search

lf-edge / eve

EVE is Edge Virtualization Engine
https://www.lfedge.org/projects/eve/
Apache License 2.0
470 stars 159 forks source link

Configure system-wide user/groups and TPM device permissions #3986

Closed shjala closed 3 months ago

shjala commented 3 months ago

This PR creates system-wide groups and users (to start for TPM access) and sets up the necessary permissions. In addition updates the mdev.conf file to assign the tpms group to TPM devices.

This should go before #3060 .

codecov[bot] commented 3 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 17.51%. Comparing base (2c5fb18) to head (0b05bb7). Report is 18 commits behind head on master.

:exclamation: Current head 0b05bb7 differs from pull request most recent head 9513a29

Please upload reports for the commit 9513a29 to get more accurate results.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## master #3986 +/- ## ======================================= Coverage 17.51% 17.51% ======================================= Files 3 3 Lines 805 805 ======================================= Hits 141 141 Misses 629 629 Partials 35 35 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

shjala commented 3 months ago

Last commit : for some reason auxiliary devices like /dev/null (owned by root) are not world-writable! This can lead to problem for containers not running as root accessing this devices.