You can thank `bootc`, `/usr/lib/bootc/kargs.d/`, and @fiftydinar for your new ability to include kargs in your native container image.
Just make sure to update with `bootc` instead of `rpm-ostree`.
Check it out!
Kennt ihr den RHEL image mode? Es ist eine der spannendsten Neuerungen in RHEL. Mehr dazu könnt ihr in meinem Blog erfahren: https://www.my-it-brain.de/wordpress/einfuehrung-in-den-rhel-image-mode/
With Allison, I presented at FOSDEM how we can combine UKI, composefs and containers to build a fully signed boot chain. The slides and the recording are now available: https://fosdem.org/2025/schedule/event/fosdem-2025-5191--signed-sealed-and-delivered-with-ukis-and-composefs/
This is how we are planning to bring boot chain integrity to Bootable Containers.
This is a follow up on the initial work that we presented last year at @allsystemsgo: https://cfp.all-systems-go.io/all-systems-go-2024/talk/HVEZQQ/
Bootable Containers are the future of Fedora Atomic Desktops and we presented that at @allsystemsgo.
Introduction by @cgwalters and Ben: https://media.ccc.de/v/all-systems-go-2024-266-bootc-generating-an-ecosystem-around-bootable-oci-containers
Then take a look at how we could use sysext's to improve the local layering story with @tormath1: https://media.ccc.de/v/all-systems-go-2024-313-waiter-an-os-please-with-some-sysext-sprinkled-on-top
And then finally dive into Trusted Boot with UKI and composefs with @jbtrystram: https://media.ccc.de/v/all-systems-go-2024-309-the-road-to-a-trusted-and-measured-boot-chain-in-bootable-containers
