I am unable to come up with a security vulnerability caused by giving users/other apps access to 5s-bucketed granularity CPU usage data.
to clarify: are you talking about procfs hardening with hidepid? and are you saying that you'd want them to add a replacement API with artificially coarse CPU usage information?
-
-
Yes. To let users understand what the system is doing. Not necessarily even accessible from non-SYSTEM apps.
-
FWIW, even on release builds, you can enable USB debugging in the settings, "adb shell" into the phone over USB and run "top". the adb shell account has access to the "readproc" group, which bypasses hidepid. (yes, that might be less nice to use than an app on the phone.)
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.