mitsutaka/setup_buildah_stretch.sh

## setup_buildah_stretch.sh
#!/bin/sh -eux

sudo apt update
sudo apt install -y pkg-config libglib2.0-dev libseccomp-dev libdevmapper-dev libostree-dev btrfs-progs libgpgme-dev dirmngr go-md2man

for repo in github.com/opencontainers/runc github.com/projectatomic/buildah; do
    /usr/local/go/bin/go get -u $repo
    (cd $GOPATH/src/$repo; make && sudo make install)
done

sudo mkdir -p /etc/containers
sudo tee /etc/containers/storage.conf <<EOF
[storage]
driver = "overlay"
runroot = "/var/run/containers/storage"
graphroot = "/var/lib/containers/storage"

[storage.options]
additionalimagestores = []
size = ""
override_kernel_check = "true"
EOF

sudo tee /etc/containers/policy.json <<EOF
{
    "default": [
        {
            "type": "insecureAcceptAnything"
        }
    ],
    "transports":
        {
            "docker-daemon":
                {
                    "": [{"type":"insecureAcceptAnything"}]
                }
        }
}
EOF

sudo tee /etc/containers/registries.conf <<EOF
[registries.search]
registries = ['docker.io', 'registry.fedoraproject.org', 'quay.io', 'registry.access.redhat.com', 'registry.centos.org']

# If you need to access insecure registries, add the registry's fully-qualified name.
# An insecure registry is one that does not have a valid SSL certificate or only does HTTP.
[registries.insecure]
registries = []


# If you need to block pull access from a registry, uncomment the section below
# and add the registries fully-qualified name.
#
# Docker only
[registries.block]
registries = []
EOF
	#!/bin/sh -eux

	sudo apt update
	sudo apt install -y pkg-config libglib2.0-dev libseccomp-dev libdevmapper-dev libostree-dev btrfs-progs libgpgme-dev dirmngr go-md2man

	for repo in github.com/opencontainers/runc github.com/projectatomic/buildah; do
	/usr/local/go/bin/go get -u $repo
	(cd $GOPATH/src/$repo; make && sudo make install)
	done

	sudo mkdir -p /etc/containers
	sudo tee /etc/containers/storage.conf <<EOF
	[storage]
	driver = "overlay"
	runroot = "/var/run/containers/storage"
	graphroot = "/var/lib/containers/storage"

	[storage.options]
	additionalimagestores = []
	size = ""
	override_kernel_check = "true"
	EOF

	sudo tee /etc/containers/policy.json <<EOF
	{
	"default": [
	{
	"type": "insecureAcceptAnything"
	}
	],
	"transports":
	{
	"docker-daemon":
	{
	"": [{"type":"insecureAcceptAnything"}]
	}
	}
	}
	EOF

	sudo tee /etc/containers/registries.conf <<EOF
	[registries.search]
	registries = ['docker.io', 'registry.fedoraproject.org', 'quay.io', 'registry.access.redhat.com', 'registry.centos.org']

	# If you need to access insecure registries, add the registry's fully-qualified name.
	# An insecure registry is one that does not have a valid SSL certificate or only does HTTP.
	[registries.insecure]
	registries = []


	# If you need to block pull access from a registry, uncomment the section below
	# and add the registries fully-qualified name.
	#
	# Docker only
	[registries.block]
	registries = []
	EOF