/snapd

overlord/ifacestate: store the set of intended connections in the state #804

Closed
wants to merge 6 commits into
from

Conversation

Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@zyga @pedronis
@zyga
Contributor

zyga commented Apr 6, 2016

This branch adds the concept of Intent that is persistently stored by the interfaces manager.

When a connection is requested this fact is stored as an intent in the state. The operation is undone
for disconnections. Intents are persistent as they express an action that the system operator has performed.

Intents are also about to play an essential role when generating security on snap updates as they will be used to know which connections should be re-established when the snap changes.

zyga added some commits Mar 15, 2016

@zyga
overlord/ifacestate: add Intent type 
This patch adds Intent, a way for the interface manager to track
intended connections and disconnections. Intents can be marshaled to
JSON so that we can store them in the persistent state.

Signed-off-by: Zygmunt Krynicki <zygmunt.krynicki@canonical.com>
991eebf
@zyga
overlord/ifacestate: add Intents.Add 
Signed-off-by: Zygmunt Krynicki <zygmunt.krynicki@canonical.com>
424cfde
@zyga
overlord/ifacestate: add Intents.Remove 
Signed-off-by: Zygmunt Krynicki <zygmunt.krynicki@canonical.com>
a93f6bb
@zyga
overlord/ifacestate: add getIntents/setIntents 
Signed-off-by: Zygmunt Krynicki <zygmunt.krynicki@canonical.com>
0dbd27f
@zyga
overlord/ifacestate: have Connect store intent to connect in the state 
Signed-off-by: Zygmunt Krynicki <zygmunt.krynicki@canonical.com>
d2d1cab
@zyga
overlord/ifacestate: have Disconnect remove the intent-to-connect fro… 
…m the state

Signed-off-by: Zygmunt Krynicki <zygmunt.krynicki@canonical.com>

Some checks were not successful

1 failing and 3 successful checks
continuous-integration/travis-ci/pr — The Travis CI build failed
Details
@snappy-m-o
Integration tests — Success 67 tests run, 0 skipped, 0 failed.
Details
@snappy-m-o
autopkgtest — Success No test results found.
Details
coverage/coveralls — Coverage increased (+0.04%) to 76.895%
Details
3424326
overlord/ifacestate/ifacemgr.go
+ // Store the intent to connect
+ intents := getIntents(s)
+ intents.Add(Intent{Plug: plugRef, Slot: slotRef})
+ setIntents(s, intents)
@pedronis

pedronis Apr 6, 2016

Contributor

how will you handle when you have the intent, and a pending change for the same connection because of a restart? shouldn't intents be just called plug-connections and be set when the change is about done?

@zyga

zyga Apr 7, 2016

Contributor

I'm not sure if this answers your question but on Init() I'd like to load intents, add all snaps to the repository and spawn all the connect tasks for each of those. This will at least try to re-construct back the same state we were left off before reboot.

There is still some more work to be done for across reboots and this will be more and more interesting as we add hooks which can make each reboot rebuild the same set of intents to a different set of connections and their parameters (because hooks can alter attributes and can also fail).

Currently the actual side-effects of each connection are persistent across reboots (config for apparmor/seccomp/dbus/udev) and they are made effective even before snapd starts up (with systemd units). I wonder if given this fact we should simply persist connections directly.

I went with persistent intents vs persistent connections because I think we will move away from that model as it cannot support dynamic hooks completely.

@zyga
Contributor

zyga commented Apr 7, 2016

I'll switch this over to "the state of the system" (so not intent, the actual connection) and reopen

@zyga zyga closed this Apr 7, 2016

@zyga zyga deleted the zyga:ifaces-intents branch Dec 12, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment