jasonbrooks/centos-atomic-container.ks

## centos-atomic-container.ks
#version=CentOS7
# Keyboard layouts
keyboard 'us'
# Reboot after installation
reboot
# Root password
rootpw --iscrypted --lock locked
# System language
lang en_US
user --name=none
# Firewall configuration
firewall --disabled
repo --name="microdnf" --baseurl="http://mirror.centos.org/centos/7/atomic/x86_64" --cost=100
repo --name="updates" --baseurl="http://mirror.centos.org/centos/7/updates/x86_64"

# System timezone
timezone UTC --isUtc --nontp
# System bootloader configuration
bootloader --disabled
# Clear the Master Boot Record
zerombr
# Partition clearing information
clearpart --all
# Disk partitioning information
part / --fstype="ext4" --grow

%post --logfile /var/log/anaconda/anaconda-post.log

# remove the user anaconda forces us to make
userdel -r none

# Set the language rpm nodocs transaction flag persistently in the
# image yum.conf and rpm macros

LANG="en_US"
echo "%_install_lang $LANG" > /etc/rpm/macros.image-language-conf

awk '(NF==0&&!done){print "override_install_langs='$LANG'\ntsflags=nodocs";done=1}{print}' \
    < /etc/yum.conf > /etc/yum.conf.new
mv /etc/yum.conf.new /etc/yum.conf

#systemd wrongly expects "unpopulated /etc" when /etc/machine-id does not exist
#let's leave machine-id empty
cat /dev/null > /etc/machine-id

#https://bugzilla.redhat.com/show_bug.cgi?id=1235969
#rm -f /etc/fstab
#this is not possible, guestmount needs fstab => brew build crashes without it
#fstab is removed in TDL when tar-ing files

rm -f /usr/lib/locale/locale-archive
#setup at least some locale, https://bugzilla.redhat.com/show_bug.cgi?id=1129697
localedef -v -c -i en_US -f UTF-8 en_US.UTF-8

#https://bugzilla.redhat.com/show_bug.cgi?id=1201663
rm -f /etc/systemd/system/multi-user.target.wants/rhsmcertd.service

#content of /run can not be prepared if /run is tmpfs (disappears on reboot)
umount /run
systemd-tmpfiles --create --boot

rpm -e acl audit-libs binutils cpio cracklib cracklib-dicts cryptsetup-libs dbus dbus-libs device-mapper device-mapper-libs diffutils dracut elfutils-libs gzip hardlink kmod kmod-libs kpartx libcap-ng libpwquality libsemanage libuser libutempter pam procps-ng qrencode-libs shadow-utils systemd systemd-libs tar ustr util-linux xz qemu-guest-agent

#create /etc/yum.repos.d, microdnf needs it but does not provide it
mkdir -p /etc/yum.repos.d/

rm /usr/share/gnupg/help*.txt -f
KEEPLANG=en_US
for dir in locale i18n; do
    find /usr/share/${dir} -mindepth  1 -maxdepth 1 -type d -not \( -name "${KEEPLANG}" -o -name POSIX \) -exec rm -rf {} +
done
rm /usr/lib/rpm/rpm.daily
rm /usr/lib64/nss/unsupported-tools/ -rf
rm /usr/share/gcc*/python -rf
rm /usr/sbin/{glibc_post_upgrade.x86_64,sln}
#let us not lie that blatantly
#ln /usr/bin/ln /usr/sbin/sln
rm -rf /var/lib/yum
rm -rf /var/cache/* /var/log/* /tmp/*
rm -rf /usr/lib/udev /etc/yum /etc/dbus-1 /usr/share/dbus-1
rm -rf /usr/share/icons/*

#some random not-that-useful binaries
rm -f /usr/bin/oldfind
rm -f /usr/bin/pinky
rm -f /usr/bin/script


#we lose presets by removing /usr/lib/systemd but we do not care
rm -rf /usr/lib/systemd
#https://bugzilla.redhat.com/show_bug.cgi?id=1476674 should not be affected

#if you want to change the timezone, bind-mount it from the host or reinstall tzdata
rm -f /etc/localtime
mv /usr/share/zoneinfo/UTC /etc/localtime
rm -rf  /usr/share/zoneinfo

#udev hardware database not needed in a container
rm -f /etc/udev/hwdb.bin
rm -rf /usr/lib/udev/hwdb.d/*


rm -rf /var/cache/yum/*
rm -f /tmp/ks-script*

%end

%packages --excludedocs --nobase --nocore --instLangs=en
bash
centos-release
microdnf
systemd
-e2fsprogs
-firewalld
-kernel
-kexec-tools
-xfsprogs

