Compare commits
52 Commits
main
...
feature/va
Author | SHA1 | Date | |
---|---|---|---|
|
34bd176f2d | ||
dd9d73a0f8 | |||
b2f0118066 | |||
e51f7bb0f7 | |||
3ea2667cef | |||
405cfdb912 | |||
90157c1fac | |||
2f9f4fd64a | |||
7c1dc22cfc | |||
cb7f32affc | |||
fbcd5f424d | |||
9e9e16aaa7 | |||
e7d64d75b2 | |||
cde7be8a93 | |||
fad38825c7 | |||
34ff9d485f | |||
bd06f33d71 | |||
dd8f897fa9 | |||
bb9888a73a | |||
ae8788fa91 | |||
a8c3556bc4 | |||
eb59b5651a | |||
d61b6a1b26 | |||
|
1d39aa6ff2 | ||
|
41e1d78dee | ||
|
5c668d21b7 | ||
|
225ede7fc5 | ||
|
998a1ead36 | ||
|
02d4ef974a | ||
|
50ae667781 | ||
|
78b5936463 | ||
|
ad67199c3e | ||
|
8cf1ca32bb | ||
|
d111a30da0 | ||
|
a6b0c4912a | ||
|
888b882668 | ||
|
a93ba16ed8 | ||
b1c99d8584 | |||
|
1d57465221 | ||
|
c544e9bca7 | ||
|
6d1ffb5136 | ||
|
8ea740d0ce | ||
f7850ec5d8 | |||
de40f77ca0 | |||
bc9779cca4 | |||
4b670a9ad2 | |||
cfc4a16b1a | |||
25b7bd31d5 | |||
701c2785b8 | |||
|
9936c1728e | ||
|
837ae26098 | ||
|
e8cc11b128 |
71
README.md
Normal file
71
README.md
Normal file
@ -0,0 +1,71 @@
|
||||
# R9 specific kickstarts
|
||||
|
||||
This branch has Rocky Linux 9 specific kickstarts. These kickstarts vary
|
||||
between cloud images and live images provided in our repositories and
|
||||
mirrors.
|
||||
|
||||
## Structure
|
||||
|
||||
In the root of the repository are the general kickstarts in use that any
|
||||
user can pick up, use, or modify to their liking to make their own Rocky
|
||||
Linux live images. For those who are curious, in the `live` directory are
|
||||
the split parts that make the live kickstarts what they are, which you can
|
||||
use `ksflatten` on if you so choose.
|
||||
|
||||
For SIG/Core's usage, we use the `live` area as a "working" directory,
|
||||
where we use the split parts in our automation for the images and the
|
||||
pre-flattened versions are there for the convenience of all users.
|
||||
|
||||
## Building Live Images
|
||||
|
||||
To build live images, you will need to use `livecd-creator` or
|
||||
`livemedia-creator`. The former is simpler to use and generally works without
|
||||
many issues. The latter can be a bit more tricky to work with and typically
|
||||
runs the installer virtually. However, it can be used without a virtual machine
|
||||
like in a mock shell.
|
||||
|
||||
Optionally, it is possible to use `empanadas` found in the SIG/Core toolkit.
|
||||
|
||||
### Automatic: Using empanadas
|
||||
|
||||
To be filled.
|
||||
|
||||
### Manual: Using livemedia-creator
|
||||
|
||||
To use livemedia-creator without using virt, you can use a mock shell. To
|
||||
setup a mock chroot for the purpose of building a live image, you would
|
||||
set it up like so:
|
||||
|
||||
```
|
||||
# Install mock if you haven't already
|
||||
% dnf install epel-release -y
|
||||
% dnf install mock -y
|
||||
|
||||
# Add a user to the mock group
|
||||
% usermod -a -G mock user
|
||||
|
||||
# As the user, setup the mock environment
|
||||
% mock -r rocky-9-x86_64 --init
|
||||
% mock -r rocky-9-x86_64 --install lorax-lmc-novirt vim-minimal pykickstart git
|
||||
# You may need to be in permissive mode temporarily if you have issues
|
||||
% setenforce 0
|
||||
# Enter the shell
|
||||
% mock -r rocky-9-x86_64 --shell --isolation=simple --enable-network
|
||||
|
||||
# Clone the kickstarts and run an installation
|
||||
% git clone https://github.com/rocky-linux/kickstarts
|
||||
% cd kickstarts
|
||||
% livemedia-creator --ks Rocky-9-Workstation.ks \
|
||||
--no-virt \
|
||||
--resultdir /var/lmc \
|
||||
--project="Rocky Linux" \
|
||||
--make-iso \
|
||||
--volid Rocky-Workstation-9 \
|
||||
--iso-only \
|
||||
--iso-name Rocky-Workstation-9-x86_64.iso \
|
||||
--releasever=9 \
|
||||
--nomacboot # This option is important to set, mkfs.hfsplus is not available
|
||||
```
|
||||
|
||||
With the example above, all of the results will appear in
|
||||
`/var/lib/mock/rocky-9-x86_64/root/var/lmc`.
|
304
Rocky-9-Azure.ks
Normal file
304
Rocky-9-Azure.ks
Normal file
@ -0,0 +1,304 @@
|
||||
text
|
||||
|
||||
auth --enableshadow --passalgo=sha512
|
||||
shutdown
|
||||
firewall --enabled --service=ssh
|
||||
firstboot --disable
|
||||
ignoredisk --only-use=vda
|
||||
keyboard us
|
||||
# System language
|
||||
lang en_US.UTF-8
|
||||
# Network information
|
||||
network --bootproto=dhcp --device=link --activate --onboot=on
|
||||
network --hostname=localhost.localdomain
|
||||
# Root password
|
||||
rootpw --iscrypted thereisnopasswordanditslocked
|
||||
selinux --enforcing
|
||||
services --disabled="kdump" --enabled="NetworkManager,sshd,rsyslog,chronyd,cloud-init,cloud-init-local,cloud-config,cloud-final,rngd"
|
||||
timezone UTC --utc
|
||||
# Disk
|
||||
bootloader --append="rootdelay=300 console=ttyS0 earlyprintk=ttyS0 no_timer_check crashkernel=auto net.ifnames=0" --location=mbr --timeout=1 --boot-drive=vda
|
||||
zerombr
|
||||
clearpart --all --initlabel
|
||||
part /boot --fstype xfs --size 1024 --asprimary --ondisk vda
|
||||
part /boot/efi --fstype vfat --size 512 --asprimary --ondisk vda
|
||||
reqpart
|
||||
part / --fstype="xfs" --ondisk=vda --maxsize=3000 --grow
|
||||
|
||||
|
||||
%post --erroronfail
|
||||
passwd -d root
|
||||
passwd -l root
|
||||
|
||||
###
|
||||
# Common Cloud Tweaks
|
||||
###
|
||||
|
||||
# pvgrub support
|
||||
echo -n "Creating grub.conf for pvgrub"
|
||||
rootuuid=$( awk '$2=="/" { print $1 };' /etc/fstab )
|
||||
mkdir /boot/grub
|
||||
echo -e 'default=0\ntimeout=0\n\n' > /boot/grub/grub.conf
|
||||
for kv in $( ls -1v /boot/vmlinuz* |grep -v rescue |sed s/.*vmlinuz-// ); do
|
||||
echo "title Rocky Linux 8 ($kv)" >> /boot/grub/grub.conf
|
||||
echo -e "\troot (hd0)" >> /boot/grub/grub.conf
|
||||
echo -e "\tkernel /boot/vmlinuz-$kv ro root=$rootuuid console=hvc0 LANG=en_US.UTF-8" >> /boot/grub/grub.conf
|
||||
echo -e "\tinitrd /boot/initramfs-$kv.img" >> /boot/grub/grub.conf
|
||||
echo
|
||||
done
|
||||
ln -sf grub.conf /boot/grub/menu.lst
|
||||
ln -sf /boot/grub/grub.conf /etc/grub.conf
|
||||
|
||||
# setup systemd to boot to the right runlevel
|
||||
rm -f /etc/systemd/system/default.target
|
||||
ln -s /lib/systemd/system/multi-user.target /etc/systemd/system/default.target
|
||||
echo .
|
||||
|
||||
# remove linux-firmware as we're virt and it's half a gig
|
||||
dnf -C -y remove linux-firmware
|
||||
|
||||
# Remove firewalld; it is required to be present for install/image building.
|
||||
# but we dont ship it in cloud
|
||||
dnf -C -y remove firewalld --setopt="clean_requirements_on_remove=1"
|
||||
dnf -C -y remove avahi\*
|
||||
sed -i '/^#NAutoVTs=.*/ a\
|
||||
NAutoVTs=0' /etc/systemd/logind.conf
|
||||
|
||||
echo "virtual-guest" > /etc/tuned/active_profile
|
||||
|
||||
###
|
||||
# Networking Changes
|
||||
###
|
||||
|
||||
# For cloud images, 'eth0' _is_ the predictable device name, since
|
||||
# we don't want to be tied to specific virtual (!) hardware
|
||||
#rm -f /etc/udev/rules.d/70*
|
||||
#ln -s /dev/null /etc/udev/rules.d/80-net-name-slot.rules
|
||||
|
||||
# simple eth0 config, again not hard-coded to the build hardware
|
||||
#cat > /etc/sysconfig/network-scripts/ifcfg-eth0 << EOF
|
||||
#DEVICE=eth0
|
||||
#ONBOOT=yes
|
||||
#BOOTPROTO=dhcp
|
||||
#TYPE=Ethernet
|
||||
#USERCTL=no
|
||||
#PEERDNS=yes
|
||||
#IPV6INIT=no
|
||||
#NM_CONTROLLED=yes
|
||||
#IPV4_DHCP_TIMEOUT=300
|
||||
#EOF
|
||||
|
||||
cat << EOF | tee -a /etc/NetworkManager/conf.d/dhcp-timeout.conf
|
||||
# Configure dhcp timeout to 300s by default
|
||||
[connection]
|
||||
ipv4.dhcp-timeout=300
|
||||
EOF
|
||||
|
||||
|
||||
cat > /etc/sysconfig/network << EOF
|
||||
NETWORKING=yes
|
||||
NOZEROCONF=yes
|
||||
EOF
|
||||
|
||||
# Remove build-time resolvers to fix #16948
|
||||
echo > /etc/resolv.conf
|
||||
|
||||
# generic localhost names
|
||||
cat > /etc/hosts << EOF
|
||||
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
|
||||
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
|
||||
|
||||
EOF
|
||||
echo .
|
||||
|
||||
|
||||
###
|
||||
# Services
|
||||
###
|
||||
|
||||
systemctl mask tmp.mount
|
||||
|
||||
###
|
||||
# azure
|
||||
###
|
||||
# Setup WALinux Agent
|
||||
dnf -y install WALinuxAgent
|
||||
systemctl enable waagent
|
||||
|
||||
# Configure waagent for cloud-init
|
||||
sed -i 's/Provisioning.UseCloudInit=n/Provisioning.UseCloudInit=y/g' /etc/waagent.conf
|
||||
sed -i 's/Provisioning.Enabled=y/Provisioning.Enabled=n/g' /etc/waagent.conf
|
||||
|
||||
|
||||
|
||||
# Azure: handle sr-iov and networkmanaeger
|
||||
cat << EOF | tee -a /etc/udev/rules.d/68-azure-sriov-nm-unmanaged.rules
|
||||
# Accelerated Networking on Azure exposes a new SRIOV interface to the VM.
|
||||
# This interface is transparently bonded to the synthetic interface,
|
||||
# so NetworkManager should just ignore any SRIOV interfaces.
|
||||
SUBSYSTEM=="net", DRIVERS=="hv_pci", ACTION=="add", ENV{NM_UNMANAGED}="1"
|
||||
EOF
|
||||
|
||||
# Azure: Time sync for linux
|
||||
## Setup udev rule for ptp_hyperv
|
||||
cat << EOF | tee -a /etc/udev/rules.d/98-hyperv-ptp.rules
|
||||
## See: https://docs.microsoft.com/en-us/azure/virtual-machines/linux/time-sync#check-for-ptp-clock-source
|
||||
SUBSYSTEM=="ptp", ATTR{clock_name}=="hyperv", SYMLINK += "ptp_hyperv"
|
||||
EOF
|
||||
|
||||
# Configure chrony to use ptp_hyperv
|
||||
cat << EOF | tee -a /etc/chrony.conf
|
||||
# Setup hyperv PTP device as refclock
|
||||
refclock PHC /dev/ptp_hyperv poll 3 dpoll -2 offset 0 stratum 2
|
||||
EOF
|
||||
|
||||
# Azure: Blacklist modules
|
||||
cat << EOF | tee -a /etc/modprobe.d/azure-blacklist.conf
|
||||
blacklist amdgpu
|
||||
blacklist nouveau
|
||||
blacklist radeon
|
||||
EOF
|
||||
|
||||
# Azure: cloud-init customizations for Hyperv
|
||||
cat << EOF | tee /etc/cloud/cloud.cfg.d/10-azure-kvp.cfg
|
||||
# Enable logging to the Hyper-V kvp in Azure
|
||||
reporting:
|
||||
logging:
|
||||
type: log
|
||||
telemetry:
|
||||
type: hyperv
|
||||
EOF
|
||||
|
||||
###
|
||||
# Kernel and Drivers
|
||||
###
|
||||
|
||||
# Add drivers when building in VMWare, Vbox, or KVM (KVM)
|
||||
cat << EOF | tee -a /etc/dracut.conf.d/80-azure.conf
|
||||
add_drivers+=" hv_vmbus hv_netvsc hv_storvsc "
|
||||
EOF
|
||||
|
||||
dracut -f -v
|
||||
|
||||
cat <<EOL > /etc/sysconfig/kernel
|
||||
# UPDATEDEFAULT specifies if new-kernel-pkg should make
|
||||
# new kernels the default
|
||||
UPDATEDEFAULT=yes
|
||||
|
||||
# DEFAULTKERNEL specifies the default kernel package type
|
||||
DEFAULTKERNEL=kernel
|
||||
EOL
|
||||
|
||||
# make sure firstboot doesn't start
|
||||
echo "RUN_FIRSTBOOT=NO" > /etc/sysconfig/firstboot
|
||||
|
||||
# rocky cloud user
|
||||
echo -e 'rocky\tALL=(ALL)\tNOPASSWD: ALL' >> /etc/sudoers
|
||||
sed -i 's/name: cloud-user/name: rocky/g' /etc/cloud/cloud.cfg
|
||||
|
||||
dnf clean all
|
||||
|
||||
# XXX instance type markers - MUST match Rocky Infra expectation
|
||||
echo 'azure' > /etc/yum/vars/infra
|
||||
|
||||
# change dhcp client retry/timeouts to resolve #6866
|
||||
|
||||
|
||||
###
|
||||
# Cleanup
|
||||
###
|
||||
|
||||
###
|
||||
# Azure Cleanup
|
||||
###
|
||||
sudo rm -f /var/log/waagent.log
|
||||
sudo cloud-init clean
|
||||
waagent -force -deprovision+user
|
||||
|
||||
|
||||
# Commont cleanup
|
||||
rm -f ~/.bash_history
|
||||
export HISTSIZE=0
|
||||
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
rm -rf /root/anaconda-ks.cfg
|
||||
rm -rf /root/install.log
|
||||
rm -rf /root/install.log.syslog
|
||||
rm -rf "/var/lib/yum/*"
|
||||
rm -rf "/var/log/anaconda*"
