sepolicy_vndr: add ssgtzd_opener socket sepolicy

ssgtzd_opener socket file is created to provide service registration
and adding sepolicy to access this socket

Change-Id: I06afa4e9e6857d6f13731eaf46d9acbc5e606224

generic/vendor/common/trusteduilistener.te

@@ -44,6 +44,7 @@ hal_client_domain(vendor_trusteduilistener, vendor_hal_systemhelper);
 
 # Allow access to SSGTZD socket
 unix_socket_connect(vendor_trusteduilistener, vendor_ssgtzd, vendor_ssgtzd)
+allow vendor_trusteduilistener vendor_ssgtzd_opener_socket:sock_file write;
 
 # Allow CPU files
 allow vendor_trusteduilistener sysfs_devices_system_cpu:file rw_file_perms;

qva/vendor/common/file.te

@@ -42,6 +42,7 @@ type vendor_ssgqmig_socket, file_type, mlstrustedobject;
 
 #ssg tz daemon socket
 type vendor_ssgtzd_socket, file_type, mlstrustedobject;
+type vendor_ssgtzd_opener_socket, file_type, mlstrustedobject;
 
 #spunvm file types
 type vendor_spunvm_file, file_type, vendor_spunvm_file_type;

qva/vendor/common/file_contexts

@@ -94,6 +94,7 @@
 /dev/socket/qwes_ipc                            u:object_r:vendor_qwesd_socket:s0
 /dev/socket/ssgqmig                             u:object_r:vendor_ssgqmig_socket:s0
 /dev/socket/ssgtzd                              u:object_r:vendor_ssgtzd_socket:s0
+/dev/socket/ssgtzd_opener                       u:object_r:vendor_ssgtzd_opener_socket:s0
 /dev/socket/adpl_cmd_uds_file                   u:object_r:vendor_dataadpl_socket:s0
 /dev/socket/vendor_wpa_wlan[0-9]                u:object_r:vendor_wifi_vendor_wpa_socket:s0
 /dev/socket/wigig/wpa_wigig[0-9]                u:object_r:vendor_wigig_vendor_wpa_socket:s0