docker-qemu/Dockerfile.template

FROM debian:bullseye-slim

RUN set -eux; \
# add backports for (potentially) newer QEMU firmware packages
	suite="$(awk '$1 == "deb" { print $3; exit }' /etc/apt/sources.list)"; \
	echo "deb http://deb.debian.org/debian $suite-backports main" > /etc/apt/sources.list.d/backports.list; \
# and add APT pinning to ensure we don't accidentally get QEMU from Debian
	{ \
		echo 'Package: src:edk2'; \
		echo 'Pin: release a=*-backports'; \
		echo 'Pin-Priority: 600'; \
		echo; \
		echo 'Package: src:qemu'; \
		echo 'Pin: version *'; \
		echo 'Pin-Priority: -10'; \
	} > /etc/apt/preferences.d/qemu.pref; \
	apt-get update; \
{{ def firmware_packages: {
	amd64: "ovmf",
	arm64: "qemu-efi-aarch64",
	"armel | armhf": "qemu-efi-arm",
	i386: "ovmf-ia32",
# TODO add u-boot-qemu ?  https://packages.debian.org/bullseye/u-boot-qemu (not sure which arches to add this to since it contains all of them...  maybe every relevant one?)
} -}}
{{ if env.variant == "native" then ( -}}
	arch="$(dpkg --print-architecture)"; \
	case "$arch" in \
{{
	[
		firmware_packages
		| to_entries[]
		| (
-}}
		{{ .key }}) apt-get install -y --no-install-recommends {{ .value }} ;; \
{{
		)
	] | add
-}}
		*) echo >&2 "warning: architecture '$arch' unknown 😅 (is there a 'QEMU firmware' package that should be installed here? likely candidates: https://packages.debian.org/source/$suite/edk2)" ;; \
	esac; \
{{ ) else ( -}}
	apt-get install -y --no-install-recommends \
{{
	[
		[ firmware_packages[] ]
		| sort[]
		| (
-}}
		{{ . }} \
{{
		)
	] | add
-}}
	; \
{{ ) end -}}
	rm -rf /var/lib/apt/lists/*

COPY *.patch /qemu-patches/

# https://wiki.qemu.org/SecurityProcess
ENV QEMU_KEYS \
# Michael Roth
		CEACC9E15534EBABB82D3FA03353C9CEF108B584
# https://wiki.qemu.org/Planning/ReleaseProcess#Sign_the_resulting_tarball_with_GPG: (they get signed by whoever is making the release)

# https://www.qemu.org/download/#source
# https://download.qemu.org/?C=M;O=D
ENV QEMU_VERSION {{ .version }}
ENV QEMU_URL {{ .url }}