|
||||
rm -rf /var/log/yum.log
|
||||
|
||||
# Wipe machineid
|
||||
cat /dev/null > /etc/machine-id
|
||||
|
||||
# Fix selinux
|
||||
touch /var/log/cron
|
||||
touch /var/log/boot.log
|
||||
mkdir -p /var/cache/yum
|
||||
/usr/sbin/fixfiles -R -a restore
|
||||
|
||||
true
|
||||
|
||||
%end
|
||||
|
||||
%packages
|
||||
@core
|
||||
chrony
|
||||
dnf
|
||||
yum
|
||||
cloud-init
|
||||
cloud-utils-growpart
|
||||
NetworkManager
|
||||
dracut-config-generic
|
||||
firewalld
|
||||
gdisk
|
||||
grub2
|
||||
kernel
|
||||
nfs-utils
|
||||
rsync
|
||||
tar
|
||||
dnf-utils
|
||||
yum-utils
|
||||
-aic94xx-firmware
|
||||
-alsa-firmware
|
||||
-alsa-lib
|
||||
-alsa-tools-firmware
|
||||
-ivtv-firmware
|
||||
-iwl100-firmware
|
||||
-iwl1000-firmware
|
||||
-iwl105-firmware
|
||||
-iwl135-firmware
|
||||
-iwl2000-firmware
|
||||
-iwl2030-firmware
|
||||
-iwl3160-firmware
|
||||
-iwl3945-firmware
|
||||
-iwl4965-firmware
|
||||
-iwl5000-firmware
|
||||
-iwl5150-firmware
|
||||
-iwl6000-firmware
|
||||
-iwl6000g2a-firmware
|
||||
-iwl6000g2b-firmware
|
||||
-iwl6050-firmware
|
||||
-iwl7260-firmware
|
||||
-libertas-sd8686-firmware
|
||||
-libertas-sd8787-firmware
|
||||
-libertas-usb8388-firmware
|
||||
-biosdevname
|
||||
-iprutils
|
||||
-plymouth
|
||||
|
||||
python3-jsonschema
|
||||
qemu-guest-agent
|
||||
dhcp-client
|
||||
cockpit-ws
|
||||
cockpit-system
|
||||
-langpacks-*
|
||||
-langpacks-en
|
||||
|
||||
rocky-release
|
||||
rng-tools
|
||||
|
||||
WALinuxAgent
|
||||
hyperv-daemons
|
||||
|
||||
%end
|
@ -1,24 +1,20 @@
|
||||
# This is a minimal Rocky kickstart designed for docker.
|
||||
# It will not produce a bootable system
|
||||
# To use this kickstart, run the following command
|
||||
# livemedia-creator --make-tar \
|
||||
# --iso=/path/to/boot.iso \
|
||||
# --ks=rocky-8.ks \
|
||||
# --image-name=rocky-root.tar.xz
|
||||
#
|
||||
# To use this kickstart, run make
|
||||
|
||||
# Basic setup information
|
||||
|
||||
text
|
||||
keyboard us
|
||||
rootpw --lock --iscrypted locked
|
||||
timezone --isUtc --nontp UTC
|
||||
selinux --enforcing
|
||||
bootloader --disable
|
||||
firewall --disabled
|
||||
network --bootproto=dhcp --device=link --activate --onboot=on
|
||||
rootpw --lock --iscrypted locked
|
||||
selinux --disabled
|
||||
shutdown
|
||||
bootloader --disable
|
||||
lang en_US.UTF-8
|
||||
|
||||
keyboard us
|
||||
lang en_US.UTF-8
|
||||
timezone --utc --nontp UTC
|
||||
|
||||
# Disk setup
|
||||
zerombr
|
||||
@ -26,43 +22,45 @@ clearpart --all --initlabel
|
||||
autopart --noboot --nohome --noswap --nolvm --fstype=ext4
|
||||
|
||||
# Package setup
|
||||
%packages --excludedocs --instLangs=en --nocore --excludeWeakdeps
|
||||
rocky-release
|
||||
binutils
|
||||
-brotli
|
||||
%packages --ignoremissing --excludedocs --inst-langs=en --nocore --exclude-weakdeps
|
||||
bash
|
||||
hostname
|
||||
rootfiles
|
||||
binutils
|
||||
coreutils-single
|
||||
glibc-minimal-langpack
|
||||
vim-minimal
|
||||
less
|
||||
-gettext*
|
||||
-firewalld
|
||||
-os-prober*
|
||||
tar
|
||||
-iptables
|
||||
hostname
|
||||
iputils
|
||||
-kernel
|
||||
less
|
||||
rocky-release
|
||||
rootfiles
|
||||
tar
|
||||
vim-minimal
|
||||
yum
|
||||
|
||||
-brotli
|
||||
-dosfstools
|
||||
-kexec-tools
|
||||
-e2fsprogs
|
||||
-firewalld
|
||||
-fuse-libs
|
||||
-gettext*
|
||||
-gnupg2-smime
|
||||
-grub\*
|
||||
-iptables
|
||||
-kernel
|
||||
-libss
|
||||
-os-prober*
|
||||
-pinentry
|
||||
-qemu-guest-agent
|
||||
-shared-mime-info
|
||||
-trousers
|
||||
-xkeyboard-config
|
||||
-xfsprogs
|
||||
-qemu-guest-agent
|
||||
yum
|
||||
-grub\*
|
||||
|
||||
-xkeyboard-config
|
||||
%end
|
||||
|
||||
%post --erroronfail --log=/root/anaconda-post.log
|
||||
# container customizations inside the chroot
|
||||
|
||||
# Stay compatible
|
||||
echo 'container' > /etc/dnf/vars/infra
|
||||
|
||||
#Generate installtime file record
|
||||
@ -72,19 +70,28 @@ echo 'container' > /etc/dnf/vars/infra
|
||||
LANG="en_US"
|
||||
echo "%_install_langs $LANG" > /etc/rpm/macros.image-language-conf
|
||||
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1727489
|
||||
echo 'LANG="C.UTF-8"' > /etc/locale.conf
|
||||
|
||||
# systemd fixes
|
||||
:> /etc/machine-id
|
||||
umount /run
|
||||
systemd-tmpfiles --create --boot
|
||||
# mask mounts and login bits
|
||||
systemctl mask systemd-logind.service getty.target console-getty.service sys-fs-fuse-connections.mount systemd-remount-fs.service dev-hugepages.mount
|
||||
|
||||
# Remove things we don't need
|
||||
# mask mounts and login bits
|
||||
systemctl mask \
|
||||
console-getty.service \
|
||||
dev-hugepages.mount \
|
||||
getty.target \
|
||||
sys-fs-fuse-connections.mount \
|
||||
systemd-logind.service \
|
||||
systemd-remount-fs.service
|
||||
|
||||
# Cleanup the image
|
||||
rm -f /etc/udev/hwdb.bin
|
||||
rm -rf /usr/lib/udev/hwdb.d/
|
||||
rm -rf /boot
|
||||
rm -rf /var/lib/dnf/history.*
|
||||
rm -rf /usr/lib/udev/hwdb.d/ \
|
||||
/boot /var/lib/dnf/history.* \
|
||||
"/tmp/*" "/tmp/.*" || true
|
||||
|
||||
|
||||
%end
|
97
Rocky-9-Container-Minimal.ks
Normal file
97
Rocky-9-Container-Minimal.ks
Normal file
@ -0,0 +1,97 @@
|
||||
# This is a minimal Rocky kickstart designed for docker.
|
||||
# It will not produce a bootable system
|
||||
# To use this kickstart, run make
|
||||
|
||||
# Basic setup information
|
||||
|
||||
bootloader --disable
|
||||
firewall --disabled
|
||||
network --bootproto=dhcp --device=link --activate --onboot=on
|
||||
rootpw --lock --iscrypted locked
|
||||
selinux --disabled
|
||||
shutdown
|
||||
|
||||
keyboard us
|
||||
lang en_US.UTF-8
|
||||
timezone --utc --nontp UTC
|
||||
|
||||
# Disk setup
|
||||
zerombr
|
||||
clearpart --all --initlabel
|
||||
autopart --noboot --nohome --noswap --nolvm --fstype=ext4
|
||||
|
||||
# Package setup
|
||||
%packages --ignoremissing --excludedocs --inst-langs=en --nocore --exclude-weakdeps
|
||||
bash
|
||||
coreutils-single
|
||||
glibc-minimal-langpack
|
||||
microdnf
|
||||
rocky-release
|
||||
|
||||
-brotli
|
||||
-dosfstools
|
||||
-e2fsprogs
|
||||
-firewalld
|
||||
-fuse-libs
|
||||
-gettext*
|
||||
-gnupg2-smime
|
||||
-grub\*
|
||||
-hostname
|
||||
-iptables
|
||||
-iputils
|
||||
-kernel
|
||||
-kexec-tools
|
||||
-less
|
||||
-libss
|
||||
-os-prober*
|
||||
-pinentry
|
||||
-qemu-guest-agent
|
||||
-rootfiles
|
||||
-shared-mime-info
|
||||
-tar
|
||||
-trousers
|
||||
-vim-minimal
|
||||
-xfsprogs
|
||||
-xkeyboard-config
|
||||
-yum
|
||||
%end
|
||||
|
||||
%post --erroronfail --log=/root/anaconda-post.log
|
||||
# container customizations inside the chroot
|
||||
|
||||
|
||||
rpm --rebuilddb
|
||||
|
||||
/bin/date +%Y-%m-%d_%H:%M:%S > /etc/BUILDTIME
|
||||
|
||||
echo 'container' > /etc/dnf/vars/infra
|
||||
|
||||
LANG="en_US"
|
||||
echo '%_install_langs en_US.UTF-8' > /etc/rpm/macros.image-language-conf
|
||||
echo 'LANG="C.UTF-8"' > /etc/locale.conf
|
||||
|
||||
rm -f /var/lib/dnf/history.*
|
||||
rm -fr "/var/log/*" "/tmp/*" "/tmp/.*"
|
||||
|
||||
for dir in $(ls -d "/usr/share/{locale,i18n}/*" | grep -v 'en_US\|all_languages\|locale\.alias'); do rm -fr $dir; done
|
||||
|
||||
# systemd fixes
|
||||
umount /run
|
||||
systemd-tmpfiles --create --boot
|
||||
|
||||
# mask mounts and login bits
|
||||
systemctl mask \
|
||||
console-getty.service \
|
||||
dev-hugepages.mount \
|
||||
getty.target \
|
||||
sys-fs-fuse-connections.mount \
|
||||
systemd-logind.service \
|
||||
systemd-remount-fs.service
|
||||
|
||||
# Cleanup the image
|
||||
rm -f /etc/udev/hwdb.bin
|
||||
rm -rf /usr/lib/udev/hwdb.d/ \
|
||||
/boot /var/lib/dnf/history.* \
|
||||
"/tmp/*" "/tmp/.*" || true
|
||||
|
||||
%end
|
@ -13,7 +13,7 @@ network --hostname=localhost.localdomain
|
||||
rootpw --iscrypted thereisnopasswordanditslocked
|
||||
selinux --enforcing
|
||||
services --disabled="kdump" --enabled="NetworkManager,sshd,rsyslog,chronyd,cloud-init,cloud-init-local,cloud-config,cloud-final,rngd"
|
||||
timezone UTC --isUtc
|
||||
timezone UTC --utc
|
||||
# Disk
|
||||
bootloader --append="console=ttyS0,115200n8 no_timer_check crashkernel=auto net.ifnames=0 nvme_core.io_timeout=4294967295 nvme_core.max_retries=10" --location=mbr --timeout=1 --boot-drive=vda
|
||||
zerombr
|
||||
@ -113,7 +113,7 @@ dnf clean all
|
||||
# XXX instance type markers - MUST match Rocky Infra expectation
|
||||
echo 'ec2' > /etc/yum/vars/infra
|
||||
|
||||
# change dhcp client retry/timeouts to resolve #6866
|
||||
# change dhcp client retry/timeouts to resolve #69.0
|
||||
cat >> /etc/dhcp/dhclient.conf << EOF
|
||||
|
||||
timeout 300;
|
||||
@ -170,7 +170,6 @@ cloud-init
|
||||
cloud-utils-growpart
|
||||
NetworkManager
|
||||
dracut-config-generic
|
||||
dracut-norescue
|
||||
firewalld
|
||||
gdisk
|
||||
grub2
|
@ -14,13 +14,15 @@ network --hostname=localhost.localdomain
|
||||
rootpw --iscrypted thereisnopasswordanditslocked
|
||||
selinux --enforcing
|
||||
services --disabled="kdump" --enabled="NetworkManager,sshd,rsyslog,chronyd,cloud-init,cloud-init-local,cloud-config,cloud-final,rngd"
|
||||
timezone UTC --isUtc
|
||||
timezone --utc UTC
|
||||
# Disk
|
||||
bootloader --append="console=ttyS0,115200n8 no_timer_check crashkernel=auto net.ifnames=0" --location=mbr --timeout=1 --boot-drive=vda
|
||||
zerombr
|
||||
clearpart --all --initlabel
|
||||
part /boot --fstype xfs --size 1024 --asprimary --ondisk vda
|
||||
part /boot/efi --fstype vfat --size 512 --asprimary --ondisk vda
|
||||
reqpart
|
||||
part / --fstype="xfs" --ondisk=vda --size=8000
|
||||
part / --fstype="xfs" --ondisk=vda --size=8000 --grow
|
||||
|
||||
%post --erroronfail
|
||||
passwd -d root
|
||||
@ -113,7 +115,7 @@ dnf clean all
|
||||
# XXX instance type markers - MUST match Rocky Infra expectation
|
||||
echo 'genclo' > /etc/yum/vars/infra
|
||||
|
||||
# change dhcp client retry/timeouts to resolve #6866
|
||||
# change dhcp client retry/timeouts to resolve #69.0
|
||||
cat >> /etc/dhcp/dhclient.conf << EOF
|
||||
|
||||
timeout 300;
|
||||
@ -154,7 +156,6 @@ cloud-init
|
||||
cloud-utils-growpart
|
||||
NetworkManager
|
||||
dracut-config-generic
|
||||
dracut-norescue
|
||||
firewalld
|
||||
gdisk
|
||||
grub2
|
520
Rocky-9-KDE.ks
Normal file
520
Rocky-9-KDE.ks
Normal file
@ -0,0 +1,520 @@
|
||||
# Generated by pykickstart v3.36
|
||||
#version=DEVEL
|
||||
# X Window System configuration information
|
||||
xconfig --startxonboot
|
||||
# Keyboard layouts
|
||||
keyboard 'us'
|
||||
# Root password
|
||||
rootpw --iscrypted --lock locked
|
||||
# System language
|
||||
lang en_US.UTF-8
|
||||
# Shutdown after installation
|
||||
shutdown
|
||||
# Network information
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
# Firewall configuration
|
||||
firewall --enabled --service=mdns
|
||||
# Use network installation
|
||||
url --url="http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/"
|
||||
repo --name="BaseOS" --baseurl=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/ --cost=200
|
||||
repo --name="AppStream" --baseurl=http://dl.rockylinux.org/pub/rocky/9/AppStream/$basearch/os/ --cost=200
|
||||
repo --name="CRB" --baseurl=http://dl.rockylinux.org/pub/rocky/9/CRB/$basearch/os/ --cost=200
|
||||
repo --name="extras" --baseurl=http://dl.rockylinux.org/pub/rocky/9/extras/$basearch/os --cost=200
|
||||
repo --name="epel" --baseurl=https://dl.fedoraproject.org/pub/epel/9/Everything/$basearch/ --cost=200
|
||||
#repo --name="epel-modular" --baseurl=https://dl.fedoraproject.org/pub/epel/8/Modular/$basearch/ --cost=200
|
||||
# System timezone
|
||||
timezone US/Eastern
|
||||
# SELinux configuration
|
||||
selinux --enforcing
|
||||
# System services
|
||||
services --disabled="sshd" --enabled="NetworkManager,ModemManager"
|
||||
# System bootloader configuration
|
||||
bootloader --location=none
|
||||
# Clear the Master Boot Record
|
||||
zerombr
|
||||
# Partition clearing information
|
||||
clearpart --all
|
||||
# Disk partitioning information
|
||||
part / --fstype="ext4" --size=5120
|
||||
part / --size=7000
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
||||
|
||||
%post
|
||||
|
||||
# set default GTK+ theme for root (see #683855, #689070, #808062)
|
||||
cat > /root/.gtkrc-2.0 << EOF
|
||||
include "/usr/share/themes/Adwaita/gtk-2.0/gtkrc"
|
||||
include "/etc/gtk-2.0/gtkrc"
|
||||
gtk-theme-name="Adwaita"
|
||||
EOF
|
||||
mkdir -p /root/.config/gtk-3.0
|
||||
cat > /root/.config/gtk-3.0/settings.ini << EOF
|
||||
[Settings]
|
||||
gtk-theme-name = Adwaita
|
||||
EOF
|
||||
|
||||
# add initscript
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
# are we *not* able to use wayland sessions?
|
||||
if strstr "\`cat /proc/cmdline\`" nomodeset ; then
|
||||
PLASMA_SESSION_FILE="plasmax11.desktop"
|
||||
else
|
||||
PLASMA_SESSION_FILE="plasma.desktop"
|
||||
fi
|
||||
|
||||
# set up autologin for user liveuser
|
||||
if [ -f /etc/sddm.conf ]; then
|
||||
sed -i 's/^#User=.*/User=liveuser/' /etc/sddm.conf
|
||||
sed -i "s/^#Session=.*/Session=\${PLASMA_SESSION_FILE}/" /etc/sddm.conf
|
||||
else
|
||||
cat > /etc/sddm.conf << SDDM_EOF
|
||||
[Autologin]
|
||||
User=liveuser
|
||||
Session=\${PLASMA_SESSION_FILE}
|
||||
SDDM_EOF
|
||||
fi
|
||||
|
||||
# add liveinst.desktop to favorites menu
|
||||
mkdir -p /home/liveuser/.config/
|
||||
cat > /home/liveuser/.config/kickoffrc << MENU_EOF
|
||||
[Favorites]
|
||||
FavoriteURLs=/usr/share/applications/firefox.desktop,/usr/share/applications/org.kde.dolphin.desktop,/usr/share/applications/systemsettings.desktop,/usr/share/applications/org.kde.konsole.desktop,/usr/share/applications/liveinst.desktop
|
||||
MENU_EOF
|
||||
|
||||
# show liveinst.desktop on desktop and in menu
|
||||
sed -i 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
||||
# set executable bit disable KDE security warning
|
||||
chmod +x /usr/share/applications/liveinst.desktop
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp -a /usr/share/applications/liveinst.desktop /home/liveuser/Desktop/
|
||||
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Set akonadi backend
|
||||
mkdir -p /home/liveuser/.config/akonadi
|
||||
cat > /home/liveuser/.config/akonadi/akonadiserverrc << AKONADI_EOF
|
||||
[%General]
|
||||
Driver=QSQLITE3
|
||||
AKONADI_EOF
|
||||
|
||||
# "Disable plasma-discover-notifier"
|
||||
mkdir -p /home/liveuser/.config/autostart
|
||||
cp -a /etc/xdg/autostart/org.kde.discover.notifier.desktop /home/liveuser/.config/autostart/
|
||||
echo 'Hidden=true' >> /home/liveuser/.config/autostart/org.kde.discover.notifier.desktop
|
||||
|
||||
# Disable baloo
|
||||
cat > /home/liveuser/.config/baloofilerc << BALOO_EOF
|
||||
[Basic Settings]
|
||||
Indexing-Enabled=false
|
||||
BALOO_EOF
|
||||
|
||||
# Disable kres-migrator
|
||||
cat > /home/liveuser/.kde/share/config/kres-migratorrc << KRES_EOF
|
||||
[Migration]
|
||||
Enabled=false
|
||||
KRES_EOF
|
||||
|
||||
# Disable kwallet migrator
|
||||
cat > /home/liveuser/.config/kwalletrc << KWALLET_EOL
|
||||
[Migration]
|
||||
alreadyMigrated=true
|
||||
KWALLET_EOL
|
||||
# Disable automount of 'known' devices
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=2073708
|
||||
cat > /home/liveuser/.config/kded_device_automounterrc << AUTOMOUNTER_EOF
|
||||
[General]
|
||||
AutomountEnabled=false
|
||||
AutomountOnLogin=false
|
||||
AutomountOnPlugin=false
|
||||
AUTOMOUNTER_EOF
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
systemctl enable --force sddm.service
|
||||
dnf config-manager --set-enabled crb
|
||||
|
||||
%end
|
||||
|
||||
%packages
|
||||
@^kde-desktop-environment
|
||||
@anaconda-tools
|
||||
@base-x
|
||||
@core
|
||||
@dial-up
|
||||
@firefox
|
||||
@fonts
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@kde-apps
|
||||
@kde-media
|
||||
@multimedia
|
||||
@standard
|
||||
aajohan-comfortaa-fonts
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
chkconfig
|
||||
dracut-live
|
||||
epel-release
|
||||
fuse
|
||||
glibc-all-langpacks
|
||||
initscripts
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
mariadb-connector-c
|
||||
mariadb-embedded
|
||||
mariadb-server
|
||||
memtest86+
|
||||
sddm
|
||||
sddm-breeze
|
||||
sddm-kcm
|
||||
sddm-themes
|
||||
syslinux
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
-@admin-tools
|
||||
-@input-methods
|
||||
-desktop-backgrounds-basic
|
||||
-digikam
|
||||
-gnome-disk-utility
|
||||
-hplip
|
||||
-iok
|
||||
-isdn4k-utils
|
||||
-k3b
|
||||
-kdeaccessibility*
|
||||
-kipi-plugins
|
||||
-krusader
|
||||
-ktorrent
|
||||
-mpage
|
||||
-scim*
|
||||
-system-config-printer
|
||||
-system-config-services
|
||||
-system-config-users
|
||||
-xsane
|
||||
-xsane-gimp
|
||||
|
||||
%end
|
@ -1,5 +1,3 @@
|
||||
url --url=http://dl.rockylinux.org/pub/rocky/8/BaseOS/x86_64/os
|
||||
repo --name=AppStream --baseurl=http://dl.rockylinux.org/pub/rocky/8/AppStream/x86_64/os
|
||||
text
|
||||
keyboard --vckeymap us
|
||||
lang en_US
|
||||
@ -14,13 +12,14 @@ services --enabled=vmtoolsd
|
||||
bootloader --timeout=1 --append="no_timer_check console=tty0 console=ttyS0,115200n8 net.ifnames=0 biosdevname=0 elevator=noop"
|
||||
zerombr
|
||||
clearpart --all --initlabel
|
||||
reqpart
|
||||
part / --fstype=xfs --asprimary --size=1024 --grow
|
||||
|
||||
user --name=vagrant --plaintext --password=vagrant
|
||||
|
||||
shutdown
|
||||
|
||||
%packages --instLangs=en
|
||||
%packages --inst-langs=en
|
||||
bash-completion
|
||||
man-pages
|
||||
bzip2
|
142
Rocky-9-Vagrant-VMware.ks
Normal file
142
Rocky-9-Vagrant-VMware.ks
Normal file
@ -0,0 +1,142 @@
|
||||
text
|
||||
keyboard --vckeymap us
|
||||
lang en_US
|
||||
skipx
|
||||
network --bootproto=dhcp --device=link --activate --onboot=on
|
||||
rootpw --plaintext vagrant
|
||||
firewall --disabled
|
||||
timezone --utc UTC
|
||||
services --enabled=vmtoolsd
|
||||
# The biosdevname and ifnames options ensure we get "eth0" as our interface
|
||||
# even in environments like virtualbox that emulate a real NW card
|
||||
bootloader --timeout=1 --append="no_timer_check console=tty0 console=ttyS0,115200n8 net.ifnames=0 biosdevname=0 elevator=noop"
|
||||
zerombr
|
||||
clearpart --all --initlabel
|
||||
reqpart
|
||||
part / --fstype=xfs --asprimary --size=1024 --grow
|
||||
|
||||
user --name=vagrant --plaintext --password=vagrant
|
||||
|
||||
shutdown
|
||||
|
||||
%packages --inst-langs=en
|
||||
bash-completion
|
||||
man-pages
|
||||
bzip2
|
||||
rsync
|
||||
nfs-utils
|
||||
cifs-utils
|
||||
chrony
|
||||
yum-utils
|
||||
open-vm-tools
|
||||
# Vagrant boxes aren't normally visible, no need for Plymouth
|
||||
-plymouth
|
||||
# Microcode updates cannot work in a VM
|
||||
-microcode_ctl
|
||||
# Firmware packages are not needed in a VM
|
||||
-iwl100-firmware
|
||||
-iwl1000-firmware
|
||||
-iwl105-firmware
|
||||
-iwl135-firmware
|
||||
-iwl2000-firmware
|
||||
-iwl2030-firmware
|
||||
-iwl3160-firmware
|
||||
-iwl3945-firmware
|
||||
-iwl4965-firmware
|
||||
-iwl5000-firmware
|
||||
-iwl5150-firmware
|
||||
-iwl6000-firmware
|
||||
-iwl6000g2a-firmware
|
||||
-iwl6050-firmware
|
||||
-iwl7260-firmware
|
||||
# Don't build rescue initramfs
|
||||
-dracut-config-rescue
|
||||
%end
|
||||
|
||||
# kdump needs to reserve 160MB + 2bits/4kB RAM, and automatic allocation only
|
||||
# works on systems with at least 2GB RAM (which excludes most Vagrant boxes)
|
||||
# CBS doesn't support %addon yet https://bugs.centos.org/view.php?id=12169
|
||||
%addon com_redhat_kdump --disable
|
||||
%end
|
||||
|
||||
%post
|
||||
# configure swap to a file
|
||||
fallocate -l 2G /swapfile
|
||||
chmod 600 /swapfile
|
||||
mkswap /swapfile
|
||||
echo "/swapfile none swap defaults 0 0" >> /etc/fstab
|
||||
|
||||
# sudo
|
||||
echo "%vagrant ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/vagrant
|
||||
chmod 0440 /etc/sudoers.d/vagrant
|
||||
|
||||
# sshd: disable password authentication and DNS checks
|
||||
ex -s /etc/ssh/sshd_config <<EOF
|
||||
:%substitute/^\(PasswordAuthentication\) yes$/\1 no/
|
||||
:%substitute/^#\(UseDNS\) yes$/&\r\1 no/
|
||||
:update
|
||||
:quit
|
||||
EOF
|
||||
cat >>/etc/sysconfig/sshd <<EOF
|
||||
|
||||
# Decrease connection time by preventing reverse DNS lookups
|
||||
# (see https://lists.centos.org/pipermail/centos-devel/2016-July/014981.html
|
||||
# and man sshd for more information)
|
||||
OPTIONS="-u0"
|
||||
EOF
|
||||
|
||||
# Default insecure vagrant key
|
||||
mkdir -m 0700 -p /home/vagrant/.ssh
|
||||
echo "ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6NF8iallvQVp22WDkTkyrtvp9eWW6A8YVr+kz4TjGYe7gHzIw+niNltGEFHzD8+v1I2YJ6oXevct1YeS0o9HZyN1Q9qgCgzUFtdOKLv6IedplqoPkcmF0aYet2PkEDo3MlTBckFXPITAMzF8dJSIFo9D8HfdOV0IAdx4O7PtixWKn5y2hMNG0zQPyUecp4pzC6kivAIhyfHilFR61RGL+GPXQ2MWZWFYbAGjyiYJnAmCP3NOTd0jMZEnDkbUvxhMmBYSdETk1rRgm+R4LOzFUGaHqHDLKLX+FIPKcF96hrucXzcWyLbIbEgE98OHlnVYCzRdK8jlqm8tehUc9c9WhQ== vagrant insecure public key" >> /home/vagrant/.ssh/authorized_keys
|
||||
chmod 600 /home/vagrant/.ssh/authorized_keys
|
||||
chown -R vagrant:vagrant /home/vagrant/.ssh
|
||||
|
||||
# Fix for issue #76, regular users can gain admin privileges via su
|
||||
ex -s /etc/pam.d/su <<'EOF'
|
||||
# allow vagrant to use su, but prevent others from becoming root or vagrant
|
||||
/^account\s\+sufficient\s\+pam_succeed_if.so uid = 0 use_uid quiet$/
|
||||
:append
|
||||
account [success=1 default=ignore] \\
|
||||
pam_succeed_if.so user = vagrant use_uid quiet
|
||||
account required pam_succeed_if.so user notin root:vagrant
|
||||
.
