Hello, new to snaps. I am trying to get a snap to build on snapcraft.io. I have been trying every which way for the past little while to get strict confinement working. This snap creates both a QT and Electron wallet for a crypto coin https://build.snapcraft.io/user/wagerr-ckti/wagerr (not its final location but a testbed). The compile builds the c++ code and QT wallet then builds an Electron wallet that uses the compiled binaries. The QT side of it works without a problem as do the cli binaries. I am getting the following error in snappy debug when running the electron app.
= AppArmor =
Time: Oct 15 18:59:09
Log: apparmor=âDENIEDâ operation=âopenâ profile=âsnap.wagerr-ckti.electronâ name="/proc/3857/setgroups" pid=3857 comm=âwagerr-electronâ requested_mask=âwâ denied_mask=âwâ fsuid=1000 ouid=1000
File: /proc/3857/setgroups (write)
Suggestion:
- adjust program to not access â@{PROC}/@{pid}/setgroupsâ
The snap also needs the have mode 4755 set on the file âchrome-sandboxâ which doesnât work in the Snapcraft store. I have tried various plugs to get this to work as well as the snapcraft-preload module and various ways to build the electron part of the app â but no joy so far. Can someone point me in the right direction? Is classic confinement the only way forward? Or is there an exhaustive list of interfaces/plugs somewhere that i can try?
Iâm wIlling to try anything at this point, can send exhaustive logging if needed &c.