+ lang en_US.UTF-8

+ keyboard us

+ timezone US/Eastern

+ auth --useshadow --passalgo=sha512

+ selinux --enforcing

+ firewall --enabled --service=mdns

+ xconfig --startxonboot

+ zerombr

+ clearpart --all

+ part / --size 10240 --fstype ext4

+ services --enabled=NetworkManager,ModemManager --disabled=sshd

+ network --bootproto=dhcp --device=link --activate

+ rootpw --lock --iscrypted locked

+ shutdown

+ 

+ url --url http://linuxsoft.cern.ch/centos/8/BaseOS/x86_64/kickstart/

+ 

+ %packages

+ @base

+ @core

+ @dial-up

+ @fonts

+ @gnome-desktop

+ @guest-agents

+ @guest-desktop-agents

+ @input-methods

+ @internet-browser

+ @java-platform

+ @multimedia

+ @network-file-system-client

+ @print-client

+ @internet-applications

+ @office-suite

+ @remote-desktop-clients

+ @gnome-apps

+ -libvirt

+ -gnome-boxes

+ dracut-live

+ grubby

+ 

+ #Live install tools

+ anaconda

+ firefox

+ patch

+ 

+ # For UEFI/Secureboot support

+ grub2

+ grub2-efi

+ grub2-efi-x64-cdboot

+ efibootmgr

+ shim

+ 

+ # required for lorax-lmc to build iso correctly

+ syslinux

+ memtest86+

+ 

+ %end

+ 

+ %post

+ # FIXME: it'd be better to get this installed from a package

+ cat > /etc/rc.d/init.d/livesys << EOF

+ #!/bin/bash

+ #

+ # live: Init script for live image

+ #

+ # chkconfig: 345 00 99

+ # description: Init script for live image.

+ ### BEGIN INIT INFO

+ # X-Start-Before: display-manager

+ ### END INIT INFO

+ 

+ . /etc/init.d/functions

+ 

+ if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ]; then

+     exit 0

+ fi

+ 

+ if [ -e /.liveimg-configured ] ; then

+     configdone=1

+ fi

+ 

+ exists() {

+     which \$1 >/dev/null 2>&1 || return

+     \$*

+ }

+ 

+ # Make sure we don't mangle the hardware clock on shutdown

+ ln -sf /dev/null /etc/systemd/system/hwclock-save.service

+ 

+ livedir="LiveOS"

+ for arg in \`cat /proc/cmdline\` ; do

+   if [ "\${arg##rd.live.dir=}" != "\${arg}" ]; then

+     livedir=\${arg##rd.live.dir=}

+     return

+   fi

+   if [ "\${arg##live_dir=}" != "\${arg}" ]; then

+     livedir=\${arg##live_dir=}

+     return

+   fi

+ done

+ 

+ # enable swaps unless requested otherwise

+ swaps=\`blkid -t TYPE=swap -o device\`

+ if ! strstr "\`cat /proc/cmdline\`" noswap && [ -n "\$swaps" ] ; then

+   for s in \$swaps ; do

+     action "Enabling swap partition \$s" swapon \$s

+   done

+ fi

+ if ! strstr "\`cat /proc/cmdline\`" noswap && [ -f /run/initramfs/live/\${livedir}/swap.img ] ; then

+   action "Enabling swap file" swapon /run/initramfs/live/\${livedir}/swap.img

+ fi

+ 

+ mountPersistentHome() {

+   # support label/uuid

+   if [ "\${homedev##LABEL=}" != "\${homedev}" -o "\${homedev##UUID=}" != "\${homedev}" ]; then

+     homedev=\`/sbin/blkid -o device -t "\$homedev"\`

+   fi

+ 

+   # if we're given a file rather than a blockdev, loopback it

+   if [ "\${homedev##mtd}" != "\${homedev}" ]; then

+     # mtd devs don't have a block device but get magic-mounted with -t jffs2

+     mountopts="-t jffs2"

+   elif [ ! -b "\$homedev" ]; then

+     loopdev=\`losetup -f\`

+     if [ "\${homedev##/run/initramfs/live}" != "\${homedev}" ]; then

+       action "Remounting live store r/w" mount -o remount,rw /run/initramfs/live

+     fi

+     losetup \$loopdev \$homedev

+     homedev=\$loopdev

+   fi

+ 

+   # if it's encrypted, we need to unlock it

+   if [ "\$(/sbin/blkid -s TYPE -o value \$homedev 2>/dev/null)" = "crypto_LUKS" ]; then