RUN set -eux; \
	\
	savedAptMark="$(apt-mark showmanual)"; \
	\
	apt-get update; \
	apt-get install -y --no-install-recommends \
		ca-certificates \
		gnupg dirmngr \
		wget \
		xz-utils \
		\
		patch \
		\
		bzip2 \
		gcc \
		gnutls-dev \
		libaio-dev \
		libbz2-dev \
		libc-dev \
		libcap-dev \
		libcap-ng-dev \
		libcurl4-gnutls-dev \
		libglib2.0-dev \
		libiscsi-dev \
		libjpeg-dev \
		libncursesw5-dev \
		libnfs-dev \
		libnuma-dev \
		libpixman-1-dev \
		libpng-dev \
		librbd-dev \
		libseccomp-dev \
		libssh-dev \
		libusb-1.0-0-dev \
		libusbredirparser-dev \
		libxen-dev \
		make \
		pkg-config \
		python3 \
		xfslibs-dev \
		zlib1g-dev \
{{ if ["5.0", "5.1"] | index(env.version) then "" else ( -}}
# https://wiki.qemu.org/ChangeLog/5.2#Build_Information
		ninja-build \
		python3-setuptools \
{{ ) end -}}
{{ if ["5.0", "5.1", "5.2"] | index(env.version) then "" else ( -}}
# https://www.qemu.org/2021/08/22/fuse-blkexport/
		libfuse3-dev \
{{ ) end -}}
	; \
	rm -rf /var/lib/apt/lists/*; \
	\
	tarball="$(basename "$QEMU_URL")"; \
	wget -O "$tarball.sig" "$QEMU_URL.sig"; \
	wget -O "$tarball" "$QEMU_URL" --progress=dot:giga; \
	\
	export GNUPGHOME="$(mktemp -d)"; \
	for key in $QEMU_KEYS; do \
		gpg --batch --keyserver keyserver.ubuntu.com --recv-keys "$key"; \
	done; \
	gpg --batch --verify "$tarball.sig" "$tarball"; \
	gpgconf --kill all; \
	rm -rf "$GNUPGHOME"; \
	\
	mkdir /usr/src/qemu; \
	tar -xf "$tarball" -C /usr/src/qemu --strip-components=1; \
	rm "$tarball" "$tarball.sig"; \
	\
	cd /usr/src/qemu; \
	\
	for p in /qemu-patches/*.patch; do \
		patch --strip 1 --input "$p"; \
	done; \
	rm -rf /qemu-patches; \
{{ if env.variant == "native" then ( -}}
	\
	arch="$(dpkg --print-architecture)"; \
	case "$arch" in \
		amd64) targetList='x86_64-softmmu' ;; \
		arm64) targetList='aarch64-softmmu' ;; \
		armel | armhf) targetList='arm-softmmu' ;; \
		i386) targetList='i386-softmmu' ;; \
		mips64el) targetList='mips64el-softmmu' ;; \
		ppc64el) targetList='ppc64-softmmu' ;; \
		s390x) targetList='s390x-softmmu' ;; \
		*) echo >&2 "error: architecture '$arch' unimplemented 😅"; exit 1 ;; \
	esac; \
{{ ) else "" end -}}
	\
	./configure --help; \
	./configure \
# let's add a link to our source code in the output of "--version" in case our users end up filing bugs against the QEMU project O:)
		--with-pkgversion='https://github.com/tianon/docker-qemu' \
{{ if env.variant == "native" then ( -}}
		--target-list="$targetList" \
{{ ) else ( -}}
		--target-list=' \
# system targets
# (https://sources.debian.org/src/qemu/buster/debian/rules/#L59-L63, slimmed)
			i386-softmmu x86_64-softmmu aarch64-softmmu arm-softmmu m68k-softmmu \
			mips64-softmmu mips64el-softmmu ppc64-softmmu riscv64-softmmu \
			sparc64-softmmu s390x-softmmu \
		' \
{{ ) end -}}
# let's point "firmware path" to Debian's value so we get access to "OVMF.fd" and friends more easily
		--firmwarepath=/usr/share/qemu:/usr/share/seabios:/usr/lib/ipxe/qemu \
# https://salsa.debian.org/qemu-team/qemu/-/blob/058ab4ec8623766b50055c8c56d0d5448d52fb0a/debian/rules#L38
		--disable-docs \
		--disable-gtk --disable-vte \
		--disable-sdl \
		--enable-attr \
		--enable-bzip2 \
		--enable-cap-ng \
		--enable-curl \
		--enable-curses \
		--enable-fdt \
		--enable-gnutls \
		--enable-kvm \
		--enable-libiscsi \
		--enable-libnfs \
		--enable-libssh \
		--enable-libusb \
		--enable-linux-aio \
		--enable-modules \
		--enable-numa \
		--enable-rbd \
		--enable-seccomp \
		--enable-tools \
		--enable-usb-redir \
		--enable-vhost-net \
		--enable-vhost-user \
		--enable-vhost-vsock \
		--enable-virtfs \
		--enable-vnc \
		--enable-vnc-jpeg \
		--enable-vnc-png \
		--enable-xen \
		--enable-xfsctl \
# rbd support is enabled, but "librbd1" is not included since it adds ~60MB and is version-sensitive (https://github.com/tianon/docker-qemu/pull/11#issuecomment-689816553)
#		--enable-vde \
{{ if ["5.0", "5.1", "5.2"] | index(env.version) then "" else ( -}}
# https://www.qemu.org/2021/08/22/fuse-blkexport/
		--enable-fuse \
{{ ) end -}}
	; \
	make -j "$(nproc)"; \
	make install; \
	\
	cd /; \
	rm -rf /usr/src/qemu; \
	\
	apt-mark auto '.*' > /dev/null; \
	[ -z "$savedAptMark" ] || apt-mark manual $savedAptMark > /dev/null; \
	find /usr/local \
		-type f \
		\( -executable -o -name '*.so' \) \
# rbd support is enabled, but "librbd1" is not included since it adds ~60MB and is version-sensitive (https://github.com/tianon/docker-qemu/pull/11#issuecomment-689816553)
		-not -name 'block-rbd.so' \
		-exec ldd '{}' ';' \
		| awk '/=>/ { print $(NF-1) }' \
		| sort -u \
		| xargs -r dpkg-query --search \
		| cut -d: -f1 \
		| sort -u \
		| xargs -r apt-mark manual \
	; \
	apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \
	\
# basic smoke test
	qemu-img --version