|
||||
:update
|
||||
:quit
|
||||
EOF
|
||||
|
||||
# systemd should generate a new machine id during the first boot, to
|
||||
# avoid having multiple Vagrant instances with the same id in the local
|
||||
# network. /etc/machine-id should be empty, but it must exist to prevent
|
||||
# boot errors (e.g. systemd-journald failing to start).
|
||||
:>/etc/machine-id
|
||||
|
||||
echo 'vag' > /etc/yum/vars/infra
|
||||
|
||||
# Blacklist the floppy module to avoid probing timeouts
|
||||
echo blacklist floppy > /etc/modprobe.d/nofloppy.conf
|
||||
chcon -u system_u -r object_r -t modules_conf_t /etc/modprobe.d/nofloppy.conf
|
||||
|
||||
# Customize the initramfs
|
||||
pushd /etc/dracut.conf.d
|
||||
# Enable VMware PVSCSI support for VMware Fusion guests.
|
||||
echo 'add_drivers+=" vmw_pvscsi "' > vmware-fusion-drivers.conf
|
||||
echo 'add_drivers+=" hv_netvsc hv_storvsc hv_utils hv_vmbus hid-hyperv "' > hyperv-drivers.conf
|
||||
# There's no floppy controller, but probing for it generates timeouts
|
||||
echo 'omit_drivers+=" floppy "' > nofloppy.conf
|
||||
popd
|
||||
# Fix the SELinux context of the new files
|
||||
restorecon -f - <<EOF
|
||||
/etc/sudoers.d/vagrant
|
||||
/etc/dracut.conf.d/vmware-fusion-drivers.conf
|
||||
/etc/dracut.conf.d/nofloppy.conf
|
||||
EOF
|
||||
|
||||
# Rerun dracut for the installed kernel (not the running kernel):
|
||||
KERNEL_VERSION=$(rpm -q kernel --qf '%{version}-%{release}.%{arch}\n')
|
||||
dracut -f /boot/initramfs-${KERNEL_VERSION}.img ${KERNEL_VERSION}
|
||||
|
||||
# Seal for deployment
|
||||
rm -rf /etc/ssh/ssh_host_*
|
||||
hostnamectl set-hostname localhost.localdomain
|
||||
rm -rf /etc/udev/rules.d/70-*
|
||||
%end
|
@ -1,5 +1,3 @@
|
||||
url --url=http://dl.rockylinux.org/pub/rocky/8/BaseOS/x86_64/os
|
||||
repo --name=AppStream --baseurl=http://dl.rockylinux.org/pub/rocky/8/AppStream/x86_64/os
|
||||
text
|
||||
keyboard --vckeymap us
|
||||
lang en_US
|
||||
@ -14,13 +12,14 @@ services --enabled=vmtoolsd
|
||||
bootloader --timeout=1 --append="no_timer_check console=tty0 console=ttyS0,115200n8 net.ifnames=0 biosdevname=0 elevator=noop"
|
||||
zerombr
|
||||
clearpart --all --initlabel
|
||||
reqpart
|
||||
part / --fstype=xfs --asprimary --size=1024 --grow
|
||||
|
||||
user --name=vagrant --plaintext --password=vagrant
|
||||
|
||||
reboot
|
||||
|
||||
%packages --instLangs=en
|
||||
%packages --inst-langs=en
|
||||
bash-completion
|
||||
man-pages
|
||||
bzip2
|
473
Rocky-9-Workstation-Lite.ks
Normal file
473
Rocky-9-Workstation-Lite.ks
Normal file
@ -0,0 +1,473 @@
|
||||
# Generated by pykickstart v3.36
|
||||
#version=DEVEL
|
||||
# X Window System configuration information
|
||||
xconfig --startxonboot
|
||||
# Keyboard layouts
|
||||
keyboard 'us'
|
||||
# Root password
|
||||
rootpw --iscrypted --lock locked
|
||||
# System language
|
||||
lang en_US.UTF-8
|
||||
# Shutdown after installation
|
||||
shutdown
|
||||
# Network information
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
# Firewall configuration
|
||||
firewall --enabled --service=mdns
|
||||
# Use network installation
|
||||
url --url="http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/"
|
||||
repo --name="BaseOS" --baseurl=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/ --cost=200
|
||||
repo --name="AppStream" --baseurl=http://dl.rockylinux.org/pub/rocky/9/AppStream/$basearch/os/ --cost=200
|
||||
repo --name="CRB" --baseurl=http://dl.rockylinux.org/pub/rocky/9/CRB/$basearch/os/ --cost=200
|
||||
repo --name="extras" --baseurl=http://dl.rockylinux.org/pub/rocky/9/extras/$basearch/os --cost=200
|
||||
# System timezone
|
||||
timezone US/Eastern
|
||||
# SELinux configuration
|
||||
selinux --enforcing
|
||||
# System services
|
||||
services --disabled="sshd" --enabled="NetworkManager,ModemManager"
|
||||
# System bootloader configuration
|
||||
bootloader --location=none
|
||||
# Clear the Master Boot Record
|
||||
zerombr
|
||||
# Partition clearing information
|
||||
clearpart --all
|
||||
# Disk partitioning information
|
||||
part / --fstype="ext4" --size=5120
|
||||
part / --size=7750
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# This only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Disable GNOME welcome tour so it doesn't overlap with Fedora welcome screen
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
welcome-dialog-last-shown-version='4294967295'
|
||||
FOE
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
||||
|
||||
%packages
|
||||
@anaconda-tools
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@multimedia
|
||||
@networkmanager-submodules
|
||||
aajohan-comfortaa-fonts
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
chkconfig
|
||||
dracut-live
|
||||
glibc-all-langpacks
|
||||
initscripts
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
libreoffice-calc
|
||||
libreoffice-writer
|
||||
memtest86+
|
||||
syslinux
|
||||
shim-*64
|
||||
grub2-efi
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
470
Rocky-9-Workstation-Mainline.ks
Normal file
470
Rocky-9-Workstation-Mainline.ks
Normal file
@ -0,0 +1,470 @@
|
||||
# Generated by pykickstart v3.34
|
||||
#version=RHEL8
|
||||
# X Window System configuration information
|
||||
xconfig --startxonboot
|
||||
# Keyboard layouts
|
||||
keyboard 'us'
|
||||
# Root password
|
||||
rootpw --iscrypted --lock locked
|
||||
# System language
|
||||
lang en_US.UTF-8
|
||||
# Shutdown after installation
|
||||
shutdown
|
||||
# System timezone
|
||||
timezone US/Eastern
|
||||
# Network information
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
# Firewall configuration
|
||||
firewall --enabled --service=mdns
|
||||
# SELinux configuration
|
||||
selinux --enforcing
|
||||
|
||||
# System services
|
||||
services --disabled="sshd" --enabled="NetworkManager,ModemManager"
|
||||
repo --name="BaseOS" --baseurl=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/ --cost=200
|
||||
repo --name="AppStream" --baseurl=http://dl.rockylinux.org/pub/rocky/9/AppStream/$basearch/os/ --cost=200
|
||||
repo --name="CRB" --baseurl=http://dl.rockylinux.org/pub/rocky/9/CRB/$basearch/os/ --cost=200
|
||||
repo --name="extras" --baseurl=http://dl.rockylinux.org/pub/rocky/9/extras/$basearch/os --cost=200
|
||||
repo --name="elrepo-kernel" --baseurl=https://elrepo.org/linux/kernel/el8/$basearch/ --cost=200
|
||||
# Use network installation
|
||||
url --url="http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/"
|
||||
# System bootloader configuration
|
||||
bootloader --location=none
|
||||
# Clear the Master Boot Record
|
||||
zerombr
|
||||
# Partition clearing information
|
||||
clearpart --all
|
||||
# Disk partitioning information
|
||||
part / --fstype="ext4" --size=5120
|
||||
part / --size=6656
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# This only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
#sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'rhythmbox.desktop', 'shotwell.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome.desktop
|
||||
#sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/anaconda.desktop
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# switch default kernel
|
||||
sed -i 's/DEFAULTKERNEL=kernel/DEFAULTKERNEL=kernel-ml/g' /etc/sysconfig/kernel
|
||||
|
||||
# enable elrepo kernel
|
||||
dnf config-manager --set-enabled elrepo-kernel
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
||||
|
||||
%packages
|
||||
@anaconda-tools
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@multimedia
|
||||
@networkmanager-submodules
|
||||
@workstation-product
|
||||
aajohan-comfortaa-fonts
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
chkconfig
|
||||
dracut-live
|
||||
elrepo-release
|
||||
glibc-all-langpacks
|
||||
initscripts
|
||||
kernel-ml
|
||||
kernel-ml-modules
|
||||
kernel-ml-modules-extra
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
memtest86+
|
||||
syslinux
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
476
Rocky-9-Workstation.ks
Normal file
476
Rocky-9-Workstation.ks
Normal file
@ -0,0 +1,476 @@
|
||||
# Generated by pykickstart v3.36
|
||||
#version=DEVEL
|
||||
# X Window System configuration information
|
||||
xconfig --startxonboot
|
||||
# Keyboard layouts
|
||||
keyboard 'us'
|
||||
# Root password
|
||||
rootpw --iscrypted --lock locked
|
||||
# System language
|
||||
lang en_US.UTF-8
|
||||
# Shutdown after installation
|
||||
shutdown
|
||||
# Network information
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
# Firewall configuration
|
||||
firewall --enabled --service=mdns
|
||||
# Use network installation
|
||||
url --url="http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/"
|
||||
repo --name="BaseOS" --baseurl=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/ --cost=200
|
||||
repo --name="AppStream" --baseurl=http://dl.rockylinux.org/pub/rocky/9/AppStream/$basearch/os/ --cost=200
|
||||
repo --name="CRB" --baseurl=http://dl.rockylinux.org/pub/rocky/9/CRB/$basearch/os/ --cost=200
|
||||
repo --name="extras" --baseurl=http://dl.rockylinux.org/pub/rocky/9/extras/$basearch/os --cost=200
|
||||
# System timezone
|
||||
timezone US/Eastern
|
||||
# SELinux configuration
|
||||
selinux --enforcing
|
||||
# System services
|
||||
services --disabled="sshd" --enabled="NetworkManager,ModemManager"
|
||||
# System bootloader configuration
|
||||
bootloader --location=none
|
||||
# Clear the Master Boot Record
|
||||
zerombr
|
||||
# Partition clearing information
|
||||
clearpart --all
|
||||
# Disk partitioning information
|
||||
part / --fstype="ext4" --size=5120
|
||||
part / --size=7750
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# This only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
allow-updates=false
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Disable GNOME welcome tour so it doesn't overlap with Fedora welcome screen
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
welcome-dialog-last-shown-version='4294967295'
|
||||
FOE
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
||||
|
||||
%packages
|
||||
@anaconda-tools
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@multimedia
|
||||
@networkmanager-submodules
|
||||
@workstation-product
|
||||
aajohan-comfortaa-fonts
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
chkconfig
|
||||
dracut-live
|
||||
glibc-all-langpacks
|
||||
initscripts
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
memtest86+
|
||||
syslinux
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
514
Rocky-9-XFCE.ks
Normal file
514
Rocky-9-XFCE.ks
Normal file
@ -0,0 +1,514 @@
|
||||
# Generated by pykickstart v3.36
|
||||
#version=DEVEL
|
||||
# X Window System configuration information
|
||||
xconfig --startxonboot
|
||||
# Keyboard layouts
|
||||
keyboard 'us'
|
||||
# Root password
|
||||
rootpw --iscrypted --lock locked
|
||||
# System language
|
||||
lang en_US.UTF-8
|
||||
# Shutdown after installation
|
||||
shutdown
|
||||
# Network information
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
# Firewall configuration
|
||||
firewall --enabled --service=mdns
|
||||
# Use network installation
|
||||
url --url="http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/"
|
||||
repo --name="BaseOS" --baseurl=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/ --cost=200
|
||||
repo --name="AppStream" --baseurl=http://dl.rockylinux.org/pub/rocky/9/AppStream/$basearch/os/ --cost=200
|
||||
repo --name="CRB" --baseurl=http://dl.rockylinux.org/pub/rocky/9/CRB/$basearch/os/ --cost=200
|
||||
repo --name="extras" --baseurl=http://dl.rockylinux.org/pub/rocky/9/extras/$basearch/os --cost=200
|
||||
repo --name="epel" --baseurl=https://dl.fedoraproject.org/pub/epel/9/Everything/$basearch/ --cost=200
|
||||
# System timezone
|
||||
timezone US/Eastern
|
||||
# SELinux configuration
|
||||
selinux --enforcing
|
||||
# System services
|
||||
services --disabled="sshd" --enabled="NetworkManager,ModemManager"
|
||||
# System bootloader configuration
|
||||
bootloader --location=none
|
||||
# Clear the Master Boot Record
|
||||
zerombr
|
||||
# Partition clearing information
|
||||
clearpart --all
|
||||
# Disk partitioning information
|
||||
part / --fstype="ext4" --size=5120
|
||||
part / --size=6144
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
||||
|
||||
%post
|
||||
# xfce configuration
|
||||
|
||||
# create /etc/sysconfig/desktop (needed for installation)
|
||||
|
||||
cat > /etc/sysconfig/desktop <<EOF
|
||||
PREFERRED=/usr/bin/startxfce4
|
||||
DISPLAYMANAGER=/usr/sbin/lightdm
|
||||
EOF
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
mkdir -p /home/liveuser/.config/xfce4
|
||||
# ugly stuff, this should give us a default background for now
|
||||
#mkdir -p /usr/share/backgrounds/images
|
||||
#ln -s /usr/share/backgrounds/f32/default/f32.png \
|
||||
# /usr/share/backgrounds/images/default.png
|
||||
|
||||
cat > /home/liveuser/.config/xfce4/helpers.rc << FOE
|
||||
MailReader=sylpheed-claws
|
||||
FileManager=Thunar
|
||||
WebBrowser=firefox
|
||||
FOE
|
||||
|
||||
# disable screensaver locking (#674410)
|
||||
cat >> /home/liveuser/.xscreensaver << FOE
|
||||
mode: off
|
||||
lock: False
|
||||
dpmsEnabled: False
|
||||
FOE
|
||||
|
||||
# deactivate xfconf-migration (#683161)
|
||||
rm -f /etc/xdg/autostart/xfconf-migration-4.6.desktop || :
|
||||
|
||||
# deactivate xfce4-panel first-run dialog (#693569)
|
||||
mkdir -p /home/liveuser/.config/xfce4/xfconf/xfce-perchannel-xml
|
||||
cp /etc/xdg/xfce4/panel/default.xml /home/liveuser/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-panel.xml
|
||||
|
||||
# set up lightdm autologin
|
||||
sed -i 's/^#autologin-user=.*/autologin-user=liveuser/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#autologin-user-timeout=.*/autologin-user-timeout=0/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#show-language-selector=.*/show-language-selector=true/' /etc/lightdm/lightdm-gtk-greeter.conf
|
||||
|
||||
# set Xfce as default session, otherwise login will fail
|
||||
sed -i 's/^#user-session=.*/user-session=xfce/' /etc/lightdm/lightdm.conf
|
||||
|
||||
# debrand
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome.desktop
|
||||
#sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/liveinst.desktop
|
||||
|
||||
# Show harddisk install on the desktop
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp /usr/share/applications/liveinst.desktop /home/liveuser/Desktop/
|
||||
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# no updater applet in live environment