+     echo

+     echo "Setting up encrypted /home device"

+     plymouth ask-for-password --command="cryptsetup luksOpen \$homedev EncHome"

+     homedev=/dev/mapper/EncHome

+   fi

+ 

+   # and finally do the mount

+   mount \$mountopts \$homedev /home

+   # if we have /home under what's passed for persistent home, then

+   # we should make that the real /home.  useful for mtd device on olpc

+   if [ -d /home/home ]; then mount --bind /home/home /home ; fi

+   [ -x /sbin/restorecon ] && /sbin/restorecon /home

+   if [ -d /home/liveuser ]; then USERADDARGS="-M" ; fi

+ }

+ 

+ findPersistentHome() {

+   for arg in \`cat /proc/cmdline\` ; do

+     if [ "\${arg##persistenthome=}" != "\${arg}" ]; then

+       homedev=\${arg##persistenthome=}

+       return

+     fi

+   done

+ }

+ 

+ if strstr "\`cat /proc/cmdline\`" persistenthome= ; then

+   findPersistentHome

+ elif [ -e /run/initramfs/live/\${livedir}/home.img ]; then

+   homedev=/run/initramfs/live/\${livedir}/home.img

+ fi

+ 

+ # if we have a persistent /home, then we want to go ahead and mount it

+ if ! strstr "\`cat /proc/cmdline\`" nopersistenthome && [ -n "\$homedev" ] ; then

+   action "Mounting persistent /home" mountPersistentHome

+ fi

+ 

+ # make it so that we don't do writing to the overlay for things which

+ # are just tmpdirs/caches

+ mount -t tmpfs -o mode=0755 varcacheyum /var/cache/yum

+ mount -t tmpfs vartmp /var/tmp

+ [ -x /sbin/restorecon ] && /sbin/restorecon /var/cache/yum /var/tmp >/dev/null 2>&1

+ 

+ if [ -n "\$configdone" ]; then

+   exit 0

+ fi

+ 

+ # add fedora user with no passwd

+ action "Adding live user" useradd \$USERADDARGS -c "Live System User" liveuser

+ passwd -d liveuser > /dev/null

+ usermod -aG wheel liveuser > /dev/null

+ 

+ # Remove root password lock

+ passwd -d root > /dev/null

+ 

+ # turn off firstboot for livecd boots

+ systemctl --no-reload disable firstboot-text.service 2> /dev/null || :

+ systemctl --no-reload disable firstboot-graphical.service 2> /dev/null || :

+ systemctl stop firstboot-text.service 2> /dev/null || :

+ systemctl stop firstboot-graphical.service 2> /dev/null || :

+ 

+ # don't use prelink on a running live image

+ sed -i 's/PRELINKING=yes/PRELINKING=no/' /etc/sysconfig/prelink &>/dev/null || :

+ 

+ # turn off mdmonitor by default

+ systemctl --no-reload disable mdmonitor.service 2> /dev/null || :

+ systemctl --no-reload disable mdmonitor-takeover.service 2> /dev/null || :

+ systemctl stop mdmonitor.service 2> /dev/null || :

+ systemctl stop mdmonitor-takeover.service 2> /dev/null || :

+ 

+ # don't enable the gnome-settings-daemon packagekit plugin

+ gsettings set org.gnome.settings-daemon.plugins.updates active 'false' || :

+ 

+ # don't start cron/at as they tend to spawn things which are

+ # disk intensive that are painful on a live image

+ systemctl --no-reload disable crond.service 2> /dev/null || :

+ systemctl --no-reload disable atd.service 2> /dev/null || :

+ systemctl stop crond.service 2> /dev/null || :

+ systemctl stop atd.service 2> /dev/null || :

+ 

+ # Mark things as configured

+ touch /.liveimg-configured

+ 

+ # add static hostname to work around xauth bug

+ # https://bugzilla.redhat.com/show_bug.cgi?id=679486

+ echo "localhost" > /etc/hostname

+ 

+ # Fixing the lang install issue when other lang than English is selected . See http://bugs.centos.org/view.php?id=7217

+ #/usr/bin/cp /usr/lib/python2.7/site-packages/blivet/size.py /usr/lib/python2.7/site-packages/blivet/size.py.orig

+ #/usr/bin/sed -i "s#return self.humanReadable()#return self.humanReadable().encode('utf-8')#g" /usr/lib/python2.7/site-packages/blivet/size.py

