some progress got the snap working on strict from devmode still got these denials also its still working fine with audio.
Did this after try prime
sudo snap connect foobar2000:hardware-observe core:hardware-observe
sudo snap connect foobar2000:process-control core:process-control
sudo snap connect foobar2000:cups-control core:cups-control
then below denials with stock snap profile
= AppArmor =
Time: Jan 28 13:52:00
Log: apparmor="DENIED" operation="dbus_method_call" bus="system" path="/org/freedesktop/UDisks2" interface="org.freedesktop.DBus.ObjectManager" member="GetManagedObjects" mask="send" name="org.freedesktop.UDisks2" pid=27144 label="snap.foobar2000.foobar2000" peer_pid=2215 peer_label="unconfined"
DBus access
= AppArmor =
Time: Jan 28 13:52:00
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/home/mmtrt/snap/" pid=27125 comm="wineserver" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000
File: /home/mmtrt/snap/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/writable/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /writable/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/var/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /var/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/usr/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /usr/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/srv/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /srv/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/snap/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /snap/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/sbin/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /sbin/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/run/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /run/ (read)
Suggestions:
* adjust program to use $SNAP_DATA
* adjust program to use run/shm/snap.$SNAP_NAME.*
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/opt/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /opt/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/mnt/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /mnt/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/meta/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /meta/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/media/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /media/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/lib64/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /lib64/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/etc/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /etc/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/boot/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /boot/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
= AppArmor =
Time: Jan 28 13:52:55
Log: apparmor="DENIED" operation="open" profile="snap.foobar2000.foobar2000" name="/bin/" pid=27211 comm="foobar2000.exe" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
File: /bin/ (read)
Suggestion:
* adjust program to read necessary files from $SNAP, $SNAP_DATA, $SNAP_COMMON, $SNAP_USER_DATA or $SNAP_USER_COMMON
The *.exe file denials are showing when I tried to add files from home/music like browsing from root to dir opening folders.
EDIT: I think first two apparmor denials need fixing udisks2 and wineserver we can ignore *.exe denials probably not harmful as we can files to playlist on app via right click open with the app works fine no log denials from it.