klte-common: Stop abusing global contexts for fingerprint

* vcs_device is used to label /dev/vcs*, which are virtual consoles
* Create and use our own label for /dev/vfsspi so our fingerprint
  hal can access it, and rename vcs_data_file while we're at it

Change-Id: I01f0e8c4924d3847383319ce59dbbf802f89a36b

sepolicy/common/device.te

@@ -0,0 +1,2 @@
+# Fingerprint
+type vfsspi_device, dev_type;

sepolicy/common/file.te

@@ -1 +1 @@
-type vcs_data_file, file_type, data_file_type;
+type vfsspi_data_file, file_type, data_file_type;

sepolicy/common/file_contexts

@@ -1,9 +1,9 @@
 # data files
-/data/validity(/.*)?                                    u:object_r:vcs_data_file:s0
+/data/validity(/.*)?                                    u:object_r:vfsspi_data_file:s0
 
 # device nodes
 /dev/ttyHS3                                             u:object_r:audio_device:s0
-/dev/vfsspi                                             u:object_r:vcs_device:s0
+/dev/vfsspi                                             u:object_r:vfsspi_device:s0
 
 # sysfs
 /sys/devices(/.*)?/input/input[1-2]/enabled             u:object_r:sysfs_hal_pwr:s0

sepolicy/common/hal_fingerprint_default.te

@@ -1,6 +1,6 @@
 r_dir_file(hal_fingerprint_default, firmware_file)
 
 allow hal_fingerprint_default tee_device:chr_file rw_file_perms;
-allow hal_fingerprint_default vcs_data_file:dir rw_dir_perms;
-allow hal_fingerprint_default vcs_data_file:file create_file_perms;
-allow hal_fingerprint_default vcs_device:chr_file rw_file_perms;
+allow hal_fingerprint_default vfsspi_data_file:dir rw_dir_perms;
+allow hal_fingerprint_default vfsspi_data_file:file create_file_perms;
+allow hal_fingerprint_default vfsspi_device:chr_file rw_file_perms;

sepolicy/common/tee.te

@@ -1,2 +1,2 @@
-allow tee vcs_data_file:dir create_dir_perms;
-allow tee vcs_data_file:file create_file_perms;
+allow tee vfsspi_data_file:dir create_dir_perms;
+allow tee vfsspi_data_file:file create_file_perms;