STOPSIGNAL SIGHUP

EXPOSE 22
EXPOSE 5900

COPY start-qemu /usr/local/bin/
CMD ["start-qemu"]
Update to Debian Bullseye 2021-08-23 21:29:57 +00:00			`FROM debian:bullseye-slim`
QEMU! 2014-09-20 07:00:11 +00:00
Add "qemu-efi-aarch64" and "qemu-efi-arm" firmware packages and set "firmwarepath" matching Debian's 2021-03-19 15:38:04 +00:00			`RUN set -eux; \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`# add backports for (potentially) newer QEMU firmware packages`
Add "qemu-efi-aarch64" and "qemu-efi-arm" firmware packages and set "firmwarepath" matching Debian's 2021-03-19 15:38:04 +00:00			`suite="$(awk '$1 == "deb" { print $3; exit }' /etc/apt/sources.list)"; \`
			`echo "deb http://deb.debian.org/debian $suite-backports main" > /etc/apt/sources.list.d/backports.list; \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`# and add APT pinning to ensure we don't accidentally get QEMU from Debian`
			`{ \`
Update to Debian Bullseye 2021-08-23 21:29:57 +00:00			`echo 'Package: src:edk2'; \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`echo 'Pin: release a=*-backports'; \`
			`echo 'Pin-Priority: 600'; \`
			`echo; \`
Update to Debian Bullseye 2021-08-23 21:29:57 +00:00			`echo 'Package: src:qemu'; \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`echo 'Pin: version *'; \`
			`echo 'Pin-Priority: -10'; \`
			`} > /etc/apt/preferences.d/qemu.pref; \`
Add "qemu-efi-aarch64" and "qemu-efi-arm" firmware packages and set "firmwarepath" matching Debian's 2021-03-19 15:38:04 +00:00			`apt-get update; \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`{{ def firmware_packages: {`
			`amd64: "ovmf",`
			`arm64: "qemu-efi-aarch64",`
			`"armel \| armhf": "qemu-efi-arm",`
Update to Debian Bullseye 2021-08-23 21:29:57 +00:00			`i386: "ovmf-ia32",`
			`# TODO add u-boot-qemu ? https://packages.debian.org/bullseye/u-boot-qemu (not sure which arches to add this to since it contains all of them... maybe every relevant one?)`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`} -}}`
			`{{ if env.variant == "native" then ( -}}`
			`arch="$(dpkg --print-architecture)"; \`
			`case "$arch" in \`
			`{{`
			`[`
			`firmware_packages`
			`\| to_entries[]`
			`\| (`
			`-}}`
			`{{ .key }}) apt-get install -y --no-install-recommends {{ .value }} ;; \`
			`{{`
			`)`
			`] \| add`
			`-}}`
			`*) echo >&2 "warning: architecture '$arch' unknown 😅 (is there a 'QEMU firmware' package that should be installed here? likely candidates: https://packages.debian.org/source/$suite/edk2)" ;; \`
			`esac; \`
			`{{ ) else ( -}}`
Add "qemu-efi-aarch64" and "qemu-efi-arm" firmware packages and set "firmwarepath" matching Debian's 2021-03-19 15:38:04 +00:00			`apt-get install -y --no-install-recommends \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`{{`
			`[`
			`[ firmware_packages[] ]`
			`\| sort[]`
			`\| (`
			`-}}`
			`{{ . }} \`
			`{{`
			`)`
			`] \| add`
			`-}}`
Add "qemu-efi-aarch64" and "qemu-efi-arm" firmware packages and set "firmwarepath" matching Debian's 2021-03-19 15:38:04 +00:00			`; \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`{{ ) end -}}`
Add "qemu-efi-aarch64" and "qemu-efi-arm" firmware packages and set "firmwarepath" matching Debian's 2021-03-19 15:38:04 +00:00			`rm -rf /var/lib/apt/lists/*`
QEMU! 2014-09-20 07:00:11 +00:00
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`COPY *.patch /qemu-patches/`

