Rocky

English | 简体中文

Docker Image packaging for Rocky Linux. (amd64, arm64, ppc64le, s390x)

Supported Versions

Version	Rocky Linux	Base Image	Tag Format	Status
8	8.10	rockylinux/rockylinux:8.10	8-v8.10.0	✅ Active
9	9.7	rockylinux/rockylinux:9.7	9-v9.7.0	✅ Active
10	10.1	rockylinux/rockylinux:10.1	10-v10.1.0	✅ Active

Supported Architectures

• linux/amd64 - x86_64 architecture
• linux/arm64 - ARM 64-bit architecture
• linux/ppc64le - PowerPC 64-bit Little Endian
• linux/s390x - IBM System z architecture

Quick Start

Docker CLI

Basic Usage

docker run -d \
  --name=rocky \
  -e TZ=Asia/Shanghai \
  snowdreamtech/rocky:10-v10.1.0

Advanced Usage with User Mapping

docker run -d \
  --name=rocky \
  -e PUID=1000 \
  -e PGID=1000 \
  -e USER=myuser \
  -e PASSWORDLESS_SUDO=true \
  -e DEBUG=true \
  -e TZ=Asia/Shanghai \
  -v /path/to/data:/data \
  snowdreamtech/rocky:10-v10.1.0

Docker Compose

version: '3.8'

services:
  rocky:
    image: snowdreamtech/rocky:10-v10.1.0
    container_name: rocky
    environment:
      - PUID=1000
      - PGID=1000
      - USER=myuser
      - PASSWORDLESS_SUDO=true
      - DEBUG=false
      - TZ=Asia/Shanghai
      - KEEPALIVE=1
    volumes:
      - ./data:/data
    restart: unless-stopped

Environment Variables

Variable	Default	Description
PUID	0	User ID for file permissions
PGID	0	Group ID for file permissions
USER	root	Username to create/use
PASSWORDLESS_SUDO	false	Enable passwordless sudo for user
KEEPALIVE	0	Keep container running (1=enabled)
DEBUG	false	Enable debug logging
UMASK	022	Default file creation mask
WORKDIR	/root	Working directory
TZ	-	Timezone (e.g., Asia/Shanghai)
CAP_NET_BIND_SERVICE	0	Allow binding to privileged ports

Features

Security

• gosu Integration: Secure privilege dropping with GPG verification
• User Mapping: Flexible PUID/PGID mapping for file permissions
• Minimal Base: Uses Rocky Linux minimal images for reduced attack surface
• Security Scanning: Automated vulnerability scanning with Trivy

Architecture

• Multi-Architecture: Native support for amd64, arm64, ppc64le, s390x
• Modular Entrypoint: Alpine-style initialization system with entrypoint.d/
• Debug Support: Comprehensive logging with DEBUG environment variable
• Signal Handling: Proper signal forwarding for graceful shutdown

Package Management

• Repository Configuration: Proper dnf repository setup (CRB, devel, extras, EPEL)
• Essential Tools: Pre-installed development and operational tools
• Version Specific: Optimized package selection for each Rocky Linux version
• Clean Installation: Comprehensive cleanup and cache management

Build Instructions

Prerequisites

• Docker with Buildx support
• Multi-architecture emulation (QEMU)

Building Locally

# Build for single architecture
docker build -t rocky:local ./docker/10

# Build for multiple architectures
docker buildx build \
  --platform linux/amd64,linux/arm64,linux/ppc64le,linux/s390x \
  -t snowdreamtech/rocky:10-v10.1.0 \
  ./docker/10 \
  --push

Build Arguments

Argument	Default	Description
BUILDTIME	-	Build timestamp
VERSION	-	Image version
REVISION	-	Git revision
KEEPALIVE	0	Default keepalive setting
DEBUG	false	Default debug setting
LANG	C.UTF-8	Default locale

Development

Project Structure

rocky/
├── docker/                    # Docker configurations
│   ├── 8/                    # Rocky Linux 8.x
│   │   ├── Dockerfile        # Version-specific Dockerfile
│   │   ├── docker-entrypoint.sh
│   │   ├── entrypoint.d/     # Initialization scripts
│   │   └── vimrc.local       # Vim configuration
│   ├── 9/                    # Rocky Linux 9.x
│   └── 10/                   # Rocky Linux 10.x
├── .github/workflows/         # CI/CD workflows
└── docs/                     # Documentation

Contributing

1. Fork the repository
2. Create a feature branch
3. Make your changes
4. Test across all supported versions
5. Submit a pull request

Testing

# Run basic functionality test
docker run --rm snowdreamtech/rocky:10-v10.1.0 \
  /bin/bash -c "echo 'Test passed'"

# Test user mapping
docker run --rm -e PUID=1000 -e PGID=1000 -e USER=testuser \
  snowdreamtech/rocky:10-v10.1.0 /bin/bash -c "id"

# Test debug mode
docker run --rm -e DEBUG=true \
  snowdreamtech/rocky:10-v10.1.0 /bin/bash -c "echo 'Debug test'"

Troubleshooting

Common Issues

Permission Denied Errors

# Ensure proper PUID/PGID mapping
docker run -e PUID=$(id -u) -e PGID=$(id -g) snowdreamtech/rocky:10-v10.1.0

Container Exits Immediately

# Enable keepalive mode
docker run -e KEEPALIVE=1 snowdreamtech/rocky:10-v10.1.0

Debug Information

# Enable debug logging
docker run -e DEBUG=true snowdreamtech/rocky:10-v10.1.0

Getting Help

• Issues: GitHub Issues
• Discussions: GitHub Discussions
• Documentation: Project Wiki

License

This project is licensed under the MIT License - see the LICENSE file for details.

Acknowledgments

• Rocky Linux Project for the excellent Linux distribution
• Alpine Linux for inspiration on container design patterns
• gosu for secure privilege dropping

Related Projects

• Alpine Docker Images
• Ubuntu Docker Images
• Debian Docker Images