|
||||
rm -f /etc/xdg/autostart/org.mageia.dnfdragora-updater.desktop
|
||||
|
||||
# and mark it as executable (new Xfce security feature)
|
||||
chmod +x /home/liveuser/Desktop/liveinst.desktop
|
||||
|
||||
# move to anaconda - probably not required for XFCE.
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
# this goes at the end after all other changes.
|
||||
chown -R liveuser:liveuser /home/liveuser
|
||||
restorecon -R /home/liveuser
|
||||
|
||||
EOF
|
||||
|
||||
# this doesn't come up automatically. not sure why.
|
||||
systemctl enable --force lightdm.service
|
||||
|
||||
# CRB needs to be enabled for EPEL to function.
|
||||
dnf config-manager --set-enabled crb
|
||||
|
||||
%end
|
||||
|
||||
%packages
|
||||
@anaconda-tools
|
||||
@base-x
|
||||
@core
|
||||
@dial-up
|
||||
@fonts
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@input-methods
|
||||
@multimedia
|
||||
@standard
|
||||
@xfce-desktop --nodefaults
|
||||
aajohan-comfortaa-fonts
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
chkconfig
|
||||
dracut-live
|
||||
efi-filesystem
|
||||
efibootmgr
|
||||
efivar-libs
|
||||
epel-release
|
||||
f35-backgrounds-extras-xfce
|
||||
f35-backgrounds-xfce
|
||||
firefox
|
||||
firewall-config
|
||||
glibc-all-langpacks
|
||||
gparted
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
initscripts
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
lightdm
|
||||
memtest86+
|
||||
network-manager-applet
|
||||
openssh-askpass
|
||||
pavucontrol
|
||||
pcp-selinux
|
||||
rocky-backgrounds
|
||||
seahorse
|
||||
shim-*64
|
||||
syslinux
|
||||
thunar-archive-plugin
|
||||
thunar-volman
|
||||
thunderbird
|
||||
tumbler
|
||||
wget
|
||||
xdg-user-dirs
|
||||
xdg-user-dirs-gtk
|
||||
xfce-polkit
|
||||
xfce4-about
|
||||
xfce4-appfinder
|
||||
xfce4-datetime-plugin
|
||||
xfce4-netload-plugin
|
||||
xfce4-power-manager
|
||||
xfce4-screensaver
|
||||
xfce4-screenshooter-plugin
|
||||
xfce4-smartbookmark-plugin
|
||||
xfce4-systemload-plugin
|
||||
xfce4-taskmanager
|
||||
xfce4-terminal
|
||||
xfce4-time-out-plugin
|
||||
xfce4-weather-plugin
|
||||
xfce4-whiskermenu-plugin
|
||||
-acpid
|
||||
-aspell-*
|
||||
-autofs
|
||||
-desktop-backgrounds-basic
|
||||
-gdm
|
||||
-gimp-help
|
||||
-gnome-shell
|
||||
-hplip
|
||||
-isdn4k-utils
|
||||
-mpage
|
||||
-sane-backends
|
||||
-shim-unsigned-*64
|
||||
-xfce4-eyes-plugin
|
||||
-xfce4-sensors-plugin
|
||||
-xsane
|
||||
-xsane-gimp
|
||||
|
||||
%end
|
@ -1,18 +0,0 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Deps repo, there are some anaconda packages that are *not* available by default
|
||||
repo --name=livedeps --includepkgs=anaconda-live --cost=500 --baseurl=https://kojidev.rockylinux.org/kojifiles/repos/dist-rocky8_4-updates-build/latest/$basearch/
|
||||
#repo --name=livedeps --includepkgs=anaconda-live,rocky-logos,rocky-logos-httpd,rocky-backgrounds,rocky-logos-ipa --cost=500 --baseurl=http://10.100.0.1/pub/deps
|
||||
|
||||
# Base repos
|
||||
repo --name=BaseOS --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/8.4/BaseOS/$basearch/os/
|
||||
repo --name=AppStream --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/8.4/AppStream/$basearch/os/
|
||||
repo --name=PowerTools --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/8.4/PowerTools/$basearch/os/
|
||||
|
||||
# EPEL (required for KDE and XFCE)
|
||||
repo --name=epel --cost=200 --baseurl=https://dl.fedoraproject.org/pub/epel/8/Everything/$basearch/
|
||||
repo --name=epel-modular --cost=200 --baseurl=https://dl.fedoraproject.org/pub/epel/8/Modular/$basearch/
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=http://dl.rockylinux.org/pub/rocky/8.4/BaseOS/$basearch/os/
|
||||
#url --url=http://10.100.0.1/pub/deps
|
@ -1,13 +0,0 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Deps repo, there are some anaconda packages that are *not* available by default
|
||||
repo --name=livedeps --includepkgs=anaconda-live --cost=500 --baseurl=https://kojidev.rockylinux.org/kojifiles/repos/dist-rocky8_4-updates-build/latest/$basearch/
|
||||
#repo --name=livedeps --includepkgs=anaconda-live,rocky-logos,rocky-logos-httpd,rocky-backgrounds,rocky-logos-ipa --cost=500 --baseurl=http://10.100.0.1/pub/deps
|
||||
|
||||
# Base repos
|
||||
repo --name=BaseOS --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/8.4/BaseOS/$basearch/os/
|
||||
repo --name=AppStream --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/8.4/AppStream/$basearch/os/
|
||||
repo --name=PowerTools --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/8.4/PowerTools/$basearch/os/
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=http://dl.rockylinux.org/pub/rocky/8.4/BaseOS/$basearch/os/
|
355
live/9/peridot/mainline/rocky-live-base.ks
Normal file
355
live/9/peridot/mainline/rocky-live-base.ks
Normal file
@ -0,0 +1,355 @@
|
||||
# rocky-live-base.ks
|
||||
#
|
||||
# Base installation information for Rocky Linux images
|
||||
#
|
||||
|
||||
lang en_US.UTF-8
|
||||
keyboard us
|
||||
timezone US/Eastern
|
||||
selinux --enforcing
|
||||
firewall --enabled --service=mdns
|
||||
xconfig --startxonboot
|
||||
zerombr
|
||||
clearpart --all
|
||||
part / --size 5120 --fstype ext4
|
||||
services --enabled=NetworkManager,ModemManager --disabled=sshd
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
rootpw --lock --iscrypted locked
|
||||
shutdown
|
||||
|
||||
%include rocky-repo-mainline.ks
|
||||
|
||||
%packages
|
||||
@base-x
|
||||
@guest-desktop-agents
|
||||
@standard
|
||||
@core
|
||||
@fonts
|
||||
@input-methods
|
||||
@dial-up
|
||||
@multimedia
|
||||
@hardware-support
|
||||
|
||||
# explicit
|
||||
elrepo-release
|
||||
kernel-ml
|
||||
kernel-ml-modules
|
||||
kernel-ml-modules-extra
|
||||
memtest86+
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
@anaconda-tools
|
||||
|
||||
# Required for SVG rnotes images
|
||||
aajohan-comfortaa-fonts
|
||||
|
||||
# RHBZ#1242586 - Required for initramfs creation
|
||||
dracut-live
|
||||
syslinux
|
||||
|
||||
# Anaconda needs all the locales available, just like a DVD installer
|
||||
glibc-all-langpacks
|
||||
|
||||
# This isn't in @core anymore, but livesys still needs it
|
||||
initscripts
|
||||
chkconfig
|
||||
%end
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# This only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
@ -59,15 +59,15 @@ favorite-apps=['firefox.desktop', 'evolution.desktop', 'rhythmbox.desktop', 'sho
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/rhel-welcome.desktop ]; then
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/rhel-welcome.desktop
|
||||
sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome.desktop
|
||||
#sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/anaconda.desktop
|
||||
cp /usr/share/anaconda/gnome/rhel-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/rhel-welcome.desktop ~liveuser/.config/autostart/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
@ -91,6 +91,12 @@ if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# switch default kernel
|
||||
sed -i 's/DEFAULTKERNEL=kernel/DEFAULTKERNEL=kernel-ml/g' /etc/sysconfig/kernel
|
||||
|
||||
# enable elrepo kernel
|
||||
dnf config-manager --set-enabled elrepo-kernel
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
12
live/9/peridot/mainline/rocky-repo-mainline.ks
Normal file
12
live/9/peridot/mainline/rocky-repo-mainline.ks
Normal file
@ -0,0 +1,12 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Base repos
|
||||
repo --name=BaseOS --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-BaseOS/$basearch
|
||||
repo --name=AppStream --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-AppStream/$basearch
|
||||
repo --name=CRB --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-CRB/$basearch
|
||||
repo --name=extras --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-extras/$basearch
|
||||
|
||||
repo --name="elrepo-kernel" --baseurl=https://elrepo.org/linux/kernel/el9/$basearch/ --cost=200
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-BaseOS/$basearch
|
@ -7,7 +7,6 @@
|
||||
lang en_US.UTF-8
|
||||
keyboard us
|
||||
timezone US/Eastern
|
||||
auth --useshadow --passalgo=sha512
|
||||
selinux --enforcing
|
||||
firewall --enabled --service=mdns
|
||||
xconfig --startxonboot
|
||||
@ -41,6 +40,20 @@ anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
@anaconda-tools
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
|
||||
# Required for SVG rnotes images
|
||||
aajohan-comfortaa-fonts
|
||||
@ -218,7 +231,7 @@ touch /.liveimg-configured
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost" > /etc/hostname
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
368
live/9/peridot/rocky-live-base.ks
Normal file
368
live/9/peridot/rocky-live-base.ks
Normal file
@ -0,0 +1,368 @@
|
||||
# rocky-live-base.ks
|
||||
#
|
||||
# Base installation information for Rocky Linux images
|
||||
#
|
||||
|
||||
lang en_US.UTF-8
|
||||
keyboard us
|
||||
timezone US/Eastern
|
||||
selinux --enforcing
|
||||
firewall --enabled --service=mdns
|
||||
xconfig --startxonboot
|
||||
zerombr
|
||||
clearpart --all
|
||||
part / --size 5120 --fstype ext4
|
||||
services --enabled=NetworkManager,ModemManager --disabled=sshd
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
rootpw --lock --iscrypted locked
|
||||
shutdown
|
||||
|
||||
%include rocky-repo.ks
|
||||
|
||||
%packages
|
||||
@base-x
|
||||
@guest-desktop-agents
|
||||
@standard
|
||||
@core
|
||||
@fonts
|
||||
@input-methods
|
||||
@dial-up
|
||||
@multimedia
|
||||
@hardware-support
|
||||
|
||||
# explicit
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
memtest86+
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
@anaconda-tools
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
|
||||
# Required for SVG rnotes images
|
||||
aajohan-comfortaa-fonts
|
||||
|
||||
# RHBZ#1242586 - Required for initramfs creation
|
||||
dracut-live
|
||||
syslinux
|
||||
|
||||
# Anaconda needs all the locales available, just like a DVD installer
|
||||
glibc-all-langpacks
|
||||
|
||||
# This isn't in @core anymore, but livesys still needs it
|
||||
initscripts
|
||||
chkconfig
|
||||
%end
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# This only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
@ -48,19 +48,17 @@ MENU_EOF
|
||||
|
||||
# show liveinst.desktop on desktop and in menu
|
||||
sed -i 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
||||
|
||||
# debrand
|
||||
sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/rhel-welcome.desktop
|
||||
sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/liveinst.desktop
|
||||
|
||||
# set executable bit disable KDE security warning
|
||||
chmod +x /usr/share/applications/liveinst.desktop
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp -a /usr/share/applications/liveinst.desktop /home/liveuser/Desktop/
|
||||
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Set akonadi backend
|
||||
mkdir -p /home/liveuser/.config/akonadi
|
||||
cat > /home/liveuser/.config/akonadi/akonadiserverrc << AKONADI_EOF
|
||||
@ -90,6 +88,14 @@ cat > /home/liveuser/.config/kwalletrc << KWALLET_EOL
|
||||
[Migration]
|
||||
alreadyMigrated=true
|
||||
KWALLET_EOL
|
||||
# Disable automount of 'known' devices
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=2073708
|
||||
cat > /home/liveuser/.config/kded_device_automounterrc << AUTOMOUNTER_EOF
|
||||
[General]
|
||||
AutomountEnabled=false
|
||||
AutomountOnLogin=false
|
||||
AutomountOnPlugin=false
|
||||
AUTOMOUNTER_EOF
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
@ -98,7 +104,7 @@ restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
systemctl enable sddm.service
|
||||
dnf config-manager --set-enabled powertools
|
||||
systemctl enable --force sddm.service
|
||||
dnf config-manager --set-enabled crb
|
||||
|
||||
%end
|
@ -20,6 +20,9 @@ libreoffice-writer
|
||||
|
||||
### fixes
|
||||
sddm
|
||||
sddm-breeze
|
||||
sddm-themes
|
||||
sddm-kcm
|
||||
|
||||
# use kde-print-manager instead of system-config-printer
|
||||
-system-config-printer
|
||||
@ -29,7 +32,6 @@ mariadb-connector-c
|
||||
mariadb-server
|
||||
|
||||
# minimal localization support - allows installing the kde-l10n-* packages
|
||||
#system-config-language <- Not in EL8
|
||||
#kde-l10n <- Not in EL8
|
||||
|
||||
# unwanted packages from @kde-desktop
|
101
live/9/peridot/rocky-live-workstation-lite.ks
Normal file
101
live/9/peridot/rocky-live-workstation-lite.ks
Normal file
@ -0,0 +1,101 @@
|
||||
# Maintained by Release Engineering
|
||||
# mailto:releng@rockylinux.org
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-workstation-common-lite.ks
|
||||
#
|
||||
# Disable this for now as packagekit is causing compose failures
|
||||
# by leaving a gpg-agent around holding /dev/null open.
|
||||
#
|
||||
#include snippets/packagekit-cached-metadata.ks
|
||||
|
||||
part / --size 7750
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Disable GNOME welcome tour so it doesn't overlap with Fedora welcome screen
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
welcome-dialog-last-shown-version='4294967295'
|
||||
FOE
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
102
live/9/peridot/rocky-live-workstation.ks
Normal file
102
live/9/peridot/rocky-live-workstation.ks
Normal file
@ -0,0 +1,102 @@
|
||||
# Maintained by Release Engineering
|
||||
# mailto:releng@rockylinux.org
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-workstation-common.ks
|
||||
#
|
||||
# Disable this for now as packagekit is causing compose failures
|
||||
# by leaving a gpg-agent around holding /dev/null open.
|
||||
#
|
||||
#include snippets/packagekit-cached-metadata.ks
|
||||
|
||||
part / --size 7750
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
allow-updates=false
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Disable GNOME welcome tour so it doesn't overlap with Fedora welcome screen
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
welcome-dialog-last-shown-version='4294967295'
|
||||
FOE
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
@ -2,7 +2,7 @@
|
||||
%packages
|
||||
|
||||
# these aren't an epel 8 thing for some reason.
|
||||
@xfce-desktop
|
||||
@xfce-desktop --nodefaults
|
||||
#@^xfce-desktop-environment
|
||||
#@xfce-apps
|
||||
#@xfce-extra-plugins
|
||||
@ -10,52 +10,63 @@
|
||||
#@xfce-office
|
||||
|
||||
# Manual install...
|
||||
geany
|
||||
#geany
|
||||
gparted
|
||||
mousepad
|
||||
ristretto
|
||||
#mousepad
|
||||
#ristretto
|
||||
seahorse
|
||||
transmission
|
||||
#transmission
|
||||
pcp-selinux
|
||||
sddm
|
||||
#lightdm
|
||||
lightdm
|
||||
#gdm
|
||||
-gdm
|
||||
-gnome-shell
|
||||
-gnome-menus
|
||||
|
||||
# Some stuff might already be here, doesn't hurt to list it.
|
||||
firefox
|
||||
thunderbird
|
||||
firewall-config
|
||||
pidgin
|
||||
#pidgin
|
||||
rocky-backgrounds
|
||||
gparted
|
||||
rhythmbox
|
||||
#rhythmbox
|
||||
|
||||
# extras
|
||||
f32-backgrounds-xfce
|
||||
f32-backgrounds-extras-xfce
|
||||
f35-backgrounds-xfce
|
||||
f35-backgrounds-extras-xfce
|
||||
|
||||
xfce4-about
|
||||
xfce4-appfinder
|
||||
xfce4-taskmanager
|
||||
xfce4-pulseaudio-plugin
|
||||
xfce4-battery-plugin
|
||||
#xfce4-battery-plugin
|
||||
xfce4-datetime-plugin
|
||||
xfce4-netload-plugin
|
||||
xfce4-places-plugin
|
||||
#xfce4-places-plugin
|
||||
xfce4-screenshooter-plugin
|
||||
xfce4-smartbookmark-plugin
|
||||
xfce4-systemload-plugin
|
||||
xfce4-time-out-plugin
|
||||
xfce4-weather-plugin
|
||||
xfce4-whiskermenu-plugin
|
||||
xfdashboard
|
||||
xfdashboard-themes
|
||||
#xfdashboard
|
||||
#xfdashboard-themes
|
||||
pavucontrol
|
||||
|
||||
# XFCE group defaults
|
||||
xfce4-appfinder
|
||||
xfce4-power-manager
|
||||
#xfce4-pulseaudio-plugin
|
||||
xfce4-screensaver
|
||||
xfce4-terminal
|
||||
network-manager-applet
|
||||
openssh-askpass
|
||||
thunar-archive-plugin
|
||||
thunar-volman
|
||||
tumbler
|
||||
xfce-polkit
|
||||
|
||||
wget
|
||||
xdg-user-dirs
|
||||
xdg-user-dirs-gtk
|
||||
|
||||
# save some space
|
||||
-autofs
|
@ -13,12 +13,16 @@ part / --size 6144
|
||||
|
||||
cat > /etc/sysconfig/desktop <<EOF
|
||||
PREFERRED=/usr/bin/startxfce4
|
||||
DISPLAYMANAGER=/usr/sbin/sddm
|
||||
DISPLAYMANAGER=/usr/sbin/lightdm
|
||||
EOF
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
mkdir -p /home/liveuser/.config/xfce4
|
||||
# ugly stuff, this should give us a default background for now
|
||||
#mkdir -p /usr/share/backgrounds/images
|
||||
#ln -s /usr/share/backgrounds/f32/default/f32.png \
|
||||
# /usr/share/backgrounds/images/default.png
|
||||
|
||||
cat > /home/liveuser/.config/xfce4/helpers.rc << FOE
|
||||
MailReader=sylpheed-claws
|
||||
@ -41,38 +45,30 @@ mkdir -p /home/liveuser/.config/xfce4/xfconf/xfce-perchannel-xml
|
||||
cp /etc/xdg/xfce4/panel/default.xml /home/liveuser/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-panel.xml
|
||||
|
||||
# set up lightdm autologin
|
||||
#sed -i 's/^#autologin-user=.*/autologin-user=liveuser/' /etc/lightdm/lightdm.conf
|
||||
#sed -i 's/^#autologin-user-timeout=.*/autologin-user-timeout=0/' /etc/lightdm/lightdm.conf
|
||||
#sed -i 's/^#show-language-selector=.*/show-language-selector=true/' /etc/lightdm/lightdm-gtk-greeter.conf
|
||||
sed -i 's/^#autologin-user=.*/autologin-user=liveuser/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#autologin-user-timeout=.*/autologin-user-timeout=0/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#show-language-selector=.*/show-language-selector=true/' /etc/lightdm/lightdm-gtk-greeter.conf
|
||||
|
||||
# set Xfce as default session, otherwise login will fail
|
||||
#sed -i 's/^#user-session=.*/user-session=xfce/' /etc/lightdm/lightdm.conf
|
||||
|
||||
# lightdm does not install on EL8 properly
|
||||
|
||||
# set up autologin for user liveuser
|
||||
if [ -f /etc/sddm.conf ]; then
|
||||
sed -i 's/^#User=.*/User=liveuser/' /etc/sddm.conf
|
||||
sed -i "s/^#Session=.*/Session=xfce/" /etc/sddm.conf
|
||||
else
|
||||
cat > /etc/sddm.conf << SDDM_EOF
|
||||
[Autologin]
|
||||
User=liveuser
|
||||
Session=xfce
|
||||
SDDM_EOF
|
||||
fi
|
||||
sed -i 's/^#user-session=.*/user-session=xfce/' /etc/lightdm/lightdm.conf
|
||||
|
||||
# debrand
|
||||
sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/rhel-welcome.desktop
|
||||
sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/rhel-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome.desktop
|
||||
#sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/liveinst.desktop
|
||||
|
||||
# Show harddisk install on the desktop
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp /usr/share/applications/liveinst.desktop /home/liveuser/Desktop
|
||||
cp /usr/share/applications/liveinst.desktop /home/liveuser/Desktop/
|
||||
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# no updater applet in live environment
