Snapctl model command seems to require extra permissions


While debugging an issue with a snap, I noticed that the snapctl model command with a snap context does not run without any enhanced permissions.

I haven’t done much testing, but it seems to work fine in a snap with snapd-control interface at least.

Without it, I get the following type of error:

error: error running snapctl: insufficient permissions to get model assertion for snap {blah}

If extra interfaces are required, perhaps the docs should be updated to indicate that, as it doesn’t seem clear from the page here: Using the snapctl tool | Snapcraft documentation

Is the requirement of an extra interface expected ?

Cheers, Just