Commit Graph

33 Commits

Author SHA1 Message Date
Dusty Mabe
26be0f2d85
Move manipulation of machine-id above systemd-tmpfiles
For complicated reasons the systemd-tmpfiles call acutally
fails and causes the rest of the kspost to not get run. This
commit makes it the last thing to get run.

This has been fixed in future branches with a more complicated
set of patches:

- https://pagure.io/fedora-kickstarts/c/a4ae071
- https://pagure.io/fedora-kickstarts/c/f6ecdc3

Signed-off-by: Dusty Mabe <dusty@dustymabe.com>
2017-10-31 11:50:56 -04:00
Adam Miller
f85bbb10ee add tar to address BZ#1409920
Signed-off-by: Adam Miller <maxamillion@fedoraproject.org>
2017-01-04 15:32:53 -06:00
Peter Robinson
73645f341e Touch the machine-id file
So is seems that if you remove the machine-id file it won't regenerate the file
but if you touch the file and leave it empty on boot it'll put a new machine-id
in the empty file. So work around this bug ("feature"?) by touching the file
so we don't have other issues in the process.

We're track the outcome of this in RHBZ 1379800
2016-09-30 16:58:44 +01:00
Peter Robinson
1f1184c77c Remove machine-id on pre generated images so it's unique on each deployed device
As referenced on the arm list [1] and as already being done on the docker image we
should remove the unique /etc/machine-id file on compose artifacts to ensure it's
regenerated and unique on each deployed host/device. This unifies the process across
all base ks so it's inherited for each artifact.

[1] https://lists.fedoraproject.org/archives/list/arm@lists.fedoraproject.org/message/Q3YZVF5P2OLLPUJQ2LYZSTKWGGDIU6QO/

Signed-off-by: Peter Robinson <pbrobinson@gmail.com>
2016-09-13 09:12:37 +01:00
Adam Miller
96a6711bb7 fix missing /run/lock in docker base image BZ#1343138
Signed-off-by: Adam Miller <maxamillion@fedoraproject.org>
2016-07-22 15:26:49 -05:00
Jan Pazdziora
27c2ec431d Make the %post fail when its commands no longer pass. 2016-06-08 21:00:09 +02:00
Kevin Fenzi
20b2147482 Merge #27 1343111 - Purge fstab to stop systemd from attempting to mount filesystems. 2016-06-07 18:09:05 +00:00
Jan Pazdziora
1a5dea70fc 1343136 - the default OOMScoreAdjust=-900 does not cause any ill effects on fedora:rawhide. 2016-06-07 09:54:16 +02:00
Jan Pazdziora
4d39c5ca63 1343111 - Purge fstab to stop systemd from attempting to mount filesystems. 2016-06-07 09:11:29 +02:00
Peter Robinson
b2eb0a44ea Docker: Base: add arm config, use includes for ppc config 2016-04-12 15:43:30 +01:00
Jan Pazdziora
ee22a9c00c Add sssd-client with .so's for easy integration with SSSD container. 2015-10-30 09:20:42 -05:00
Adam Miller
6ea47a9570 add tsflags=nodocs to dnf.conf as well as yum.conf 2015-09-01 15:55:14 -05:00
Colin Walters
4dc7946ad4 docker: Use bootloader --none to work around Anaconda regression
We were getting grub2 in the base image again.  Apparently
for a while Anaconda has supported a cleaner syntax for this, and
since it fixes the bug, let's use it.

https://bugzilla.redhat.com/show_bug.cgi?id=1222132
2015-05-15 17:35:52 -04:00
Colin Walters
6ba647a663 docker: Don't use a hardcoded root password
Best practice is to use unprivileged service daemons inside Docker
containers.  But with this hardcoded root password, in the case of
remote code execution, an attacker could trivially escalate their
privileges to root/uid 0.  And while that's uid 0 inside a container,
that's a much larger attack surface.

Instead, do the same thing we're doing for the Cloud images: lock the
root password, create a user to make Anaconda happy, then delete the
user in %post.

https://bugzilla.redhat.com/show_bug.cgi?id=1175997
2015-05-06 14:36:59 -04:00
Colin Walters
7d0d94b23d Revert "we can not install dnf-yum until FESCo signs off on it being allowed"
It's now agreed.

This reverts commit c3c01cfa0a.
2015-03-25 15:33:35 -04:00
Dennis Gilmore
c3c01cfa0a we can not install dnf-yum until FESCo signs off on it being allowed 2015-03-19 20:06:04 -05:00
Colin Walters
961b78fbd8 docker-base: Add dnf-yum
Per the FESCo ticket.
2015-03-19 17:43:34 -04:00
Colin Walters
bf523267e2 docker-base: Add some instructions for local builds 2015-03-19 17:41:48 -04:00
Colin Walters
f2ad1bb926 docker-base: Start shipping fstab again
Even though it's silly, the ImageFactory-in-Koji use case calls into
libguestfs to introspect the target system, and libguestfs relies on
/etc/fstab to detect installed operating systems.
2015-03-19 17:37:37 -04:00
Dennis Gilmore
44178ef0b3 Remove the firewall line as it causes anaconda to add firewalld to the
package set. revert back to fedora-release
2015-03-13 13:36:10 -05:00
Dennis Gilmore
d4fa62eaab pull in fedora-release-cloud to make the docker base image smaller
during install dnf was pulling in fedora-release-server which added a lot of bloat
2015-03-11 10:38:08 -05:00
Dennis Gilmore
e897975918 switch teh docker base image to dnf 2015-03-07 11:12:24 -06:00
Vaclav Pavlin
cf6ffa1988 fedora-docker-base: Remove fstab in %post 2015-02-12 13:48:19 +01:00
Vaclav Pavlin
8f3beacf10 fedora-docker-base: remove machine-id after installation so that systemd can set it properly 2015-02-06 13:43:59 +01:00
Kushal Das
6bf1907a10 Updates the timezone in docker image to UTC.
Closes trac #91.
2015-01-28 14:08:40 +05:30
Vaclav Pavlin
20a9971686 fedora-docker-base: adjust dbus.service to run in a container, mask some units to get rid of fails in boot transaction 2015-01-21 10:17:49 +01:00
Vaclav Pavlin
7c09012288 fedora-docker-base: Add rootfiles and regenerate locale after removal
https://fedorahosted.org/cloud/ticket/92
2015-01-21 09:23:04 +01:00
Dennis Gilmore
b947d49831 use link as the device for netwrok in the cloud images 2014-12-12 16:07:54 -08:00
Dennis Gilmore
94283bfff2 Revert "docker: Add fakesystemd to %packages to keep systemd out of base image"
This reverts commit f42fe5d85a.
2014-09-10 13:13:48 -05:00
Vaclav Pavlin
cece80a91b docker: Add fakesystemd to %packages to keep systemd out of base image 2014-09-05 08:37:18 -05:00
Matthew Miller
22c7c00a6b use 'cmdline' for text-based install for docker image 2014-09-03 13:20:26 -04:00
Dennis Gilmore
8180b563f1 fix up the options to the bootloader config, make the rootfs smaller. 2014-07-30 02:29:54 -05:00
Vaclav Pavlin
022cc883c0 Add kickstart for Docker base image 2014-07-30 02:29:51 -05:00