Comment 0 for bug 1875232

Revision history for this message
Marcel Partap (empee584) wrote :

`snap run hello-world` (and other snaps) does not work on our debian 10 live distro where `/tmp` is an overlayfs mount with upperdir on another tmps (mounted with noatime,defaults, i.e. not noexec or similar). The failure is "cannot open base directory /tmp/snap.hello-world: Permission denied" which also occurs after having reinstalled hello-world in devmode (i.e. no confinement). The syslog shows a message:

audit: type=1400 audit(1587919028.547:62): apparmor="DENIED" operation="open" profile="/snap/core/9066/usr/lib/snapd/snap-confine" name="/rw/snap.scrcpy/" pid=312860 comm="snap-confine" requested_mask="r" denied_mask="r" fsuid=0 ouid=0

Without the overlay on /tmp everything does work normally.