ubuntu-phone team mailing list archive

Thread
Date

mapplauncher

To: ubuntu-phone@xxxxxxxxxxxxxxxxxxx
From: Zoltán Balogh <zoltan.balogh@xxxxxxxxxxxxx>
Date: Tue, 28 Jul 2015 18:01:56 +0300
User-agent: Mozilla/5.0 (X11; Linux i686; rv:31.0) Gecko/20100101 Thunderbird/31.8.0

Hi,

Alberto Mardegan (mardy) has pinged us about the $subject and I think itworth to bring this idea to the community :)


So mardy and zbenjamin (big hands to both) made a study

mardy's findings were ->

"The idea is to turn the application binaries into shared modules, whoseexported symbol is their "main" function only (or they can remain as anexecutable, as long it's a position independent -pie exporting the"main" function).In the .desktop files, we replace the value of the Exec command withsomething like this:Exec=invoker --type=qt ./myapp "invoker" is a simple client which talksto a daemon over a socket, and instructs the daemon to load "myapp" intoits memory and run it.The advantage of doing this, is that the daemon has already forked offinto a process which has the Qt libraries loaded, also with theQGuiApplication and QQuickView objects instantiated (and possibly alsothe ubuntu-ui-toolkit components loaded and compiled).The "--type" parameter selects which daemon to talk to: since we canhave different types of applications (Qt, QML, QML with ubuntucomponents, SDL, Cordova, etc.) we can have more than one daemon (called"booster"), each one serving a specific type of application. We don'tneed to have all possible types of boosters running; we can optimizejust for the most common application types.

As an example, here are the boosters used in Sailfish: [1] [2] [3]

The booster daemons work by forking off into a child process which loadsthe common libraries and does all the possible initializations.Then it waits for a client (provided by the invoker binary) to connectover a socket, and when this happens the child process loads the desiredapplication and starts running it.The daemon could also read the client's apparmor profile and set it onthe child process before starting executing main()."

So I made simple and far from perfect packaging branches for theseprojects [4] and pushed the source packages to the SDK's Staging PPA [5]

I know that there are security concerns about how the mapplauncherdworks. After talking to the main developer (w00t on freenode) andreviewing the code I have learned what the mapplaucnher is doing [7]


If you have any experience or opinion about the topic please bring it up :)

This idea looks very promising and piling off seconds from the appstarts is something we all are interest, but obviously not for the priceof compromising our platform's security.


cheers,

bzoltan


[1] https://github.com/nemomobile/mapplauncherd
[2] https://github.com/nemomobile/mapplauncherd-qt
[3] https://github.com/nemomobile/mapplauncherd-booster-qtcomponents
[4] https://code.launchpad.net/~ubuntu-sdk-team/mapplauncherd/

[5]https://launchpad.net/~ubuntu-sdk-team/+archive/ubuntu/staging/+packages?field.name_filter=applauncher

[6] http://pastebin.ubuntu.com/11953953/
[7] http://pastebin.ubuntu.com/11953814/

Follow ups

Re: mapplauncher
From: Tyler Hicks, 2015-07-29
Re: mapplauncher
From: Rodney Dawes, 2015-07-28