Snap app names are too permissive
Bug #1589613 reported by
Kyle Fazzari
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Canonical Click Reviewers tools (obsolete) |
Invalid
|
Undecided
|
Unassigned | ||
Snapcraft |
Fix Released
|
High
|
Kyle Fazzari | ||
snapcraft (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Xenial |
Fix Released
|
High
|
Unassigned | ||
Yakkety |
Fix Released
|
High
|
Unassigned | ||
snapd (Ubuntu) |
Fix Released
|
High
|
Kyle Fazzari | ||
Xenial |
Fix Released
|
High
|
Unassigned | ||
Yakkety |
Fix Released
|
High
|
Kyle Fazzari |
Bug Description
Currently snapd accepts app names that can cause issues in the rest of the system (e.g. invalid apparmor profiles like "myapp/", or clashing with hook names). These should be more restrictive: the current recommendation is `^[a-zA-
[Impact]
* snaps with invalid names are generated and installable.
* blocking problems earlier will make the experience better.
[Test Case]
* For snapcraft: make a snapcraft.yaml with an invalid name, and run snapcraft.
* For snappy: make a snap with an invalid name, and try to install it.
[Regression Potential]
* Valid names could be affected. Run some tests on valid names too.
Changed in snapd (Ubuntu): | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Kyle Fazzari (kyrofa) |
Changed in snapcraft: | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Kyle Fazzari (kyrofa) |
summary: |
- Snap app names are too permissive and can result in invalid AppArmor - profile names + Snap app names are too permissive |
Changed in snapcraft: | |
milestone: | none → 2.12 |
Changed in snapcraft: | |
status: | In Progress → Fix Committed |
Changed in snapcraft (Ubuntu Xenial): | |
milestone: | none → xenial-updates |
Changed in snapcraft (Ubuntu Xenial): | |
importance: | Undecided → High |
Changed in snapcraft (Ubuntu Yakkety): | |
importance: | Undecided → High |
Changed in snapd (Ubuntu Xenial): | |
importance: | Undecided → High |
description: | updated |
Changed in snapcraft: | |
status: | Fix Committed → Fix Released |
no longer affects: | Ubuntu Xenial |
no longer affects: | Ubuntu Yakkety |
To post a comment you must log in.
The review tools already mark '/' as an error and I just committed a test to make sure that stays true going forward.