mediaprovider: fixed sharedUserId bug Apps signed with the media key share a UID (except com.android.providers.media.module). However, some run in the priv_app selinux context, and others run in the mediaprovider context. That's a bug. Apps which share a UID should always share an selinux domain. Assign all apps with the seinfo=media to the mediaprovider selinux domain. This moves the following packages from the priv_app to the mediaprovider domain: com.android.providers.downloads com.android.providers.downloads.ui com.android.mtp com.android.soundpicker Bug: 154614768 Test: atest CtsDownloadManagerApi28 Change-Id: I21bf68de525fff87c3a02aa59fba3a8d86be5324

commit: fcf12fd723124c284575d6f684323b9880695f12 [log] [tgz]
author: Jeff Vander Stoep <jeffv@google.com> Wed Apr 22 15:26:02 2020 +0200
committer: Jeffrey Vander Stoep <jeffv@google.com> Tue May 05 17:51:17 2020 +0000
tree: bf0677e3efafe28c2e9be48f5b10ba8e90f8e20f
parent: 4f780e10ce11523a66b5a75a92f6fe42f78af87b [diff]
diff --git a/private/seapp_contexts b/private/seapp_contexts
index 1bad9c1..12e46dc 100644
--- a/private/seapp_contexts
+++ b/private/seapp_contexts

@@ -153,12 +153,12 @@
 user=webview_zygote seinfo=webview_zygote domain=webview_zygote
 user=_isolated domain=isolated_app levelFrom=all
 user=_app seinfo=app_zygote domain=app_zygote levelFrom=all
-user=_app seinfo=media domain=mediaprovider name=android.process.media type=app_data_file levelFrom=user
+user=_app seinfo=media domain=mediaprovider type=app_data_file levelFrom=user
 user=_app seinfo=platform domain=platform_app type=app_data_file levelFrom=user
 user=_app isEphemeralApp=true domain=ephemeral_app type=app_data_file levelFrom=all
 user=_app isPrivApp=true domain=priv_app type=privapp_data_file levelFrom=user
 user=_app isPrivApp=true name=com.google.android.permissioncontroller domain=permissioncontroller_app type=privapp_data_file levelFrom=all
-user=_app isPrivApp=true name=com.android.providers.media.module domain=mediaprovider_app type=privapp_data_file levelFrom=all
+user=_app seinfo=media isPrivApp=true name=com.android.providers.media.module domain=mediaprovider_app type=privapp_data_file levelFrom=all
 user=_app isPrivApp=true name=com.google.android.providers.media.module domain=mediaprovider_app type=privapp_data_file levelFrom=all
 user=_app isPrivApp=true name=com.android.permissioncontroller domain=permissioncontroller_app type=privapp_data_file levelFrom=all
 user=_app isPrivApp=true name=com.android.vzwomatrigger domain=vzwomatrigger_app type=privapp_data_file levelFrom=all
commit	fcf12fd723124c284575d6f684323b9880695f12	[log] [tgz]
author	Jeff Vander Stoep <jeffv@google.com>	Wed Apr 22 15:26:02 2020 +0200
committer	Jeffrey Vander Stoep <jeffv@google.com>	Tue May 05 17:51:17 2020 +0000
tree	bf0677e3efafe28c2e9be48f5b10ba8e90f8e20f
parent	4f780e10ce11523a66b5a75a92f6fe42f78af87b [diff]