+ 

+ # Fixing *huge* icons size in gnoe 3.22 due to "design" decision

+ # https://bugs.centos.org/view.php?id=13768

+ cat > /etc/dconf/db/distro.d/99-gnome-icon-size << FOE

+ # To set gnome icon size to small by default

+ [org/gnome/nautilus/icon-view]

+ default-zoom-level='small'

+ FOE

+ 

+ cat > /etc/dconf/db/distro.d/99-disable-gnome-software-download << FOE

+ # Don't allow gnome software to eat cpu on live session

+ [org/gnome/software]

+ download-updates=false

+ FOE

+ 

+ 

+ /usr/bin/dconf update

+ 

+ # Enforcing tracker indexing service to *not* start on Live Media as it uses all CPU and so conflict with proper operation including liveinst

+ for file in /etc/xdg/autostart/tracker*.desktop ; do sed -i s/X-GNOME-Autostart-enabled=true/X-GNOME-Autostart-enabled=false/g $file ; done

+ 

+ 

+ EOF

+ 

+ 

+ 

+ # bah, hal starts way too late

+ cat > /etc/rc.d/init.d/livesys-late << EOF

+ #!/bin/bash

+ #

+ # live: Late init script for live image

+ #

+ # chkconfig: 345 99 01

+ # description: Late init script for live image.

+ 

+ . /etc/init.d/functions

+ 

+ if ! strstr "\`cat /proc/cmdline\`" rd.live.image || [ "\$1" != "start" ] || [ -e /.liveimg-late-configured ] ; then

+     exit 0

+ fi

+ 

+ exists() {

+     which \$1 >/dev/null 2>&1 || return

+     \$*

+ }

+ 

+ touch /.liveimg-late-configured

+ 

+ # read some variables out of /proc/cmdline

+ for o in \`cat /proc/cmdline\` ; do

+     case \$o in

+     ks=*)

+         ks="--kickstart=\${o#ks=}"

+         ;;

+     xdriver=*)

+         xdriver="\${o#xdriver=}"

+         ;;

+     esac

+ done

+ 

+ # if liveinst or textinst is given, start anaconda

+ if strstr "\`cat /proc/cmdline\`" liveinst ; then

+    plymouth --quit

+    /usr/sbin/liveinst \$ks

+ fi

+ if strstr "\`cat /proc/cmdline\`" textinst ; then

+    plymouth --quit

+    /usr/sbin/liveinst --text \$ks

+ fi

+ 

+ # configure X, allowing user to override xdriver

+ if [ -n "\$xdriver" ]; then

+    cat > /etc/X11/xorg.conf.d/00-xdriver.conf <<FOE

+ Section "Device"

+ 	Identifier	"Videocard0"

+ 	Driver	"\$xdriver"

+ EndSection

+ FOE

+ fi

+ 

+ EOF

+ 

+ chmod 755 /etc/rc.d/init.d/livesys

+ /sbin/restorecon /etc/rc.d/init.d/livesys

+ /sbin/chkconfig --add livesys

+ 

+ chmod 755 /etc/rc.d/init.d/livesys-late

+ /sbin/restorecon /etc/rc.d/init.d/livesys-late

+ /sbin/chkconfig --add livesys-late

+ 

+ # Patching liveinst https://bugzilla.redhat.com/show_bug.cgi?id=1622248

+ sed -i 's#^ANACONDA=.*#ANACONDA="${LIVECMD:=anaconda --liveinst --method=livecd:${LIVE_BLOCK}}"#' /usr/sbin/liveinst

+ 

+ # Patching pyanaconda/payload/source/sources.py https://bugzilla.redhat.com/show_bug.cgi?id=1622248

+ cat >> /tmp/sources.py.patch << 'EOF'

+ 

+ --- /usr/lib64/python3.6/site-packages/pyanaconda/payload/source/sources.py.orig        2018-11-08 10:54:59.000000000 +0000

+ +++ /usr/lib64/python3.6/site-packages/pyanaconda/payload/source/sources.py     2019-10-30 07:55:30.506944400 +0000

+ @@ -22,7 +22,7 @@

+ 

+  class SourceType(Enum):

+      CDROM = "cdrom"

+ -    HARDDRIVE = "Harddrive"

+ +    HARDDRIVE = "harddrive"

+      NFS = "nfs"

+      HTTP = "http"

+      HTTPS = "https"

+ @@ -280,7 +280,7 @@

+      """Source object for live image sources."""

