system_server_startup: allow SIGCHLD to zygote

avc: denied { sigchld } for comm="main"
scontext=u:r:system_server_startup:s0 tcontext=u:r:zygote:s0
tclass=process permissive=0

Test: build
Change-Id: I98c106b17ba1740f953c3108bd0fc927c150096f

private/system_server_startup.te

@@ -18,3 +18,6 @@ allow system_server_startup mnt_expand_file:dir getattr;
 # system_server domain
 allow system_server_startup self:process setcurrent;
 allow system_server_startup system_server:process dyntransition;
+
+# Child of the zygote.
+allow system_server_startup zygote:process sigchld;