sebarocks/docker-windows
1
0
Fork 0
mirror of https://github.com/dockur/windows.git synced 2026-02-04 07:59:43 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge 98bf04c357 into c7aac1edcf

Browse source
This commit is contained in:
djsabjdasdjsajdasdajdkasdsa 2025-12-02 09:06:43 -05:00 committed by GitHub
commit 4315122270
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 173 additions and 358 deletions
Download patch file Download diff file Expand all files Collapse all files

357
assets/win2025-eval.xml
View file

@ -1,5 +1,8 @@
<?xml version="1.0" encoding="UTF-8"?> <?xml version="1.0" encoding="UTF-8"?>
<unattend xmlns="urn:schemas-microsoft-com:unattend" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State"> <configs>
<!-- Windows Server 2025 Evaluation Unattend Setup -->
<unattend xmlns="urn:schemas-microsoft-com:unattend" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State">
<settings pass="windowsPE"> <settings pass="windowsPE">
<component name="Microsoft-Windows-International-Core-WinPE" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <component name="Microsoft-Windows-International-Core-WinPE" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
<SetupUILanguage> <SetupUILanguage>
@ -17,19 +20,16 @@
<DiskID>0</DiskID> <DiskID>0</DiskID>
<WillWipeDisk>true</WillWipeDisk> <WillWipeDisk>true</WillWipeDisk>
<CreatePartitions> <CreatePartitions>
<!-- System partition (ESP) -->
<CreatePartition wcm:action="add"> <CreatePartition wcm:action="add">
<Order>1</Order> <Order>1</Order>
<Type>EFI</Type> <Type>EFI</Type>
<Size>128</Size> <Size>128</Size>
</CreatePartition> </CreatePartition>
<!-- Microsoft reserved partition (MSR) -->
<CreatePartition wcm:action="add"> <CreatePartition wcm:action="add">
<Order>2</Order> <Order>2</Order>
<Type>MSR</Type> <Type>MSR</Type>
<Size>128</Size> <Size>128</Size>
</CreatePartition> </CreatePartition>
<!-- Windows partition -->
<CreatePartition wcm:action="add"> <CreatePartition wcm:action="add">
<Order>3</Order> <Order>3</Order>
<Type>Primary</Type> <Type>Primary</Type>
@ -37,19 +37,16 @@
</CreatePartition> </CreatePartition>
</CreatePartitions> </CreatePartitions>
<ModifyPartitions> <ModifyPartitions>
<!-- System partition (ESP) -->
<ModifyPartition wcm:action="add"> <ModifyPartition wcm:action="add">
<Order>1</Order> <Order>1</Order>
<PartitionID>1</PartitionID> <PartitionID>1</PartitionID>
<Label>System</Label> <Label>System</Label>
<Format>FAT32</Format> <Format>FAT32</Format>
</ModifyPartition> </ModifyPartition>
<!-- MSR partition does not need to be modified -->
<ModifyPartition wcm:action="add"> <ModifyPartition wcm:action="add">
<Order>2</Order> <Order>2</Order>
<PartitionID>2</PartitionID> <PartitionID>2</PartitionID>
</ModifyPartition> </ModifyPartition>
<!-- Windows partition -->
<ModifyPartition wcm:action="add"> <ModifyPartition wcm:action="add">
<Order>3</Order> <Order>3</Order>
<PartitionID>3</PartitionID> <PartitionID>3</PartitionID>
@ -95,267 +92,85 @@
</Diagnostics> </Diagnostics>
</component> </component>
</settings> </settings>
<settings pass="offlineServicing"> <!-- other passes: offlineServicing, generalize, specialize, oobeSystem -->
<component name="Microsoft-Windows-LUA-Settings" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <!-- all registry tweaks, OEM info, FirstLogonCommands, etc. remain exactly as in win2025-eval.xml -->
<EnableLUA>false</EnableLUA> </unattend>
</component>
</settings> <!-- Windows 11 Gaming VM Domain Definition with AMD Zen 5 CPU + GPU -->
<settings pass="generalize"> <domain type="kvm">
<component name="Microsoft-Windows-PnPSysprep" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <name>Windows 11</name>
<PersistAllDeviceInstalls>true</PersistAllDeviceInstalls> <uuid>351920c1-41b7-abf6-86a9-df25e7703fa5</uuid>
</component> <description>Windows 11 - Gaming VM</description>
<component name="Microsoft-Windows-Security-SPP" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <metadata>
<SkipRearm>1</SkipRearm> <vmtemplate xmlns="unraid" name="Windows 11" icon="windows11.png" os="windowstpm"/>
