Enable composeFS for Fedora 41

Enabling composeFS allow an increase in security by making the filesystem truely read-only. It's also a corenerstone towards a truely sealed system with full integrity checks at runtime. It will also allow storage deduplication between the host filesystem and the containers storage in the long run, which is a huge win : faster downloads and faster container startup times. Ref: https://fedoraproject.org/wiki/Changes/ComposefsAtomicCoreOSIoT
coreos · Aug 29, 2024 · 51a5bef · 51a5bef
1 parent 67d0d44
commit 51a5bef
Show file tree

Hide file tree

Showing 3 changed files with 2 additions and 2 deletions.
diff --git a/kola-denylist.yaml b/kola-denylist.yaml
@@ -57,3 +57,4 @@
   warn: true
   streams:
     - rawhide
+    - branched
diff --git a/manifests/fedora-coreos.yaml b/manifests/fedora-coreos.yaml
@@ -30,7 +30,7 @@ conditional-include:
   # Wifi firmwares will be dropped in F41
   - if: releasever < 41
     include: wifi-firmwares.yaml
-  - if: stream == "rawhide"
+  - if: releasever < 41
     include: composefs.yaml
 
 ostree-layers:

diff --git a/overlay.d/08composefs/README.md b/overlay.d/08composefs/README.md
@@ -1,2 +1 @@
 Enable composefs by default; more in https://ostreedev.github.io/ostree/composefs/
-For now rawhide only.
Original file line number	Diff line number	Diff line change
		@@ -1,2 +1 @@
		Enable composefs by default; more in https://ostreedev.github.io/ostree/composefs/
		For now rawhide only.