Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

SWIFT: POC Conversion

Sync from "Extern...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Normal
Fix Version/s: rhel-10.1
Affects Version/s: rhel-9.6, rhel-10.1
Component/s: ostree
Labels:
None

Regression:
No
Severity:
Low
sprint_count:
1

AssignedTeam:
rhel-coreos

Story Points:
5
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
Bootc Sprint #14

Git Pull Request:
https://github.com/ostreedev/ostree/pull/3473
Preliminary Testing:
None
Test Coverage:
None

ProdDocsReview-CCS:
Unspecified
ProdDocsReview-Dev:
Unspecified
ProdDocsReview-QE:
Unspecified

Experience:

PX Impact Score:
SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None
External issue URL:
https://github.com/ostreedev/ostree/issues/3471

See https://github.com/bootc-dev/bootc/discussions/1036

Add `root = transient-ro`

Like `root = transient` but we'd allocate the overlayfs upper, but still keep it read-only by default. This would make it easy for code running in the real root to unshare the mount namespace, mount it writable and mutate it while still keeping it read-only for most use cases. This would be a pretty easy addition to ostree-prepare-root.

Assignee:: Colin Walters

Reporter:: Colin Walters

Developer:: CoreOS Bot

QA Contact:: CoreOS QE Bot

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2025/07/16 2:43 PM

Updated:: 2025/07/21 6:21 PM

Resolved:: 2025/07/21 6:21 PM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates

Hide