sdm660-common: sepolicy: fix Camera denials for access camera data

* needed for clover oreo blobs

sepolicy/vendor/hal_camera_default.te

@@ -1,7 +1,12 @@
 binder_call(hal_camera_default, hal_configstore_default)
 binder_call(hal_camera_default, hal_graphics_allocator_default)
+typeattribute hal_camera_default data_between_core_and_vendor_violators;
 
 allow hal_camera_default { hal_configstore_ISurfaceFlingerConfigs hal_graphics_allocator_hwservice }:hwservice_manager find;
 allow hal_camera_default sysfs:file { getattr open read };
 allow hal_camera_default sysfs_kgsl:file { getattr open read };
+
+allow hal_camera_default camera_data_file:dir w_dir_perms;
+allow hal_camera_default camera_data_file:file create_file_perms;
+
 set_prop(hal_camera_default, vendor_camera_prop)

sepolicy/vendor/vendor_init.te

@@ -5,6 +5,7 @@ allow vendor_init {
   media_rw_data_file
   system_data_file
   tombstone_data_file
+  camera_data_file
 }:dir { create search getattr open read setattr ioctl write add_name remove_name rmdir relabelfrom };
 
 set_prop(vendor_init, camera_prop)