Allow fapolicyd fs_watch_with_perm and fs_watch_mount tmpfs dirs

[zpytela]

New watch permissions have been introduced info selinux-policy. The fapolicyd daemon needs watch permissions for inotify calls on tmpfs directories.

[zpytela]

Note this commit needs the new permissions merged in selinux-policy which should take place today.