Category Archives: hacking

Recommended: Appirater

  • May 8, 2011 – 5:52 pm
  • Posted in hacking
  • Comments Off

For the most recent release of WOD, I added the Appirater library — which prompts users to rate the app if they like it, with pretty sensible don’t-bug-me support — and the results were pretty astounding: the app currently has 15 five-star ratings (eight of which also left glowing reviews) and two four-star ratings (and one review, with some well-considered suggestions for improvement). This is a huge change from the norm: people would occasionally leave a good review, or rate it well, but also a few would just rate the app one or two stars without any comment.

Oh, The Coming Security Apocalypse!

  • April 26, 2011 – 6:43 pm
  • Posted in hacking
  • Comments Off

Portal 2 is an awesome game; still short, and some of the puzzles less than satisfying, but it’s a really worthy successor to the original. And it’s really cool that even though I bought a copy for the PlayStation 3, it came with a code I could use so I could also play the game on my Mac, via Steam.

Oh, wait. Well that was presumably the idea, if I could, you know, log in to the PlayStation Network and connect it to my Steam account and what-not, so I could then activate my copy. But nope; PSN has been offline for nearly a week now, after a huge breach of security that likely let someone download all ~60 million PSN users’ account information, including sensitive things like credit card numbers.

So, it occurs to me that this is not a big, public-yet-isolated incident, but rather that this is one of the first in a coming wave of very large and damaging security breaches. Attackers are becoming more sophisticated, at a pace that far outstrips how we’re making progress at making systems better, and becoming better programmers.

In fact, I think the industry is making very little progress in making more secure systems, and programmers are not getting any better at writing code. Attacks, on the other hand, keep getting better, since the incentive to do so is so much stronger — the incentive to prevent these attacks is simply a decent salary; the incentive to clean up after the fact is stronger yet, but then it’s more legal mitigation than engineering.

What I’m anticipating, then, is that over the next few years attacks of this scale will become more numerous, as will quiet attacks that you’ll never hear about, unless it’s your bank account or credit card that gets attacked. The thing is, banks and credit cards have relied on small, easy-to-leak numbers for years; now it’s easier to transmit information, especially if efforts to prevent these leaks are few, and are working against the market’s established momentum.

My bank accounts are linked to a number of services I use, so I can pay my bills over direct deposit and not have to worry. Dozens of sites on the web have my credit card number. Dozens have various overlapping bits of personal information. I don’t care about personal information about me getting online generally, I only care if there’s a practical downside for me if it does; if someone sees a photo of me drunk at a bar, well, not a big deal. If someone can gain access to my bank account because some green college graduate only learned how to copy and paste code, that’s something else.

This isn’t even about our best hope for privacy on the Internet — PKI, which backs the extremely important protocol TLS — being broken, but that’s part of the problem too. Most programmers are either lazy, or not smart enough to handle these issues, or both. The brightest hackers are getting better and will have better tools. None of this will change anytime soon. Barriers are hard to erect; they are easier, and funner, to take down.

I don’t think the shitstorm has even begun; Sony and the PSN incident were the first splat.

UITableViewController and reimplementing UINavigationController

  • February 6, 2011 – 12:40 pm
  • Posted in hacking
  • Comments Off

Recently I’ve been working on an iPad-native interface for WOD. I did it the straightforward-ish way: make it a split view, with the source lists and navigation on the left (or in a popover in portrait mode) and put the detail view on the right. It was, overall, pretty simple to do, but I ran into some issues that I thought I’d write about.

The first issue was odd: occasionally, the navigation views on the left would get wonky; the color scheme is such that it’s white text on a dark background (the built-in, dark textured background), but occasionally these views would switch to a white background, and some of the views wouldn’t get populated with data anymore. This happened when memory pressure started hitting, and views needed to be unloaded.

I spent a long time trying to figure this out; I thought the problem might have been with UINavigationController, which people say is really only meant for full-screen views, or as the “root” view controller of a split view.

So, I spent some time reimplementing UINavigationController from scratch, and produced this: https://github.com/csm/CustomNavigationController. This is also nice, because it supports custom animation directions.

This wasn’t the problem, though; the problem was that I was subclassing UITableViewController in each of the content views, but wasn’t setting the view property to a table view: instead, it was a container view that held the table view. Well, it seems that if a UITableViewController gets unloaded, it doesn’t seem to re-load this correctly from the nib: instead, it was creating a brand-new UITableView that had the default settings and occasionally, didn’t have the delegate or dataSource properties set properly. So the solution was actually simple: just subclass UIViewController and implement the appropriate protocols. UITableViewController seems really optimized for just handling a single table view, so it’s better to just ignore UITableViewController if you’re doing anything fancy.

But anyway. I made something neat out of the process.

Thoughts on App Engine

I’ve been using Google’s App Engine for a few months now, having deployed a backend web service for one of my apps, and am currently prototyping another app on top if it.

Criticisms of App Engine that I’ve seen fall into two rough categories:

  1. OMG! I overran my quota!
  2. I don’t get it. It’s too hard to do what I believe is a very simple thing.

Read More »

Map, Reduce, and Filter in Cocoa

  • December 20, 2010 – 9:09 pm
  • Posted in hacking
  • Comments Off

Note, this is a start of this implementation, and I don’t consider it complete. In particular, I’d like it to take advantage of concurrency and Grand Central Dispatch in the future, and expand it to different kinds of sequences.

But anyway, I decided to give implementations of map, reduce, and filter for iOS development a try. Here we go.

First, let’s define some function block types:

typedef id (^MapBlock)(id);
typedef id (^ReduceBlock)(id, id);
typedef BOOL (^FilterBlock)(id);

This defines block types that (1) apply a function to an object, returning the result; (2) takes an accumulation as the first argument, the next object in the sequence as the second, and returns the next accumulation; and (3) is a simple predicate, which takes an object and returns a truth value based on that argument.

Now, let’s define a category for NSArray:

@interface NSArray (mapReduceFilter)
- (NSArray *) arrayByMappingWithBlock: (MapBlock) block;
- (id) valueByReducingWithBlock: (ReduceBlock) block;
- (NSArray *) arrayByFilteringWithBlock: (FilterBlock) block;
@end

And then, a straightforward implementation:

@implementation NSArray(mapReduceFilter)

- (NSArray *) arrayByMappingWithBlock:(MapBlock)block
{
    NSMutableArray *ret = [NSMutableArray arrayWithCapacity: [self count]];
    for (id value in self)
    {
        [ret addObject: block(value)];
    }
    return [NSArray arrayWithArray: ret];
}

- (id) valueByReducingWithBlock:(ReduceBlock)block
{
    id ret = nil;
    for (id value in self)
        ret = block(ret, value);
    return ret;
}

- (NSArray *) arrayByFilteringWithBlock: (FilterBlock) block
{
    NSMutableArray *ret = [NSMutableArray arrayWithCapacity: [self count]];
    for (id value in self)
        if (block(value))
            [ret addObject: value];
    return [NSArray arrayWithArray: ret];
}

@end