Add "update.sh", use a template, and add multiple versions 2019-01-17 22:28:12 +00:00			`# https://wiki.qemu.org/SecurityProcess`
			`ENV QEMU_KEYS \`
			`# Michael Roth`
			`CEACC9E15534EBABB82D3FA03353C9CEF108B584`
			`# https://wiki.qemu.org/Planning/ReleaseProcess#Sign_the_resulting_tarball_with_GPG: (they get signed by whoever is making the release)`

Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`# https://www.qemu.org/download/#source`
Add "update.sh", use a template, and add multiple versions 2019-01-17 22:28:12 +00:00			`# https://download.qemu.org/?C=M;O=D`
Use jq-template.awk 2020-08-27 23:31:53 +00:00			`ENV QEMU_VERSION {{ .version }}`
			`ENV QEMU_URL {{ .url }}`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00
			`RUN set -eux; \`
			`\`
			`savedAptMark="$(apt-mark showmanual)"; \`
			`\`
			`apt-get update; \`
			`apt-get install -y --no-install-recommends \`
			`ca-certificates \`
Add "update.sh", use a template, and add multiple versions 2019-01-17 22:28:12 +00:00			`gnupg dirmngr \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`wget \`
			`xz-utils \`
			`\`
			`patch \`
			`\`
Add "bzip2" to the build dependencies ``` BUNZIP2 pc-bios/edk2-arm-code.fd.bz2 /bin/sh: 1: bzip2: not found make: * [Makefile:300: pc-bios/edk2-arm-code.fd] Error 127 make: * Deleting file 'pc-bios/edk2-arm-code.fd' ``` 2019-07-29 20:20:31 +00:00			`bzip2 \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`gcc \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`gnutls-dev \`
			`libaio-dev \`
			`libbz2-dev \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`libc-dev \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`libcap-dev \`
			`libcap-ng-dev \`
			`libcurl4-gnutls-dev \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`libglib2.0-dev \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`libiscsi-dev \`
			`libjpeg-dev \`
			`libncursesw5-dev \`
			`libnfs-dev \`
			`libnuma-dev \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`libpixman-1-dev \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`libpng-dev \`
Enable support for RBD Signed-off-by: Alex Thomae <git@alex.thom.ae> 2020-08-27 20:04:22 +00:00			`librbd-dev \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`libseccomp-dev \`
Fix libssh changes This accounts for https://github.com/qemu/qemu/commit/b10d49d7619e4957b4b971f816661b57e5061d71 (upstream switching from `libssh2` to `libssh` in 4.1+). 2019-07-29 20:15:25 +00:00			`libssh-dev \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`libusb-1.0-0-dev \`
			`libusbredirparser-dev \`
			`libxen-dev \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`make \`
			`pkg-config \`
Add 5.2.0-rc3 2020-11-30 19:03:55 +00:00			`python3 \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`xfslibs-dev \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`zlib1g-dev \`
Enable FUSE support (6.0+) https://www.qemu.org/2021/08/22/fuse-blkexport/ 2021-08-23 19:34:17 +00:00			`{{ if ["5.0", "5.1"] \| index(env.version) then "" else ( -}}`
Add 5.2.0-rc3 2020-11-30 19:03:55 +00:00			`# https://wiki.qemu.org/ChangeLog/5.2#Build_Information`
			`ninja-build \`
			`python3-setuptools \`
Enable FUSE support (6.0+) https://www.qemu.org/2021/08/22/fuse-blkexport/ 2021-08-23 19:34:17 +00:00			`{{ ) end -}}`
			`{{ if ["5.0", "5.1", "5.2"] \| index(env.version) then "" else ( -}}`
			`# https://www.qemu.org/2021/08/22/fuse-blkexport/`
			`libfuse3-dev \`
Add 5.2.0-rc3 2020-11-30 19:03:55 +00:00			`{{ ) end -}}`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`; \`
			`rm -rf /var/lib/apt/lists/*; \`
			`\`
