Sorry for the late reply. I got bogged down with other work until now. Thank you very much for all of your help, and for the suggestion with hugepages-control. I’m still hitting issues with hugepages access. Looking through the open jdk code here, it looks like the /sys/kernel/mm/hugepages directory gets scanned for anything that looks like hugepages-[0-9]*kB, but that seems to be denied:
= AppArmor =
Time: Jul 31 07:52:53
Log: apparmor="DENIED" operation="open" profile="snap.autopsy.autopsy" name="/sys/kernel/mm/hugepages/" pid=70889 comm="java" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /sys/kernel/mm/hugepages/ (read)
Suggestion:
* adjust program to not access '/sys/kernel/mm/hugepages/'
I also tried adding a ‘system-files’ rule like this:
system-files-hugepages:
interface: system-files
read:
- /sys/kernel/mm/hugepages
I verified both were connected:
snap connections autopsy | grep hugepages
hugepages-control autopsy:hugepages-control - -
system-files autopsy:system-files-hugepages - -
and received the same error when accessing. Is there anything I’m still missing?