systemd: allow systemd-resolve to watch /run/systemd dir

Fixes:
avc:  denied  { watch } for  pid=283 comm="systemd-resolve"
path="/run/systemd" dev="tmpfs" ino=2 scontext=system_u:system_r:systemd_resolved_t
tcontext=system_u:object_r:init_runtime_t tclass=dir permissive=0

Signed-off-by: Yi Zhao <[email protected]>

Author: yizhao1

policy/modules/system/systemd.te

@@ -1767,6 +1767,7 @@ fs_search_ramfs(systemd_resolved_t)
 fs_watch_memory_pressure(systemd_resolved_t)
 
 init_dgram_send(systemd_resolved_t)
+init_watch_runtime_dirs(systemd_resolved_t)
 
 miscfiles_read_generic_certs(systemd_resolved_t)