|
||||
rm -f /etc/xdg/autostart/org.mageia.dnfdragora-updater.desktop
|
||||
@ -80,6 +76,9 @@ rm -f /etc/xdg/autostart/org.mageia.dnfdragora-updater.desktop
|
||||
# and mark it as executable (new Xfce security feature)
|
||||
chmod +x /home/liveuser/Desktop/liveinst.desktop
|
||||
|
||||
# move to anaconda - probably not required for XFCE.
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
# this goes at the end after all other changes.
|
||||
chown -R liveuser:liveuser /home/liveuser
|
||||
restorecon -R /home/liveuser
|
||||
@ -87,7 +86,9 @@ restorecon -R /home/liveuser
|
||||
EOF
|
||||
|
||||
# this doesn't come up automatically. not sure why.
|
||||
systemctl enable sddm.service
|
||||
dnf config-manager --set-enabled powertools
|
||||
systemctl enable --force lightdm.service
|
||||
|
||||
# CRB needs to be enabled for EPEL to function.
|
||||
dnf config-manager --set-enabled crb
|
||||
|
||||
%end
|
12
live/9/peridot/rocky-repo-epel.ks
Normal file
12
live/9/peridot/rocky-repo-epel.ks
Normal file
@ -0,0 +1,12 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Base repos
|
||||
repo --name=BaseOS --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-BaseOS/$basearch
|
||||
repo --name=AppStream --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-AppStream/$basearch
|
||||
repo --name=CRB --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-CRB/$basearch
|
||||
repo --name=extras --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-extras/$basearch
|
||||
repo --name=epel --cost=200 --baseurl=https://dl.fedoraproject.org/pub/epel/9/Everything/$basearch/
|
||||
#repo --name=epel-modular --cost=200 --baseurl=https://dl.fedoraproject.org/pub/epel/9/Modular/$basearch/
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-BaseOS/$basearch
|
10
live/9/peridot/rocky-repo.ks
Normal file
10
live/9/peridot/rocky-repo.ks
Normal file
@ -0,0 +1,10 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Base repos
|
||||
repo --name=BaseOS --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-BaseOS/$basearch
|
||||
repo --name=AppStream --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-AppStream/$basearch
|
||||
repo --name=CRB --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-CRB/$basearch
|
||||
repo --name=extras --cost=200 --baseurl=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-extras/$basearch
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=https://yumrepofs.build.resf.org/v1/projects/55b17281-bc54-4929-8aca-a8a11d628738/repo/hashed-BaseOS/$basearch
|
27
live/9/peridot/rocky-workstation-common-lite.ks
Normal file
27
live/9/peridot/rocky-workstation-common-lite.ks
Normal file
@ -0,0 +1,27 @@
|
||||
%packages
|
||||
|
||||
# Exclude unwanted groups that rocky-live-base.ks pulls in
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
|
||||
# Make sure to sync any additions / removals done here with
|
||||
# workstation-product-environment in comps
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@networkmanager-submodules
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-writer
|
||||
|
||||
# Exclude unwanted packages from @anaconda-tools group
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
32
live/9/peridot/rocky-workstation-common.ks
Normal file
32
live/9/peridot/rocky-workstation-common.ks
Normal file
@ -0,0 +1,32 @@
|
||||
%packages
|
||||
|
||||
# Exclude unwanted groups that rocky-live-base.ks pulls in
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
|
||||
# Make sure to sync any additions / removals done here with
|
||||
# workstation-product-environment in comps
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@multimedia
|
||||
@networkmanager-submodules
|
||||
@workstation-product
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
|
||||
# Exclude unwanted packages from @anaconda-tools group
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
@ -18,7 +18,7 @@ network --bootproto=dhcp --device=link --activate
|
||||
rootpw --lock --iscrypted locked
|
||||
shutdown
|
||||
|
||||
%include rocky-repo.ks
|
||||
%include rocky-repo-mainline.ks
|
||||
|
||||
%packages
|
||||
@base-x
|
||||
@ -32,9 +32,10 @@ shutdown
|
||||
@hardware-support
|
||||
|
||||
# explicit
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
elrepo-release
|
||||
kernel-ml
|
||||
kernel-ml-modules
|
||||
kernel-ml-modules-extra
|
||||
memtest86+
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
@ -214,7 +215,7 @@ touch /.liveimg-configured
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost" > /etc/hostname
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
107
live/9/prod/mainline/rocky-live-workstation.ks
Normal file
107
live/9/prod/mainline/rocky-live-workstation.ks
Normal file
@ -0,0 +1,107 @@
|
||||
# Maintained by Release Engineering
|
||||
# mailto:releng@rockylinux.org
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-workstation-common.ks
|
||||
#
|
||||
# Disable this for now as packagekit is causing compose failures
|
||||
# by leaving a gpg-agent around holding /dev/null open.
|
||||
#
|
||||
#include snippets/packagekit-cached-metadata.ks
|
||||
|
||||
part / --size 6656
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'rhythmbox.desktop', 'shotwell.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome.desktop
|
||||
#sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/anaconda.desktop
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# switch default kernel
|
||||
sed -i 's/DEFAULTKERNEL=kernel/DEFAULTKERNEL=kernel-ml/g' /etc/sysconfig/kernel
|
||||
|
||||
# enable elrepo kernel
|
||||
dnf config-manager --set-enabled elrepo-kernel
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
14
live/9/prod/mainline/rocky-repo-mainline.ks
Normal file
14
live/9/prod/mainline/rocky-repo-mainline.ks
Normal file
@ -0,0 +1,14 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Deps repo, there are some anaconda packages that are *not* available by default
|
||||
repo --name=BaseOS --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/
|
||||
repo --name=AppStream --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/AppStream/$basearch/os/
|
||||
repo --name=CRB --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/CRB/$basearch/os/
|
||||
repo --name=extras --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/extras/$basearch/os
|
||||
|
||||
# ELRepo
|
||||
repo --name="elrepo-kernel" --baseurl=https://elrepo.org/linux/kernel/el8/$basearch/ --cost=200
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/
|
||||
#url --url=http://10.100.0.1/pub/deps
|
32
live/9/prod/mainline/rocky-workstation-common.ks
Normal file
32
live/9/prod/mainline/rocky-workstation-common.ks
Normal file
@ -0,0 +1,32 @@
|
||||
%packages
|
||||
|
||||
# Exclude unwanted groups that rocky-live-base.ks pulls in
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
|
||||
# Make sure to sync any additions / removals done here with
|
||||
# workstation-product-environment in comps
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@multimedia
|
||||
@networkmanager-submodules
|
||||
@workstation-product
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
|
||||
# Exclude unwanted packages from @anaconda-tools group
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
372
live/9/prod/rocky-live-base-spin.ks
Normal file
372
live/9/prod/rocky-live-base-spin.ks
Normal file
@ -0,0 +1,372 @@
|
||||
# rocky-live-base-spin.ks
|
||||
#
|
||||
# Base installation information for Rocky Linux images
|
||||
# Contains EPEL.
|
||||
#
|
||||
|
||||
lang en_US.UTF-8
|
||||
keyboard us
|
||||
timezone US/Eastern
|
||||
selinux --enforcing
|
||||
firewall --enabled --service=mdns
|
||||
xconfig --startxonboot
|
||||
zerombr
|
||||
clearpart --all
|
||||
part / --size 5120 --fstype ext4
|
||||
services --enabled=NetworkManager,ModemManager --disabled=sshd
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
rootpw --lock --iscrypted locked
|
||||
shutdown
|
||||
|
||||
%include rocky-repo-epel.ks
|
||||
|
||||
%packages
|
||||
@base-x
|
||||
@guest-desktop-agents
|
||||
@standard
|
||||
@core
|
||||
@fonts
|
||||
@input-methods
|
||||
@dial-up
|
||||
@multimedia
|
||||
@hardware-support
|
||||
|
||||
# explicit
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
memtest86+
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
@anaconda-tools
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
|
||||
# Required for SVG rnotes images
|
||||
aajohan-comfortaa-fonts
|
||||
|
||||
# RHBZ#1242586 - Required for initramfs creation
|
||||
dracut-live
|
||||
syslinux
|
||||
|
||||
# Anaconda needs all the locales available, just like a DVD installer
|
||||
glibc-all-langpacks
|
||||
|
||||
# no longer in @core since 2018-10, but needed for livesys script
|
||||
initscripts
|
||||
chkconfig
|
||||
|
||||
# absolutely required - don't want a system that can't actually update
|
||||
epel-release
|
||||
%end
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
368
live/9/prod/rocky-live-base.ks
Normal file
368
live/9/prod/rocky-live-base.ks
Normal file
@ -0,0 +1,368 @@
|
||||
# rocky-live-base.ks
|
||||
#
|
||||
# Base installation information for Rocky Linux images
|
||||
#
|
||||
|
||||
lang en_US.UTF-8
|
||||
keyboard us
|
||||
timezone US/Eastern
|
||||
selinux --enforcing
|
||||
firewall --enabled --service=mdns
|
||||
xconfig --startxonboot
|
||||
zerombr
|
||||
clearpart --all
|
||||
part / --size 5120 --fstype ext4
|
||||
services --enabled=NetworkManager,ModemManager --disabled=sshd
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
rootpw --lock --iscrypted locked
|
||||
shutdown
|
||||
|
||||
%include rocky-repo.ks
|
||||
|
||||
%packages
|
||||
@base-x
|
||||
@guest-desktop-agents
|
||||
@standard
|
||||
@core
|
||||
@fonts
|
||||
@input-methods
|
||||
@dial-up
|
||||
@multimedia
|
||||
@hardware-support
|
||||
|
||||
# explicit
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
memtest86+
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
@anaconda-tools
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
|
||||
# Required for SVG rnotes images
|
||||
aajohan-comfortaa-fonts
|
||||
|
||||
# RHBZ#1242586 - Required for initramfs creation
|
||||
dracut-live
|
||||
syslinux
|
||||
|
||||
# Anaconda needs all the locales available, just like a DVD installer
|
||||
glibc-all-langpacks
|
||||
|
||||
# This isn't in @core anymore, but livesys still needs it
|
||||
initscripts
|
||||
chkconfig
|
||||
%end
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# This only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
110
live/9/prod/rocky-live-kde-base.ks
Normal file
110
live/9/prod/rocky-live-kde-base.ks
Normal file
@ -0,0 +1,110 @@
|
||||
# Maintained by RelEng
|
||||
|
||||
%include rocky-live-base-spin.ks
|
||||
%include rocky-live-kde-common.ks
|
||||
|
||||
%post
|
||||
|
||||
# set default GTK+ theme for root (see #683855, #689070, #808062)
|
||||
cat > /root/.gtkrc-2.0 << EOF
|
||||
include "/usr/share/themes/Adwaita/gtk-2.0/gtkrc"
|
||||
include "/etc/gtk-2.0/gtkrc"
|
||||
gtk-theme-name="Adwaita"
|
||||
EOF
|
||||
mkdir -p /root/.config/gtk-3.0
|
||||
cat > /root/.config/gtk-3.0/settings.ini << EOF
|
||||
[Settings]
|
||||
gtk-theme-name = Adwaita
|
||||
EOF
|
||||
|
||||
# add initscript
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
# are we *not* able to use wayland sessions?
|
||||
if strstr "\`cat /proc/cmdline\`" nomodeset ; then
|
||||
PLASMA_SESSION_FILE="plasmax11.desktop"
|
||||
else
|
||||
PLASMA_SESSION_FILE="plasma.desktop"
|
||||
fi
|
||||
|
||||
# set up autologin for user liveuser
|
||||
if [ -f /etc/sddm.conf ]; then
|
||||
sed -i 's/^#User=.*/User=liveuser/' /etc/sddm.conf
|
||||
sed -i "s/^#Session=.*/Session=\${PLASMA_SESSION_FILE}/" /etc/sddm.conf
|
||||
else
|
||||
cat > /etc/sddm.conf << SDDM_EOF
|
||||
[Autologin]
|
||||
User=liveuser
|
||||
Session=\${PLASMA_SESSION_FILE}
|
||||
SDDM_EOF
|
||||
fi
|
||||
|
||||
# add liveinst.desktop to favorites menu
|
||||
mkdir -p /home/liveuser/.config/
|
||||
cat > /home/liveuser/.config/kickoffrc << MENU_EOF
|
||||
[Favorites]
|
||||
FavoriteURLs=/usr/share/applications/firefox.desktop,/usr/share/applications/org.kde.dolphin.desktop,/usr/share/applications/systemsettings.desktop,/usr/share/applications/org.kde.konsole.desktop,/usr/share/applications/liveinst.desktop
|
||||
MENU_EOF
|
||||
|
||||
# show liveinst.desktop on desktop and in menu
|
||||
sed -i 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
||||
# set executable bit disable KDE security warning
|
||||
chmod +x /usr/share/applications/liveinst.desktop
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp -a /usr/share/applications/liveinst.desktop /home/liveuser/Desktop/
|
||||
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Set akonadi backend
|
||||
mkdir -p /home/liveuser/.config/akonadi
|
||||
cat > /home/liveuser/.config/akonadi/akonadiserverrc << AKONADI_EOF
|
||||
[%General]
|
||||
Driver=QSQLITE3
|
||||
AKONADI_EOF
|
||||
|
||||
# "Disable plasma-discover-notifier"
|
||||
mkdir -p /home/liveuser/.config/autostart
|
||||
cp -a /etc/xdg/autostart/org.kde.discover.notifier.desktop /home/liveuser/.config/autostart/
|
||||
echo 'Hidden=true' >> /home/liveuser/.config/autostart/org.kde.discover.notifier.desktop
|
||||
|
||||
# Disable baloo
|
||||
cat > /home/liveuser/.config/baloofilerc << BALOO_EOF
|
||||
[Basic Settings]
|
||||
Indexing-Enabled=false
|
||||
BALOO_EOF
|
||||
|
||||
# Disable kres-migrator
|
||||
cat > /home/liveuser/.kde/share/config/kres-migratorrc << KRES_EOF
|
||||
[Migration]
|
||||
Enabled=false
|
||||
KRES_EOF
|
||||
|
||||
# Disable kwallet migrator
|
||||
cat > /home/liveuser/.config/kwalletrc << KWALLET_EOL
|
||||
[Migration]
|
||||
alreadyMigrated=true
|
||||
KWALLET_EOL
|
||||
# Disable automount of 'known' devices
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=2073708
|
||||
cat > /home/liveuser/.config/kded_device_automounterrc << AUTOMOUNTER_EOF
|
||||
[General]
|
||||
AutomountEnabled=false
|
||||
AutomountOnLogin=false
|
||||
AutomountOnPlugin=false
|
||||
AUTOMOUNTER_EOF
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
systemctl enable --force sddm.service
|
||||
dnf config-manager --set-enabled crb
|
||||
|
||||
%end
|
79
live/9/prod/rocky-live-kde-common.ks
Normal file
79
live/9/prod/rocky-live-kde-common.ks
Normal file
@ -0,0 +1,79 @@
|
||||
|
||||
%packages
|
||||
# install env-group to resolve RhBug:1891500
|
||||
@^kde-desktop-environment
|
||||
|
||||
@firefox
|
||||
@kde-apps
|
||||
@kde-media
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
|
||||
-@admin-tools
|
||||
|
||||
### The KDE-Desktop
|
||||
|
||||
### fixes
|
||||
sddm
|
||||
sddm-breeze
|
||||
sddm-themes
|
||||
sddm-kcm
|
||||
|
||||
# use kde-print-manager instead of system-config-printer
|
||||
-system-config-printer
|
||||
# make sure mariadb lands instead of MySQL (hopefully a temporary hack)
|
||||
mariadb-embedded
|
||||
mariadb-connector-c
|
||||
mariadb-server
|
||||
|
||||
# minimal localization support - allows installing the kde-l10n-* packages
|
||||
#kde-l10n <- Not in EL8
|
||||
|
||||
# unwanted packages from @kde-desktop
|
||||
# don't include these for now to fit on a cd
|
||||
-desktop-backgrounds-basic
|
||||
-kdeaccessibility*
|
||||
-ktorrent # kget has also basic torrent features (~3 megs)
|
||||
-digikam # digikam has duplicate functionality with gwenview (~28 megs)