Add "update.sh", use a template, and add multiple versions 2019-01-17 22:28:12 +00:00			`tarball="$(basename "$QEMU_URL")"; \`
			`wget -O "$tarball.sig" "$QEMU_URL.sig"; \`
			`wget -O "$tarball" "$QEMU_URL" --progress=dot:giga; \`
			`\`
			`export GNUPGHOME="$(mktemp -d)"; \`
			`for key in $QEMU_KEYS; do \`
Switch from SKS to Ubuntu keyserver See also https://github.com/docker-library/faq#openpgp--gnupg-keys-and-verification and https://github.com/tianon/pgp-happy-eyeballs 2021-06-22 21:18:42 +00:00			`gpg --batch --keyserver keyserver.ubuntu.com --recv-keys "$key"; \`
Add "update.sh", use a template, and add multiple versions 2019-01-17 22:28:12 +00:00			`done; \`
			`gpg --batch --verify "$tarball.sig" "$tarball"; \`
			`gpgconf --kill all; \`
			`rm -rf "$GNUPGHOME"; \`
			`\`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`mkdir /usr/src/qemu; \`
Add "update.sh", use a template, and add multiple versions 2019-01-17 22:28:12 +00:00			`tar -xf "$tarball" -C /usr/src/qemu --strip-components=1; \`
			`rm "$tarball" "$tarball.sig"; \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`\`
			`cd /usr/src/qemu; \`
			`\`
			`for p in /qemu-patches/*.patch; do \`
			`patch --strip 1 --input "$p"; \`
			`done; \`
			`rm -rf /qemu-patches; \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`{{ if env.variant == "native" then ( -}}`
			`\`
			`arch="$(dpkg --print-architecture)"; \`
			`case "$arch" in \`
			`amd64) targetList='x86_64-softmmu' ;; \`
			`arm64) targetList='aarch64-softmmu' ;; \`
			`armel \| armhf) targetList='arm-softmmu' ;; \`
			`i386) targetList='i386-softmmu' ;; \`
			`mips64el) targetList='mips64el-softmmu' ;; \`
			`ppc64el) targetList='ppc64-softmmu' ;; \`
			`s390x) targetList='s390x-softmmu' ;; \`
			`*) echo >&2 "error: architecture '$arch' unimplemented 😅"; exit 1 ;; \`
			`esac; \`
			`{{ ) else "" end -}}`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`\`
			`./configure --help; \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`./configure \`
Add source URL to "pkgversion" This should make `--version` output more helpful in any upstream bug reports so they can trace back to the source of the build. 2021-03-19 15:44:22 +00:00			`# let's add a link to our source code in the output of "--version" in case our users end up filing bugs against the QEMU project O:)`
			`--with-pkgversion='https://github.com/tianon/docker-qemu' \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`{{ if env.variant == "native" then ( -}}`
			`--target-list="$targetList" \`
			`{{ ) else ( -}}`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`--target-list=' \`
			`# system targets`
Add riscv64 2021-03-01 23:30:19 +00:00			`# (https://sources.debian.org/src/qemu/buster/debian/rules/#L59-L63, slimmed)`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`i386-softmmu x86_64-softmmu aarch64-softmmu arm-softmmu m68k-softmmu \`
Add riscv64 2021-03-01 23:30:19 +00:00			`mips64-softmmu mips64el-softmmu ppc64-softmmu riscv64-softmmu \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`sparc64-softmmu s390x-softmmu \`
			`' \`
Add explicit "native" variants These are explicitly targeting their native architectures -- for example, the amd64 build will only include `qemu-system-x86_64`, which leads to much smaller images for folks who just want to run a VM on its native platform. 2021-03-21 05:00:52 +00:00			`{{ ) end -}}`
Add "qemu-efi-aarch64" and "qemu-efi-arm" firmware packages and set "firmwarepath" matching Debian's 2021-03-19 15:38:04 +00:00			`# let's point "firmware path" to Debian's value so we get access to "OVMF.fd" and friends more easily`
			`--firmwarepath=/usr/share/qemu:/usr/share/seabios:/usr/lib/ipxe/qemu \`
