Support debuginfod #459
Comments
|
I think this shouldn't be enabled by default at least. Having the executable directly download it would cause bloat and would expose it to (more) untrusted data (which means it would start to be necessary to recompile with newer dependencies for security when doing so may not have been necessary before). Shelling out to debuginfod-find won't work if debuginfod isn't installed. In either case automatically downloading debuginfo without user consent is a potential privacy issue. |
|
If you don't want debug info from debuginfod, then you don't set Naturally, the there would be a check for I'm not following the part about recompiling with newer dependencies. Could you elaborate? |
|
If we do decide to support this, we shouldn't be reimplementing a debuginfod client in this crate, so decisions about where to store the downloaded file are not needed. Instead, we should use an existing client (e.g. debuginfod-find, or libdebuginfod).
Why does sentry need debuginfod support in this crate? I thought sentry worked by only doing the symbolication on the sentry server.
I agree. I was expecting debuginfod to use a local daemon for configuration and downloading, but instead every client has its own configuration, does the downloading itself, and stores the files in the user's directory? To me it seems poorly designed for a use case like backtraces where it isn't being interactively initiated by the user (as opposed to using a debugger).
Recent versions of fedora and debian set this automatically: |
I didn't think of this, but it sounds like it would work for Sentry.
Fedora does, but on Debian you need to do this explicitly. You also trust your distro to provide you with libc, so there's some level of trust there. |
|
If this doesn't torch this crate's maintainability I'm fine with adding it as a feature, seems cool. |
There's a mention of debuginfod in the code from #427 (cc @philipc). I suggest we also add support for looking up in debuginfod.
If
DEBUGINFOD_URLSis set, the the debug info can be obtained from:{URL}/buildid/{BUILD_ID}/debuginfoThe simplest option is to call out to
debuginfod-find. Another option is to download the file directly, but then you also need to think whether to cache it and where. LLVM uses a separate directory from debuginfod-client, for example.Both options are likely to have issues with sandboxing. Thinking of sentry use-case, the panic handling thread probably has network access to send the report, so downloading might be more feasible than shelling out.
I can probably find time to work on this if there's a consensus how to best implement this.
The text was updated successfully, but these errors were encountered: