Snap applications cannot run on NFS filesystem

I’m trying to run a VLC or helm fromm the NFS mounted location under /media/nfs_drive.

When I type vlc from other location - it works fine, however when I’m in the /media/nfs_drive - It doesn’t work with the error: cannot open path of the current working directory: Permission denied

  • /var/log/audit/audit.log reports:
type=AVC msg=audit(1680732333.610:2426): apparmor="DENIED" operation="sendmsg" profile="/snap/core/14946/usr/lib/snapd/snap-confine" pid=134614 comm="snap-confine" laddr= lport=903 faddr= fport=2049 family="inet" sock_type="stream" protocol=6 requested_mask="send" denied_mask="send"
type=SYSCALL msg=audit(1680732333.610:2426): arch=c000003e syscall=257 success=no exit=-13 a0=ffffff9c a1=416dd7 a2=2b0000 a3=0 items=0 ppid=27368 pid=134614 auid=1000 uid=1000 gid=1000 euid=0 suid=0 fsuid=0 egid=1000 sgid=1000 fsgid=1000 tty=pts1 ses=1 comm="snap-confine" exe="/snap/core/14946/usr/lib/snapd/snap-confine" subj=/snap/core/14946/usr/lib/snapd/snap-confine key=(null)ARCH=x86_64 SYSCALL=openat AUID="beniamin" UID="beniamin" GID="beniamin" EUID="root" SUID="root" FSUID="root" EGID="beniamin" SGID="beniamin" FSGID="beniamin"
type=PROCTITLE msg=audit(1680732333.610:2426): proctitle=2F736E61702F636F72652F31343934362F7573722F6C69622F736E6170642F736E61702D636F6E66696E65002D2D6261736500636F7265313800736E61702E766C632E766C63002F7573722F6C69622F736E6170642F736E61702D6578656300766C63
  • /var/log/kern.log reports:

nfs: RPC call returned error 13

I suspect it’s an issue with an apparmor and snap-confine.

What I tried:

  • adding to /etc/apparmor.d/abstractions/base
  network inet,
  network inet6,
  • systemctl disable apparmor
  • aa-disable usr.lib.snapd.snap-confine.real
  • adding to /etc/apparmor.d/tunables/home

Everything fails. Snaps work well under SSHFS and CIFS, but fail only for NFS - is there any obvious solution that I missed?