[ALPS04752203] Add vendor permission for fastbootd sepolicy enable

Google patch system/sepolicy/private/domain.te
Vendor sepolicy device/mediatek/sepolicy/basic/non_plat/fastbootd.te

MTK-Commit-Id: c793f3c90651b1fd483621e5795e41cf91cdf63e

Change-Id: I998679ac71c6018fc5f0305226bd73f91fd3f27e
CR-Id: ALPS04752203
Feature: [Android Default] Fastboot

non_plat/fastbootd.te

@@ -1,25 +1,28 @@
 # fastbootd (used in recovery init.rc for /sbin/fastbootd)
 
 
-#allow fastbootd {
+allow fastbootd {
-#    bootdevice_block_device
+    bootdevice_block_device
+#    cache_block_device
+#    logo_block_device
+    para_block_device
+  }:blk_file { rw_file_perms };
+
+allow fastbootd {
+    sysfs_boot_type
+}:file { rw_file_perms };
+
+allow fastbootd self:process setfscreate;
+allow fastbootd self:capability sys_rawio;
+
+allowxperm fastbootd {
+    bootdevice_block_device
 #    cache_block_device
 #    logo_block_device
 #    para_block_device
-#  }:blk_file { rw_file_perms };
+  }:blk_file ioctl {
-
+      BLKSECDISCARD
-#allow fastbootd {
+      BLKDISCARD
-#    sysfs_boot_type
+      MMC_IOCTLCMD
-#}:file { rw_file_perms };
+  };
-
-#allowxperm fastbootd {
-#    bootdevice_block_device
-#    cache_block_device
-#    logo_block_device
-#    para_block_device
-#  }:blk_file ioctl {
-#      BLKSECDISCARD
-#      BLKDISCARD
-#      MMC_IOCTLCMD
-#  };