fix(profile): integration fix.

apparmor.d/groups/network/netplan.script

@@ -40,6 +40,8 @@ profile netplan.script @{exec_path} flags=(attach_disconnected) {
     include <abstractions/base>
     include <abstractions/app/systemctl>
 
+    capability net_admin,
+
     include if exists <local/netplan.script_systemctl>
   }
 

apparmor.d/groups/snap/snap

@@ -37,6 +37,7 @@ profile snap @{exec_path} flags=(attach_disconnected) {
 
   #aa:dbus talk bus=session name=io.snapcraft.PrivilegedDesktopLauncher label=snap.snap-store.snap-store
   #aa:dbus talk bus=session name=org.freedesktop.systemd1 label="@{p_systemd_user}"
+  #aa:dbus talk bus=system name=org.freedesktop.systemd1 label="@{p_systemd}"
 
   dbus send bus=session path=/org/freedesktop/portal/documents
        interface=org.freedesktop.portal.Documents

apparmor.d/groups/snap/snapd

@@ -187,6 +187,8 @@ profile snapd @{exec_path} {
     capability net_admin,
     capability sys_resource,
 
+    network netlink raw,
+
     /etc/systemd/system/{,**/} r,
     /etc/systemd/system/snap* rw,
     /etc/systemd/user/{,**/} rw,

apparmor.d/groups/systemd/hostnamectl

@@ -16,6 +16,10 @@ profile hostnamectl @{exec_path} {
   capability net_admin,
 
   #aa:dbus talk bus=system name=org.freedesktop.hostname1 label=systemd-hostnamed
+  dbus send bus=system path=/org/freedesktop/hostname1
+       interface=org.freedesktop.DBus.Properties
+       member=GetAll
+       peer=(name=org.freedesktop.hostname1),
 
   @{exec_path} mr,