# This is a minimal Fedora install designed to serve as a Docker base image. # # To keep this image minimal it only installs English language. You need to change # yum configuration in order to enable other languages. # ### Hacking on this image ### # This kickstart is processed using Anaconda-in-ImageFactory (via Koji typically), # but you can run imagefactory locally too. # # To do so, testing local changes, first you'll need a TDL file. I store one here: # https://git.fedorahosted.org/cgit/fedora-atomic.git/tree/fedora-atomic-rawhide.tdl # # Then, once you have imagefactory and imagefactory-plugins installed, run: # # imagefactory --debug target_image --template /path/to/fedora-atomic-rawhide.tdl --parameter offline_icicle true --file-parameter install_script $(pwd)/fedora-docker-base.ks docker # text # don't use cmdline -- https://github.com/rhinstaller/anaconda/issues/931 bootloader --disabled timezone --isUtc --nontp Etc/UTC rootpw --lock --iscrypted locked keyboard us zerombr clearpart --all part / --fstype ext4 --grow network --bootproto=dhcp --device=link --activate --onboot=on reboot %packages --excludedocs --instLangs=en --nocore --excludeWeakdeps bash fedora-release microdnf -kernel %end %post --erroronfail --log=/root/anaconda-post.log set -eux # Set install langs macro so that new rpms that get installed will # only install langs that we limit it to. LANG="en_US" echo "%_install_langs $LANG" > /etc/rpm/macros.image-language-conf # https://bugzilla.redhat.com/show_bug.cgi?id=1400682 echo "Import RPM GPG key" releasever=$(rpm -q --qf '%{version}\n' fedora-release) basearch=$(uname -i) rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-fedora-$releasever-$basearch echo "# fstab intentionally empty for containers" > /etc/fstab # remove some extraneous files rm -rf /var/cache/dnf/* rm -rf /tmp/* # https://bugzilla.redhat.com/show_bug.cgi?id=1343138 # Fix /run/lock breakage since it's not tmpfs in docker # This unmounts /run (tmpfs) and then recreates the files # in the /run directory on the root filesystem of the container umount /run # The file that specifies the /run/lock tmpfile is # /usr/lib/tmpfiles.d/legacy.conf, which is part of the systemd # rpm that isn't included in this image. We'll create the /run/lock # file here manually with the settings from legacy.conf install -d /run/lock -m 0755 -o root -g root # Remove machine-id on pre generated images rm -f /etc/machine-id touch /etc/machine-id rm usr/share/gnupg/help*.txt -f # See: https://bugzilla.redhat.com/show_bug.cgi?id=1051816 KEEPLANG=en_US for dir in locale i18n; do find usr/share/${dir} -mindepth 1 -maxdepth 1 -type d -not \( -name "${KEEPLANG}" -o -name POSIX \) -exec rm -rf {} + done # Pruning random things rm usr/lib/rpm/rpm.daily # seriously? rm usr/lib64/nss/unsupported-tools/ -rf # unsupported # gcc should really split this off rm usr/share/gcc*/python -rf # Statically linked crap rm usr/sbin/{glibc_post_upgrade.x86_64,sln} ln usr/bin/ln usr/sbin/sln # Final pruning rm -rf etc/machine-id var/cache/* var/log/* run/* tmp/* %end