Omer Tuchfeld
Omer Tuchfeld
>I suspect it's btrfs specific. >Yeah I was downloading Fedora CoreOS (as opposed to Silverblue) today to see if we hit similar issues, I'll report with what I find I...
After shelling into the podman-bootc VM and running: ``` ostree admin stateroot-init foo bootc switch --stateroot foo quay.io/fedora/fedora-bootc:40 ``` I've tried to then reboot (simply `reboot` in the shell) into...
Split install CLI into https://github.com/containers/bootc/pull/622
Should we provide users with a CLI option to skip the `/var` copy? Or maybe skipping should be the default?
> Looks sane to me, could just use a test in `tests-integration/src/install.rs` or so. > Coming back to this, is this still the right place? Or should it be part...
/hold Since it's trivial to create CSRs with any hostname, this doesn't improve security
> This means that they > > 1. Need a Kubeconfig > 2. Need to have authority to create CSRs > > Doesn't this mean that the joining node needs...
>Are these sufficient to prevent a rogue node from joining or do they still fall short? >if an attack on cluster-machine-approver is possible, does this mean we have a broader...
/assign @carbonin
/assign @danmanor