|
||||
-kipi-plugins # ~8 megs + drags in Marble
|
||||
-krusader # ~4 megs
|
||||
-k3b # ~15 megs
|
||||
|
||||
#-kdeplasma-addons # ~16 megs
|
||||
|
||||
# Additional packages that are not default in kde-* groups, but useful
|
||||
#kdeartwork # only include some parts of kdeartwork
|
||||
fuse
|
||||
#mediawriter <-- Not in EL8
|
||||
|
||||
### space issues
|
||||
|
||||
# admin-tools
|
||||
-gnome-disk-utility
|
||||
# kcm_clock still lacks some features, so keep system-config-date around
|
||||
#-system-config-date
|
||||
# prefer kcm_systemd
|
||||
-system-config-services
|
||||
# prefer/use kusers
|
||||
-system-config-users
|
||||
|
||||
# we need to keep epel-release, otherwise we can't update
|
||||
epel-release
|
||||
|
||||
### MINIMIZATION ###
|
||||
-mpage
|
||||
-hplip
|
||||
-isdn4k-utils
|
||||
-xsane
|
||||
-xsane-gimp
|
||||
-@input-methods
|
||||
-scim*
|
||||
-iok
|
||||
|
||||
%end
|
||||
|
6
live/9/prod/rocky-live-kde-minimization.ks
Normal file
6
live/9/prod/rocky-live-kde-minimization.ks
Normal file
@ -0,0 +1,6 @@
|
||||
# Remove a few things we don't need
|
||||
%packages
|
||||
-@input-methods
|
||||
-scim*
|
||||
-iok
|
||||
%end
|
10
live/9/prod/rocky-live-kde.ks
Normal file
10
live/9/prod/rocky-live-kde.ks
Normal file
@ -0,0 +1,10 @@
|
||||
# rocky-live-kde.ks
|
||||
# BROKEN
|
||||
|
||||
%include rocky-live-kde-base.ks
|
||||
|
||||
# DVD
|
||||
part / --size=7300
|
||||
|
||||
%post
|
||||
%end
|
14
live/9/prod/rocky-live-minimization.ks
Normal file
14
live/9/prod/rocky-live-minimization.ks
Normal file
@ -0,0 +1,14 @@
|
||||
# Saving space
|
||||
%packages
|
||||
|
||||
# save some space
|
||||
-mpage
|
||||
-hplip
|
||||
-isdn4k-utils
|
||||
|
||||
# scanning takes quite a bit of space :/
|
||||
-xsane
|
||||
-xsane-gimp
|
||||
-sane-backends
|
||||
|
||||
%end
|
101
live/9/prod/rocky-live-workstation-lite.ks
Normal file
101
live/9/prod/rocky-live-workstation-lite.ks
Normal file
@ -0,0 +1,101 @@
|
||||
# Maintained by Release Engineering
|
||||
# mailto:releng@rockylinux.org
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-workstation-common-lite.ks
|
||||
#
|
||||
# Disable this for now as packagekit is causing compose failures
|
||||
# by leaving a gpg-agent around holding /dev/null open.
|
||||
#
|
||||
#include snippets/packagekit-cached-metadata.ks
|
||||
|
||||
part / --size 7750
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Disable GNOME welcome tour so it doesn't overlap with Fedora welcome screen
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
welcome-dialog-last-shown-version='4294967295'
|
||||
FOE
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
102
live/9/prod/rocky-live-workstation.ks
Normal file
102
live/9/prod/rocky-live-workstation.ks
Normal file
@ -0,0 +1,102 @@
|
||||
# Maintained by Release Engineering
|
||||
# mailto:releng@rockylinux.org
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-workstation-common.ks
|
||||
#
|
||||
# Disable this for now as packagekit is causing compose failures
|
||||
# by leaving a gpg-agent around holding /dev/null open.
|
||||
#
|
||||
#include snippets/packagekit-cached-metadata.ks
|
||||
|
||||
part / --size 7750
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
allow-updates=false
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Disable GNOME welcome tour so it doesn't overlap with Fedora welcome screen
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
welcome-dialog-last-shown-version='4294967295'
|
||||
FOE
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
88
live/9/prod/rocky-live-xfce-common.ks
Normal file
88
live/9/prod/rocky-live-xfce-common.ks
Normal file
@ -0,0 +1,88 @@
|
||||
# xfce
|
||||
%packages
|
||||
|
||||
# these aren't an epel 8 thing for some reason.
|
||||
@xfce-desktop --nodefaults
|
||||
#@^xfce-desktop-environment
|
||||
#@xfce-apps
|
||||
#@xfce-extra-plugins
|
||||
#@xfce-media
|
||||
#@xfce-office
|
||||
|
||||
# Manual install...
|
||||
#geany
|
||||
gparted
|
||||
#mousepad
|
||||
#ristretto
|
||||
seahorse
|
||||
#transmission
|
||||
pcp-selinux
|
||||
lightdm
|
||||
#gdm
|
||||
-gdm
|
||||
-gnome-shell
|
||||
|
||||
# Some stuff might already be here, doesn't hurt to list it.
|
||||
firefox
|
||||
thunderbird
|
||||
firewall-config
|
||||
#pidgin
|
||||
rocky-backgrounds
|
||||
gparted
|
||||
#rhythmbox
|
||||
|
||||
# extras
|
||||
f35-backgrounds-xfce
|
||||
f35-backgrounds-extras-xfce
|
||||
|
||||
xfce4-about
|
||||
xfce4-taskmanager
|
||||
#xfce4-battery-plugin
|
||||
xfce4-datetime-plugin
|
||||
xfce4-netload-plugin
|
||||
#xfce4-places-plugin
|
||||
xfce4-screenshooter-plugin
|
||||
xfce4-smartbookmark-plugin
|
||||
xfce4-systemload-plugin
|
||||
xfce4-time-out-plugin
|
||||
xfce4-weather-plugin
|
||||
xfce4-whiskermenu-plugin
|
||||
#xfdashboard
|
||||
#xfdashboard-themes
|
||||
pavucontrol
|
||||
|
||||
# XFCE group defaults
|
||||
xfce4-appfinder
|
||||
xfce4-power-manager
|
||||
#xfce4-pulseaudio-plugin
|
||||
xfce4-screensaver
|
||||
xfce4-terminal
|
||||
network-manager-applet
|
||||
openssh-askpass
|
||||
thunar-archive-plugin
|
||||
thunar-volman
|
||||
tumbler
|
||||
xfce-polkit
|
||||
|
||||
wget
|
||||
xdg-user-dirs
|
||||
xdg-user-dirs-gtk
|
||||
|
||||
# save some space
|
||||
-autofs
|
||||
-acpid
|
||||
-gimp-help
|
||||
-desktop-backgrounds-basic
|
||||
-aspell-*
|
||||
-xfce4-sensors-plugin
|
||||
-xfce4-eyes-plugin
|
||||
|
||||
### MINIMIZATION
|
||||
-mpage
|
||||
-hplip
|
||||
-isdn4k-utils
|
||||
-xsane
|
||||
-xsane-gimp
|
||||
-sane-backends
|
||||
|
||||
%end
|
94
live/9/prod/rocky-live-xfce.ks
Normal file
94
live/9/prod/rocky-live-xfce.ks
Normal file
@ -0,0 +1,94 @@
|
||||
# rocky-live-kde.ks
|
||||
# BROKEN
|
||||
|
||||
%include rocky-live-base-spin.ks
|
||||
%include rocky-live-xfce-common.ks
|
||||
|
||||
part / --size 6144
|
||||
|
||||
%post
|
||||
# xfce configuration
|
||||
|
||||
# create /etc/sysconfig/desktop (needed for installation)
|
||||
|
||||
cat > /etc/sysconfig/desktop <<EOF
|
||||
PREFERRED=/usr/bin/startxfce4
|
||||
DISPLAYMANAGER=/usr/sbin/lightdm
|
||||
EOF
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
mkdir -p /home/liveuser/.config/xfce4
|
||||
# ugly stuff, this should give us a default background for now
|
||||
#mkdir -p /usr/share/backgrounds/images
|
||||
#ln -s /usr/share/backgrounds/f32/default/f32.png \
|
||||
# /usr/share/backgrounds/images/default.png
|
||||
|
||||
cat > /home/liveuser/.config/xfce4/helpers.rc << FOE
|
||||
MailReader=sylpheed-claws
|
||||
FileManager=Thunar
|
||||
WebBrowser=firefox
|
||||
FOE
|
||||
|
||||
# disable screensaver locking (#674410)
|
||||
cat >> /home/liveuser/.xscreensaver << FOE
|
||||
mode: off
|
||||
lock: False
|
||||
dpmsEnabled: False
|
||||
FOE
|
||||
|
||||
# deactivate xfconf-migration (#683161)
|
||||
rm -f /etc/xdg/autostart/xfconf-migration-4.6.desktop || :
|
||||
|
||||
# deactivate xfce4-panel first-run dialog (#693569)
|
||||
mkdir -p /home/liveuser/.config/xfce4/xfconf/xfce-perchannel-xml
|
||||
cp /etc/xdg/xfce4/panel/default.xml /home/liveuser/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-panel.xml
|
||||
|
||||
# set up lightdm autologin
|
||||
sed -i 's/^#autologin-user=.*/autologin-user=liveuser/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#autologin-user-timeout=.*/autologin-user-timeout=0/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#show-language-selector=.*/show-language-selector=true/' /etc/lightdm/lightdm-gtk-greeter.conf
|
||||
|
||||
# set Xfce as default session, otherwise login will fail
|
||||
sed -i 's/^#user-session=.*/user-session=xfce/' /etc/lightdm/lightdm.conf
|
||||
|
||||
# debrand
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome.desktop
|
||||
#sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/liveinst.desktop
|
||||
|
||||
# Show harddisk install on the desktop
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp /usr/share/applications/liveinst.desktop /home/liveuser/Desktop/
|
||||
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# no updater applet in live environment
|
||||
rm -f /etc/xdg/autostart/org.mageia.dnfdragora-updater.desktop
|
||||
|
||||
# and mark it as executable (new Xfce security feature)
|
||||
chmod +x /home/liveuser/Desktop/liveinst.desktop
|
||||
|
||||
# move to anaconda - probably not required for XFCE.
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
# this goes at the end after all other changes.
|
||||
chown -R liveuser:liveuser /home/liveuser
|
||||
restorecon -R /home/liveuser
|
||||
|
||||
EOF
|
||||
|
||||
# this doesn't come up automatically. not sure why.
|
||||
systemctl enable --force lightdm.service
|
||||
|
||||
# CRB needs to be enabled for EPEL to function.
|
||||
dnf config-manager --set-enabled crb
|
||||
|
||||
%end
|
14
live/9/prod/rocky-repo-epel.ks
Normal file
14
live/9/prod/rocky-repo-epel.ks
Normal file
@ -0,0 +1,14 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Deps repo, there are some anaconda packages that are *not* available by default
|
||||
repo --name=BaseOS --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/
|
||||
repo --name=AppStream --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/AppStream/$basearch/os/
|
||||
repo --name=CRB --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/CRB/$basearch/os/
|
||||
repo --name=extras --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/extras/$basearch/os
|
||||
|
||||
# EPEL (required for KDE and XFCE)
|
||||
repo --name=epel --cost=200 --baseurl=https://dl.fedoraproject.org/pub/epel/9/Everything/$basearch/
|
||||
#repo --name=epel-modular --cost=200 --baseurl=https://dl.fedoraproject.org/pub/epel/9/Modular/$basearch/
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/
|
10
live/9/prod/rocky-repo.ks
Normal file
10
live/9/prod/rocky-repo.ks
Normal file
@ -0,0 +1,10 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Base repos
|
||||
repo --name=BaseOS --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/
|
||||
repo --name=AppStream --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/AppStream/$basearch/os/
|
||||
repo --name=CRB --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/CRB/$basearch/os/
|
||||
repo --name=extras --cost=200 --baseurl=http://dl.rockylinux.org/pub/rocky/9/extras/$basearch/os
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=http://dl.rockylinux.org/pub/rocky/9/BaseOS/$basearch/os/
|
27
live/9/prod/rocky-workstation-common-lite.ks
Normal file
27
live/9/prod/rocky-workstation-common-lite.ks
Normal file
@ -0,0 +1,27 @@
|
||||
%packages
|
||||
|
||||
# Exclude unwanted groups that rocky-live-base.ks pulls in
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
|
||||
# Make sure to sync any additions / removals done here with
|
||||
# workstation-product-environment in comps
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@networkmanager-submodules
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-writer
|
||||
|
||||
# Exclude unwanted packages from @anaconda-tools group
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
32
live/9/prod/rocky-workstation-common.ks
Normal file
32
live/9/prod/rocky-workstation-common.ks
Normal file
@ -0,0 +1,32 @@
|
||||
%packages
|
||||
|
||||
# Exclude unwanted groups that rocky-live-base.ks pulls in
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
|
||||
# Make sure to sync any additions / removals done here with
|
||||
# workstation-product-environment in comps
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@multimedia
|
||||
@networkmanager-submodules
|
||||
@workstation-product
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
|
||||
# Exclude unwanted packages from @anaconda-tools group
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
355
live/9/stage/mainline/rocky-live-base.ks
Normal file
355
live/9/stage/mainline/rocky-live-base.ks
Normal file
@ -0,0 +1,355 @@
|
||||
# rocky-live-base.ks
|
||||
#
|
||||
# Base installation information for Rocky Linux images
|
||||
#
|
||||
|
||||
lang en_US.UTF-8
|
||||
keyboard us
|
||||
timezone US/Eastern
|
||||
selinux --enforcing
|
||||
firewall --enabled --service=mdns
|
||||
xconfig --startxonboot
|
||||
zerombr
|
||||
clearpart --all
|
||||
part / --size 5120 --fstype ext4
|
||||
services --enabled=NetworkManager,ModemManager --disabled=sshd
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
rootpw --lock --iscrypted locked
|
||||
shutdown
|
||||
|
||||
%include rocky-repo-mainline.ks
|
||||
|
||||
%packages
|
||||
@base-x
|
||||
@guest-desktop-agents
|
||||
@standard
|
||||
@core
|
||||
@fonts
|
||||
@input-methods
|
||||
@dial-up
|
||||
@multimedia
|
||||
@hardware-support
|
||||
|
||||
# explicit
|
||||
elrepo-release
|
||||
kernel-ml
|
||||
kernel-ml-modules
|
||||
kernel-ml-modules-extra
|
||||
memtest86+
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
@anaconda-tools
|
||||
|
||||
# Required for SVG rnotes images
|
||||
aajohan-comfortaa-fonts
|
||||
|
||||
# RHBZ#1242586 - Required for initramfs creation
|
||||
dracut-live
|
||||
syslinux
|
||||
|
||||
# Anaconda needs all the locales available, just like a DVD installer
|
||||
glibc-all-langpacks
|
||||
|
||||
# This isn't in @core anymore, but livesys still needs it
|
||||
initscripts
|
||||
chkconfig
|
||||
%end
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# This only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
107
live/9/stage/mainline/rocky-live-workstation.ks
Normal file
107
live/9/stage/mainline/rocky-live-workstation.ks
Normal file
@ -0,0 +1,107 @@
|
||||
# Maintained by Release Engineering
|
||||
# mailto:releng@rockylinux.org
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-workstation-common.ks
|
||||
#
|
||||
# Disable this for now as packagekit is causing compose failures
|
||||
# by leaving a gpg-agent around holding /dev/null open.
|
||||
#
|
||||
#include snippets/packagekit-cached-metadata.ks
|
||||
|
||||
part / --size 6656
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'rhythmbox.desktop', 'shotwell.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome.desktop
|
||||
#sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/anaconda.desktop
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# switch default kernel
|
||||
sed -i 's/DEFAULTKERNEL=kernel/DEFAULTKERNEL=kernel-ml/g' /etc/sysconfig/kernel
|
||||
|
||||
# enable elrepo kernel
|
||||
dnf config-manager --set-enabled elrepo-kernel
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
14
live/9/stage/mainline/rocky-repo-mainline.ks
Normal file
14
live/9/stage/mainline/rocky-repo-mainline.ks
Normal file
@ -0,0 +1,14 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Deps repo, there are some anaconda packages that are *not* available by default
|
||||
repo --name=BaseOS --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/BaseOS/$basearch/os/
|
||||
repo --name=AppStream --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/AppStream/$basearch/os/
|
||||
repo --name=CRB --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/CRB/$basearch/os/
|
||||
repo --name=extras --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/extras/$basearch/os
|
||||
|
||||
# ELRepo
|
||||
repo --name="elrepo-kernel" --baseurl=https://elrepo.org/linux/kernel/el8/$basearch/ --cost=200
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=http://dl.rockylinux.org/stg/rocky/9/BaseOS/$basearch/os/
|
||||
#url --url=http://10.100.0.1/pub/deps
|
32
live/9/stage/mainline/rocky-workstation-common.ks
Normal file
32
live/9/stage/mainline/rocky-workstation-common.ks
Normal file
@ -0,0 +1,32 @@
|
||||
%packages
|
||||
|
||||
# Exclude unwanted groups that rocky-live-base.ks pulls in
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
|
||||
# Make sure to sync any additions / removals done here with
|
||||
# workstation-product-environment in comps
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@multimedia
|
||||
@networkmanager-submodules
|
||||
@workstation-product
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
|
||||
# Exclude unwanted packages from @anaconda-tools group
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
372
live/9/stage/rocky-live-base-spin.ks
Normal file
372
live/9/stage/rocky-live-base-spin.ks
Normal file
@ -0,0 +1,372 @@
|
||||
# rocky-live-base-spin.ks
|
||||
#
|
||||
# Base installation information for Rocky Linux images
|
||||
# Contains EPEL.
|
||||
#
|
||||
|
||||
lang en_US.UTF-8
|
||||
keyboard us
|
||||
timezone US/Eastern
|
||||
selinux --enforcing
|
||||
firewall --enabled --service=mdns
|
||||
xconfig --startxonboot
|
||||
zerombr
|
||||
clearpart --all
|
||||
part / --size 5120 --fstype ext4
|
||||
services --enabled=NetworkManager,ModemManager --disabled=sshd
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
rootpw --lock --iscrypted locked
|
||||
shutdown
|
||||
|
||||
%include rocky-repo-epel.ks
|
||||
|
||||
%packages
|
||||
@base-x
|
||||
@guest-desktop-agents
|
||||
@standard
|
||||
@core
|
||||
@fonts
|
||||
@input-methods
|
||||
@dial-up
|
||||
@multimedia
|
||||
@hardware-support
|
||||
|
||||
# explicit
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
memtest86+
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
@anaconda-tools
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
|
||||
# Required for SVG rnotes images
|
||||
aajohan-comfortaa-fonts
|
||||
|
||||
# RHBZ#1242586 - Required for initramfs creation
|
||||
dracut-live
|
||||
syslinux
|
||||
|
||||
# Anaconda needs all the locales available, just like a DVD installer
|
||||
glibc-all-langpacks
|
||||
|
||||
# no longer in @core since 2018-10, but needed for livesys script
|
||||
initscripts
|
||||
chkconfig
|
||||
|
||||
# absolutely required - don't want a system that can't actually update
|
||||
epel-release
|
||||
%end
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
368
live/9/stage/rocky-live-base.ks
Normal file
368
live/9/stage/rocky-live-base.ks
Normal file
@ -0,0 +1,368 @@
|
||||
# rocky-live-base.ks
|
||||
#
|
||||
# Base installation information for Rocky Linux images
|
||||
#
|
||||
|
||||
lang en_US.UTF-8
|
||||
keyboard us
|
||||
timezone US/Eastern
|
||||
selinux --enforcing
|
||||
firewall --enabled --service=mdns
|
||||
xconfig --startxonboot
|
||||
zerombr
|
||||
clearpart --all
|
||||
part / --size 5120 --fstype ext4
|
||||
services --enabled=NetworkManager,ModemManager --disabled=sshd
|
||||
network --bootproto=dhcp --device=link --activate
|
||||
rootpw --lock --iscrypted locked
|
||||
shutdown
|
||||
|
||||
%include rocky-repo.ks
|
||||
|
||||
%packages
|
||||
@base-x
|
||||
@guest-desktop-agents
|
||||
@standard
|
||||
@core
|
||||
@fonts
|
||||
@input-methods
|
||||
@dial-up
|
||||
@multimedia
|
||||
@hardware-support
|
||||
|
||||
# explicit
|
||||
kernel
|
||||
kernel-modules
|
||||
kernel-modules-extra
|
||||
memtest86+
|
||||
anaconda
|
||||
anaconda-install-env-deps
|
||||
anaconda-live
|
||||
@anaconda-tools
|
||||
efi-filesystem
|
||||
efivar-libs
|
||||
efibootmgr
|
||||
grub2-common
|
||||
grub2-efi-*64
|
||||
grub2-efi-*64-cdboot
|
||||
grub2-pc-modules
|
||||
grub2-tools
|
||||
grub2-tools-efi
|
||||
grub2-tools-extra
|
||||
grub2-tools-minimal
|
||||
grubby
|
||||
shim-*64
|
||||
-shim-unsigned-*64
|
||||
|
||||
# Required for SVG rnotes images
|
||||
aajohan-comfortaa-fonts
|
||||
|
||||
# RHBZ#1242586 - Required for initramfs creation
|
||||
dracut-live
|
||||
syslinux
|
||||
|
||||
# Anaconda needs all the locales available, just like a DVD installer
|
||||
glibc-all-langpacks
|
||||
|
||||
# This isn't in @core anymore, but livesys still needs it
|
||||
initscripts
|
||||
chkconfig
|
||||
%end
|
||||
|
||||
%post
|
||||
# FIXME: it'd be better to get this installed from a package
|
||||
cat > /etc/rc.d/init.d/livesys << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Init script for live image
