om26er
1
Hi!
I need to know what kernel patches are needed for full apparmor confinement for snapd?
I am using this patch right now https://gitlab.com/jjohansen/apparmor-kernel/-/commit/c05e705812d179f4b85aeacc34a555a42bc4f9ac and it seems to work partially.
Below is the line is see in snapd logs
AppArmor status: apparmor is enabled but some kernel features are missing: network
om26er
2
@jjohansen can you please point me in the right direction? I am using snapd 2.66 on Yocto based distribution.
om26er
3
Here is the output of snap version
root@localhost:~# snap version
snap 2.66+st+git-dirty
snapd 2.66+st+git-dirty
series 16
stos snapshot-2023w45-389.50daaf0a
kernel 6.15.0-yoctodev-standard
