Tizen 3 IVI Architecture Multi User App FW

Tizen 3 IVI ArchitectureMulti User App FW

Dominig ar Foll (Intel Open Source Technology Centre)dominig.arfoll@fridu.net

02 Feb 2014

2 FOSDEM'14 Automotive devroom – Tizen Multi User Application Framework

Tizen 3

What is an In Vehicule Infotainement (IVI)

Tizen Project Open development

Tizen Architecture Overview

Multi-user challenge

Tizen 3 AppFW

Tizen 3 User Mgt

Tizen 3 Open Project TSG Arch Forum API Forum

Release En-

gineer

QA Engineer

Domain

Maintainers

Integrators

Reviewers

package package

Architects

Domain

Maintainers

Integrators

Reviewers

package package

Architects

Git Group

Developers

Reviewers

[Integrators]

Maintainers

Architects

Tizen 3 : Code contribution Flow

Write codeWrite code

Developer

Reviewer

Submit to

Gerrit

Submit to

Gerrit

ReviewReviewOffer suggestionsOffer suggestions

Not OKApprove

contribution

Approve

contribution

Maintainer

[Integrator]Integrate

contribution

Integrate

contribution

Release

engineer

Create imageCreate image Release imageRelease image

MaintainerMaintainer

Maintainer can override

code acceptance at any step

Release to

build system

Release to

build system

Smoke TestSmoke Test

Not OK

General Architecture

- Fastboot- Embedded Security- Connected- HTML5- Specialised IVI Middleware

Architecture Overview (Mobile Profile)

Manufacturer

Adaptation

Interface

SMACKSMACK

Architecture Overview (IVI profile)

W3C/HTML5 W3C/HTML5 Device APIs Device APIs

Web Runtime Web Runtime

VideoVideo TouchTouch

CSS3CSS3 WebGLWebGL

WorkerWorker

BTBT CallCall

LBSLBS NFCNFC

MsgMsg… …

ApplicationsApplications

Web FrameworkWeb Framework

KernelKernel

CoreCore

Application

Framework

Application

FrameworkGraphics & UIGraphics & UI MultimediaMultimedia WebWeb MessagingMessaging LocationLocation

SecuritySecurity SystemSystem BaseBase ConnectivityConnectivity TelephonyTelephony PIMPIM

Linux Kernel & device driversLinux Kernel & device drivers

Web ApplicationsWeb Applications

Public

IVIIVI

Tizen Multi-user system

Tizen Multi-user requirement

● Guest log in by default▪ Start Generic Application

(e.g. rear cam, radio, ...)

● User logging in shall not stop running applications▪ ID user is added on top of Guest.

▪ Multiple user can share the same Display(e.g. passenger and drivers)

▪ Users can exchange seats (and so Display)

● Security must protect the user data and the system data.

Disociate Seat and User

● General Linux▪ Before Login → No use

▪ Seat = Display

● IVI▪ Before Login → Guest

▪ Login → add user to a seat

▪ User can change seat

What needs to change

● Application Frame work

● Login Manager

● Startup procedure

● Sécurity model

Application Framework

▪ Launching Application▫ Explicit or implicit information (Combination of Action, URI, and

MIME) can be used to determine an app to launch and the control backend.

▫ Allowed to launch different type of app (i.e. Web to Native and Native to Web)

▪ Application life cycle management▫ Install – delete – update▫ List all, recently launch– Search – swap active

▪ Event Handler▫ Screen orientation size and number, dim, off▫ Critical resources RAM, disk, batterie, ...

▪ Inter App communication▫ Service Req▫ Message exchange▫ Copy/Paste▫ Drag/Drop

Multiple back-endsApplication Framework

Tizen App Run Time

WRTbackend

CoreBackend

CloudBackend

Event handler

Tizen 3.x : Launching App (general model)

App svc AMDCheck all App Info

Native-core

LaunchpadSet environment

Forkedas user

Hybridpre-launch

Launched

D-Bus Request

User env

Tizen 3: Single Launcher – Multi User

● Accumulate environment information for each logged user(a PAM module could be a good entry point for initial env. collection)

● Serve launch request(by name, ID, Mime type, …)

● Ask user for choice when multi application can serve the request.

● Verify if Launch is authorised for the user (profile) in current context(car in movement, battery status, data roaming, ....)

