ubuntu-phone team mailing list archive

Thread
Date

Re: Catching CPU run-aways on Touch

To: ubuntu-phone@xxxxxxxxxxxxxxxxxxx
From: Jamie Strandboge <jamie@xxxxxxxxxxxxx>
Date: Thu, 05 Sep 2013 12:09:10 -0500
In-reply-to: <522872A1.4050106@canonical.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130803 Thunderbird/17.0.8

On 09/05/2013 07:01 AM, Alberto Mardegan wrote:
> On 09/05/2013 12:42 PM, Colin Ian King wrote:
>> On 05/09/13 10:33, Colin Ian King wrote:
>>> On 05/09/13 10:23, Evan Dandrea wrote:
>>>> Stuart Langridge brought up an interesting idea for this on IRC, which
>>>> I'm copying here rather than having more side discussions:
> [...]
> 
> Oops, I should have read the whole thread before posting my previous
> e-mail. :-)
> 
>> Anyhow, I still think myAppIsRunning() is open to abuse as it will in
>> time be lavishly added to all sorts of tight loops that suck CPU, which
>> just adds more overhead on the long run.
> 
> Well, if we don't have a myAppIsRunning() API, apps can simply busy-loop
> whenever they want, so I don't see much harm in adding this API.
> We could also protect it with apparmor, so that the usage of this API
> must be explicitly declared in the application's manifest file (and then
> we could question whether the app has any reason to use it).
> 
We can't control access to library calls in this manner. You can mmap the
library and get everything, or you can't. We can't block the mmap of the library
because an app could just ship its own version of the library and mmap it. If
the library called out to an out of process helper over dbus, then we could
mediate it. That is pretty over the top though and I'm not convinced having this
perm is worthwhile anyway-- we almost certainly wouldn't have a contextual
runtime prompt for the access and appstore reviewers would almost certainly
always allow it-- so the perm becomes meaningless.

I think the point of this API is not to protect against abuse, but to allow a
well-intentioned app from getting killed. To me, an abusive app will be handled
by bad reviews/bug reports ("This app sucks-- my battery is dead in 5 minutes
whenever I use it"). Because we don't have a way to distinguish between
accidental and intentional high CPU usage now, we don't have anything other than
app reviews. If we introduce this call, we can detect the accidental high CPU
usage now. The handful of apps that abuse it can still be handled via user
reviews like they are now.



-- 
Jamie Strandboge                 http://www.ubuntu.com/

Attachment: signature.asc
Description: OpenPGP digital signature

Follow ups

Re: Catching CPU run-aways on Touch
From: Alberto Mardegan, 2013-09-09

References

Catching CPU run-aways on Touch
From: Evan Dandrea, 2013-09-04
Re: Catching CPU run-aways on Touch
From: Evan Dandrea, 2013-09-05
Re: Catching CPU run-aways on Touch
From: Colin Ian King, 2013-09-05
Re: Catching CPU run-aways on Touch
From: Colin Ian King, 2013-09-05
Re: Catching CPU run-aways on Touch
From: Alberto Mardegan, 2013-09-05