Zhuowei Zhang on Nostr: Learning about the Amazon Echo Show 5, from inside the sandboxed Wi-Fi captive portal ...
Learning about the Amazon Echo Show 5, from inside the sandboxed Wi-Fi captive portal browser:
- open /etc/hosts returns -1 (EPERM)
This suggests a sandbox is enabled
- mincore crashes the process
This suggests there's more sandboxing than the Chrome sandbox: the Chrome sandbox allows mincore. Or I'm just calling it wrong.
- getpid returns 2
This suggests that it's running inside a container with PID namespacing
- getuid returns 5000
- uname returns:
Linux echoshow-<hex digits> 5.4.86 #1 SMP PREEMPT Fri Mar 9 12:34:56 UTC 2018 armv7l(none)
(The build time - 12:34:56 - is obviously a placeholder. The armv7l is because the browser runs as 32-bit; I think the actual kernel is 64-bit?)
- open /etc/hosts returns -1 (EPERM)
This suggests a sandbox is enabled
- mincore crashes the process
This suggests there's more sandboxing than the Chrome sandbox: the Chrome sandbox allows mincore. Or I'm just calling it wrong.
- getpid returns 2
This suggests that it's running inside a container with PID namespacing
- getuid returns 5000
- uname returns:
Linux echoshow-<hex digits> 5.4.86 #1 SMP PREEMPT Fri Mar 9 12:34:56 UTC 2018 armv7l(none)
(The build time - 12:34:56 - is obviously a placeholder. The armv7l is because the browser runs as 32-bit; I think the actual kernel is 64-bit?)