● Subcontract the launch to a specialised launcher (launchpad) per App type(OSP, WRT, Core native)

● Three launchpads can be foreseen(OSP, WRT, Core Native).

● Receive all the context (sécurity, environment, ...) from AMD.

● Insert the Application at launch in the user context

● Manage lib and info caching to speed launch(preload, pre-link, …)

● Manage App Live cycle (could also be in AMD)(kill, pause, slowdown, garbage collection)

AMD & Launchpadrun with privilege

LaunchpadAMD

Launching Sequence | (1/2)

• Preload daemon on system session– CoreApp / NativeApp

Application Management Daemon

Request

Launchpad/tmp/alaunch/-1

system sessionuser session

Request

UID 7001

UID 7002

SO_PEERCRED- pid- uid- gid

Launchpad

set_app_privilege(,uid,)set_env(user-env)

libprivilege-control.so

set_app_privilege(,uid,) { set_dac(,uid,)}

set_dac(,uid,) { setgroups() setgid(APP_GID) setuid(uid)}

{uid, user-env}

• Preload daemon on system session– WebApp

Launching Sequence | (2/2)

Application Management Daemon

Wrt_launchpad/tmp/alaunch/-3

system sessionuser session

UID 7001

SO_PEERCRED- pid- uid- gid

{uid, user-env}

Process pool launch

Normal launch

A webapp

Webapp.ui_process

Webapp.web_process

Wrt-client

forkset_user(uid, gid)set_env(user-env)

fork {uid}

Candidate.ui_process

Candidate.web_process

Launch request{uid, user-env}

Request{uid, user-env}

A webapp

Webapp.ui_process

Webapp.web_process

instantiation

Function call

set_user(uid, gid)set_env(user-env)

AppFW with TLM

ImpactSingle AMD/Launchpad running with privileges

● User session ENV must be known ● UID is extracted from Launch request● App Launch control is simple● Resource optimisation● Simplification to Tizen DB access

Issues● Apps are added in user session from outside● Some ENV variables are created only in user

session, e.g. d-bus, display, …● AMD or Launchpad need to manage App live

cycle and do the App garbage collector

Soft coded paths All positions are positions are platform defined

● Position defined by a unique source code● Apps user Env variables for all location● XDG names are use when defined by

Freedesktop.orgAll user dir are relative to $HOME

● Created at run time (no pre-installation)● Music, Photos, videos, ...● Apps (private and shared)● Vconf (equivalent) private Data● Apps data remain private● Documents (e.g. Media) shared or public

Tizen DB● Position are absolute● User add/remove utilities

Add / remove / Activate UserSupport creating, editing and deleting users and groups through a D-Bus APISupport GUI-less session managementSupport auto-login of guest and default user accountsSupport clean-up of guest environmentSupport via PAM plug-ins multiple authentication credentials per user (key fob, NFC, password/pin code)Support auto-relogin after short power outages (IVI)

gumd / libgum (user management daemon / lib)

(Optional)Daemon providing D-Bus and GObject-based client APIs toCreate, modify and delete usersCreate, modify and delete groupsAssign permissions to users through groupsSupport shared group foldersSupport additional user information like avatar images and nick namesAPI access controlled through SMACK – caller doesn’t need root privileges or execute setuid binariesBetter implementation model compared to running scripts from a GUI

tlm (tizen login manager)

Creating default sessions at startupGUI-less user switching through hardware authentication (key fob, fingerprint, etc)Support simultaneous sessions on multiple seatsSuspend/resume of sessions on different seatsCleanup of guest data on logoutManages session namespaces

Gulf of Morbihan, south of Brittany, France

Pointers

Links – Tizen

● Main site: tizen.org

● Tizen Association: www.tizenassociation.org

● Applications Development: developer.tizen.org

● Platform Development: source.tizen.org

● Snapshots: download.tizen.org

● Documentation: developer.tizen.org/documentation

● Wiki: wiki.tizen.org

● Bugs: bugs.tizen.org

Links – Tizen IVI

● General info: wiki.tizen.org/wiki/IVI

● GENIVI: genivi.org

Links – Tizen build tools

● Development tools : download.tizen.org/tools

● GBS: source.tizen.org/documentation/reference/git-build-system

● MIC : source.tizen.org/documentation/reference/mic-image-creator

● OBS : openbuildservice.org

● GERRIT: code.google.com/p/gerrit

● GIT: git-scm.com

Upstream projects

● Linux Kernel, SMACK, systemd, dbus

● OpenSSL, Sqlite

● X, Wayland, EFL, Enlightenment, Cairo

● Connman, BlueZ, oFono, wpa_supplicant

● Gstreamer, PulseAudio

● Webkit

● Eclipse (SDK)

● Qemu, U-boot (emulator)

● GCC, llvm, cmake, git (build)

● … and more ...

