Jonathan Lebon

Supporting a `--scenarios` argument makes sense. Eventually though I think we should nuke `cmd-kola` and just teach what we need directly to `kola`. `cmd-kola` dates from when mantle didn't have...

This one will need more backports on top to get the `ci/` scripts added.

Nice write-up! The request makes sense to me. My only minor hesitation with the suggested approach is having the canonical `meta.json` encode a location to itself. It would become stale...

> And yet another use case is something like a "debug" build for FCOS where e.g. we swap in kernel-debug and potentially turn on other userspace debugging too. Hmm, how...

Hmm, also unsure about this. At the end of the day, we'll probably still always want public images sitting in object stores so it's convenient for users/higher-level tools to download...

> Here's another way to look at this - we have a ton of bespoke load bearing custom tooling. And some (even most) of that we really do need. But,...

> Would be interesting to somehow cache the upgrade state so we don't have to go through all the barriers each time. I guess the simplest way to do this...

/hold We're currently using this in the FCOS pipeline (https://github.com/coreos/fedora-coreos-pipeline/pull/316) to work around an SELinux flake. Let's make sure to revert that commit first before merging this.

Can you provide more background on this? How would this be used to build the Secure Execution image?

> How about an explicit command like: > > ``` > cosa buildextend-metal --s390x-secure-execution-sign-key=/path/to/key.crt > ``` > > IOW can't we get most of the code to do the signing...