81fa214155
This drops the `ot-composefs` kernel commandline in favour of a `[composefs]` section in the `prepare-rootfs.conf` file. You can set `composefs.enabled` to `signed`, `yes`, `no` or `maybe`, with `maybe` being the default. You can also set `composefs.keypath` (or rely on the default `/etc/ostree/initramfs-root-binding.key`) to point to ed25519 public keys, one of which which the commit must be signed with, or boot fails. The ostree dracut module adds `/etc/ostree/initramfs-root-binding.key` to the initrd if it exists. NOTE: This drop the option to define a digest in the commandline. However, that was currently unused (i.e. ComposefsConfig.expected_digest was never read). Additionally it very hard to actually store the composefs digest in the initrd, as the initrd is typically part of the commit and thus the composefs. It may be possible to handle this, but lets add it back when we know exactly how that will work.
This documentation is written in Jekyll format to be published on GitHub Pages. The rendered HTML will be automatically built and published, but you can also use Jekyll locally to test changes.
First you need to install Ruby and
RubyGems to get Jekyll and the other gem
dependencies. This is easiest using the distro's packages. On RedHat
systems this is rubygems and on Debian systems this is
ruby-rubygems.
Next Bundler is needed to install the gems using
the provided Gemfile. You can do this by running gem install bundler or using distro packages. On RedHat systems this is
rubygem-bundler and on Debian systems this is ruby-bundler.
Now you can prepare the Jekyll environment. Change to this directory and run:
bundle config set --local path vendor/bundle
bundle install
Finally, run the prep-docs.sh script and then render and serve the
site locally with Jekyll:
./prep-docs.sh
bundle exec jekyll serve