Skip to content

modif: keep tcm/tcmrm devices if keep-dev-tpm is used #6724

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 30, 2025
Merged

modif: keep tcm/tcmrm devices if keep-dev-tpm is used #6724

merged 1 commit into from
Apr 30, 2025

Conversation

kmk3
Copy link
Collaborator

@kmk3 kmk3 commented Apr 29, 2025

Paths:

  • /dev/tcm[0-9]*
  • /dev/tcmrm[0-9]*

Apparently Trusted Cryptography Module (TCM) is a standard from China
that is an alternative to the TCG Trusted Compute Module (TPM)
standard[1].

udev rules from tpm2-tss master[2]:

# tpm devices can only be accessed by the tss user but the tss
# group members can access tpmrm devices
KERNEL=="tpm[0-9]*", TAG+="systemd", MODE="0660", OWNER="tss"
KERNEL=="tpmrm[0-9]*", TAG+="systemd", MODE="0660", GROUP="tss"
KERNEL=="tcm[0-9]*", TAG+="systemd", MODE="0660", OWNER="tss"
KERNEL=="tcmrm[0-9]*", TAG+="systemd", MODE="0660", GROUP="tss"

This is a follow-up to #6719.

Relates to #6390.

Misc: This was noticed on #6700.

@kmk3
modif: keep tcm/tcmrm devices if keep-dev-tpm is used
b54981b 
Paths:

* `/dev/tcm[0-9]*`
* `/dev/tcmrm[0-9]*`

Apparently Trusted Cryptography Module (TCM) is a standard from China
that is an alternative to the TCG Trusted Compute Module (TPM)
standard[1].

udev rules from tpm2-tss master[2]:

    # tpm devices can only be accessed by the tss user but the tss
    # group members can access tpmrm devices
    KERNEL=="tpm[0-9]*", TAG+="systemd", MODE="0660", OWNER="tss"
    KERNEL=="tpmrm[0-9]*", TAG+="systemd", MODE="0660", GROUP="tss"
    KERNEL=="tcm[0-9]*", TAG+="systemd", MODE="0660", OWNER="tss"
    KERNEL=="tcmrm[0-9]*", TAG+="systemd", MODE="0660", GROUP="tss"

This is a follow-up to netblue30#6719.

Relates to netblue30#6390.

Misc: This was noticed on netblue30#6700.

[1] tpm2-software/tpm2-tss#2905
[2] https://github.com/tpm2-software/tpm2-tss/blob/b2ab12f860598afb759ecef81bf662a70811557c/dist/tpm-udev.rules
@kmk3 kmk3 added the modif This modifies existing behavior label Apr 29, 2025
@netblue30 netblue30 merged commit 3f294cb into netblue30:master Apr 30, 2025
12 checks passed
@netblue30
Copy link
Owner

Merged, thanks!

@github-project-automation github-project-automation bot moved this from Todo to Done in Release 0.9.76 Apr 30, 2025
@kmk3 kmk3 deleted the modif-keep-tcm branch April 30, 2025 11:17
kmk3 added a commit that referenced this pull request Apr 30, 2025
@kmk3
RELNOTES: add modif and profile items
726d956 
Relates to #6707 #6716 #6718 #6719 #6724.
@kmk3 kmk3 moved this from Done to Done (on RELNOTES) in Release 0.9.76 Apr 30, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
modif This modifies existing behavior
Projects
Release 0.9.76
Status: Done (on RELNOTES)
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@kmk3 @netblue30