Allow snaps to query interface connection status directly from snapd
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
snapd |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
Detecting whether certain security confinement interface is connected to the snap is not a trivial task:
* Sometimes certain access is granted by multiple interfaces, whether it's available or not didn't indicate whether a certain interface is connected
* One must have a certain level of Apparmor profile knowledge and check out the source code at https:/
* The testing of the connection will trigger security denials in the system log, which may be considered "abnormal" or even "malicious" by the users
As the connection info is already in snapd I would suggest exposing them directly via the `snapctl` command so one can simply write:
```bash
if ! snapctl is-connected _interface_name_; then
echo "_interface_name_ is not connected!" >&2
fi
```
without caring much the implementation details.
Changed in snapd: | |
status: | New → Triaged |
importance: | Undecided → Wishlist |
Changed in snapd: | |
status: | Fix Committed → Fix Released |
Discussion held at https:/ /forum. snapcraft. io/t/bug- 1809708- allow-snaps- to-query- interface- connection- status- directly- from-snapd/ 9147