#!/bin/bash

packages="systemd systemd-sysvcompat filesystem coreutils kmod procps psmisc pacman bash cronie iproute2 iputils inetutils dhcpcd dnsutils nano grep less gawk sed tar gzip which util-linux"

rootfs=/srv/lxc/testlxc

mkdir -p "${rootfs}"

pacstrap -dc "${rootfs}" ${packages}

cat > /tmp/testlxc.conf << EOF
lxc.utsname=test
lxc.autodev=1
lxc.tty=1
lxc.pts=1024
lxc.cap.drop=sys_module mac_admin mac_override sys_time
lxc.kmsg=0
lxc.stopsignal=SIGRTMIN+4
#networking
lxc.network.type=veth
lxc.network.link=br0
lxc.network.name=eth0
lxc.network.mtu=1500
#cgroups
lxc.cgroup.devices.deny = a 
lxc.cgroup.devices.allow = c *:* m
lxc.cgroup.devices.allow = b *:* m
lxc.cgroup.devices.allow = c 1:3 rwm 
lxc.cgroup.devices.allow = c 1:5 rwm 
lxc.cgroup.devices.allow = c 1:7 rwm 
lxc.cgroup.devices.allow = c 1:8 rwm 
lxc.cgroup.devices.allow = c 1:9 rwm 
lxc.cgroup.devices.allow = c 4:1 rwm 
lxc.cgroup.devices.allow = c 5:0 rwm 
lxc.cgroup.devices.allow = c 5:1 rwm 
lxc.cgroup.devices.allow = c 5:2 rwm 
lxc.cgroup.devices.allow = c 136:* rwm 
lxc.rootfs = /srv/lxc/testlxc
EOF

ln -s /dev/null "${rootfs}"/etc/systemd/system/systemd-udevd.service
ln -s /dev/null "${rootfs}"/etc/systemd/system/systemd-udevd-control.socket
ln -s /dev/null "${rootfs}"/etc/systemd/system/systemd-udevd-kernel.socket
ln -s /dev/null "${rootfs}"/etc/systemd/system/proc-sys-fs-binfmt_misc.automount

ln -s /usr/lib/systemd/system/multi-user.target  "${rootfs}"/etc/systemd/system/default.target

echo "KEYMAP=us" > "${rootfs}"/etc/vconsole.conf
echo test > "${rootfs}"/etc/hostname

chroot "${rootfs}" locale-gen
chroot "${rootfs}" ldconfig

lxc-create -n testcontainer -f /tmp/testlxc.conf