From 398151e64fb6490a8dc3e828fcc8a191857e41d4 Mon Sep 17 00:00:00 2001
From: Andrey Smirnov <andrey.smirnov@siderolabs.com>
Date: Wed, 10 Jul 2024 19:56:21 +0400
Subject: [PATCH] fix: remove host bind mount for `/tmp` for trustd

Not sure why this mount was needed, but it was added long time ago, and
I believe it's no longer needed.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
---
 internal/app/machined/pkg/system/services/trustd.go | 1 -
 1 file changed, 1 deletion(-)

diff --git a/internal/app/machined/pkg/system/services/trustd.go b/internal/app/machined/pkg/system/services/trustd.go
index 4c344777ef..7b7a47676a 100644
--- a/internal/app/machined/pkg/system/services/trustd.go
+++ b/internal/app/machined/pkg/system/services/trustd.go
@@ -138,7 +138,6 @@ func (t *Trustd) Runner(r runtime.Runtime) (runner.Runner, error) {
 
 	// Set the mounts.
 	mounts := []specs.Mount{
-		{Type: "bind", Destination: "/tmp", Source: "/tmp", Options: []string{"rbind", "rshared", "rw"}},
 		{Type: "bind", Destination: filepath.Dir(constants.TrustdRuntimeSocketPath), Source: filepath.Dir(constants.TrustdRuntimeSocketPath), Options: []string{"rbind", "ro"}},
 	}