msm8974-common: sepolicy: Resolve hal_sensors_default denials

* avc: denied { read } for name="name" dev="sysfs" ino=26468i
  scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs:s0
  tclass=file permissive=0
* avc: denied { read } for name="iio:device1" dev="tmpfs" ino=7276
  scontext=u:r:hal_sensors_default:s0
  tcontext=u:object_r:iio_device:s0 tclass=chr_file permissive=0
* avc: denied { open } for name="iio:device0" dev="tmpfs" ino=7275
  scontext=u:r:hal_sensors_default:s0
  tcontext=u:object_r:iio_device:s0 tclass=chr_file permissive=0
* avc: denied { search } for name="/" dev="mmcblk0p12" ino=2
  scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:efs_file:s0
  tclass=dir permissive=0
* avc: denied { read } for name="gyro_cal_data" dev="mmcblk0p12"
  ino=41 scontext=u:r:hal_sensors_default:s0
  tcontext=u:object_r:efs_file:s0 tclass=file permissive=0
* avc: denied { read } for name="shtc1_sensor" dev="tmpfs" ino=8378
  scontext=u:r:hal_sensors_default:s0
  tcontext=u:object_r:sensors_device:s0 tclass=chr_file permissive=1
* avc: denied { open } for name="shtc1_sensor" dev="tmpfs" ino=8378
  scontext=u:r:hal_sensors_default:s0
  tcontext=u:object_r:sensors_device:s0 tclass=chr_file permissive=1

Change-Id: Iad7e41e5e250eb1511d5838bd42b2b07843d220b

sepolicy/common/hal_sensors_default.te

@@ -1,14 +1,21 @@
+r_dir_file(hal_sensors_default, efs_file)
+
 allow hal_sensors_default {
-    sysfs_batteryinfo
+    iio_device
-    sysfs_graphics
+    sensors_device
-    sysfs_leds
+}:chr_file r_file_perms;
-}:dir search;
 
 allow hal_sensors_default {
     sysfs_iio
     sysfs_input
 }:dir r_dir_perms;
 
+allow hal_sensors_default {
+    sysfs_batteryinfo
+    sysfs_graphics
+    sysfs_leds
+}:dir search;
+
 allow hal_sensors_default {
     sysfs_batteryinfo
     sysfs_graphics