Canonical Click Reviewers tools (obsolete)

review tools message when using 'type:os' with "confinement" in snap.yaml

Bug #1607459 reported by Oliver Grawert on 2016-07-28

6

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Canonical Click Reviewers tools (obsolete)	Fix Released	Low	Jamie Strandboge
	Snapcraft	Invalid	Medium	Kyle Fazzari
	snapcraft (Ubuntu)	Invalid	Undecided	Unassigned

Bug Description

uploading a snapcraft built os snap to the store the selftest complains about os snaps not being allowed to have "confinement:" set. snapcraft should not forcefully add that option to the snap.yaml when "type: os" is set.

Revision history for this message

Sergio Schvezov (sergiusens) wrote on 2016-08-10:

#1

kyrofa just make sure to bring up the conflicts about type: core, gadget and kernel and if confinement makes sense; also think about core coming from say another distro (think about the built-on tag we discussed in Heildelberg) and think about the fact that some cores might not implement all the confinement primitives (where in that case the core snap would be devmode I guess)

Changed in snapcraft:
milestone:	none → 2.15
assignee:	nobody → Kyle Fazzari (kyrofa)
status:	New → Triaged
importance:	Undecided → Medium

Sergio Schvezov (sergiusens) on 2016-08-17

Changed in snapcraft:
milestone:	2.15 → none
summary:	- type:os should prevent adding "confinement" to the snap.yaml + type:os with "confinement" in snap.yaml is blocked in the store

Revision history for this message

Kyle Fazzari (kyrofa) wrote on 2016-08-17: Re: type:os with "confinement" in snap.yaml is blocked in the store

#2

I've discussed this with the snapd core team. They pointed out that any snap, regardless of its type, may include hooks. Hooks are confined just like apps, which means the `confinement` flag still makes sense to include in snaps of types other than `app`.

As a result, it sounds like the review tools need to change. I'm not sure this bug will make sense if I reassign it, so please log a new one against that project.

Changed in snapcraft (Ubuntu):
status:	New → Invalid
Changed in snapcraft:
status:	Triaged → Invalid

Revision history for this message

Kyle Fazzari (kyrofa) wrote on 2016-08-17:

#3

Or Sergio can update it while I'm commenting :P .

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2016-08-18:

#4

Fine to change the review tools but I'd like to understand what hooks are run for 'type: os' and why are they confined?

/me notes we currently allow 'confinement' with 'app' and 'kernel' and just added for 'gadget' based on Kyle's comment.

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2016-08-18:

#5

I should also mention that currently the tools don't block when 'confinement' is used with 'type: os', but they do mention it shouldn't be used (based on your answer to my last question, I'll obviously adjust as necessary).

Changed in click-reviewers-tools:
status:	New → Incomplete
importance:	Undecided → Medium
assignee:	nobody → Jamie Strandboge (jdstrand)
summary:	- type:os with "confinement" in snap.yaml is blocked in the store + review tools message when using 'type:os' with "confinement" in + snap.yaml

Jamie Strandboge (jdstrand) on 2016-08-18

Changed in click-reviewers-tools:
importance:	Medium → Low

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2016-09-27:

#6

With 0.45 the review tools no longer complain.

Changed in click-reviewers-tools:
status:	Incomplete → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.