interfaces: expose bluez interface on classic OS

[willdeberry]

No description provided.

[codecov-io]

Codecov Report

Merging #3812 into master will increase coverage by <.01%.
The diff coverage is 100%.

@@            Coverage Diff             @@
##           master    #3812      +/-   ##
==========================================
+ Coverage    75.7%   75.71%   +<.01%     
==========================================
  Files         409      409              
  Lines       35227    35241      +14     
==========================================
+ Hits        26670    26684      +14     
  Misses       6672     6672              
  Partials     1885     1885

Impacted Files	Coverage Δ
interfaces/builtin/bluez.go	100% <100%> (ø)	⬆️
wrappers/binaries.go	72.72% <0%> (-6.82%)	⬇️
interfaces/sorting.go	98.71% <0%> (-1.29%)	⬇️
overlord/snapstate/snapstate.go	80.7% <0%> (+0.25%)	⬆️
cmd/snap/cmd_aliases.go	95% <0%> (+1.66%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 93c1d78...1d52415. Read the comment docs.

[zyga]

Looks good to me, please resolve the conflicts and get a 2nd +1 from @jdstrand

[chipaca]

Shouldn't this only expose bluez if the system has bluez running?

[jdstrand]

Thanks for the updates! This is well on its way, just a few more small changes and we should be able to commit this.

[jdstrand]

The base declaration changes look good.

[jdstrand]

You need to do this same sort of thing in SecCompPermanentSlot()

[jdstrand]

Please add this comment before this line:

// on a core system with bluez slot coming from a regular app snap.

[jdstrand]

Before this line you should:

// on a classic system with bluez slot coming from the core snap.
restore = release.MockOnClassic(true)
defer restore()

[jdstrand]

Like in TestAppArmorSpec, you need to test for when on classic and when not on classic (to test the (requested) changes to SecCompPermanentSlot(), above)

[jdstrand]

Here you should test for both when on classic and when not on classic. In this case, the resulting testutil.Contains will be the same, since you didn't (and we don't need to) change UDevConnectedPlug().

[jdstrand]

Also, while I didn't explicitly request it, please add the appropriate comments // on a classic|core system with bluez slot coming from the core|app snap. when updating the testsuite for udev and seccomp.

[jdstrand]

"Shouldn't this only expose bluez if the system has bluez running?"

@chipaca - no. In terms of security policy, it doesn't matter if the slot side (in this case, bluez on classic) is running.

In terms of dynamic slots (something planned for the future), this is interesting to think about. For example, the plan is that on boot the core snap would be able to enumerate the serial ports, i2c devices, etc and then dynamically expose them as slots. It is theoretically possible to extend this to classic services-- eg, if bluez or network-manager isn't running, don't expose those slots. This is a bit tricky because the services not running could simply be a temporary situation (admin stopped them, they come up after snapd, etc). @niemeyer - perhaps you want to have in the back of your mind dynamic slots for (classic) services when considering hotplugging (obviously not for this PR :).

[jdstrand]

This one should be s.coreSlot.

[jdstrand]

One last item, inline.

[jdstrand]

Thanks for all your care on this PR! Assuming the tests pass, LGTM.

[mvo5]

Thanks a lot @willdeberry - also thanks for signing the contributor agreement!