+ 

+      def __init__(self, partition):

+ -        super().__init__(SourceType.LIVECD, "livecd")

+ +        super().__init__(SourceType.LIVECD, "harddrive")

+ 

+          self._partition = partition

+ 

+ EOF

+ patch -p0 /usr/lib64/python3.6/site-packages/pyanaconda/payload/source/sources.py /tmp/sources.py.patch

+ 

+ # enable tmpfs for /tmp

+ systemctl enable tmp.mount

+ 

+ # work around for poor key import UI in PackageKit

+ rm -f /var/lib/rpm/__db*

+ releasever=$(rpm -q --qf '%{version}\n' --whatprovides system-release)

+ basearch=$(uname -i)

+ rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-fedora-$releasever-$basearch

+ echo "Packages within this LiveCD"

+ rpm -qa

+ # Note that running rpm recreates the rpm db files which aren't needed or wanted

+ rm -f /var/lib/rpm/__db*

+ 

+ # go ahead and pre-make the man -k cache (#455968)

+ /usr/bin/mandb

+ 

+ # save a little bit of space at least...

+ rm -f /boot/initramfs*

+ # make sure there aren't core files lying around

+ rm -f /core*

+ 

+ # convince readahead not to collect

+ # FIXME: for systemd

+ 

+ cat >> /etc/rc.d/init.d/livesys << EOF

+ 

+ 

+ # disable updates plugin

+ cat >> /usr/share/glib-2.0/schemas/org.gnome.settings-daemon.plugins.updates.gschema.override << FOE

+ [org.gnome.settings-daemon.plugins.updates]

+ active=false

+ FOE

+ 

+ # Show the system-config-keyboard tool on the desktop

+ mkdir /home/liveuser/Desktop -p >/dev/null

+ cat /usr/share/applications/system-config-keyboard.desktop | sed '/NotShowIn/d' |sed 's/Terminal=false/Terminal=true/' > /home/liveuser/Desktop/system-config-keyboard.desktop

+ cat /usr/share/applications/liveinst.desktop | sed '/NoDisplay/d' > /home/liveuser/Desktop/liveinst.desktop 

+ chmod +x /home/liveuser/Desktop/*.desktop

+ chown -R liveuser:liveuser /home/liveuser

+ 

+ # Liveuser face

+ if [ -e /usr/share/icons/hicolor/96x96/apps/fedora-logo-icon.png ] ; then

+     cp /usr/share/icons/hicolor/96x96/apps/fedora-logo-icon.png /home/liveuser/.face

+     chown liveuser:liveuser /home/liveuser/.face

+ fi

+ 

+ # make the installer show up

+ if [ -f /usr/share/applications/liveinst.desktop ]; then

+   # Show harddisk install in shell dash

+   sed -i -e 's/NoDisplay=true/NoDisplay=false/' /usr/share/applications/liveinst.desktop 

+   # need to move it to anaconda.desktop to make shell happy

+   #cp /usr/share/applications/liveinst.desktop /usr/share/applications/anaconda.desktop

+ fi

+   cat >> /usr/share/glib-2.0/schemas/org.gnome.shell.gschema.override << FOE

+ [org.gnome.shell]

+ favorite-apps=['liveinst.desktop','firefox.desktop', 'evolution.desktop', 'empathy.desktop', 'rhythmbox.desktop', 'shotwell.desktop', 'libreoffice-writer.desktop', 'nautilus.desktop', 'gnome-documents.desktop', 'anaconda.desktop']

+ FOE

+ 

+ 

+ # set up auto-login

+ cat > /etc/gdm/custom.conf << FOE

+ [daemon]

+ AutomaticLoginEnable=True

+ AutomaticLogin=liveuser

+ FOE

+ 

+ # Turn off PackageKit-command-not-found while uninstalled

+ if [ -f /etc/PackageKit/CommandNotFound.conf ]; then

+   sed -i -e 's/^SoftwareSourceSearch=true/SoftwareSourceSearch=false/' /etc/PackageKit/CommandNotFound.conf

+ fi

+ 

+ # make sure to set the right permissions and selinux contexts

+ chown -R liveuser:liveuser /home/liveuser/

+ restorecon -R /home/liveuser/

+ 

+ # Fixing default locale to us

+ localectl set-keymap us

+ localectl set-x11-keymap us

+ EOF

+ 

+ # rebuild schema cache with any overrides we installed

+ glib-compile-schemas /usr/share/glib-2.0/schemas

+ 

+ 

+ %end