Luke Yang

@jmpolom I used a github workflow to sign a container using the github actions OIDC token, just as you have done in a previous message of yours. However, my cert...

>Could you link me to the exact github workflow you used? https://github.com/lukewarmtemp/custom-container-images/blob/main/.github/workflows/docker-image.yml > how do I replace something in /usr/bin as that area is immutable by design? I just use...

> Thanks! > - Yes, this needs to be a PR against containers/image, not against Skopeo . Please file one and we’ll continue there. > - I’m not immediately sure...

> Can you post the full openssl x509 -text of the generated certificate, please? @mtrmac The following is what I get from running the commands stated in https://github.com/coreos/rpm-ostree/issues/4272#issuecomment-1689160021 ``` $...

@mtrmac Yup, just updated the commit. Feel free to let me know if it's good or not.

@mtrmac Here are five things we can potentially verify against: ``` 1.3.6.1.4.1.57264.1.8 | Issuer (V2) 1.3.6.1.4.1.57264.1.12 | Source Repository URI 1.3.6.1.4.1.57264.1.14 | Source Repository Ref 1.3.6.1.4.1.57264.1.9 | Build Signer URI...

@rhatdan @sallyom, I’ve updated the PR with a DCO https://github.com/containers/image/pull/2235#issuecomment-1934950654, toggled from draft to PR, and rebased the code as requested. However, there still are unresolved implementation details preventing this...

@cgwalters Do you know if there's there a way for Rust to detect what platform your system is running? I'm able to find and match against the arch of the...

> We could consider placing these files in e.g. /usr/lib/modules/$kver which is our canonical location for kernel data. Maybe /usr/lib/modules/$kver/kargs.d ? Uncertain... Any new thoughts relating to this? @cgwalters

> the big gap I see is around integration testing Oh sorry, I was going to look at this but it slipped my mind. I can probably have a crack...