22.04.4 LTS snap firefox chromium permission problems

Arpagone · April 6, 2024, 8:52am

Hi,

I’m experiencing a permission problem with snap and Apparmor trying to run firefox or chromium. I’m running 22.04.4 LTS and Ubuntu Pro support enabled.

This is my snap version:

(base) pippo@Ganimede:~$ sudo snap version
snap    2.61.3+22.04
snapd   2.61.3+22.04
series  16
ubuntu  22.04
kernel  5.15.0-101-generic
(base) pippo@Ganimede:~$

When I run firefox or chromium they stops to start. If I try to launch them from terminal I get back those errors:

(base) pippo@Ganimede:~$ firefox
cannot create mount point for file "/tmp/snap.rootfs_vDF3Sz/README.md": Permission denied

(base) pippo@Ganimede:~$ chromium
cannot create mount point for file "/tmp/snap.rootfs_QFJXpv/README.md": Permission denied

If I go to read in syslog file I can find those lines:

Apr  6 08:31:50 Ganimede systemd[4846]: Started snap.snap-store.ubuntu-software-de50015d-5d40-460b-be18-2447e2344f53.scope.
Apr  6 08:31:50 Ganimede snap-store_ubuntu-software.desktop[11558]: cannot create mount point for file "/tmp/snap.rootfs_MwvIqr/README.md": Permission denied
Apr  6 08:31:50 Ganimede kernel: [ 3333.275378] kauditd_printk_skb: 57 callbacks suppressed
Apr  6 08:31:50 Ganimede kernel: [ 3333.275380] audit: type=1400 audit(1712385110.343:307): apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=11558 comm="snap-confine" capability=12  capname="net_admin"
Apr  6 08:31:50 Ganimede kernel: [ 3333.275385] audit: type=1400 audit(1712385110.343:308): apparmor="DENIED" operation="capable" profile="/usr/lib/snapd/snap-confine" pid=11558 comm="snap-confine" capability=38  capname="perfmon"
Apr  6 08:31:50 Ganimede kernel: [ 3333.276664] audit: type=1400 audit(1712385110.343:309): apparmor="DENIED" operation="mknod" profile="/usr/lib/snapd/snap-confine" name="/tmp/snap.rootfs_MwvIqr/README.md" pid=11558 comm="snap-confine" requested_mask="c" denied_mask="c" fsuid=0 ouid=0

I tried to refresh snap but it can’t complete the operations:

(base) pippo@Ganimede:~$ sudo snap refresh
[sudo] password for pippo: 
Download snap "firefox" (4090) from channel "latest/stable"    4%  772kB/s 47.7serror: cannot perform the following tasks:
- Run post-refresh hook of "firefox" snap if present (run hook "post-refresh": cannot create mount point for file "/tmp/snap.rootfs_kHleRT/README.md": Permission denied)
- Run configure hook of "chromium" snap if present (run hook "configure": cannot create mount point for file "/tmp/snap.rootfs_IPuR2q/README.md": Permission denied)
(base) pippo@Ganimede:~$

What can I do to fix this problem? Could you be so kind to give me a suggestion? Many thanks and regards, Arpagone

popey · April 6, 2024, 1:39pm

Is this in some kind of container? What does the (base) part of your prompt indicate? A virtual environment?