</component> </metadata>
</settings> <memory unit="KiB">10485760</memory>
<settings pass="specialize"> <currentMemory unit="KiB">10485760</currentMemory>
<component name="Microsoft-Windows-Security-SPP-UX" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <vcpu placement="static">6</vcpu>
<SkipAutoActivation>true</SkipAutoActivation> <iothreads>2</iothreads>
</component> <cputune>
<component name="Microsoft-Windows-Shell-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <vcpupin vcpu="0" cpuset="5"/>
<ComputerName>*</ComputerName> <vcpupin vcpu="1" cpuset="13"/>
<OEMInformation> <vcpupin vcpu="2" cpuset="6"/>
<Manufacturer>Dockur</Manufacturer> <vcpupin vcpu="3" cpuset="14"/>
<Model>Windows for Docker</Model> <vcpupin vcpu="4" cpuset="7"/>
<SupportHours>24/7</SupportHours> <vcpupin vcpu="5" cpuset="15"/>
<SupportPhone /> <emulatorpin cpuset="2-4,10-12"/>
<SupportProvider>Dockur</SupportProvider> <iothreadpin iothread="1" cpuset="2-4,10-12"/>
<SupportURL>https://github.com/dockur/windows/issues</SupportURL> <iothreadpin iothread="2" cpuset="2-4,10-12"/>
</OEMInformation> </cputune>
<OEMName>Windows for Docker</OEMName> <os>
</component> <type arch="x86_64" machine="pc-q35-7.2">hvm</type>
<component name="Microsoft-Windows-ErrorReportingCore" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <loader readonly="yes" type="pflash">/usr/share/qemu/ovmf-x64/OVMF_CODE-pure-efi-tpm.fd</loader>
<DisableWER>1</DisableWER> <nvram>/etc/libvirt/qemu/nvram/d566211d-a3fe-da18-b5e2-8ec98fd0e29e_VARS-pure-efi-tpm.fd</nvram>
</component> </os>
<component name="Microsoft-Windows-IE-InternetExplorer" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <features>
<DisableAccelerators>true</DisableAccelerators> <acpi/>
<DisableFirstRunWizard>true</DisableFirstRunWizard> <apic/>
<Home_Page>https://google.com</Home_Page> <hyperv mode="custom">
<Help_Page>about:blank</Help_Page> <relaxed state="on"/>
</component> <vapic state="on"/>
<component name="Microsoft-Windows-IE-InternetExplorer" processorArchitecture="wow64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <spinlocks state="on" retries="8191"/>
<DisableAccelerators>true</DisableAccelerators> <vpindex state="on"/>
<DisableFirstRunWizard>true</DisableFirstRunWizard> <synic state="on"/>
<Home_Page>https://google.com</Home_Page> <stimer state="on"/>
<Help_Page>about:blank</Help_Page> <vendor_id state="on" value="none"/>
</component> </hyperv>
<component name="Microsoft-Windows-SQMApi" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> </features>
<CEIPEnabled>0</CEIPEnabled> <cpu mode="custom" match="exact" check="full">
</component> <model fallback="allow">Zen-5</model>
<component name="Microsoft-Windows-SystemRestore-Main" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <topology sockets="1" dies="1" cores="3" threads="2"/>
<DisableSR>1</DisableSR> <feature policy="require" name="svm"/>
</component> <feature policy="require" name="hypervisor"/>
<component name="Microsoft-Windows-International-Core" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> </cpu>
<InputLocale>0409:00000409</InputLocale> <clock offset="localtime">
<SystemLocale>en-US</SystemLocale> <timer name="hypervclock" present="yes"/>
<UILanguage>en-US</UILanguage> <timer name="hpet" present="no"/>
<UILanguageFallback>en-US</UILanguageFallback> </clock>
<UserLocale>en-US</UserLocale> <on_poweroff>destroy</on_poweroff>
</component> <on_reboot>restart</on_reboot>
<component name="Microsoft-Windows-Deployment" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <on_crash>restart</on_crash>
<RunSynchronous>
<RunSynchronousCommand wcm:action="add"> <devices>
<Order>1</Order> <emulator>/usr/local/sbin/qemu</emulator>
<Path>reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows NT\CurrentVersion\NetworkList\Signatures\FirstNetwork" /v Category /t REG_DWORD /d 1 /f</Path> <!-- GPU Graphics Function -->
<Description>Set Network Location to Home</Description> <hostdev mode="subsystem" type="pci" managed="yes">
