Tef-simulator socket should have group connected with
tee.client privilege : priv_tee_client.
Also service process needs assigned additional label
System::TEF with socket using System IPIn label.
Change-Id: Ia5c85aaabdc221a84a8c47f8c5629b7491c7438c
%define build_data_dir %{buildroot}%{data_dir}
%define build_unit_dir %{buildroot}%{_unitdir}
-%define smack_domain_name System
%define tee_user_group_name priv_tee_client
+%define smack_domain_name System::TEF
%description
TEF Simulator provides a TrustZone simulated environment
[Socket]
ListenStream=/var/run/simdaemon
-SocketMode=0777
-SmackLabelIPIn=*
+SocketGroup=priv_tee_client
+SocketMode=0060
+SmackLabelIPIn=System
SmackLabelIPOut=@
[Socket]