git.ipfire.org Git - thirdparty/tor.git/commit

author	Micah Elizabeth Scott <beth@torproject.org>
	Tue, 30 May 2023 16:53:09 +0000 (09:53 -0700)
committer	Micah Elizabeth Scott <beth@torproject.org>
	Wed, 31 May 2023 18:08:27 +0000 (11:08 -0700)
commit	3036bedf30d413e8236ec962b9c91b66988c2204
tree	8974d9c21c660729ec0e43ee056ad48852893323	tree \| snapshot
parent	e390a7cdee2dab0abcbaf06fad9d03b028377a70	commit \| diff

Update CI builds to Debian Bullseye, fix associated compatibility bugs

This is a change intended for 0.4.7 maintenance as well as main.

The CI builds use Debian Buster which is now end of life, and I was
experiencing inconsistent CI failures with accessing its security update
server. I wanted to update CI to a distro that isn't EOL, and Bullseye
is the current stable release of Debian.

This opened up a small can of worms that this commit also deals with.
In particular there's a docker engine bug that we work around by
removing the docker-specific apt cleanup script if it exists, and
there's a new incompatibility between tracing and sandbox support.

The tracing/sandbox incompatibility itself had two parts:

  - The membarrier() syscall is used to deliver inter-processor
    synchronization events, and the external "userspace-rcu"
    data structure library would make assumptions that if membarrier
    is available at initialization it always will be. This caused
    segfaults in some cases when running trace + sandbox. Resolved this
    by allowing membarrier entirely, in the sandbox.

  - userspace-rcu also assumes it can block signals, and fails
    hard if this can't be done. We already include a similar carveout
    to allow this in the sandbox for fragile-hardening, so I extended
    that to cover tracing as well.

Addresses issue #40799

Signed-off-by: Micah Elizabeth Scott <beth@torproject.org>

.gitlab-ci.yml		diff \| blob \| blame \| history
src/lib/sandbox/sandbox.c		diff \| blob \| blame \| history