Tizen 3 IVI Architecture Multi User App FW

Documents

Transcript of Tizen 3 IVI Architecture Multi User App FW

Tizen Platform SDK: The Easy Way to Develop Tizen Platformdownload.tizen.org/.../slides/tdc2014-tizen-platform-sdk.pdf · 2014-06-19 · Tizen Platform SDK: The Easy Way to Develop

Tizen 3.0 Compliance Specification for IVI Profile...7 Tizen 3.0 for IVI Compliance Specification • Applications: if built to a profile, applications will run on HUs that are compliant

Audit on GENIVI’s components in AGL/Phase-1 › download › public › 2015 › Audit_on... · 1. Introduction Early 2014, AGL chose Tizen IVI as the reference distribution for

HTML5 Applications Made Easy on Tizen IVI · HTML5 Applications Made Easy on Tizen IVI Brian Jones / Jimmy Huang . 2 IVI Systems Today • Lots of hardware variety. • Multiple operating

HTML5 Applications Made Easy on Tizen IVI · Tizen widgets, such as control bar and virtual list, and jQuery Mobile widgets are available. Web themes CSS themes and resources for

Developing Tizen Apps with the Tizen SDK · Developing Tizen Apps with the Tizen SDK * This document is based on Tizen 2.4 SDK . ... System Requirements for Tizen SDK Processor and

Tizen IoT: Overview and future (TDC2017) - Amazon … Native API C#-Native API C# Native Applications C-Native API Web FW App FW Messaging Context Multimedia System FW Security Network

Toshiyuki Mitsue SSG / Intel · 2017-11-07 · Monetize by selling services and apps integrated into Tizen IVI (in planning) •Tizen™ IVI developer program •Unified Tizen™

TIZEN IVI Audio Management

Tizen based remote controller CAR using raspberry pi2€¦ · Embedded Linux Conference – th06 April/2016 8 #ELC2016 Mobile Wearable IVI Common TV TIZEN Camera PC/Tablet Printer

HACKING TIZEN - HITB · Tizen Security community. • Personal View/Research, ... Supports Android application with Tizen Application Compatibility Layer (ACL). TIZEN ARCHITECTURE

Porting Tizen to Odroid-U3 & Tizen Training Course

Tizen Hybrid Application · Tizen Hybrid Application (Tizen Ver. 2.3) 2 Unit 4-1. Introduction of Tizen Hybrid App ... Rapid development using open-source native/web libraries ...

IVI-3.1: Driver Architecture Specification Specifications/… · IVI Foundation 2 IVI-3.1: Driver Architecture Specification Important Information IVI-3.1: Driver Architecture Specification

Audit on GENIVI’s components in AGL/Phase-1iot.bzh/download/public/2015/Audit_on_GENIVI_components...Audit on GENIVI’s components in AGL/Phase-1 - ANNEX NAME POKY 1.7 TIZEN IVI

Interchangeability Using IVI Class Interfaces · 2017. 7. 21. · IVI drivers interact with IVI Shared Components such as the IVI Configuration Server and the IVI Session Factory.

HTML5 & IVI - Tizen · HTML5 & IVI Ethan Coh ethan.coh@obigo.com . 2 tizen.org Prologue . 3 tizen.org 40 years . 4 tizen.org 20 years . 5 tizen.org All of the technology required

Introduction to Tizen and Tizen Mobile Architecture

TIZEN Installation Guide UCView Digital Signage TIZEN ... · TIZEN Installation Guide UCView Digital Signage TIZEN Installation on Samsung SMART Screen 1. Connect your Samsung TV

Porting Tizen-IVI 3.0 to an ARM based SoC Platformdownload.tizen.org/misc/media/conference2014/slides/tdc... · 2014. 6. 19. · drm/kms driver client process Weston compositor libkms