snap, snap/pack: disallow pack and install of snapd, base and os with specific configure hooks #13117
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ernestl
force-pushed
the
SNAPDENG-7297_Prohibit_Configuration_Hooks_For_Core_Base_Snapd
branch
3 times, most recently
from
203749a to
b490ccc
Compare
ernestl
force-pushed
the
SNAPDENG-7297_Prohibit_Configuration_Hooks_For_Core_Base_Snapd
branch
from
b490ccc to
c10b5b3
Compare
|
Thu Feb 20 07:47:21 UTC 2025 Failures:Executing:
|
ernestl
force-pushed
the
SNAPDENG-7297_Prohibit_Configuration_Hooks_For_Core_Base_Snapd
branch
from
c10b5b3 to
b6a8698
Compare
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #13117 +/- ##
=========================================
Coverage ? 77.86%
=========================================
Files ? 1167
Lines ? 156856
Branches ? 0
=========================================
Hits ? 122130
Misses ? 27139
Partials ? 7587
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
ernestl
force-pushed
the
SNAPDENG-7297_Prohibit_Configuration_Hooks_For_Core_Base_Snapd
branch
2 times, most recently
from
7990b70 to
6e7c4f6
Compare
ernestl
changed the title
ernestl
changed the title
ernestl
changed the title
ernestl
changed the title
ernestl
changed the title
ernestl
force-pushed
the
SNAPDENG-7297_Prohibit_Configuration_Hooks_For_Core_Base_Snapd
branch
3 times, most recently
from
4d8c591 to
4d38e1d
Compare
ernestl
added
the
Needs Samuele review
ernestl
force-pushed
the
SNAPDENG-7297_Prohibit_Configuration_Hooks_For_Core_Base_Snapd
branch
from
4d38e1d to
7a4f5ec
Compare
ernestl
changed the title
ernestl
changed the title
pedronis
requested changes
Feb 13, 2025
snap/validate.go
Outdated
| } | ||
|
|
||
| if info.SnapType == TypeSnapd || info.SnapType == TypeBase || (info.SnapType == TypeOS && info.InstanceName() != "core") { | ||
| if info.SnapType == TypeSnapd || info.SnapType == TypeBase || info.SnapType == TypeOS { | ||
| var hookNames strings.Builder | ||
| if hasDefaultConfigureHook { | ||
| hookNames.WriteString(`"default-configure"`) | ||
| if hasConfigureHook { |
There was a problem hiding this comment.
this now needs to become the same check as below, no? but then I'm unsure using a strings.Builder is the best approach, wouldn't a []string and using Join with " or " be simpler?
There was a problem hiding this comment.
thanks, corrected and simplified this and corresponding test
…nfigure and configure
miguelpires
reviewed
Feb 17, 2025
snap/pack/pack_test.go
Outdated
Comment on lines
208
to
212
| configureHooks := []string{"configure"} | ||
| c.Assert(os.Mkdir(filepath.Join(sourceDir, "meta", "hooks"), 0755), IsNil) | ||
| for _, hook := range configureHooks { | ||
| c.Assert(os.WriteFile(filepath.Join(sourceDir, "meta", "hooks", hook), []byte("#!/bin/sh"), 0755), IsNil) | ||
| } |
There was a problem hiding this comment.
Suggested change
| configureHooks := []string{"configure"} | |
| c.Assert(os.Mkdir(filepath.Join(sourceDir, "meta", "hooks"), 0755), IsNil) | |
| for _, hook := range configureHooks { | |
| c.Assert(os.WriteFile(filepath.Join(sourceDir, "meta", "hooks", hook), []byte("#!/bin/sh"), 0755), IsNil) | |
| } | |
| c.Assert(os.Mkdir(filepath.Join(sourceDir, "meta", "hooks"), 0755), IsNil) | |
| c.Assert(os.WriteFile(filepath.Join(sourceDir, "meta", "hooks", "configure"), []byte("#!/bin/sh"), 0755), IsNil) |
miguelpires
approved these changes
Feb 19, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
It is currently possible to pack and install
snapd,baseandcoresnaps withdefault-configureandconfigurehooks, but those hooks are ignored during installation and option setting. My proposal is to extend the snap validation check (covers packing and installation) to prevent these unintended snap/hook combinations and possible silent failure.Spec:
Implements part of draft spec
Prohibit user-defined configuration hooks for specific essential snapsApproach:
Extend
snap/validate.gohook check that was introduced in #13097 as follows:default-configurehook forsnapd,baseorosconfigurehook forsnapd,baseconfigurehook forosto prevent new errors forcoreorubuntu-corewith existingconfigurehookKey covered paths: Snap Pack, Firstboot, Store Install, Sideload Install
JIRA: https://warthogs.atlassian.net/browse/SNAPDENG-7297
This PR builds on #13097