. is that in the linux-vdso.so? | 03:31:31 |
| baloo | Those system calls will likewise not be visible to
seccomp(2) filters. | 03:35:29 |
| baloo | one could bump the auxiliary vector to pass an empty one. | 03:36:27 |
| baloo | :D | 03:36:31 |
| baloo | prctl(PR_SET_MM, PR_SET_MM_AUXV, ...) | 03:54:28 |
| baloo | this is cursed | 04:01:50 |
| baloo | we could throw a linux module that would hook on finalize_exec, and provide a custom vdso for our hierarchy | 15:57:20 |
| baloo | or something | 15:57:22 |
| baloo | hooking a syscall is ~easy hook a https://gist.github.com/baloo/d1394dacb4049fc76ee935f686eaca5c#file-nosync-c-L67-L75 | 16:00:32 |
| baloo | * hooking a syscall is ~easy https://gist.github.com/baloo/d1394dacb4049fc76ee935f686eaca5c#file-nosync-c-L67-L75 | 16:00:44 |
| baloo | not sure about hooking a symbol | 16:00:50 |
| baloo | should not be all that hard | 16:00:56 |
| baloo | huuum | 16:07:41 |
| baloo | it's already a thread a that point. | 16:07:50 |
| baloo | so ... we could ... seccomp-ebpf and return seccomp_ret_trace, and inject the vdso with ptrace | 16:08:18 |
| baloo | the target wouldn't even know, as he has not started yet, and he didn't call ptrace(PTRACE_SETOPTIONS) yet | 16:09:05 |
| baloo | and that's without a kernel module, or all too much privileges. | 16:11:15 |
| baloo | Redacted or Malformed Event | 16:16:41 |
| baloo | seccomp-bpf only hooks to syscall | 16:18:31 |
| 22 Aug 2021 |
|  yusdacra changed their profile picture. | 15:49:06 |
|  siraben changed their display name from siraben (he/him) to siraben. | 16:16:42 |
 Gytis Ivaskevicius | Hey guys, whats up with all these unchecked paths? https://r13y.com/ | 22:53:20 |
| Gytis Ivaskevicius | Not long ago it was at perfect 100% <3 | 22:53:50 |
| 23 Aug 2021 |
 davidak |
it fails to build because of lack of disk space
Gytis Ivaskevicius i guess still this issue with the build system
| 02:16:53 |
