Hello,
I am aiming to publish Ella Core as a strictly confined snap. The upload failed because the system-files
interface is a super-privileged interface and requires a store request. There it is.
- name: ella-core
- description: Ella Core is a 5G mobile core network designed for private deployments. It consolidates the complexity of traditional 5G networks into a single application, offering simplicity, reliability, and security.
- snapcraft: core/snap/snapcraft.yaml at main · ellanetworks/core · GitHub
- upstream: GitHub - ellanetworks/core: Ella Core is a 5G mobile core network designed for private deployments.
- upstream-relation: I am both the publisher of the upstream and the snap.
- interfaces:
- \system-files:
- request-type: installation and connection
- reasoning: This application is a 5G core network and uses eBPF to route packets. To do so, the app needs read and write permissions to the
/sys/fs/bpf/upf_pipeline
host path.
- \system-files:
The snap also uses the following interfaces though I don’t think they require manual review:
- network
- network-bind
- network-control
- process-control
- system-observe
Thank you,