Krish Jain
Krish Jain
Note: Our CI tests are run by kola tests of https://github.com/flatcar/mantle/tree/flatcar-master/kola, and their clusters are configured in https://github.com/flatcar/mantle/blob/flatcar-master/platform/machine/qemu/cluster.go. So in theory it is possible to add new options for tpm2...
https://github.com/flatcar/scripts/pull/1560 was merged and replaces this PR. Good work everyone!
@pothos Seems like a good time to do it. The last commit was trying to do precisely this, albeit to a lesser extent. https://gitlab.freedesktop.org/polkit/polkit/-/commit/25eef55dddbf0b4d635fbdd508710b496be80d9c 
Upstream's hardening is not as extensive as mine, so I'm going to get this hardening merged upstream
@thesamesam Hi! It's great to hear that you're interested in this as well. I've sent this patch to the relevant maintainer of Polkit at Red Hat, and they have shown...
Ping @tormath1 @pothos
Squashed commits @pothos
Hello @hunshcn @farcop. We have cut a new release [v0.14.7 ](https://github.com/chainguard-dev/apko/releases/tag/v0.14.7) 2 weeks back. This included the fix. If this answers your question, please close this issue
Sounds good, closing this. Feel free to reach out if this is still a problem. My email is krish.jain@[domain].dev
Absolutely @denisok . Making it a systemd service seems like the best option. Systemd has a lot of nice features :)