Ubuntu
media-hub package

please integrate mediascanner2 and media-hub with trust-store

Bug #1315381 reported by Jamie Strandboge
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
media-hub (Ubuntu)
Confirmed
Wishlist
Unassigned
mediascanner2 (Ubuntu)
Confirmed
Wishlist
Unassigned

Bug Description

Bug #1303962 added apparmor mediation to media-hub that achieves the following when an apps uses the 'audio' policy group:
 * an app are allowed to play content from its install directory
 * an app is able to play content from its local cache directory
 * an app is able to play content from its local data directory
 * an app is able to access the camera click

Trust store integration is not yet implemented and the media-hub has a hardcoded exception in src/core/media/player_skeleton.cpp to allow the music app to play files from ~/Music and ~/Videos.

AppStore apps:
 1. should be able to access their own content (installed or local)
 2. should not be able to access, play or otherwise enumerate other apps' media (ie, app 'foo' should not be able to play the facebook app's sound file
 3. AppStore apps should be able to enumerate the global music (~/Music) and video (~/Video) library via the mediascanner helper with permission from the user
 4. AppStore apps should be able to play the global music (~/Music) and video (~/Video) library via the media-hub with permission from the user
 5. AppStore apps should be able to have access to media files with permission from the user. This is already handled by the content-hub paradigm (though someone would need to add a media content provider for the content-hub to have this work)

'1' and '2' are implemented in the media-hub via bug #1303962 (mediascanner2 still needs apparmor integration). This bug is for '3' and '4' and this can be done via the trust-store. To have the best user experience and prevent multiple prompting, mediascanner and media-hub should use the same trust store database. I'm not sure that mediascanner2 offers a DBus API for enumerating global media files yet or not (music-app seems to be accessing files in ~/.cache/media-art/ and ~/.cache/mediascanner directly).

Jamie Strandboge (jdstrand)
tags: added: application-confinement
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Per discussion today, mediascanner2 will not need trust-store integration for RTM. Furthermore, it may not need it at all since the concept of supporting a global media collection is not decided.

Changed in mediascanner2 (Ubuntu):
importance: Undecided → Wishlist
Changed in media-hub (Ubuntu):
importance: Undecided → Wishlist
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Per discussion today, media-hub will not need trust-store integration for RTM. Furthermore, it may not need it at all since the concept of supporting a global media collection is not decided.

Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Note: both mediascanner2 and media-hub still need apparmor integration to enforce apps will have access to their own files (ie, don't undo the work that has already been done :).

Jim Hodapp (jhodapp)
Changed in media-hub (Ubuntu):
status: New → Confirmed
Changed in mediascanner2 (Ubuntu):
status: New → Confirmed
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.