Add additional configuration

Tmpfiles.d entry to create default subuid/subid and podman configs, and systemd units for dbus user session.
jepio · Apr 27, 2022 · 8f0c2f0 · 8f0c2f0
1 parent ad9488e
commit 8f0c2f0
Show file tree

Hide file tree

Showing 7 changed files with 31 additions and 4 deletions.
diff --git a/Dockerfile b/Dockerfile
@@ -7,16 +7,22 @@ CMD ["/bin/bash"]
 RUN emerge-gitclone
 RUN echo 'FEATURES="-network-sandbox -pid-sandbox -ipc-sandbox -usersandbox -sandbox"' >>/etc/portage/make.conf
 COPY repos.conf /etc/portage/repos.conf/podman.conf
-COPY . /var/lib/portage/podman-overlay/
+COPY overlay /var/lib/portage/podman-overlay/
 
 FROM base AS builder
 RUN emerge -j4 --getbinpkg --autounmask-write --autounmask-continue --onlydeps podman
-RUN emerge -j4 --getbinpkg --buildpkgonly podman
-RUN emerge --root=/work --nodeps --usepkgonly podman
+RUN emerge -j4 --getbinpkg --buildpkgonly podman squashfs-tools
+
+FROM base AS staging
+COPY --from=builder /var/lib/portage/pkgs /var/lib/portage/pkgs
+RUN emerge --getbinpkg --usepkg squashfs-tools
+RUN pkgs=$(emerge 2>/dev/null --usepkgonly --pretend podman | awk -F'] ' '/binary/{ print $ 2 }' | awk '{ print "="$1 }'); emerge --usepkgonly --root=/work --nodeps $pkgs
 RUN mkdir -p /work/usr/lib/extension-release.d && echo -e 'ID=flatcar\nSYSEXT_LEVEL=1.0' >/work/usr/lib/extension-release.d/extension-release.podman
 RUN mkdir -p /work/usr/src
+RUN mv /work/etc /work/usr/etc
+COPY usr /work/usr
 RUN mkdir -p /output && mksquashfs /work /output/podman.raw -noappend
 
 FROM busybox
-COPY --from=builder /output /output
+COPY --from=staging /output /output
 CMD ["cp", "/output/podman.raw", "/out"]
diff --git a/usr/etc/subgid b/usr/etc/subgid
@@ -0,0 +1 @@
+core:100000:65536
diff --git a/usr/etc/subuid b/usr/etc/subuid
@@ -0,0 +1 @@
+core:100000:65536
diff --git a/usr/lib/systemd/user/dbus.service b/usr/lib/systemd/user/dbus.service
@@ -0,0 +1,8 @@
+[Unit]
+Description=D-Bus User Message Bus
+Documentation=man:dbus-daemon(1)
+Requires=dbus.socket
+
+[Service]
+ExecStart=/usr/bin/dbus-daemon --session --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
+ExecReload=/usr/bin/dbus-send --print-reply --session --type=method_call --dest=org.freedesktop.DBus / org.freedesktop.DBus.ReloadConfig
diff --git a/usr/lib/systemd/user/dbus.socket b/usr/lib/systemd/user/dbus.socket
@@ -0,0 +1,6 @@
+[Unit]
+Description=D-Bus User Message Bus Socket
+
+[Socket]
+ListenStream=%t/bus
+ExecStartPost=-/bin/systemctl --user set-environment DBUS_SESSION_BUS_ADDRESS=unix:path=%t/bus
diff --git a/usr/lib/systemd/user/sockets.target.wants/dbus.socket b/usr/lib/systemd/user/sockets.target.wants/dbus.socket
@@ -0,0 +1 @@
+../dbus.socket
diff --git a/usr/lib/tmpfiles.d/podman.conf b/usr/lib/tmpfiles.d/podman.conf
@@ -0,0 +1,4 @@
+C /etc/containers/registries.conf - - - - /usr/etc/containers/registries.conf.example
+C /etc/containers/policy.json - - - - /usr/etc/containers/policy.json.example
+C /etc/subuid - - - - /usr/etc/subuid
+C /etc/subgid - - - - /usr/etc/subgid