%end
	#version=CentOS7
	# Keyboard layouts
	keyboard 'us'
	# Reboot after installation
	reboot
	# Root password
	rootpw --iscrypted --lock locked
	# System language
	lang en_US
	user --name=none
	# Firewall configuration
	firewall --disabled
	repo --name="microdnf" --baseurl="http://mirror.centos.org/centos/7/atomic/x86_64" --cost=100
	repo --name="updates" --baseurl="http://mirror.centos.org/centos/7/updates/x86_64"

	# System timezone
	timezone UTC --isUtc --nontp
	# System bootloader configuration
	bootloader --disabled
	# Clear the Master Boot Record
	zerombr
	# Partition clearing information
	clearpart --all
	# Disk partitioning information
	part / --fstype="ext4" --grow

	%post --logfile /var/log/anaconda/anaconda-post.log

	# remove the user anaconda forces us to make
	userdel -r none

	# Set the language rpm nodocs transaction flag persistently in the
	# image yum.conf and rpm macros

	LANG="en_US"
	echo "%_install_lang $LANG" > /etc/rpm/macros.image-language-conf

	awk '(NF==0&&!done){print "override_install_langs='$LANG'\ntsflags=nodocs";done=1}{print}' \
	< /etc/yum.conf > /etc/yum.conf.new
	mv /etc/yum.conf.new /etc/yum.conf

	#systemd wrongly expects "unpopulated /etc" when /etc/machine-id does not exist
	#let's leave machine-id empty
	cat /dev/null > /etc/machine-id

	#https://bugzilla.redhat.com/show_bug.cgi?id=1235969
	#rm -f /etc/fstab
	#this is not possible, guestmount needs fstab => brew build crashes without it
	#fstab is removed in TDL when tar-ing files

	rm -f /usr/lib/locale/locale-archive
	#setup at least some locale, https://bugzilla.redhat.com/show_bug.cgi?id=1129697
	localedef -v -c -i en_US -f UTF-8 en_US.UTF-8

	#https://bugzilla.redhat.com/show_bug.cgi?id=1201663
	rm -f /etc/systemd/system/multi-user.target.wants/rhsmcertd.service

	#content of /run can not be prepared if /run is tmpfs (disappears on reboot)
	umount /run
	systemd-tmpfiles --create --boot

	rpm -e acl audit-libs binutils cpio cracklib cracklib-dicts cryptsetup-libs dbus dbus-libs device-mapper device-mapper-libs diffutils dracut elfutils-libs gzip hardlink kmod kmod-libs kpartx libcap-ng libpwquality libsemanage libuser libutempter pam procps-ng qrencode-libs shadow-utils systemd systemd-libs tar ustr util-linux xz qemu-guest-agent

	#create /etc/yum.repos.d, microdnf needs it but does not provide it
	mkdir -p /etc/yum.repos.d/

	rm /usr/share/gnupg/help*.txt -f
	KEEPLANG=en_US
	for dir in locale i18n; do
	find /usr/share/${dir} -mindepth 1 -maxdepth 1 -type d -not \( -name "${KEEPLANG}" -o -name POSIX \) -exec rm -rf {} +
	done
	rm /usr/lib/rpm/rpm.daily
	rm /usr/lib64/nss/unsupported-tools/ -rf
	rm /usr/share/gcc*/python -rf
	rm /usr/sbin/{glibc_post_upgrade.x86_64,sln}
	#let us not lie that blatantly
	#ln /usr/bin/ln /usr/sbin/sln
	rm -rf /var/lib/yum
	rm -rf /var/cache/* /var/log/* /tmp/*
	rm -rf /usr/lib/udev /etc/yum /etc/dbus-1 /usr/share/dbus-1
	rm -rf /usr/share/icons/*

	#some random not-that-useful binaries
	rm -f /usr/bin/oldfind
	rm -f /usr/bin/pinky
	rm -f /usr/bin/script


	#we lose presets by removing /usr/lib/systemd but we do not care
	rm -rf /usr/lib/systemd
	#https://bugzilla.redhat.com/show_bug.cgi?id=1476674 should not be affected

	#if you want to change the timezone, bind-mount it from the host or reinstall tzdata
	rm -f /etc/localtime
	mv /usr/share/zoneinfo/UTC /etc/localtime
	rm -rf /usr/share/zoneinfo

	#udev hardware database not needed in a container
	rm -f /etc/udev/hwdb.bin
	rm -rf /usr/lib/udev/hwdb.d/*


	rm -rf /var/cache/yum/*
	rm -f /tmp/ks-script*

	%end

	%packages --excludedocs --nobase --nocore --instLangs=en
	bash
	centos-release
	microdnf
	systemd
	-e2fsprogs
	-firewalld
	-kernel
	-kexec-tools
	-xfsprogs

	%end