nixpkgs

098b000a - nixos/tests: add end-to-end pam_u2f and polkit sandbox tests

nixos/tests: add end-to-end pam_u2f and polkit sandbox tests pam-u2f: Registers a U2F credential with pamu2fcfg against a virtual FIDO device (QEMU u2f-emulated), then logs in as alice at a TTY — the device authenticates her automatically with no password. pam-u2f-polkit: Verifies the polkit-agent-helper@ sandbox fix by showing that PrivateDevices=yes blocks hidraw access (the bug), the module overrides are applied, and fido2-token/pamu2fcfg work inside the full polkit sandbox (the fix).