|
||||
#
|
||||
# chkconfig: 345 00 99
|
||||
# description: Init script for live image.
|
||||
### BEGIN INIT INFO
|
||||
# X-Start-Before: display-manager chronyd
|
||||
### END INIT INFO
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
if [ -e /.liveimg-configured ] ; then
|
||||
configdone=1
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
livedir="LiveOS"
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##rd.live.dir=}
|
||||
continue
|
||||
fi
|
||||
if [ "\${arg##live_dir=}" != "\${arg}" ]; then
|
||||
livedir=\${arg##live_dir=}
|
||||
fi
|
||||
done
|
||||
|
||||
# Enable swap unless requested otherwise
|
||||
swaps=\`blkid -t TYPE=swap -o device\`
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then
|
||||
for s in \$swaps ; do
|
||||
action "Enabling swap partition \$s" swapon \$s
|
||||
done
|
||||
fi
|
||||
if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then
|
||||
action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img
|
||||
fi
|
||||
|
||||
# Support for persistent homes
|
||||
mountPersistentHome() {
|
||||
# support label/uuid
|
||||
if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then
|
||||
homedev=\`/sbin/blkid -o device -t "\$homedev"\`
|
||||
fi
|
||||
|
||||
# if we're given a file rather than a blockdev, loopback it
|
||||
if [ "\${homedev##mtd}" != "\${homedev}" ]; then
|
||||
# mtd devs don't have a block device but get magic-mounted with -t jffs2
|
||||
mountopts="-t jffs2"
|
||||
elif [ ! -b "\$homedev" ]; then
|
||||
loopdev=\`losetup -f\`
|
||||
if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then
|
||||
action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live
|
||||
fi
|
||||
losetup \$loopdev \$homedev
|
||||
homedev=\$loopdev
|
||||
fi
|
||||
|
||||
# if it's encrypted, we need to unlock it
|
||||
if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then
|
||||
echo
|
||||
echo "Setting up encrypted /home device"
|
||||
plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"
|
||||
homedev=/dev/mapper/EncHome
|
||||
fi
|
||||
|
||||
# and finally do the mount
|
||||
mount \$mountopts \$homedev /home
|
||||
# if we have /home under what's passed for persistent home, then
|
||||
# we should make that the real /home. useful for mtd device on olpc
|
||||
if [ -d /home/home ]; then mount --bind /home/home /home ; fi
|
||||
[ -x /sbin/restorecon ] && /sbin/restorecon /home
|
||||
if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi
|
||||
}
|
||||
|
||||
# Help locate persistent homes
|
||||
findPersistentHome() {
|
||||
for arg in \`cat /proc/cmdline\` ; do
|
||||
if [ "\${arg##persistenthome=}" != "\${arg}" ]; then
|
||||
homedev=\${arg##persistenthome=}
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
if strstr "\`cat /proc/cmdline\`" persistenthome= ; then
|
||||
findPersistentHome
|
||||
elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then
|
||||
homedev=/run/initramfs/live/\${livedir}/home.img
|
||||
fi
|
||||
|
||||
# Mount the persistent home if it's available
|
||||
if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then
|
||||
action "Mounting persistent /home" mountPersistentHome
|
||||
fi
|
||||
|
||||
if [ -n "\$configdone" ]; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
# Create the liveuser (no password) so automatic logins and sudo works
|
||||
action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser
|
||||
passwd -d liveuser > /dev/null
|
||||
usermod -aG wheel liveuser > /dev/null
|
||||
|
||||
# Same for root
|
||||
passwd -d root > /dev/null
|
||||
|
||||
# Turn off firstboot (similar to a DVD/minimal install, where it asks
|
||||
# for the user to accept the EULA before bringing up a TTY)
|
||||
systemctl --no-reload disable firstboot-text.service 2> /dev/null || :
|
||||
systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :
|
||||
systemctl stop firstboot-text.service 2> /dev/null || :
|
||||
systemctl stop firstboot-graphical.service 2> /dev/null || :
|
||||
|
||||
# Prelinking damages the images
|
||||
sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :
|
||||
|
||||
# Turn off mdmonitor by default
|
||||
systemctl --no-reload disable mdmonitor.service 2> /dev/null || :
|
||||
systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor.service 2> /dev/null || :
|
||||
systemctl stop mdmonitor-takeover.service 2> /dev/null || :
|
||||
|
||||
# Even if there isn't gnome, this doesn't hurt.
|
||||
gsettings set org.gnome.software download-updates 'false' || :
|
||||
|
||||
# Disable cron
|
||||
systemctl --no-reload disable crond.service 2> /dev/null || :
|
||||
systemctl --no-reload disable atd.service 2> /dev/null || :
|
||||
systemctl stop crond.service 2> /dev/null || :
|
||||
systemctl stop atd.service 2> /dev/null || :
|
||||
|
||||
# Disable abrt
|
||||
systemctl --no-reload disable abrtd.service 2> /dev/null || :
|
||||
systemctl stop abrtd.service 2> /dev/null || :
|
||||
|
||||
# Don't sync the system clock when running live (RHBZ #1018162)
|
||||
sed -i 's/rtcsync//' /etc/chrony.conf
|
||||
|
||||
# Mark things as configured
|
||||
touch /.liveimg-configured
|
||||
|
||||
# add static hostname to work around xauth bug
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=679486
|
||||
# the hostname must be something else than 'localhost'
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1370222
|
||||
echo "localhost-live" > /etc/hostname
|
||||
|
||||
EOF
|
||||
|
||||
# HAL likes to start late.
|
||||
cat > /etc/rc.d/init.d/livesys-late << EOF
|
||||
#!/bin/bash
|
||||
#
|
||||
# live: Late init script for live image
|
||||
#
|
||||
# chkconfig: 345 99 01
|
||||
# description: Late init script for live image.
|
||||
|
||||
. /etc/init.d/functions
|
||||
|
||||
if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then
|
||||
exit 0
|
||||
fi
|
||||
|
||||
exists() {
|
||||
which \$1 >/dev/null 2>&1 || return
|
||||
\$*
|
||||
}
|
||||
|
||||
touch /.liveimg-late-configured
|
||||
|
||||
# Read some stuff out of the kernel cmdline
|
||||
for o in \`cat /proc/cmdline\` ; do
|
||||
case \$o in
|
||||
ks=*)
|
||||
ks="--kickstart=\${o#ks=}"
|
||||
;;
|
||||
xdriver=*)
|
||||
xdriver="\${o#xdriver=}"
|
||||
;;
|
||||
esac
|
||||
done
|
||||
|
||||
# If liveinst or textinst is given, start installer
|
||||
if strstr "\`cat /proc/cmdline\`" liveinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst \$ks
|
||||
fi
|
||||
if strstr "\`cat /proc/cmdline\`" textinst ; then
|
||||
plymouth --quit
|
||||
/usr/sbin/liveinst --text \$ks
|
||||
fi
|
||||
|
||||
# Configure X, allowing user to override xdriver
|
||||
if [ -n "\$xdriver" ]; then
|
||||
cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE
|
||||
Section "Device"
|
||||
Identifier "Videocard0"
|
||||
Driver "\$xdriver"
|
||||
EndSection
|
||||
FOE
|
||||
fi
|
||||
|
||||
EOF
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys
|
||||
/sbin/chkconfig --add livesys
|
||||
|
||||
chmod 755 /etc/rc.d/init.d/livesys-late
|
||||
/sbin/restorecon /etc/rc.d/init.d/livesys-late
|
||||
/sbin/chkconfig --add livesys-late
|
||||
|
||||
# Enable tmpfs for /tmp - this is a good idea
|
||||
systemctl enable tmp.mount
|
||||
|
||||
# make it so that we don't do writing to the overlay for things which
|
||||
# are just tmpdirs/caches
|
||||
# note https://bugzilla.redhat.com/show_bug.cgi?id=1135475
|
||||
cat >> /etc/fstab << EOF
|
||||
vartmp /var/tmp tmpfs defaults 0 0
|
||||
EOF
|
||||
|
||||
# PackageKit likes to play games. Let's fix that.
|
||||
rm -f /var/lib/rpm/__db*
|
||||
releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)
|
||||
basearch=$(uname -i)
|
||||
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-rockyofficial
|
||||
echo "Packages within this LiveCD"
|
||||
rpm -qa
|
||||
# Note that running rpm recreates the rpm db files which aren't needed or wanted
|
||||
rm -f /var/lib/rpm/__db*
|
||||
|
||||
# go ahead and pre-make the man -k cache (#455968)
|
||||
/usr/bin/mandb
|
||||
|
||||
# make sure there aren't core files lying around
|
||||
rm -f /core*
|
||||
|
||||
# remove random seed, the newly installed instance should make it's own
|
||||
rm -f /var/lib/systemd/random-seed
|
||||
|
||||
# convince readahead not to collect
|
||||
# FIXME: for systemd
|
||||
|
||||
echo 'File created by kickstart. See systemd-update-done.service(8).' \
|
||||
| tee /etc/.updated >/var/.updated
|
||||
|
||||
# Drop the rescue kernel and initramfs, we don't need them on the live media itself.
|
||||
# See bug 1317709
|
||||
rm -f /boot/*-rescue*
|
||||
|
||||
# Disable network service here, as doing it in the services line
|
||||
# fails due to RHBZ #1369794 - the error is expected
|
||||
/sbin/chkconfig network off
|
||||
|
||||
# Remove machine-id on generated images
|
||||
rm -f /etc/machine-id
|
||||
touch /etc/machine-id
|
||||
|
||||
%end
|
||||
|
||||
|
||||
%post --nochroot
|
||||
cp $INSTALL_ROOT/usr/share/licenses/*-release/* $LIVE_ROOT/
|
||||
|
||||
# This only works on x86_64
|
||||
if [ "$(uname -i)" = "i386" -o "$(uname -i)" = "x86_64" ]; then
|
||||
# For livecd-creator builds
|
||||
if [ ! -d $LIVE_ROOT/LiveOS ]; then mkdir -p $LIVE_ROOT/LiveOS ; fi
|
||||
cp /usr/bin/livecd-iso-to-disk $LIVE_ROOT/LiveOS
|
||||
|
||||
# For lorax/livemedia-creator builds
|
||||
sed -i '
|
||||
/## make boot.iso/ i\
|
||||
# Add livecd-iso-to-disk script to .iso filesystem at /LiveOS/\
|
||||
<% f = "usr/bin/livecd-iso-to-disk" %>\
|
||||
%if exists(f):\
|
||||
install ${f} ${LIVEDIR}/${f|basename}\
|
||||
%endif\
|
||||
' /usr/share/lorax/templates.d/99-generic/live/x86.tmpl
|
||||
fi
|
||||
|
||||
%end
|
110
live/9/stage/rocky-live-kde-base.ks
Normal file
110
live/9/stage/rocky-live-kde-base.ks
Normal file
@ -0,0 +1,110 @@
|
||||
# Maintained by RelEng
|
||||
|
||||
%include rocky-live-base-spin.ks
|
||||
%include rocky-live-kde-common.ks
|
||||
|
||||
%post
|
||||
|
||||
# set default GTK+ theme for root (see #683855, #689070, #808062)
|
||||
cat > /root/.gtkrc-2.0 << EOF
|
||||
include "/usr/share/themes/Adwaita/gtk-2.0/gtkrc"
|
||||
include "/etc/gtk-2.0/gtkrc"
|
||||
gtk-theme-name="Adwaita"
|
||||
EOF
|
||||
mkdir -p /root/.config/gtk-3.0
|
||||
cat > /root/.config/gtk-3.0/settings.ini << EOF
|
||||
[Settings]
|
||||
gtk-theme-name = Adwaita
|
||||
EOF
|
||||
|
||||
# add initscript
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
# are we *not* able to use wayland sessions?
|
||||
if strstr "\`cat /proc/cmdline\`" nomodeset ; then
|
||||
PLASMA_SESSION_FILE="plasmax11.desktop"
|
||||
else
|
||||
PLASMA_SESSION_FILE="plasma.desktop"
|
||||
fi
|
||||
|
||||
# set up autologin for user liveuser
|
||||
if [ -f /etc/sddm.conf ]; then
|
||||
sed -i 's/^#User=.*/User=liveuser/' /etc/sddm.conf
|
||||
sed -i "s/^#Session=.*/Session=\${PLASMA_SESSION_FILE}/" /etc/sddm.conf
|
||||
else
|
||||
cat > /etc/sddm.conf << SDDM_EOF
|
||||
[Autologin]
|
||||
User=liveuser
|
||||
Session=\${PLASMA_SESSION_FILE}
|
||||
SDDM_EOF
|
||||
fi
|
||||
|
||||
# add liveinst.desktop to favorites menu
|
||||
mkdir -p /home/liveuser/.config/
|
||||
cat > /home/liveuser/.config/kickoffrc << MENU_EOF
|
||||
[Favorites]
|
||||
FavoriteURLs=/usr/share/applications/firefox.desktop,/usr/share/applications/org.kde.dolphin.desktop,/usr/share/applications/systemsettings.desktop,/usr/share/applications/org.kde.konsole.desktop,/usr/share/applications/liveinst.desktop
|
||||
MENU_EOF
|
||||
|
||||
# show liveinst.desktop on desktop and in menu
|
||||
sed -i 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
||||
# set executable bit disable KDE security warning
|
||||
chmod +x /usr/share/applications/liveinst.desktop
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp -a /usr/share/applications/liveinst.desktop /home/liveuser/Desktop/
|
||||
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Set akonadi backend
|
||||
mkdir -p /home/liveuser/.config/akonadi
|
||||
cat > /home/liveuser/.config/akonadi/akonadiserverrc << AKONADI_EOF
|
||||
[%General]
|
||||
Driver=QSQLITE3
|
||||
AKONADI_EOF
|
||||
|
||||
# "Disable plasma-discover-notifier"
|
||||
mkdir -p /home/liveuser/.config/autostart
|
||||
cp -a /etc/xdg/autostart/org.kde.discover.notifier.desktop /home/liveuser/.config/autostart/
|
||||
echo 'Hidden=true' >> /home/liveuser/.config/autostart/org.kde.discover.notifier.desktop
|
||||
|
||||
# Disable baloo
|
||||
cat > /home/liveuser/.config/baloofilerc << BALOO_EOF
|
||||
[Basic Settings]
|
||||
Indexing-Enabled=false
|
||||
BALOO_EOF
|
||||
|
||||
# Disable kres-migrator
|
||||
cat > /home/liveuser/.kde/share/config/kres-migratorrc << KRES_EOF
|
||||
[Migration]
|
||||
Enabled=false
|
||||
KRES_EOF
|
||||
|
||||
# Disable kwallet migrator
|
||||
cat > /home/liveuser/.config/kwalletrc << KWALLET_EOL
|
||||
[Migration]
|
||||
alreadyMigrated=true
|
||||
KWALLET_EOL
|
||||
# Disable automount of 'known' devices
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=2073708
|
||||
cat > /home/liveuser/.config/kded_device_automounterrc << AUTOMOUNTER_EOF
|
||||
[General]
|
||||
AutomountEnabled=false
|
||||
AutomountOnLogin=false
|
||||
AutomountOnPlugin=false
|
||||
AUTOMOUNTER_EOF
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
systemctl enable --force sddm.service
|
||||
dnf config-manager --set-enabled crb
|
||||
|
||||
%end
|
79
live/9/stage/rocky-live-kde-common.ks
Normal file
79
live/9/stage/rocky-live-kde-common.ks
Normal file
@ -0,0 +1,79 @@
|
||||
|
||||
%packages
|
||||
# install env-group to resolve RhBug:1891500
|
||||
@^kde-desktop-environment
|
||||
|
||||
@firefox
|
||||
@kde-apps
|
||||
@kde-media
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
|
||||
-@admin-tools
|
||||
|
||||
### The KDE-Desktop
|
||||
|
||||
### fixes
|
||||
sddm
|
||||
sddm-breeze
|
||||
sddm-themes
|
||||
sddm-kcm
|
||||
|
||||
# use kde-print-manager instead of system-config-printer
|
||||
-system-config-printer
|
||||
# make sure mariadb lands instead of MySQL (hopefully a temporary hack)
|
||||
mariadb-embedded
|
||||
mariadb-connector-c
|
||||
mariadb-server
|
||||
|
||||
# minimal localization support - allows installing the kde-l10n-* packages
|
||||
#kde-l10n <- Not in EL8
|
||||
|
||||
# unwanted packages from @kde-desktop
|
||||
# don't include these for now to fit on a cd
|
||||
-desktop-backgrounds-basic
|
||||
-kdeaccessibility*
|
||||
-ktorrent # kget has also basic torrent features (~3 megs)
|
||||
-digikam # digikam has duplicate functionality with gwenview (~28 megs)
