release: use locking around lazy intialized state

[bboozzoo]

Some state data in the release package, namely AppArmor level/summary &
kernel/parser features as well as Seccomp feature set, is only initialized when
needed. Since there is a chance, this information could be accessed in
concurrently, we need to add some locking around the code that mutates the data.

[zyga]

LGTM but let's please just use one mutex for both AppArmor variables.

[pedronis]

using sync.Once would be more idiomatic

[bboozzoo]

@pedronis pushed the change to use sync.Once.

[pedronis]

some questions/comments

[pedronis]

were the actual functions like assesAppArmor etc tested?

[bboozzoo]

Yes, they are tested in a couple of places:

• https://github.com/snapcore/snapd/pull/6306/files#diff-ecc06490ecae634064182423ba57f533R197
• https://github.com/snapcore/snapd/pull/6306/files#diff-ecc06490ecae634064182423ba57f533R163
• https://github.com/snapcore/snapd/pull/6306/files#diff-ecc06490ecae634064182423ba57f533R138

I need to re-read the new code

[codecov-io]

Codecov Report

Merging #6306 into master will increase coverage by 0.02%.
The diff coverage is 95.12%.

@@            Coverage Diff             @@
##           master    #6306      +/-   ##
==========================================
+ Coverage   78.95%   78.98%   +0.02%     
==========================================
  Files         561      561              
  Lines       43650    43664      +14     
==========================================
+ Hits        34463    34486      +23     
+ Misses       6387     6378       -9     
  Partials     2800     2800

Impacted Files	Coverage Δ
release/seccomp.go	92.59% <90%> (+32.59%)	⬆️
release/apparmor.go	95.71% <96.77%> (+0.35%)	⬆️
overlord/hookstate/hookmgr.go	73.55% <0%> (-0.97%)	⬇️
image/image.go	72.98% <0%> (-0.08%)	⬇️
wrappers/core18.go	49.47% <0%> (ø)	⬆️
overlord/ifacestate/handlers.go	62.7% <0%> (+0.51%)	⬆️
cmd/snap/cmd_run.go	62.52% <0%> (+1.71%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update f3c9121...d91930d. Read the comment docs.

[stolowski]

Not super fond of the name.

[stolowski]

Do we have a test that checks if the assessment is cached and actually done once? Since this extra if goes away, it would be good to have a test, in case the implementation based on sync.Once gets replaced in the future with new Go.

[pedronis]

I looked into this, in the end I reorganized things quite a bit, mostly because the Mock* functions below are complicated/long but didn't help fully with testing this. I'm pushing the new code now, with it commenting the Once.Do bits always make some test fail.

[stolowski]

Mostly curiuous - is there a reason we use slightly different pattern here and above? I mean explicit call to assess(), rather than having Level() and Summary() methods that to sync.Once internally?

[pedronis]

These ones are used both internally and externally and also participate in the interface. Summary and Level are just exposed externally so having another layer of methods didn't seem interesting just for the symmetry.

[zyga]

This is nice, after writing this I was thinking about changing the code around to avoid the risk of forgetting to return. This makes the problem moot.

[stolowski]

What about other errors? I think with the change to the func AppArmorKernelFeatures() ([]string, error) method we are no longer returning actual appArmorKernelError from AppArmorKernelFeatures, no?

[pedronis]

appArmorKernelError doesn't exist anymore as a global, it's stored in the kernelError field of the impl of appArmorProber, and returned in their KernelFeatures methods and then out of AppArmorKernelFeatures

[stolowski]

LGTM. But I don't think "Simple" label is true anymore ;)

[chipaca]

Nice. Thank you!

[bboozzoo]

@pedronis thanks for the cleanup!