From e498eb7ee22bbd677a2b2fa2bb2f124af7d6e944 Mon Sep 17 00:00:00 2001
From: Dan Cashman <dcashman@google.com>
Date: Mon, 10 Jul 2017 11:23:10 -0700
Subject: [PATCH] Revert "Move mediaprovider domain to wahoo"

This policy belongs in global policy.

Bug: 62102757
Test: Builds and boots.
Change-Id: I099e1fbed6e1c648d0d5f1570ba3207c197f3233
---
 sepolicy/private/mediaprovider.te | 41 -------------------------------
 sepolicy/private/seapp_contexts   |  1 -
 2 files changed, 42 deletions(-)
 delete mode 100644 sepolicy/private/mediaprovider.te
 delete mode 100644 sepolicy/private/seapp_contexts

diff --git a/sepolicy/private/mediaprovider.te b/sepolicy/private/mediaprovider.te
deleted file mode 100644
index 117e9924..00000000
--- a/sepolicy/private/mediaprovider.te
+++ /dev/null
@@ -1,41 +0,0 @@
-###
-### A domain for android.process.media, which contains both
-### MediaProvider and DownloadProvider and associated services.
-###
-
-type mediaprovider, domain;
-typeattribute mediaprovider coredomain;
-app_domain(mediaprovider)
-
-# DownloadProvider accesses the network.
-net_domain(mediaprovider)
-
-# DownloadProvider uses /cache.
-allow mediaprovider cache_file:dir create_dir_perms;
-allow mediaprovider cache_file:file create_file_perms;
-# /cache is a symlink to /data/cache on some devices. Allow reading the link.
-allow mediaprovider cache_file:lnk_file r_file_perms;
-# mediaprovider searches through /cache looking for orphans
-# Ignore denials to /cache/recovery and /cache/backup.
-dontaudit mediaprovider cache_private_backup_file:dir getattr;
-dontaudit mediaprovider cache_recovery_file:dir getattr;
-
-
-allow mediaprovider app_api_service:service_manager find;
-allow mediaprovider audioserver_service:service_manager find;
-allow mediaprovider drmserver_service:service_manager find;
-allow mediaprovider mediaserver_service:service_manager find;
-allow mediaprovider surfaceflinger_service:service_manager find;
-
-# Allow MediaProvider to read/write cached ringtones (opened by system).
-allow mediaprovider ringtone_file:file { getattr read write };
-
-# MtpServer uses /dev/mtp_usb
-allow mediaprovider mtp_device:chr_file rw_file_perms;
-
-# MtpServer uses /dev/usb-ffs/mtp
-allow mediaprovider functionfs:dir search;
-allow mediaprovider functionfs:file rw_file_perms;
-
-# MtpServer sets sys.usb.ffs.mtp.ready
-set_prop(mediaprovider, ffs_prop)
diff --git a/sepolicy/private/seapp_contexts b/sepolicy/private/seapp_contexts
deleted file mode 100644
index 77510c52..00000000
--- a/sepolicy/private/seapp_contexts
+++ /dev/null
@@ -1 +0,0 @@
-user=_app seinfo=media domain=mediaprovider name=android.process.media type=app_data_file levelFrom=user