mirror of
https://github.com/edgelesssys/constellation.git
synced 2024-12-21 21:55:27 -05:00
44b1a92d6b
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> Co-authored-by: Nirusu <Nirusu@users.noreply.github.com>
28 lines
1.2 KiB
Docker
28 lines
1.2 KiB
Docker
FROM fedora:36@sha256:455fec9590de794fbc21f61dbc7e90bf9918b58492d2a03fa269c09db47b43f6 AS deploy
|
|
RUN dnf -y update && \
|
|
dnf -y install dnf-plugins-core \
|
|
libvirt-daemon-config-network \
|
|
libvirt-daemon-kvm \
|
|
qemu-kvm \
|
|
swtpm \
|
|
swtpm-tools \
|
|
libvirt-client && \
|
|
dnf clean all
|
|
|
|
# Prevent cgroup issues on Fedora and configure libvirt
|
|
RUN echo "cgroup_controllers = []" >> /etc/libvirt/qemu.conf && \
|
|
echo "listen_tls = 0" >> /etc/libvirt/libvirtd.conf && \
|
|
echo "listen_tcp = 1" >> /etc/libvirt/libvirtd.conf && \
|
|
echo "tcp_port = \"16599\"" >> /etc/libvirt/libvirtd.conf && \
|
|
echo "listen_addr = \"localhost\"" >> /etc/libvirt/libvirtd.conf && \
|
|
echo "auth_tcp = \"none\"" >> /etc/libvirt/libvirtd.conf
|
|
|
|
# Copy nvram templates
|
|
COPY ./cli/internal/libvirt/nvram/constellation_vars.testing.fd /usr/share/OVMF/constellation_vars.testing.fd
|
|
# TODO: Uncomment this line when we have a production template
|
|
# COPY ./cli/internal/libvirt/nvram/constellation_vars.production.fd /usr/share/OVMF/constellation_vars.production.fd
|
|
|
|
COPY --chmod=755 ./cli/internal/libvirt/start.sh /start.sh
|
|
|
|
ENTRYPOINT ["/start.sh"]
|