Personal-files request for jhack

ppasotti · September 1, 2022, 7:52am

Hi all, the strictly confined jhack snap makes use of a personal-files interface to read/write ~/.local/share/juju, so that the juju client it embeds can share the controllers, models, credentials, etc… available to the user-owned juju snap.

Read access via juju-client-observe is not enough, because the embedded juju client needs to create certain lock files.

Copying ~/.local/share/juju to a snap-owned location (to gain write access) means that any newly added controllers, any credentials change, any changes to the local state essentially (current model, etc…) would desync the two jujus.

So the only way is to share r/w access to that directory.

Thanks in advance! Pietro

nuccitheboss · September 1, 2022, 3:51pm

@alexmurray I would like to support this personal-files request for jhack as I worked on getting the snap package strictly confined with Pietro.

As mentioned in the earlier forum post about getting jhack released under --classic, the personal-files interface is need so that jhack can read and modify the user’s current juju configuration. As Pietro mentioned, this interface is needed to prevent dsyncing between the embedded version of Juju and the standalone Juju installed on the host.

jhack uses the juju python library which reads ~/.local/share/juju to get the Juju client configuration on the host. This is how jhack is able to access models, units, applications, etc. You can audit the source code for jhack here on GitHub.

Thanks for all your help!

alexmurray · September 12, 2022, 12:46am

+1 from me for use of a personal-files instance named dot-local-share-juju with write access to ~/.local/share/juju - note I do not think auto-connect is appropriate since you are requesting write access jhack is not the clear owner of this path - juju is. Personally I would like to see the juju snap expose whatever you require via a content interface so that you can use that instead, rather than having to embed juju directly in jhack as that would make its permissions clearer.

ppasotti · September 12, 2022, 6:23am

Yeah we did think that it would be great if juju exposed a binary interface which allowed us to hit the client directly. How does one go about requesting this?

ppasotti · September 14, 2022, 7:57am

@alexmurray so what are the next steps?

alexmurray · September 14, 2022, 12:00pm

We still need other @reviewers to vote - ping

Igor · September 20, 2022, 11:01am

+1 from me as well - personal-files instance named dot-local-share-juju with write access to ~/.local/share/juju. It would also be worth adding this to the snap description so that people know about the access and the purpose of it.

ppasotti · September 20, 2022, 11:41am

will do! thanks for the feedback. process-wise, how many votes are required?

It would be great if the strict snap could be released before the engineering sprint/UDS as I plan to showcase it there

also, is autoconnect included in this? Or is that a different approval process?

ppasotti · September 20, 2022, 1:57pm

I just pushed a 0.2.95-strict version with an extended description mentioning what @Igor suggested.

emitorino · September 20, 2022, 3:48pm

+2 votes for, 0 votes against. Granting use (but not auto-connect) of personal-files with write access to $HOME/.local/share/juju using the iface reference dot-local-share-juju. This is now live.