Gregory's Server> While OSTree ..., it has a significant drawback: it can’t support SecureBoot because it can’t support Unified Kernel Images, ...
That's not true. We demonstrated that in https://media.ccc.de/v/all-systems-go-2024-309-the-road-to-a-trusted-and-measured-boot-chain-in-bootable-containers.
You can say that it's not fully integrated, it's not ready or it's not what you want to do, but please don't say that it's not possible when we showed that it is.
I'm really glad that GNOME OS development is taking off so please don't justify technical decisions with misconceptions.
@KekunPlazas
To make it very explicit as I got limited in size for the previous toot:
- I'm really glad GNOME OS development is taking off. The success of any Image Based Linux system will be a success for all of the others (mindshare for Flatpak, etc.). Taking different approaches is also good as it may fit some use cases better.
- I fully agree that support for UKI in ostree is not in a great state right now. We are working on it as part of the Bootable Containers work.