mirror of
https://github.com/outbackdingo/ucore.git
synced 2026-01-27 18:20:42 +00:00
48 lines
1.5 KiB
Docker
48 lines
1.5 KiB
Docker
ARG COREOS_VERSION=${COREOS_VERSION:-stable}
|
|
|
|
FROM quay.io/fedora/fedora-coreos:${COREOS_VERSION}
|
|
|
|
COPY etc /etc
|
|
RUN mkdir -p /var/lib/duperemove
|
|
|
|
# Remove undesired packages
|
|
RUN rpm-ostree override remove \
|
|
toolbox \
|
|
zincati
|
|
|
|
# Install needed packages
|
|
RUN cd /etc/yum.repos.d/ \
|
|
&& curl -LO https://pkgs.tailscale.com/stable/fedora/tailscale.repo \
|
|
&& rpm-ostree install \
|
|
cockpit-networkmanager \
|
|
cockpit-podman \
|
|
cockpit-selinux \
|
|
cockpit-storaged \
|
|
cockpit-system \
|
|
distrobox \
|
|
docker-compose \
|
|
duperemove \
|
|
firewalld \
|
|
podman \
|
|
podman-compose \
|
|
tailscale \
|
|
vim \
|
|
wget \
|
|
wireguard-tools \
|
|
xdg-dbus-proxy \
|
|
xdg-user-dirs \
|
|
&& rm tailscale.repo
|
|
|
|
# Finalize
|
|
RUN sed -i 's/#AutomaticUpdatePolicy.*/AutomaticUpdatePolicy=stage/' /etc/rpm-ostreed.conf && \
|
|
sed -i 's/#DefaultTimeoutStopSec.*/DefaultTimeoutStopSec=60s/' /etc/systemd/user.conf && \
|
|
sed -i 's/#DefaultTimeoutStopSec.*/DefaultTimeoutStopSec=60s/' /etc/systemd/system.conf && \
|
|
systemctl disable docker.socket && \
|
|
systemctl enable ensure-var-log-audit-dir.service && \
|
|
systemctl enable rpm-ostreed-automatic.timer && \
|
|
rm /etc/ssh/sshd_config.d/40-disable-passwords.conf && \
|
|
ln -s ../usr/share/zoneinfo/UTC /etc/localtime && \
|
|
cp -a /etc/firewalld/firewalld-server.conf /etc/firewalld/firewalld.conf && \
|
|
rpm-ostree cleanup -m && \
|
|
ostree container commit
|