Allow system reset_uid, sync_uid, password_uid Permits the system server to change keystore passwords for users other than primary. (cherrypicked from commit de08be8aa006c313e5025ba5f032abf786a39f71) Bug: 16233206 Change-Id: I7941707ca66ac25bd122fd22e5e0f639e7af697e

commit: 72acd6bbbe65f8d776028a4097c427fd1dad235b [log] [tgz]
author: Robin Lee <rgl@google.com> Wed Aug 27 21:35:34 2014 +0100
committer: Nick Kralevich <nnk@google.com> Thu Sep 11 11:21:56 2014 -0700
tree: ece22b4f2fe5caeabf6e138bbfa1ab8f8504daf6
parent: 45731c70ef446b5981697b9675b2d738da09a23d [diff]
diff --git a/access_vectors b/access_vectors
index 659fb36..320a1c8 100644
--- a/access_vectors
+++ b/access_vectors

@@ -914,6 +914,9 @@
 	grant
 	duplicate
 	clear_uid
+	reset_uid
+	sync_uid
+	password_uid
 }
 
 class debuggerd

diff --git a/system_server.te b/system_server.te
index 0068378..438d09d 100644
--- a/system_server.te
+++ b/system_server.te

@@ -381,6 +381,9 @@
 	grant
 	duplicate
 	clear_uid
+	reset_uid
+	sync_uid
+	password_uid
 };
 
 # Allow system server to search and write to the persistent data block device
commit	72acd6bbbe65f8d776028a4097c427fd1dad235b	[log] [tgz]
author	Robin Lee <rgl@google.com>	Wed Aug 27 21:35:34 2014 +0100
committer	Nick Kralevich <nnk@google.com>	Thu Sep 11 11:21:56 2014 -0700
tree	ece22b4f2fe5caeabf6e138bbfa1ab8f8504daf6
parent	45731c70ef446b5981697b9675b2d738da09a23d [diff]