Timothée Ravier<p>We are bringing UKI and strong boot integrity guarantees with composefs to Bootable Containers. We demonstrated our latest progress on that front at DevConf.cz 2025: <a href="https://pretalx.devconf.info/devconf-cz-2025/talk/739KGC/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">pretalx.devconf.info/devconf-c</span><span class="invisible">z-2025/talk/739KGC/</span></a></p><p><a href="https://floss.social/tags/Fedora" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fedora</span></a> <a href="https://floss.social/tags/BootableContainers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BootableContainers</span></a> <a href="https://floss.social/tags/bootc" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bootc</span></a> <a href="https://floss.social/tags/UKI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UKI</span></a> <a href="https://floss.social/tags/composefs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>composefs</span></a></p>
toad.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Mastodon server operated by David Troy, a tech pioneer and investigative journalist addressing threats to democracy. Thoughtful participation and discussion welcome.
Administered by:
Server stats:
214active users
toad.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.1
#bootablecontainers
0 posts · 0 participants · 0 posts today
BlueBuild<p>You can thank `bootc`, `/usr/lib/bootc/kargs.d/`, and <span class="h-card" translate="no"><a href="https://mastodon.social/@fiftydinar" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fiftydinar</span></a></span> for your new ability to include kargs in your native container image.</p><p>Just make sure to update with `bootc` instead of `rpm-ostree`.</p><p>Check it out!</p><p><a href="https://blue-build.org/reference/modules/kargs/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blue-build.org/reference/modul</span><span class="invisible">es/kargs/</span></a></p><p><a href="https://fosstodon.org/tags/BlueBuild" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BlueBuild</span></a> <a href="https://fosstodon.org/tags/FedoraAtomic" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FedoraAtomic</span></a> <a href="https://fosstodon.org/tags/Containers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Containers</span></a> <a href="https://fosstodon.org/tags/OCI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OCI</span></a> <a href="https://fosstodon.org/tags/Fedora" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fedora</span></a> <a href="https://fosstodon.org/tags/imagebased" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>imagebased</span></a> <a href="https://fosstodon.org/tags/bootc" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bootc</span></a> <a href="https://fosstodon.org/tags/BootableContainers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BootableContainers</span></a></p>
Timothée Ravier<p>With Allison, I presented at FOSDEM how we can combine UKI, composefs and containers to build a fully signed boot chain. The slides and the recording are now available: <a href="https://fosdem.org/2025/schedule/event/fosdem-2025-5191--signed-sealed-and-delivered-with-ukis-and-composefs/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">fosdem.org/2025/schedule/event</span><span class="invisible">/fosdem-2025-5191--signed-sealed-and-delivered-with-ukis-and-composefs/</span></a></p><p>This is how we are planning to bring boot chain integrity to Bootable Containers.</p><p>This is a follow up on the initial work that we presented last year at <span class="h-card" translate="no"><a href="https://fosstodon.org/@allsystemsgo" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>allsystemsgo</span></a></span>: <a href="https://cfp.all-systems-go.io/all-systems-go-2024/talk/HVEZQQ/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cfp.all-systems-go.io/all-syst</span><span class="invisible">ems-go-2024/talk/HVEZQQ/</span></a></p><p><a href="https://floss.social/tags/BootableContainers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BootableContainers</span></a> <a href="https://floss.social/tags/bootc" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bootc</span></a> <a href="https://floss.social/tags/Fedora" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fedora</span></a> <a href="https://floss.social/tags/CoreOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CoreOS</span></a> <a href="https://floss.social/tags/AtomicDesktpos" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AtomicDesktpos</span></a> <a href="https://floss.social/tags/FedoraCoreOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FedoraCoreOS</span></a> <a href="https://floss.social/tags/FOSDEM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FOSDEM</span></a> <a href="https://floss.social/tags/FOSDEM2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FOSDEM2025</span></a></p>
BlueBuild<p>There's a big new update to the BlueBuild CLI, with some real nice DX upgrades. Thanks <span class="h-card" translate="no"><a href="https://mastodon.social/@gmpinder" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gmpinder</span></a></span> 💙 </p><p>Make sure to read our release blog for a full list of features; and breaking changes!</p><p><a href="https://blue-build.org/blog/v090-features-changes/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blue-build.org/blog/v090-featu</span><span class="invisible">res-changes/</span></a></p><p><a href="https://fosstodon.org/tags/BlueBuild" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BlueBuild</span></a> <a href="https://fosstodon.org/tags/FedoraAtomic" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FedoraAtomic</span></a> <a href="https://fosstodon.org/tags/Containers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Containers</span></a> <a href="https://fosstodon.org/tags/OCI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OCI</span></a> <a href="https://fosstodon.org/tags/UniversalBlue" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UniversalBlue</span></a> <a href="https://fosstodon.org/tags/Fedora" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fedora</span></a> <a href="https://fosstodon.org/tags/ImageBased" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ImageBased</span></a> <a href="https://fosstodon.org/tags/BootableContainers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BootableContainers</span></a> <a href="https://fosstodon.org/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://fosstodon.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://fosstodon.org/tags/CloudNative" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudNative</span></a> <a href="https://fosstodon.org/tags/uBlue" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>uBlue</span></a></p>
Timothée Ravier<p>Bootable Containers are the future of Fedora Atomic Desktops and we presented that at <span class="h-card" translate="no"><a href="https://fosstodon.org/@allsystemsgo" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>allsystemsgo</span></a></span>.</p><p>Introduction by <span class="h-card" translate="no"><a href="https://fosstodon.org/@cgwalters" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>cgwalters</span></a></span> and Ben: <a href="https://media.ccc.de/v/all-systems-go-2024-266-bootc-generating-an-ecosystem-around-bootable-oci-containers" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">media.ccc.de/v/all-systems-go-</span><span class="invisible">2024-266-bootc-generating-an-ecosystem-around-bootable-oci-containers</span></a></p><p>Then take a look at how we could use sysext's to improve the local layering story with <span class="h-card" translate="no"><a href="https://fosstodon.org/@tormath1" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tormath1</span></a></span>: <a href="https://media.ccc.de/v/all-systems-go-2024-313-waiter-an-os-please-with-some-sysext-sprinkled-on-top" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">media.ccc.de/v/all-systems-go-</span><span class="invisible">2024-313-waiter-an-os-please-with-some-sysext-sprinkled-on-top</span></a></p><p>And then finally dive into Trusted Boot with UKI and composefs with <span class="h-card" translate="no"><a href="https://hachyderm.io/@jbtrystram" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>jbtrystram</span></a></span>: <a href="https://media.ccc.de/v/all-systems-go-2024-309-the-road-to-a-trusted-and-measured-boot-chain-in-bootable-containers" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">media.ccc.de/v/all-systems-go-</span><span class="invisible">2024-309-the-road-to-a-trusted-and-measured-boot-chain-in-bootable-containers</span></a></p><p><a href="https://floss.social/tags/Fedora" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fedora</span></a> <a href="https://floss.social/tags/AtomicDesktops" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AtomicDesktops</span></a> <a href="https://floss.social/tags/FedoraAtomic" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FedoraAtomic</span></a> <a href="https://floss.social/tags/BootableContainers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BootableContainers</span></a> <a href="https://floss.social/tags/ASG2024" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ASG2024</span></a> <a href="https://floss.social/tags/AllSystemGo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AllSystemGo</span></a> <a href="https://floss.social/tags/AllSystemsGo2024" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AllSystemsGo2024</span></a></p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload