ubuntu-phone team mailing list archive

[Alberto Mardegan <alberto.mardegan@xxxxxxxxxxxxx>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 02/03/2014 11:50 PM, Ted Gould wrote:
> The feature that Content Hub is using I've called "untrusted
> helpers" and it has a lot more flexibility than applications do as
> we're expecting that the helper managers to do a lot of the
> lifecycle management (or setup a trusted session to do it).  The
> original design was for the Infographic Visualization tools.  What
> it provides for a developer is that you can use Upstart to do all
> the PID tracking and setting up the AppArmor profiles.  For me,
> those are both scary bits of code, so I'd rather let Upstart handle
> them :-)

I had a quick look at the untrusted helper branch, but I couldn't
understand if it's suitable for my case:

" * Start an untrusted helper for a specific @type on a given
 * @appid.  We don't know how that is done specifically, as Upstart
 * will call a helper for that type.  And then execute it under the
 * Apparmor profile for that helper type."

What is "type" in this context? We have a couple of constraints which
I'm not sure that are supported by the untrusted-helper implementation:

1) Each untrusted helper has to be run with its own AppArmor profile
(so that the Facebook plugin cannot delete the Google account)

2) We need to be able to launch more than one instance of the same
account plugin: application A and application B might both request
access to the Facebook account at the same time.

Ciao,
  Alberto
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlLwny4ACgkQVLQegMXeCFIaigCfWNJ3tXvO7FuuV5h7Hpidb4k5
FpYAnRRLhcgCU+x3Z2grOATsnf/PqRh4
=wm1L
-----END PGP SIGNATURE-----