docs/composefs: Fix reference to `ostree sign`

author Daiki Ueno <dueno@redhat.com>

Wed, 19 Jun 2024 19:40:32 +0000 (04:40 +0900)

committer Daiki Ueno <dueno@redhat.com>

Thu, 20 Jun 2024 06:06:46 +0000 (15:06 +0900)
author Daiki Ueno <dueno@redhat.com>
Wed, 19 Jun 2024 19:40:32 +0000 (04:40 +0900)
committer Daiki Ueno <dueno@redhat.com>
Thu, 20 Jun 2024 06:06:46 +0000 (15:06 +0900)
diff --git a/docs/composefs.md b/docs/composefs.md

index af9544020dacd6cb81a99b4f559b5d4c5ed61730..139d2d26297b0365c9326c6c0c11ec08e815dae4 100644 (file)
--- a/docs/composefs.md
+++ b/docs/composefs.md
@@ -51,7 +51,7 @@ covering the composefs fsverity digest with a signature.
  ### Signatures
  
  If a commit is signed with an Ed25519 private key (see `ostree
---sign`), and `composefs.keyfile` is specified in `prepare-root.conf`,
+sign`), and `composefs.keyfile` is specified in `prepare-root.conf`,
  then the initrd will find the commit being booted in the system repo
  and validate its signature against the public key. It will then ensure
  that the composefs digest being booted has an fs-verity digest
@@ -63,7 +63,7 @@ to use it with transient keys. This is done like this:
   * Generate a new keypair before each build
   * Embed the public key in the initrd that is part of the commit.
   * Ensure the initrd has a `prepare-root.conf` with `[composefs] enabled=signed`, and either use `keypath` or inject `/etc/ostree/initramfs-root-binding.key`; for more see `man ostree-prepare-root`
- * After committing, run `ostree --sign` with the private key.
+ * After committing, run `ostree sign` with the private key.
   * Throw away the private key.
  
  When a transient key is used this way, that ties the initrd with the
author	Daiki Ueno <dueno@redhat.com>
	Wed, 19 Jun 2024 19:40:32 +0000 (04:40 +0900)
committer	Daiki Ueno <dueno@redhat.com>
	Thu, 20 Jun 2024 06:06:46 +0000 (15:06 +0900)