| 2 Jun 2021 |
 Alyssa Ross | let me test | 11:41:39 |
 sterni | we are in a bit of an unfortunate situation where we render the manuals with pandoc atm, ryantm is implementing the potential next manual renderer using cmark and nix is using lowdown for rendering markdown on the terminal | 11:41:52 |
| sterni | cmark is extensible, so lowdown is probably the constraining factor in the equation | 11:42:45 |
| Alyssa Ross | ugh, I don't have the build cached any more | 11:43:00 |
 ryantm | https://github.com/ryantm/mmdoc | 11:44:23 |
| ryantm | https://github.com/NixOS/nixpkgs/pull/108063 | 11:44:27 |
| Alyssa Ross | wow, nice | 11:45:03 |
| Alyssa Ross | niksnut: it doesn't make a difference to :doc, because that doesn't use any of the markup I changed | 11:55:01 |
| Alyssa Ross | I think it just affects the mdbook manual | 11:57:16 |
 Reventlov | Redacted or Malformed Event | 12:30:38 |
| Reventlov | Redacted or Malformed Event | 12:31:17 |
 Regnat | In reply to @rgrunbla:matrix.org
hey Regnat , about https://github.com/NixOS/nix/issues/4859#issuecomment-852980341, how come it was working at some point ? Was that before content addressed nix ? I think that references in CA paths were just ignored before https://github.com/NixOS/nix/commit/0abb3ad53795aa3a4792d30e5721a337f0eddfb7 , so things were kinda-working | 12:34:59 |
| Regnat | (But ignoring the references is actually unsound) | 12:35:14 |
| 4 Jun 2021 |
| Regnat | Eelco Dolstra John Ericson I think I forgot to mention, but I’ll be off on monday, so I won’t join the Nix-CAS weekly | 11:02:42 |
|  rycee joined the room. | 21:44:44 |
| rycee | Howdy. I'm a bit curious, does anybody know if there has been any work done on supporting suid executables natively in Nix? Specifically, how one would do it securely (if at all possible) while still allowing user profiles? | 21:59:00 |
| 6 Jun 2021 |
 Mic92 (Old) | In reply to @rycee:rycee.net
Howdy. I'm a bit curious, does anybody know if there has been any work done on supporting suid executables natively in Nix? Specifically, how one would do it securely (if at all possible) while still allowing user profiles? I guess it would require a separate user set of users that are allowed to install setuid binaries and a nix-daemon for sure. To allow creating setuid binaries while building one could employ usernamespaces. After the build the nix-daemon would need to shift uids back. One issue still is that the nix store only knows one uid (0), which does not cover all use cases of setuid. | 07:06:59 |
| Mic92 (Old) | To be honest I think the current approach of not having this in nix but external sounds cleaner to me. | 07:07:29 |
| 7 Jun 2021 |
 manveru | is anyone working on a fix for https://github.com/NixOS/nix/issues/4893 ? | 14:33:17 |
 John Ericson | In reply to @joerg:bethselamin.de
To be honest I think the current approach of not having this in nix but external sounds cleaner to me. yeah the design of setuid binaries is pretty ugly to begin with | 14:53:20 |
| Mic92 (Old) | For NUR users there is now: #nur:bethselamin.de | 21:29:34 |
| 8 Jun 2021 |
 abathur | rycee Curious what your use-case is? I doubt it's directly helpful, but I have a narrowly-related need (via resholve) for build-time references to valid run-time setuid executables (to resolve sudo invocations in shell scripts, for example) | 01:53:17 |
| Regnat | In reply to @manveru:matrix.org
is anyone working on a fix for https://github.com/NixOS/nix/issues/4893 ? I am not, but the fix should be rather easy. Feel free to ping me if you want to do it and need some pointers | 04:37:59 |
| Regnat | Has anyone thought about implementing a dedicated GC for Nix rather than (ab)using boehm? I wonder how much work that would be, and how much we could gain from it | 07:22:51 |
| manveru | Regnat: i don't particularly want to do it, since I'm pretty much a noob when it comes to C++, but i guess it doesn't hurt to learn and beats waiting :) | 07:49:04 |
| manveru | at least it doesn't look like those nasty race conditions and GC segfaults, so I might have a chance to actually understand it | 07:50:14 |
| Regnat | In reply to @manveru:matrix.org
Regnat: i don't particularly want to do it, since I'm pretty much a noob when it comes to C++, but i guess it doesn't hurt to learn and beats waiting :) I didn’t try it, but I guess just changing the logic here to handle the case where attrSet->pos == nullptr should be enough for a quick fix | 07:56:12 |
| manveru | ok, thanks | 07:59:37 |
| manveru | Regnat: so... comparing doesn't seem to work, no match for ‘operator==’ (operand types are ‘nix::Pos’ and ‘std::nullptr_t’) | 08:10:20 |
| manveru | i guess this has to happen before it dereferences the pointer | 08:11:14 |
