Ubuntu
snapd package

  1. Bug #1662552
  2. Comment #6

Comment 6 for bug 1662552

Revision history for this message
Robert Redl (r5r3) wrote : Re: snaps don't work with NFS home /home/u/user.name

1. I already had @{HOMEDIRS}+=/home/*/ and I did not forget to reload. However, the audit message still refers to /home/r/, which is the actual parent directory of my home directory.

2. Including #include <abstractions/nameservice> directly below /usr/lib/snapd/snap-confine flags=(attach_disconnected) works. It don't seems to be necessary to include #include <abstractions/base>

Adding network inet and network inet6 solves the problem as well.

Snaps without network interface: Right, they don't work. A workaround is to install them in devmode.

Enabling network access for all snaps just to make them compatible with NFS don't seems to be a perfect solution from the security perspective. Doesn't that mean, that these snaps can access every network service, not only NFS? Is it possible to explicitly enable NFS (and other network file systems) and not enable network access for all kinds of services?