| 13 Aug 2024 |
|  @ironbound:hackerspace.pl set a profile picture. | 07:58:39 |
| 14 Aug 2024 |
|  peddie changed their profile picture. | 00:34:59 |
| 17 Aug 2024 |
|  @nam3l33ss:matrix.org changed their profile picture. | 08:27:21 |
| 22 Aug 2024 |
 emily | we don't want PGO by default on packages in the installation ISO right? | 15:54:15 |
| emily | cf. https://github.com/NixOS/nixpkgs/pull/336564 | 15:54:16 |
 Alyssa Ross | PGO can be reproducible, and if so there's not a problem. | 15:57:35 |
| Alyssa Ross | But in most cases it's not. | 15:57:43 |
 raboof | Ideally not indeed - indeed I've heard rumours of reproducible PGO builds, but that's probably only if you specifically work towards that, and even then I'm sceptical 😄 | 15:58:03 |
| emily | In reply to @qyliss:fairydust.space
PGO can be reproducible, and if so there's not a problem. by having someone record a profile and shipping that as an input, right? | 15:58:05 |
| emily | or is there another way? | 15:58:08 |
| Alyssa Ross | By having the thing you run to profile be deterministic | 15:58:22 |
| Alyssa Ross | which mostly means single threaded | 15:58:27 |
| emily | I see | 15:58:29 |
| emily | that sounds hard | 15:58:31 |
| Alyssa Ross | our foot pgo is reproducible | 15:58:33 |
| Alyssa Ross | But there's also an option for more complete foot PGO, which we don't use, that is not reproducible. | 15:58:52 |
| emily | just run all our PGO profiling on Antithesis 🙃 | 15:58:56 |
| emily | In reply to @emilazy:matrix.org
by having someone record a profile and shipping that as an input, right? this does work though, right? it seems like a benign kind of blob to me since the optimization decisions "shouldn't" affect the actual behaviour of the program (and because you can always reproduce an ~equivalent blob, a la bootstrap tarballs) | 15:59:47 |
| emily | I think Firefox PGO works like that or something? | 15:59:55 |
| Alyssa Ross | I don't think it's benign at all. | 16:00:11 |
| Alyssa Ross | It's not auditable to my knowledge, and compilers are not generally written to be secure against malicious input. | 16:00:45 |
| Alyssa Ross | Firefox PGO in Nixpkgs profiles during the build. | 16:00:53 |
| emily | good point re: malicious input. (I don't have any idea of how elaborate the PGO files actually are) | 16:05:23 |
|  nyanbinary 🏳️⚧️ left the room. | 17:18:57 |
 Atemu | An idea that sprung to my mind just now is that we could install the pgo files generated during a build into an output which should allow reproducing the binary if it's otherwise deterministic | 18:53:09 |
| Atemu | Though that again hinges on PGO files not having the ability to make the compiler produce arbitrary output | 18:54:32 |
| 23 Aug 2024 |
| @nam3l33ss:matrix.org left the room. | 09:22:00 |
| 24 Aug 2024 |
|  h33p joined the room. | 10:19:04 |
|  @adbjesus:matrix.org left the room. | 15:53:46 |
| 25 Aug 2024 |
|  von.dev joined the room. | 08:30:41 |
