| 7 Oct 2025 |
 Vladimír Čunát | * If staging-next, I'd prefer to merge that within one hour. | 16:06:24 |
| Vladimír Čunát | Otherwise we'll be delaying the cycle and this error perhaps isn't that urgent. | 16:06:53 |
| Vladimír Čunát | (audit hopefully won't be commonly rebuilt by users + combination with special kernel) | 16:07:38 |
 Grimmauld (any/all) | Uh | 16:08:41 |
| Grimmauld (any/all) | https://github.com/linux-audit/audit-userspace/blob/b83c84eb61e9bdaed6dc73ccde2dece154db5471/configure.ac#L304-L316 | 16:08:44 |
| Grimmauld (any/all) | audit builds everything with asan | 16:08:53 |
| Grimmauld (any/all) | sooo this is ugly | 16:08:58 |
| Grimmauld (any/all) | and might occur at runtime on peoples systems? | 16:09:16 |
| Grimmauld (any/all) | not sure | 16:09:19 |
| Grimmauld (any/all) | tbh i am tempted to just force the have_asan check to fail, so it'll just build without asan and all the issues disappear | 16:11:46 |
| Grimmauld (any/all) | not sure whether thats a good idea though | 16:11:53 |
 Alyssa Ross | what does gentoo do? | 16:13:56 |
| Vladimír Čunát | I'd expect that they have security reasons. | 16:16:44 |
| Vladimír Čunát | Like, let asan crash some failures just to be safe. | 16:17:10 |
 dramforever | but this only happens if the executable is built with asan right | 16:17:39 |
| dramforever | otherwise it's just asan compatible | 16:17:58 |
| Vladimír Čunát | Well, it looks like at least the tests in our builds do run with ASAN. | 16:19:03 |
| Grimmauld (any/all) | nether gentoo nor fedora do anything special related to asan | 16:19:11 |
| Vladimír Čunát | * Well, it looks like at least the tests in our audit builds do run with ASAN. | 16:19:14 |
| Grimmauld (any/all) | the whole thing is built with asan, turns out | 16:19:27 |
 dish [Fox/It/She] | https://github.com/nixos/nixpkgs/pull/449548 btw, tested fine for me on x86_64-linux and hexa is working on the aarch builds | 16:31:01 |
| dish [Fox/It/She] | * https://github.com/nixos/nixpkgs/pull/449548 btw, built fine for me on x86_64-linux and hexa is working on the aarch builds | 16:31:18 |
| dish [Fox/It/She] | python 3.13.8 | 16:31:24 |
| Vladimír Čunát | I'm not too fond of redoing darwin stdenvs from scratch, but better now than later, if it should be this staging-next iteration. | 16:33:59 |
| Vladimír Čunát | * I'm not too fond of redoing darwin stdenvs from scratch, but better now than later, if it should be in this staging-next iteration. | 16:34:30 |
| Grimmauld (any/all) | tbh i can't reproduce the issue and i am not familiar enough with pie+asan to judge the impact of just force-disabling asan in audit. unless anyone else has any ideas and/or strong opinions, i'll leave it as is. Willi Butz would you maybe open an upstream issue report? | 16:34:39 |
 Willi Butz | currently trying to repro on a local machine that I just switched to _hardened | 16:35:14 |
| Grimmauld (any/all) | ah 👍️ | 16:35:24 |
| Grimmauld (any/all) | yeah a solid reproducer would be good | 16:35:32 |
| Willi Butz | but please don't block because of some weird setup. if hydra is fine and the tests pass I see no reason for that. I just asked because I couldn't make out why the tests fail ^^ | 16:37:01 |
