On Wed, Apr 16, 2025 at 4:51 PM Andrea Cocito <[email protected]> wrote:
>
> Hello,
>
> I am fixing a few things in the security/tpm2-* ports, among other problems
> security/tpm2-abrmd does not seem to handle properly the permissions of
> /dev/tpm0.
My 2c on this problem
1. devfs looks like a correct solution for this
2. Reading the /etc/rc.d/devfs, there is no way for a port to just
install some file that will automatically get picked up by devfs
2.1 Should we extend the rc script to look into, say,
${LOCALBASE}/etc/devfs/*.rules ?
3. On the other hand, the port may ask the user to run sysrc
devfs_set_rulesets+="..." This requirement is justified, because a lot
of other ports already ask the user to change something in
/etc/rc.conf
99. Do we really need all this machinery though? Can't we just let the
user figure out the most convenient way for him? It might be that 99%
of users would just use sudo and be done with it.
