Bug#989869: marked as done (unblock: trousers/0.3.14+fixed1-1.2)

["Debian Bug Tracking System" <owner@bugs.debian.org>]

Your message dated Thu, 17 Jun 2021 21:25:55 +0000
with message-id <E1ltzWN-0000m2-FH@respighi.debian.org>
and subject line unblock trousers
has caused the Debian Bug report #989869,
regarding unblock: trousers/0.3.14+fixed1-1.2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
989869: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989869
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: Debian Bug Tracking System <submit@bugs.debian.org>
• Subject: unblock: trousers/0.3.14+fixed1-1.2
• From: Laurent Bigonville <bigon@debian.org>
• Date: Tue, 15 Jun 2021 00:58:50 +0200
• Message-id: <[🔎] 162371153027.76070.9088576091299912275.reportbug@valinor.bigon.be>

Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock

Please unblock package trousers

[ Reason ]
The current package manages the /var/lib/tpm and tss user, but other
packages in debian, namely the tpm-udev package, is also doing so. Same
for the udev rules that shipped in both the trousers package and the
tpm-udev one.

The goal was to migrate the management of the tss user and its home
directory and the needed udev rules to a central package so the
different implementaitons of the tpm stack could co-exist.

[ Impact ]
Multiple udev rules will be evaluated for the same device.

Also, if the trousers package is purged, the tss user will be removed
and the udev rules shipped by the tpm-udev package will not work
anymore.

[ Tests ]
I tried to purge the tpm-udev and trousers package an tried to
reinstall them. Trousers daemon starts properly

The permissions on the /dev/tpm devices are ok, even after reboot.

[ Risks ]
if the tss user or /var/lib/tpm is not properly created, the daemon will
more than probably fail to start.

The way of creating the tss user is the same between the tpm-udev and
former trousers package so that shouldn't be a problem

tpm-udev:

  adduser --system --ingroup tss --shell /bin/false --home /var/lib/tpm --no-create-home --gecos "TPM software stack" tss

trousers:

  adduser --system --quiet --home /var/lib/tpm --shell /bin/false --no-create-home --group tss


[ Checklist ]
  [x] all changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in testing

[ Other info ]
The trousers package is not shipping the /var/lib/tpm directory anymore,
I decided to give full ownership of that directory to the tpm-udev
package, not sure if that was the best solution

Also note bug #989867

unblock trousers/0.3.14+fixed1-1.2

diff -Nru trousers-0.3.14+fixed1/debian/changelog trousers-0.3.14+fixed1/debian/changelog
--- trousers-0.3.14+fixed1/debian/changelog	2020-08-17 07:36:43.000000000 +0200
+++ trousers-0.3.14+fixed1/debian/changelog	2021-06-15 00:29:18.000000000 +0200
@@ -1,3 +1,12 @@
+trousers (0.3.14+fixed1-1.2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Migrate to tpm-udev package, do not ship the udev rule file, create the
+    user or /var/lib/tpm directory anymore (Closes: #787244, #889491, #944751)
+  * debian/trousers.prerm: Remove migration code path that predates Jessie
+
+ -- Laurent Bigonville <bigon@debian.org>  Tue, 15 Jun 2021 00:29:18 +0200
+
 trousers (0.3.14+fixed1-1.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru trousers-0.3.14+fixed1/debian/control trousers-0.3.14+fixed1/debian/control
--- trousers-0.3.14+fixed1/debian/control	2016-11-20 16:10:31.000000000 +0100
+++ trousers-0.3.14+fixed1/debian/control	2021-06-14 23:19:13.000000000 +0200
@@ -13,7 +13,7 @@
 
 Package: trousers
 Architecture: any
-Depends: ${misc:Depends}, ${shlibs:Depends}, adduser, lsb-base (>= 3.0-6)
+Depends: ${misc:Depends}, ${shlibs:Depends}, lsb-base (>= 3.0-6), tpm-udev
 Breaks: udev (<< 136-1)
 Description: open-source TCG Software Stack (daemon)
  TrouSerS is an implementation of the Trusted Computing Group's Software Stack
diff -Nru trousers-0.3.14+fixed1/debian/rules trousers-0.3.14+fixed1/debian/rules
--- trousers-0.3.14+fixed1/debian/rules	2016-11-20 16:10:31.000000000 +0100
+++ trousers-0.3.14+fixed1/debian/rules	2021-06-14 23:15:06.000000000 +0200
@@ -16,6 +16,3 @@
 
 override_dh_strip:
 	dh_strip --dbg-package=trousers-dbg
-
-override_dh_installudev:
-	dh_installudev -n --priority=45
diff -Nru trousers-0.3.14+fixed1/debian/trousers.install trousers-0.3.14+fixed1/debian/trousers.install
--- trousers-0.3.14+fixed1/debian/trousers.install	2016-11-20 16:10:31.000000000 +0100
+++ trousers-0.3.14+fixed1/debian/trousers.install	2021-06-15 00:06:23.000000000 +0200
@@ -2,4 +2,3 @@
 /usr/sbin
 /usr/share/man/man8
 /usr/share/man/man5
-/var/lib/tpm
diff -Nru trousers-0.3.14+fixed1/debian/trousers.postinst trousers-0.3.14+fixed1/debian/trousers.postinst
--- trousers-0.3.14+fixed1/debian/trousers.postinst	2016-11-20 16:10:31.000000000 +0100
+++ trousers-0.3.14+fixed1/debian/trousers.postinst	2021-06-14 23:25:54.000000000 +0200
@@ -4,22 +4,11 @@
 
 case "${1}" in
 	configure)
-		# Adding tss system user
-		adduser --system --quiet --home /var/lib/tpm --shell /bin/false --no-create-home --group tss
-
 		# Setting owner
-		chown tss:tss /var/lib/tpm -R
 		chown tss:tss /etc/tcsd.conf
 
