Open linux4life798 opened 1 month ago
Hi @psanford! I'm more than happy to change the references to my name/email to your name/email, but I just wanted to check if you were okay with putting your name/email in the text files, before doing so. Let me know what you think!
Thanks for the pr!
My philosophy is that packaging specific changes belong in the respective distribution repositories. I would encourage you to open this pr directly with Debian.
This introduces a complete Debian package meta description and a GitHub action to build it. The built package automatically sets up the groups and services needed to automatically run tpm-fido.
Specifically, the Debian meta information does the following:
Before adding the uhid-permission boot job, I did attempt to get udev to change the permission of /dev/uhid. However, I couldn't figure out how to get udev to trigger, since it doesn't seem to receive any events about /dev/uhid, until after a service requests a new virtual hid. See the debian/tpm-fido.udev.disabled file for more detail.
The GitHub action is pretty basic. It checks out the source, opens a Debian docker container, installs the build dependencies (package), runs the dpkg-buildpackage command, and then uploads the output package+build-info as an action artifact. So, you can just download these artifacts and install away.
I tried to add as many comments and references as possible to help with understanding and maintenance.