On 5/20/14, 11:03 AM, The Wanderer wrote:
If it is properly sandboxed, it should not be able to find out anything about the sandbox (== the host executable) except what the sandbox itself tells it
A sandboxed process still have full access to its own address space, no? It may be restricted in terms of what system calls it can make, but within itself it can do whatever it wants.
So if the CDM is running directly in the sandbox process address space (as opposed to running in some sort of VM) then it can interrogate things like the address space layout and compare it to the layout it expects.
unless there are channels for it to access the host system which bypass the sandbox.
Inspecting your own address space doesn't require access to the system. -Boris _______________________________________________ governance mailing list governance@lists.mozilla.org https://lists.mozilla.org/listinfo/governance
