All in one Android app development
google just "let us" have android a little longer but i was thinking of a app that could be a all in one. Its a empty shell you copy and paste code into to run whatever the fuck we wanted to run on the thing the first place.This isn't for normies. Also, yes, this concept has already been tried, they are called web browsers. but people want to get notifications and gps and shit with their "apps" so, build a app/browser that gives "app" writers a way to still access those extra privacy violating features we all "need". Make a application that can be any application we want it to be, without getting fucking permission first.
what do you think?
Not a bad idea, but I don't think they'd let it onto the play store because of remote code execution bullshit excuses
And, what if you need to have more than one app open at once? What if I need to be recording audio while using an RSS reader?
>>52766
yeah we'd have to sneak it past google play store's detection. just do what they do, release the app with none of that, then "get a update" with the relevant parts
Not a bad idea. Let's see a proof of concept and then expand from there. It should be embeddable into existing apps pretty easily, too. Perhaps a simple clock app that has a secret if you tap on one of the icons a few times?
Getting it onto the play store isn't hard, except for the bureaucracy of creating an account. You essentially build a Potemkin village for their testers that you can replace with your real code. They don't test every app or every release, they do random sampling and the testing is done by people who follow a script. Does the app do what it says it does, does it contain porn or anything else in their TOS, that kind of thing. They might check what network connections it tries to do, but I gave them a version that just pretends to call a web API and would only do other connections if you logged in with a real account and not the test account you have to provide them, so I don't know for sure.
The play store has an uneasy relationship with plug in apps. They don't want you to let users run arbitrary code because it can be used for scams and malware and they don't want alternative monetisation to their own. They don't really have a way to stop it though, so as long as you don't get caught you can do anything you want. My existence proof was React Native and their OTA updates. They can update their apps without the play store and don't get banned for it so why not other languages? Java/Kotlin works, but I think it's better to use a different language since it would be harder for them to automate detection. Anything that can do reflection or dynamic code loading can be used. I used C# and it's assembly loading since it's easy and you can save a byte string in a database and load it as an assembly in the app and arbitrarily change what your app can do. I hosted my code on a server because my goal was to do updates outside of the play store, but nothing stops you from reading a file from the file system or typing it out yourself.
In China it was popular to have apps that let you run multiple versions of another app, for example if you had a business twitter account and a personal twitter account you could install the twitter app twice and switch between the installations like they were normal apps. The host app and the plugin apps share the same Android UID but not the same PID. This also meant that you could download the host app from the play store and then install any arbitrary APK through it to bypass installing through the play store. Obviously Google hated that. There is also a book about how the Chinese do this stuff called: "Android App Hook And Plug In Technology" that is pretty good and discusses how Android loads and installs apps.
You also need to think of the security implications, the PDF I've included talks about how this stuff works and can be exploited.