Running chromium as user with NFS home folder at /staff/me:
me@jammy:~$ chromium
cannot open path of the current working directory: Permission denied
/var/log/syslog:
May 12 12:10:31 jammy systemd[15457]: Started snap.chromium.chromium.41586725-30fd-464e-9987-08936a8991eb.scope.
May 12 12:10:31 jammy kernel: [ 1496.959498] nfs: RPC call returned error 13
May 12 12:10:31 jammy kernel: [ 1496.959659] audit: type=1400 audit(1652375431.246:78): apparmor="DENIED" operation="sendmsg" profile="/usr/lib/snapd/snap-confine" pid=56203 comm="snap-confine" laddr=qq.ww.ee.rr lport=964 faddr=zz.xx.cc.vv fport=2049 family="inet" sock_type="stream" protocol=6 requested_mask="send" denied_mask="send"
root@jammy:~# cat /etc/apparmor.d/tunables/home.d/ubuntu
# This file is auto-generated. It is recommended you update it using:
# $ sudo dpkg-reconfigure apparmor
#
# The following is a space-separated list of where additional user home
# directories are stored, each must have a trailing '/'. Directories added
# here are appended to @{HOMEDIRS}. See tunables/home for details.
@{HOMEDIRS}+=/staff/ /fac/ /grad/ /visitor/
In our situation home folders are mounted using autofs using NFS v4, Kerberos is NOT in use.
root@jammy:~# lsb_release -rd
Description: Ubuntu 22.04 LTS
Release: 22.04
root@jammy:~# dpkg -l chromium-browser 4183.83- 0ubuntu2 amd64 Transitional package - chromium-browser ->>
--snip--
ii chromium-browser 1:85.0.
root@jammy:~# snap list |grep chromium
chromium 101.0.4951.64 1993 latest/stable canonical* -
Running chromium as user with NFS home folder at /staff/me:
me@jammy:~$ chromium
cannot open path of the current working directory: Permission denied
/var/log/syslog: chromium. 41586725- 30fd-464e- 9987-08936a8991 eb.scope. 1.246:78) : apparmor="DENIED" operation="sendmsg" profile= "/usr/lib/ snapd/snap- confine" pid=56203 comm="snap-confine" laddr=qq.ww.ee.rr lport=964 faddr=zz.xx.cc.vv fport=2049 family="inet" sock_type="stream" protocol=6 requested_ mask="send" denied_mask="send"
May 12 12:10:31 jammy systemd[15457]: Started snap.chromium.
May 12 12:10:31 jammy kernel: [ 1496.959498] nfs: RPC call returned error 13
May 12 12:10:31 jammy kernel: [ 1496.959659] audit: type=1400 audit(165237543
root@jammy:~# cat /etc/apparmor. d/tunables/ home.d/ ubuntu +=/staff/ /fac/ /grad/ /visitor/
# This file is auto-generated. It is recommended you update it using:
# $ sudo dpkg-reconfigure apparmor
#
# The following is a space-separated list of where additional user home
# directories are stored, each must have a trailing '/'. Directories added
# here are appended to @{HOMEDIRS}. See tunables/home for details.
@{HOMEDIRS}
root@jammy:~# cat /etc/auto.staff SSSSS.edu: /nfshome/ staff/&
* -rw,nosuid nfshome.