 		# Setting permissions
 		chmod 0600 /etc/tcsd.conf
-		chmod 0700 /var/lib/tpm
-
-		# ask udev to check for new udev rules (and fix device permissions)
-		if [ -e /dev/tpm0 ] && udevadm --version > /dev/null; then
-			udevadm control --reload-rules ||:
-			udevadm trigger --sysname-match="tpm[0-9]*" ||:
-		fi
 		;;
 
 	abort-upgrade|abort-remove|abort-deconfigure)
diff -Nru trousers-0.3.14+fixed1/debian/trousers.postrm trousers-0.3.14+fixed1/debian/trousers.postrm
--- trousers-0.3.14+fixed1/debian/trousers.postrm	2016-11-20 16:10:31.000000000 +0100
+++ trousers-0.3.14+fixed1/debian/trousers.postrm	1970-01-01 01:00:00.000000000 +0100
@@ -1,26 +0,0 @@
-#!/bin/sh
-
-set -e
-
-case "${1}" in
-	remove)
-		if [ -x /usr/sbin/deluser ]
-		then
-			deluser --system --remove-home tss || true
-			deluser --group --only-if-empty tss || true
-		fi
-		;;
-
-	purge|upgrade|failed-upgrade|abort-install|abort-upgrade|disappear)
-
-		;;
-
-	*)
-		echo "postrm called with unknown argument \`${1}'" >&2
-		exit 1
-		;;
-esac
-
-#DEBHELPER#
-
-exit 0
diff -Nru trousers-0.3.14+fixed1/debian/trousers.preinst trousers-0.3.14+fixed1/debian/trousers.preinst
--- trousers-0.3.14+fixed1/debian/trousers.preinst	2016-11-20 16:10:31.000000000 +0100
+++ trousers-0.3.14+fixed1/debian/trousers.preinst	1970-01-01 01:00:00.000000000 +0100
@@ -1,15 +0,0 @@
-#!/bin/sh
-
-set -e
-
-if [ "$1" = install ] || [ "$1" = upgrade ]; then
-        if [ -e "/etc/udev/rules.d/45-trousers.rules" ]; then
-                if [ "`md5sum \"/etc/udev/rules.d/45-trousers.rules\" | sed -e \"s/ .*//\"`" = \
-                     "`dpkg-query -W -f='${Conffiles}' trousers | sed -n -e \"\\\\' /etc/udev/rules.d/45-trousers.rules '{s/ obsolete$//;s/.* //p}\"`" ]
-                then
-                        rm -f "/etc/udev/rules.d/45-trousers.rules"
-                fi
-        fi
-fi
-
-#DEBHELPER#
diff -Nru trousers-0.3.14+fixed1/debian/trousers.prerm trousers-0.3.14+fixed1/debian/trousers.prerm
--- trousers-0.3.14+fixed1/debian/trousers.prerm	2016-11-20 16:10:31.000000000 +0100
+++ trousers-0.3.14+fixed1/debian/trousers.prerm	1970-01-01 01:00:00.000000000 +0100
@@ -1,45 +0,0 @@
-#!/bin/sh
-# prerm script for trousers
-#
-# see: dh_installdeb(1)
-
-set -e
-
-# summary of how this script can be called:
-#        * <prerm> `remove'
-#        * <old-prerm> `upgrade' <new-version>
-#        * <new-prerm> `failed-upgrade' <old-version>
-#        * <conflictor's-prerm> `remove' `in-favour' <package> <new-version>
-#        * <deconfigured's-prerm> `deconfigure' `in-favour'
-#          <package-being-installed> <version> `removing'
-#          <conflicting-package> <version>
-# for details, see http://www.debian.org/doc/debian-policy/ or
-# the debian-policy package
-
-
-case "$1" in
-    remove|upgrade|deconfigure)
-    ;;
-
-    failed-upgrade)
-        if dpkg --compare-versions "$2" lt 0.3.8-3; then
-            # hack to avoid #676828
-            # removing the executable will make the init script exit gracefully
-            rm -f /usr/sbin/tcsd
-            # kill tcsd (and any other process owned by the tss user)
-            killall -u tss  2>/dev/null || true
-        fi
-    ;;
-
-    *)
-        echo "prerm called with unknown argument \`$1'" >&2
-        exit 1
-    ;;
-esac
-
-# dh_installdeb will replace this with shell code automatically
-# generated by other debhelper scripts.
-
-#DEBHELPER#
-
-exit 0
diff -Nru trousers-0.3.14+fixed1/debian/trousers.udev trousers-0.3.14+fixed1/debian/trousers.udev
--- trousers-0.3.14+fixed1/debian/trousers.udev	2016-11-20 16:10:31.000000000 +0100
+++ trousers-0.3.14+fixed1/debian/trousers.udev	1970-01-01 01:00:00.000000000 +0100
@@ -1 +0,0 @@
-KERNEL=="tpm[0-9]*", MODE="0600", OWNER="tss", GROUP="tss"

--- End Message ---

--- Begin Message ---

• To: 989869-done@bugs.debian.org
• Subject: unblock trousers
• From: Sebastian Ramacher <sramacher@respighi.debian.org>
• Date: Thu, 17 Jun 2021 21:25:55 +0000
• Message-id: <E1ltzWN-0000m2-FH@respighi.debian.org>

Unblocked.

--- End Message ---