Ubuntu
snapd package

  1. Bug #1967884
  2. Activity log

Activity log for bug #1967884

Date Who What changed Old value New value Message
2022-04-05 14:10:27 Jamie Strandboge bug added bug
2022-04-05 14:40:29 Jamie Strandboge summary several snap-confine denials for capability net_admin on 22.04 several snap-confine denials for capability net_admin and perfmon on 22.04
2022-04-05 14:41:01 Jamie Strandboge description I recently upgraded to 22.04 and started seeing denials like: Apr 5 08:57:39 localhost kernel: [ 31.386426] audit: type=1400 audit(1649167059.397:267): apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=2333 comm="snap-confine" capability=12 capname="net_admin" Apr 5 08:58:14 localhost kernel: [ 66.234135] audit: type=1400 audit(1649167094.420:274): apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=5400 comm="snap-confine" capability=12 capname="net_admin" Apr 5 08:59:50 localhost kernel: [ 162.033225] audit: type=1400 audit(1649167190.215:293): apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=7166 comm="snap-confine" capability=12 capname="net_admin" I've not been able to figure out what is causing this and will add more details if I do. Filing this in case other see it too. I recently upgraded to 22.04 and started seeing denials like: Apr 05 09:38:51 iolanthe audit[5815]: AVC apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=5815 comm="snap-confine" capability=12 capname="net_admin" Apr 05 09:38:51 iolanthe audit[5815]: AVC apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=5815 comm="snap-confine" capability=38 capname="perfmon" Apr 05 09:38:51 iolanthe kernel: audit: type=1400 audit(1649169531.339:277): apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=5815 comm="snap-confine" capability=12 capname="net_admin" Apr 05 09:38:51 iolanthe kernel: audit: type=1400 audit(1649169531.339:278): apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=5815 comm="snap-confine" capability=38 capname="perfmon" I've not been able to figure out what is causing this and will add more details if I do. Filing this in case other see it too.
2022-04-05 23:39:34 Launchpad Janitor snapd (Ubuntu): status New Confirmed
2022-04-05 23:39:37 Alex Murray bug added subscriber Alex Murray
2022-09-11 16:41:26 Jiří Vyskočil bug added subscriber Jiří Vyskočil
2023-08-10 02:56:37 salem bug added subscriber salem