Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

For getting a proper Wayland session I recommend doing this with Phosh and wayvnc (WLR_BACKENDS=headless WLR_LIBINPUT_NO_DEVICES=1 as env vars for starting Phosh and then "wayvnc 0.0.0.0 7050").

You can even have a whole systemd setup in a container using this VNC backend, here in this Dockerfile with CPU rendering (LIBGL_ALWAYS_SOFTWARE=1) to avoid requring a GPU:

    FROM docker.io/fedora
    RUN dnf -y update && dnf install -y phosh phoc wayvnc sudo socat iproute mutter xorg-x11-server-Xwayland dbus-x11 mesa-libgbm mesa-libOpenCL mesa-libGL mesa-libGLU mesa-libEGL mesa-vulkan-drivers mesa-libOSMesa mesa-dri-drivers mesa-filesystem gnome-shell gnome-terminal
    RUN mkdir -p /etc/systemd/system/phosh.service.d && echo -e '\
    [Unit]\n\
    ConditionPathExists=\n\
    [Service]\n\
    Environment=WLR_BACKENDS=headless\n\
    Environment=WLR_LIBINPUT_NO_DEVICES=1\n\
    StandardInput=null\n\
    TTYPath=/dev/console\n\
    TTYReset=no\n\
    TTYVHangup=no\n\
    TTYVTDisallocate=no\n\
    ExecStart=\n\
    ExecStart=/usr/bin/phoc --exec "bash -lc \"/usr/libexec/phosh --unlocked & wayvnc 0.0.0.0 7050\""\n\
    '  > /etc/systemd/system/phosh.service.d/10-headless.conf
    RUN systemctl enable phosh.service
    # Work around a problem with a missing dbus.service unit file
    RUN mkdir -p /etc/systemd/system && ln -fs /usr/lib/systemd/system/dbus-broker.service /etc/systemd/system/dbus.service
    # Mask udev instead of making /sys/ read-only as suggested in https://systemd.io/CONTAINER_INTERFACE/
    RUN systemctl mask systemd-udevd.service systemd-modules-load.service systemd-udevd-control.socket systemd-udevd-kernel.socket
    ENV container=docker
    RUN groupadd --system sudo
    RUN useradd --create-home --shell /bin/bash -G sudo user
    RUN echo '%sudo ALL=(ALL) NOPASSWD:ALL' >> /etc/sudoers
    ENV LIBGL_ALWAYS_SOFTWARE=1
    RUN sudo -u user gsettings set sm.puri.phoc auto-maximize false
    EXPOSE 7050
    # Set up a /dev/console link to have the same behavior with or without "-it", needs podman run --systemd=always
    CMD [ "/bin/sh", "-c", "if ! [ -e /dev/console ] ; then socat -u pty,link=/dev/console stdout & fi ; exec /sbin/init" ]
Use as: podman run --systemd=always --rm -p 7050:7050 imagename


Very cool! systemd is so underrated and underappreciated in the container world.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: