@mvo: I think what is needed is a combination of generated .fstab files that work for core snap mounts (for those home directories) as well as generated snap.* file(s) in /etc/apparmor.d/tunables/home.d (to access those directories). There is a complication with that since the non-/home directories won't exist in the core snap (ie, /var/lib/jenkins).
As an aside, having snap-confine consult the .fstab files for core snap mounts would also mean we could move things like the /var/log mount into the log-observe and the /usr/src mount into the system-trace interface and have these mounts conditional on interface connection rather than always bind mounting them in. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1607710 Title: Home directories listed in /etc/passwd should be honoured To manage notifications about this bug go to: https://bugs.launchpad.net/snappy/+bug/1607710/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
