Add Debian package meta-info and GitHub package builder action

[linux4life798]

This introduces a complete Debian package meta description and a GitHub action to build it. The built package automatically sets up the groups and services needed to automatically run tpm-fido.

Specifically, the Debian meta information does the following:

• Uses the normal Debian package golang source builder script, but slightly alters the behavior to not require providing separate Debian packages for all dependencies. Instead, it will just download all dependencies at build time, like running "go build" would normally do.
• Uses the systemd-sysusers mechanism to setup a new system group named "uhid". This automatically adds the postinst style package maintenance script hooks to ask systemd-sysusers to add/update the group. However, it will not remove the group on uninstall, which seems to be common package behavior.
• Sets up a systemd service to change permission of /dev/uhid to root:uhid and 0660, called uhid-permission. I tried using udev, but this wasn't working. See bellow.
• Sets up a systemd user service to run tpm-fido, called tpm-fido.

Before adding the uhid-permission boot job, I did attempt to get udev to change the permission of /dev/uhid. However, I couldn't figure out how to get udev to trigger, since it doesn't seem to receive any events about /dev/uhid, until after a service requests a new virtual hid. See the debian/tpm-fido.udev.disabled file for more detail.

The GitHub action is pretty basic. It checks out the source, opens a Debian docker container, installs the build dependencies (package), runs the dpkg-buildpackage command, and then uploads the output package+build-info as an action artifact. So, you can just download these artifacts and install away.

I tried to add as many comments and references as possible to help with understanding and maintenance.

[linux4life798]

Hi @psanford! I'm more than happy to change the references to my name/email to your name/email, but I just wanted to check if you were okay with putting your name/email in the text files, before doing so. Let me know what you think!

[psanford]

Thanks for the pr!

My philosophy is that packaging specific changes belong in the respective distribution repositories. I would encourage you to open this pr directly with Debian.