			`# https://salsa.debian.org/qemu-team/qemu/-/blob/058ab4ec8623766b50055c8c56d0d5448d52fb0a/debian/rules#L38`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`--disable-docs \`
			`--disable-gtk --disable-vte \`
			`--disable-sdl \`
			`--enable-attr \`
			`--enable-bzip2 \`
			`--enable-cap-ng \`
			`--enable-curl \`
			`--enable-curses \`
			`--enable-fdt \`
			`--enable-gnutls \`
			`--enable-kvm \`
			`--enable-libiscsi \`
			`--enable-libnfs \`
Fix libssh changes This accounts for https://github.com/qemu/qemu/commit/b10d49d7619e4957b4b971f816661b57e5061d71 (upstream switching from `libssh2` to `libssh` in 4.1+). 2019-07-29 20:15:25 +00:00			`--enable-libssh \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`--enable-libusb \`
			`--enable-linux-aio \`
			`--enable-modules \`
			`--enable-numa \`
Fix missing libusbredirparser1 (#13) Currently, the device `usb-redir` isn't available due to a missing library. This commit fixes that. 2020-09-28 23:05:41 +00:00			`--enable-rbd \`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`--enable-seccomp \`
			`--enable-tools \`
			`--enable-usb-redir \`
			`--enable-vhost-net \`
			`--enable-vhost-user \`
			`--enable-vhost-vsock \`
			`--enable-virtfs \`
			`--enable-vnc \`
			`--enable-vnc-jpeg \`
			`--enable-vnc-png \`
			`--enable-xen \`
			`--enable-xfsctl \`
Enable support for RBD Signed-off-by: Alex Thomae <git@alex.thom.ae> 2020-08-27 20:04:22 +00:00			`# rbd support is enabled, but "librbd1" is not included since it adds ~60MB and is version-sensitive (https://github.com/tianon/docker-qemu/pull/11#issuecomment-689816553)`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`# --enable-vde \`
Enable FUSE support (6.0+) https://www.qemu.org/2021/08/22/fuse-blkexport/ 2021-08-23 19:34:17 +00:00			`{{ if ["5.0", "5.1", "5.2"] \| index(env.version) then "" else ( -}}`
			`# https://www.qemu.org/2021/08/22/fuse-blkexport/`
			`--enable-fuse \`
			`{{ ) end -}}`
Adjust qemu compilation flags (add more features, remove a few emulation targets) 2017-12-21 18:07:44 +00:00			`; \`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00			`make -j "$(nproc)"; \`
			`make install; \`
			`\`
			`cd /; \`
			`rm -rf /usr/src/qemu; \`
			`\`
			`apt-mark auto '.*' > /dev/null; \`
Silence "apt-mark manual" output (since we have "set -x", so that output is redundant) 2020-05-11 17:10:42 +00:00			`[ -z "$savedAptMark" ] \|\| apt-mark manual $savedAptMark > /dev/null; \`
Fix missing libusbredirparser1 (#13) Currently, the device `usb-redir` isn't available due to a missing library. This commit fixes that. 2020-09-28 23:05:41 +00:00			`find /usr/local \`
			`-type f \`
			`\( -executable -o -name '*.so' \) \`
			`# rbd support is enabled, but "librbd1" is not included since it adds ~60MB and is version-sensitive (https://github.com/tianon/docker-qemu/pull/11#issuecomment-689816553)`
			`-not -name 'block-rbd.so' \`
			`-exec ldd '{}' ';' \`
Adjust usage of apt-mark slightly 2018-01-03 20:44:57 +00:00			`\| awk '/=>/ { print $(NF-1) }' \`
			`\| sort -u \`
			`\| xargs -r dpkg-query --search \`
			`\| cut -d: -f1 \`
			`\| sort -u \`
			`\| xargs -r apt-mark manual \`
			`; \`
Add "update.sh", use a template, and add multiple versions 2019-01-17 22:28:12 +00:00			`apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \`
			`\`
			`# basic smoke test`
			`qemu-img --version`
Build QEMU from source so that SIGHUP-for-ACPI-shutdown patch can be applied (and we can control our QEMU version closer) 2017-12-18 21:21:01 +00:00
			`STOPSIGNAL SIGHUP`

QEMU! 2014-09-20 07:00:11 +00:00			`EXPOSE 22`
			`EXPOSE 5900`

			`COPY start-qemu /usr/local/bin/`
			`CMD ["start-qemu"]`