Allow passthrough of files/directories from sandbox to host

[effectsbot]

Description

Here's an example where this feature would be useful: Discord creates a socket in the user's runtime directory on launch, which is used to detect games and display them as a status on the user's profile (Rich Presence). Unfortunately, there's no easy way to passthrough that socket from the sandbox to the host filesystem, making this feature unusable inside of bubblejail.

[igo95862]

Hello @effectsbot

The only solution I can think of is if the host directory is mounted somewhere the application will put its sockets/files. To mount something outside the sandbox you will need the privileges in the host's namespace which basically means having root permissions.

[effectsbot]

Hello @effectsbot

The only solution I can think of is if the host directory is mounted somewhere the application will put its sockets/files. To mount something outside the sandbox you will need the privileges in the host's namespace which basically means having root permissions.

Interesting. Thanks for letting me know.

[igo95862]

By the way, are you trying to setup discord's rich presence using some third party tool like: https://github.com/trickybestia/linux-discord-rich-presence

[effectsbot]

By the way, are you trying to setup discord's rich presence using some third party tool like: https://github.com/trickybestia/linux-discord-rich-presence

Nope. I'm just using what came with their client.

[rusty-snake]

The only solution I can think of is if the host directory is mounted somewhere the application will put its sockets/files.

Other idea: symlink to /proc/<sandbox pid1>/root/path/to/socket