Comment 7 for bug 1871148

Apr 06 16:32:56 defiant systemd[1]: Starting Load AppArmor profiles...

Apr 06 16:32:56 defiant systemd[1]: Finished Load AppArmor profiles.

^ this supposedly takes zero seconds, it doesn't load any snap profiles.

Then two seconds later:

Apr 06 16:34:58 defiant audit[11920]: AVC apparmor="DENIED" operation="change_onexec" info="label not found" error=-2 profile="/usr/lib/snapd/snap-confine" name="snap-update-ns.telegram-desktop" pid=11920 comm="snap-confine"

Scanning the log doesn't show that this profile is ever loaded.

Some other profiles are loaded, though not at the time that is inside the scope of apparmor.service

Apr 06 16:35:01 defiant kernel: audit: type=1400 audit(1586187301.952:43): apparmor="STATUS" operation="profile_load" profile="unconfined" name="/snap/core/8935/usr/lib/snapd/snap-confine" pid=12025 comm="apparmor_parser"

This is loaded over three minutes later. It could be from a manual intervention (the reporter was instructed to reload apparmor.service)