|
||||
-kipi-plugins # ~8 megs + drags in Marble
|
||||
-krusader # ~4 megs
|
||||
-k3b # ~15 megs
|
||||
|
||||
#-kdeplasma-addons # ~16 megs
|
||||
|
||||
# Additional packages that are not default in kde-* groups, but useful
|
||||
#kdeartwork # only include some parts of kdeartwork
|
||||
fuse
|
||||
#mediawriter <-- Not in EL8
|
||||
|
||||
### space issues
|
||||
|
||||
# admin-tools
|
||||
-gnome-disk-utility
|
||||
# kcm_clock still lacks some features, so keep system-config-date around
|
||||
#-system-config-date
|
||||
# prefer kcm_systemd
|
||||
-system-config-services
|
||||
# prefer/use kusers
|
||||
-system-config-users
|
||||
|
||||
# we need to keep epel-release, otherwise we can't update
|
||||
epel-release
|
||||
|
||||
### MINIMIZATION ###
|
||||
-mpage
|
||||
-hplip
|
||||
-isdn4k-utils
|
||||
-xsane
|
||||
-xsane-gimp
|
||||
-@input-methods
|
||||
-scim*
|
||||
-iok
|
||||
|
||||
%end
|
||||
|
6
live/9/stage/rocky-live-kde-minimization.ks
Normal file
6
live/9/stage/rocky-live-kde-minimization.ks
Normal file
@ -0,0 +1,6 @@
|
||||
# Remove a few things we don't need
|
||||
%packages
|
||||
-@input-methods
|
||||
-scim*
|
||||
-iok
|
||||
%end
|
10
live/9/stage/rocky-live-kde.ks
Normal file
10
live/9/stage/rocky-live-kde.ks
Normal file
@ -0,0 +1,10 @@
|
||||
# rocky-live-kde.ks
|
||||
# BROKEN
|
||||
|
||||
%include rocky-live-kde-base.ks
|
||||
|
||||
# DVD
|
||||
part / --size=7000
|
||||
|
||||
%post
|
||||
%end
|
61
live/9/stage/rocky-live-mate-common.ks
Normal file
61
live/9/stage/rocky-live-mate-common.ks
Normal file
@ -0,0 +1,61 @@
|
||||
# inherited from Fedora kickstarts F35 with minor changes
|
||||
|
||||
%packages
|
||||
# install env-group to resolve RhBug:1891500
|
||||
@^mate-desktop-environment
|
||||
|
||||
compiz
|
||||
compiz-plugins-main
|
||||
compiz-plugins-extra
|
||||
compiz-manager
|
||||
compizconfig-python
|
||||
compiz-plugins-experimental
|
||||
libcompizconfig
|
||||
compiz-plugins-main
|
||||
ccsm
|
||||
simple-ccsm
|
||||
emerald-themes
|
||||
emerald
|
||||
fusion-icon
|
||||
|
||||
# blacklist applications which breaks mate-desktop
|
||||
-audacious
|
||||
|
||||
# see https://bugzilla.redhat.com/show_bug.cgi?id=2068699
|
||||
# and https://bugzilla.redhat.com/show_bug.cgi?id=1933494
|
||||
# use earlyoom instead of systemd-oomd-defaults
|
||||
#earlyoom
|
||||
#-systemd-oomd-defaults
|
||||
|
||||
# libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
|
||||
# FIXME; apparently the glibc maintainers dislike this, but it got put into the
|
||||
# desktop image at some point. We won't touch this one for now.
|
||||
nss-mdns
|
||||
|
||||
# Drop things for size
|
||||
-@3d-printing
|
||||
-@admin-tools
|
||||
-brasero
|
||||
-fedora-icon-theme
|
||||
-gnome-icon-theme
|
||||
-gnome-icon-theme-symbolic
|
||||
-gnome-logs
|
||||
-gnome-software
|
||||
-gnome-user-docs
|
||||
|
||||
-@mate-applications
|
||||
|
||||
# Help and art can be big, too
|
||||
-gnome-user-docs
|
||||
-evolution-help
|
||||
|
||||
# Legacy cmdline things we don't want
|
||||
-telnet
|
||||
|
||||
%end
|
48
live/9/stage/rocky-live-mate.ks
Normal file
48
live/9/stage/rocky-live-mate.ks
Normal file
@ -0,0 +1,48 @@
|
||||
# inherited from Fedora kickstarts F35
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-live-mate-common.ks
|
||||
%include rocky-live-minimization.ks
|
||||
|
||||
part / --size 8192
|
||||
|
||||
%post
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
fi
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp /usr/share/applications/liveinst.desktop /home/liveuser/Desktop
|
||||
|
||||
# and mark it as executable
|
||||
chmod +x /home/liveuser/Desktop/liveinst.desktop
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up lightdm autologin
|
||||
sed -i 's/^#autologin-user=.*/autologin-user=liveuser/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#autologin-user-timeout=.*/autologin-user-timeout=0/' /etc/lightdm/lightdm.conf
|
||||
#sed -i 's/^#show-language-selector=.*/show-language-selector=true/' /etc/lightdm/lightdm-gtk-greeter.conf
|
||||
|
||||
# set MATE as default session, otherwise login will fail
|
||||
sed -i 's/^#user-session=.*/user-session=mate/' /etc/lightdm/lightdm.conf
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# no updater applet in live environment
|
||||
rm -f /etc/xdg/autostart/org.mageia.dnfdragora-updater.desktop
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
EOF
|
||||
|
||||
%end
|
14
live/9/stage/rocky-live-minimization.ks
Normal file
14
live/9/stage/rocky-live-minimization.ks
Normal file
@ -0,0 +1,14 @@
|
||||
# Saving space
|
||||
%packages
|
||||
|
||||
# save some space
|
||||
-mpage
|
||||
-hplip
|
||||
-isdn4k-utils
|
||||
|
||||
# scanning takes quite a bit of space :/
|
||||
-xsane
|
||||
-xsane-gimp
|
||||
-sane-backends
|
||||
|
||||
%end
|
101
live/9/stage/rocky-live-workstation-lite.ks
Normal file
101
live/9/stage/rocky-live-workstation-lite.ks
Normal file
@ -0,0 +1,101 @@
|
||||
# Maintained by Release Engineering
|
||||
# mailto:releng@rockylinux.org
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-workstation-common-lite.ks
|
||||
#
|
||||
# Disable this for now as packagekit is causing compose failures
|
||||
# by leaving a gpg-agent around holding /dev/null open.
|
||||
#
|
||||
#include snippets/packagekit-cached-metadata.ks
|
||||
|
||||
part / --size 7750
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Disable GNOME welcome tour so it doesn't overlap with Fedora welcome screen
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
welcome-dialog-last-shown-version='4294967295'
|
||||
FOE
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
102
live/9/stage/rocky-live-workstation.ks
Normal file
102
live/9/stage/rocky-live-workstation.ks
Normal file
@ -0,0 +1,102 @@
|
||||
# Maintained by Release Engineering
|
||||
# mailto:releng@rockylinux.org
|
||||
|
||||
%include rocky-live-base.ks
|
||||
%include rocky-workstation-common.ks
|
||||
#
|
||||
# Disable this for now as packagekit is causing compose failures
|
||||
# by leaving a gpg-agent around holding /dev/null open.
|
||||
#
|
||||
#include snippets/packagekit-cached-metadata.ks
|
||||
|
||||
part / --size 7750
|
||||
|
||||
%post
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
|
||||
# disable gnome-software automatically downloading updates
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.software.gschema.override << FOE
|
||||
[org.gnome.software]
|
||||
allow-updates=false
|
||||
download-updates=false
|
||||
FOE
|
||||
|
||||
# don't autostart gnome-software session service
|
||||
rm -f /etc/xdg/autostart/gnome-software-service.desktop
|
||||
|
||||
# disable the gnome-software shell search provider
|
||||
cat >> /usr/share/gnome-shell/search-providers/org.gnome.Software-search-provider.ini << FOE
|
||||
DefaultDisabled=true
|
||||
FOE
|
||||
|
||||
# don't run gnome-initial-setup
|
||||
mkdir ~liveuser/.config
|
||||
touch ~liveuser/.config/gnome-initial-setup-done
|
||||
|
||||
# suppress anaconda spokes redundant with gnome-initial-setup
|
||||
cat >> /etc/sysconfig/anaconda << FOE
|
||||
[NetworkSpoke]
|
||||
visited=1
|
||||
|
||||
[PasswordSpoke]
|
||||
visited=1
|
||||
|
||||
[UserSpoke]
|
||||
visited=1
|
||||
FOE
|
||||
|
||||
# make the installer show up
|
||||
if [ -f /usr/share/applications/liveinst.desktop ]; then
|
||||
# Show harddisk install in shell dash
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop ""
|
||||
# need to move it to anaconda.desktop to make shell happy
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
[org.gnome.shell]
|
||||
favorite-apps=['firefox.desktop', 'evolution.desktop', 'org.gnome.Nautilus.desktop', 'anaconda.desktop']
|
||||
FOE
|
||||
|
||||
# Make the welcome screen show up
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# Disable GNOME welcome tour so it doesn't overlap with Fedora welcome screen
|
||||
cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE
|
||||
welcome-dialog-last-shown-version='4294967295'
|
||||
FOE
|
||||
|
||||
# Copy Anaconda branding in place
|
||||
if [ -d /usr/share/lorax/product/usr/share/anaconda ]; then
|
||||
cp -a /usr/share/lorax/product/* /
|
||||
fi
|
||||
fi
|
||||
|
||||
# rebuild schema cache with any overrides we installed
|
||||
glib-compile-schemas /usr/share/glib-2.0/schemas
|
||||
|
||||
# set up auto-login
|
||||
cat > /etc/gdm/custom.conf << FOE
|
||||
[daemon]
|
||||
AutomaticLoginEnable=True
|
||||
AutomaticLogin=liveuser
|
||||
FOE
|
||||
|
||||
# Turn off PackageKit-command-not-found while uninstalled
|
||||
if [ -f /etc/PackageKit/CommandNotFound.conf ]; then
|
||||
sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf
|
||||
fi
|
||||
|
||||
# make sure to set the right permissions and selinux contexts
|
||||
chown -R liveuser:liveuser /home/liveuser/
|
||||
restorecon -R /home/liveuser/
|
||||
restorecon -R /
|
||||
|
||||
EOF
|
||||
|
||||
%end
|
88
live/9/stage/rocky-live-xfce-common.ks
Normal file
88
live/9/stage/rocky-live-xfce-common.ks
Normal file
@ -0,0 +1,88 @@
|
||||
# xfce
|
||||
%packages
|
||||
|
||||
# these aren't an epel 8 thing for some reason.
|
||||
@xfce-desktop --nodefaults
|
||||
#@^xfce-desktop-environment
|
||||
#@xfce-apps
|
||||
#@xfce-extra-plugins
|
||||
#@xfce-media
|
||||
#@xfce-office
|
||||
|
||||
# Manual install...
|
||||
#geany
|
||||
gparted
|
||||
#mousepad
|
||||
#ristretto
|
||||
seahorse
|
||||
#transmission
|
||||
pcp-selinux
|
||||
lightdm
|
||||
#gdm
|
||||
-gdm
|
||||
-gnome-shell
|
||||
|
||||
# Some stuff might already be here, doesn't hurt to list it.
|
||||
firefox
|
||||
thunderbird
|
||||
firewall-config
|
||||
#pidgin
|
||||
rocky-backgrounds
|
||||
gparted
|
||||
#rhythmbox
|
||||
|
||||
# extras
|
||||
f35-backgrounds-xfce
|
||||
f35-backgrounds-extras-xfce
|
||||
|
||||
xfce4-about
|
||||
xfce4-taskmanager
|
||||
#xfce4-battery-plugin
|
||||
xfce4-datetime-plugin
|
||||
xfce4-netload-plugin
|
||||
#xfce4-places-plugin
|
||||
xfce4-screenshooter-plugin
|
||||
xfce4-smartbookmark-plugin
|
||||
xfce4-systemload-plugin
|
||||
xfce4-time-out-plugin
|
||||
xfce4-weather-plugin
|
||||
xfce4-whiskermenu-plugin
|
||||
#xfdashboard
|
||||
#xfdashboard-themes
|
||||
pavucontrol
|
||||
|
||||
# XFCE group defaults
|
||||
xfce4-appfinder
|
||||
xfce4-power-manager
|
||||
#xfce4-pulseaudio-plugin
|
||||
xfce4-screensaver
|
||||
xfce4-terminal
|
||||
network-manager-applet
|
||||
openssh-askpass
|
||||
thunar-archive-plugin
|
||||
thunar-volman
|
||||
tumbler
|
||||
xfce-polkit
|
||||
|
||||
wget
|
||||
xdg-user-dirs
|
||||
xdg-user-dirs-gtk
|
||||
|
||||
# save some space
|
||||
-autofs
|
||||
-acpid
|
||||
-gimp-help
|
||||
-desktop-backgrounds-basic
|
||||
-aspell-*
|
||||
-xfce4-sensors-plugin
|
||||
-xfce4-eyes-plugin
|
||||
|
||||
### MINIMIZATION
|
||||
-mpage
|
||||
-hplip
|
||||
-isdn4k-utils
|
||||
-xsane
|
||||
-xsane-gimp
|
||||
-sane-backends
|
||||
|
||||
%end
|
94
live/9/stage/rocky-live-xfce.ks
Normal file
94
live/9/stage/rocky-live-xfce.ks
Normal file
@ -0,0 +1,94 @@
|
||||
# rocky-live-kde.ks
|
||||
# BROKEN
|
||||
|
||||
%include rocky-live-base-spin.ks
|
||||
%include rocky-live-xfce-common.ks
|
||||
|
||||
part / --size 6144
|
||||
|
||||
%post
|
||||
# xfce configuration
|
||||
|
||||
# create /etc/sysconfig/desktop (needed for installation)
|
||||
|
||||
cat > /etc/sysconfig/desktop <<EOF
|
||||
PREFERRED=/usr/bin/startxfce4
|
||||
DISPLAYMANAGER=/usr/sbin/lightdm
|
||||
EOF
|
||||
|
||||
cat >> /etc/rc.d/init.d/livesys << EOF
|
||||
|
||||
mkdir -p /home/liveuser/.config/xfce4
|
||||
# ugly stuff, this should give us a default background for now
|
||||
#mkdir -p /usr/share/backgrounds/images
|
||||
#ln -s /usr/share/backgrounds/f32/default/f32.png \
|
||||
# /usr/share/backgrounds/images/default.png
|
||||
|
||||
cat > /home/liveuser/.config/xfce4/helpers.rc << FOE
|
||||
MailReader=sylpheed-claws
|
||||
FileManager=Thunar
|
||||
WebBrowser=firefox
|
||||
FOE
|
||||
|
||||
# disable screensaver locking (#674410)
|
||||
cat >> /home/liveuser/.xscreensaver << FOE
|
||||
mode: off
|
||||
lock: False
|
||||
dpmsEnabled: False
|
||||
FOE
|
||||
|
||||
# deactivate xfconf-migration (#683161)
|
||||
rm -f /etc/xdg/autostart/xfconf-migration-4.6.desktop || :
|
||||
|
||||
# deactivate xfce4-panel first-run dialog (#693569)
|
||||
mkdir -p /home/liveuser/.config/xfce4/xfconf/xfce-perchannel-xml
|
||||
cp /etc/xdg/xfce4/panel/default.xml /home/liveuser/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-panel.xml
|
||||
|
||||
# set up lightdm autologin
|
||||
sed -i 's/^#autologin-user=.*/autologin-user=liveuser/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#autologin-user-timeout=.*/autologin-user-timeout=0/' /etc/lightdm/lightdm.conf
|
||||
sed -i 's/^#show-language-selector=.*/show-language-selector=true/' /etc/lightdm/lightdm-gtk-greeter.conf
|
||||
|
||||
# set Xfce as default session, otherwise login will fail
|
||||
sed -i 's/^#user-session=.*/user-session=xfce/' /etc/lightdm/lightdm.conf
|
||||
|
||||
# debrand
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome.desktop
|
||||
#sed -i "s/RHEL/Rocky Linux/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/Red Hat Enterprise/Rocky/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/anaconda/gnome/fedora-welcome
|
||||
#sed -i "s/org.fedoraproject.AnacondaInstaller/fedora-logo-icon/g" /usr/share/applications/liveinst.desktop
|
||||
|
||||
# Show harddisk install on the desktop
|
||||
sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop
|
||||
mkdir /home/liveuser/Desktop
|
||||
cp /usr/share/applications/liveinst.desktop /home/liveuser/Desktop/
|
||||
|
||||
if [ -f /usr/share/anaconda/gnome/fedora-welcome.desktop ]; then
|
||||
mkdir -p ~liveuser/.config/autostart
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop /usr/share/applications/
|
||||
cp /usr/share/anaconda/gnome/fedora-welcome.desktop ~liveuser/.config/autostart/
|
||||
fi
|
||||
|
||||
# no updater applet in live environment
|
||||
rm -f /etc/xdg/autostart/org.mageia.dnfdragora-updater.desktop
|
||||
|
||||
# and mark it as executable (new Xfce security feature)
|
||||
chmod +x /home/liveuser/Desktop/liveinst.desktop
|
||||
|
||||
# move to anaconda - probably not required for XFCE.
|
||||
mv /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop
|
||||
|
||||
# this goes at the end after all other changes.
|
||||
chown -R liveuser:liveuser /home/liveuser
|
||||
restorecon -R /home/liveuser
|
||||
|
||||
EOF
|
||||
|
||||
# this doesn't come up automatically. not sure why.
|
||||
systemctl enable --force lightdm.service
|
||||
|
||||
# CRB needs to be enabled for EPEL to function.
|
||||
dnf config-manager --set-enabled crb
|
||||
|
||||
%end
|
14
live/9/stage/rocky-repo-epel.ks
Normal file
14
live/9/stage/rocky-repo-epel.ks
Normal file
@ -0,0 +1,14 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Deps repo, there are some anaconda packages that are *not* available by default
|
||||
repo --name=BaseOS --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/BaseOS/$basearch/os/
|
||||
repo --name=AppStream --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/AppStream/$basearch/os/
|
||||
repo --name=CRB --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/CRB/$basearch/os/
|
||||
repo --name=extras --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/extras/$basearch/os
|
||||
|
||||
# EPEL (required for KDE and XFCE)
|
||||
repo --name=epel --cost=200 --baseurl=https://dl.fedoraproject.org/pub/epel/9/Everything/$basearch/
|
||||
#repo --name=epel-modular --cost=200 --baseurl=https://dl.fedoraproject.org/pub/epel/8/Modular/$basearch/
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=http://dl.rockylinux.org/stg/rocky/9/BaseOS/$basearch/os/
|
10
live/9/stage/rocky-repo.ks
Normal file
10
live/9/stage/rocky-repo.ks
Normal file
@ -0,0 +1,10 @@
|
||||
# These should change based on the major/minor release
|
||||
|
||||
# Base repos
|
||||
repo --name=BaseOS --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/BaseOS/$basearch/os/
|
||||
repo --name=AppStream --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/AppStream/$basearch/os/
|
||||
repo --name=CRB --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/CRB/$basearch/os/
|
||||
repo --name=extras --cost=200 --baseurl=http://dl.rockylinux.org/stg/rocky/9/extras/$basearch/os
|
||||
|
||||
# URL to the base os repo
|
||||
url --url=http://dl.rockylinux.org/stg/rocky/9/BaseOS/$basearch/os/
|
27
live/9/stage/rocky-workstation-common-lite.ks
Normal file
27
live/9/stage/rocky-workstation-common-lite.ks
Normal file
@ -0,0 +1,27 @@
|
||||
%packages
|
||||
|
||||
# Exclude unwanted groups that rocky-live-base.ks pulls in
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
|
||||
# Make sure to sync any additions / removals done here with
|
||||
# workstation-product-environment in comps
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@networkmanager-submodules
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-writer
|
||||
|
||||
# Exclude unwanted packages from @anaconda-tools group
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
32
live/9/stage/rocky-workstation-common.ks
Normal file
32
live/9/stage/rocky-workstation-common.ks
Normal file
@ -0,0 +1,32 @@
|
||||
%packages
|
||||
|
||||
# Exclude unwanted groups that rocky-live-base.ks pulls in
|
||||
-@dial-up
|
||||
-@input-methods
|
||||
-@standard
|
||||
|
||||
# Make sure to sync any additions / removals done here with
|
||||
# workstation-product-environment in comps
|
||||
@base-x
|
||||
@core
|
||||
@fonts
|
||||
@gnome-desktop
|
||||
@guest-desktop-agents
|
||||
@hardware-support
|
||||
@internet-browser
|
||||
@multimedia
|
||||
@networkmanager-submodules
|
||||
@workstation-product
|
||||
|
||||
# Libreoffice
|
||||
libreoffice-calc
|
||||
libreoffice-emailmerge
|
||||
libreoffice-graphicfilter
|
||||
libreoffice-impress
|
||||
libreoffice-writer
|
||||
|
||||
# Exclude unwanted packages from @anaconda-tools group
|
||||
-gfs2-utils
|
||||
-reiserfs-utils
|
||||
|
||||
%end
|
Loading…
Reference in New Issue
Block a user