From b25f34a1f78e537551d27cd063e6315a2f1f9e8e Mon Sep 17 00:00:00 2001
From: Sam Clark <1059176+samhclark@users.noreply.github.com>
Date: Sun, 24 Nov 2024 11:32:33 -0600
Subject: [PATCH] Revert "Refer to the key in /usr/etc instead of /etc"

This reverts commit 5f3a520eea324d5bfe724df56af7e764c134333f.

The `unlinkat` error was caused by an old cosign.pub file which at the
immutable bit set on it. Because of that, and because the filesystem was
mounted read-only, I couldn't delete that ostree deployment.

The solution was to use a live USB to unlock LUKS, mount the filesystem
directly as writeable, remove the immutable bit, then reboot and run
`ostree admin cleanup`

Since that's resolved now and since it makes more sense to refer to /etc
instead of /usr/etc this is getting reverted.
---
 overlay-root/usr/etc/containers/policy.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/overlay-root/usr/etc/containers/policy.json b/overlay-root/usr/etc/containers/policy.json
index cb4b77d..2b939bd 100644
--- a/overlay-root/usr/etc/containers/policy.json
+++ b/overlay-root/usr/etc/containers/policy.json
@@ -14,7 +14,7 @@
             "ghcr.io/samhclark": [
                 {
                     "type": "sigstoreSigned",
-                    "keyPath": "/usr/etc/pki/cosign/cosign.pub",
+                    "keyPath": "/etc/pki/cosign/cosign.pub",
                     "signedIdentity": {
                         "type": "matchRepository"
                     }