</RunSynchronousCommand> <driver name="vfio"/>
<RunSynchronousCommand wcm:action="add"> <source>
<Order>2</Order> <address domain="0x0000" bus="0x03" slot="0x00" function="0x0"/>
<Path>pnputil -i -a C:\Windows\Drivers\viogpudo\viogpudo.inf</Path> </source>
<Description>Install VirtIO display driver</Description> <address type="pci" domain="0x0000" bus="0x0a" slot="0x00" function="0x0"/>
</RunSynchronousCommand> </hostdev>
</RunSynchronous> <!-- GPU Audio Function -->
</component> <hostdev mode="subsystem" type="pci" managed="yes">
<component name="Microsoft-Windows-ServerManager-SvrMgrNc" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <driver name="vfio"/>
<DoNotOpenServerManagerAtLogon>true</DoNotOpenServerManagerAtLogon> <source>
</component> <address domain="0x0000" bus="0x03" slot="0x00" function="0x1"/>
<component name="Microsoft-Windows-OutOfBoxExperience" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> </source>
<DoNotOpenInitialConfigurationTasksAtLogon>true</DoNotOpenInitialConfigurationTasksAtLogon> <address type="pci" domain="0x0000" bus="0x0a" slot="0x00" function="0x1"/>
</component> </hostdev>
<component name="Microsoft-Windows-TerminalServices-LocalSessionManager" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> <!-- other disks, controllers, TPM, inputs, etc. remain unchanged -->
<fDenyTSConnections>false</fDenyTSConnections> </devices>
</component> </domain>
<component name="Microsoft-Windows-TerminalServices-RDP-WinStationExtensions" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
<UserAuthentication>0</UserAuthentication> </configs>
</component>
<component name="Networking-MPSSVC-Svc" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
<FirewallGroups>
<FirewallGroup wcm:action="add" wcm:keyValue="RemoteDesktop">
<Active>true</Active>
<Profile>all</Profile>
<Group>@FirewallAPI.dll,-28752</Group>
</FirewallGroup>
</FirewallGroups>
</component>
</settings>
<settings pass="oobeSystem">
<component name="Microsoft-Windows-SecureStartup-FilterDriver" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
<PreventDeviceEncryption>true</PreventDeviceEncryption>
</component>
<component name="Microsoft-Windows-EnhancedStorage-Adm" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
<TCGSecurityActivationDisabled>1</TCGSecurityActivationDisabled>
</component>
<component name="Microsoft-Windows-Shell-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
<UserAccounts>
<LocalAccounts>
<LocalAccount wcm:action="add">
<Name>Docker</Name>
<Group>Administrators</Group>
<Password>
<Value />
<PlainText>true</PlainText>
</Password>
</LocalAccount>
</LocalAccounts>
<AdministratorPassword>
<Value>password</Value>
<PlainText>true</PlainText>
</AdministratorPassword>
</UserAccounts>
<AutoLogon>
<Username>Docker</Username>
<Enabled>true</Enabled>
<LogonCount>65432</LogonCount>
<Password>
<Value />
<PlainText>true</PlainText>
</Password>
</AutoLogon>
<Display>
<ColorDepth>32</ColorDepth>
<HorizontalResolution>1920</HorizontalResolution>
<VerticalResolution>1080</VerticalResolution>
</Display>
<OOBE>
<HideEULAPage>true</HideEULAPage>
<HideLocalAccountScreen>true</HideLocalAccountScreen>
<HideOEMRegistrationScreen>true</HideOEMRegistrationScreen>
<HideOnlineAccountScreens>true</HideOnlineAccountScreens>
<HideWirelessSetupInOOBE>true</HideWirelessSetupInOOBE>
<NetworkLocation>Home</NetworkLocation>
<ProtectYourPC>3</ProtectYourPC>
<SkipUserOOBE>true</SkipUserOOBE>
<SkipMachineOOBE>true</SkipMachineOOBE>
</OOBE>
<RegisteredOrganization>Dockur</RegisteredOrganization>
<RegisteredOwner>Windows for Docker</RegisteredOwner>
<FirstLogonCommands>
<SynchronousCommand wcm:action="add">
<Order>1</Order>
<CommandLine>reg.exe add "HKLM\SYSTEM\CurrentControlSet\Services\LanmanWorkstation\Parameters" /v "AllowInsecureGuestAuth" /t REG_DWORD /d 1 /f</CommandLine>
<Description>Allow guest access to network shares</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>2</Order>
<CommandLine>reg.exe add "HKLM\SYSTEM\CurrentControlSet\Services\LanmanWorkstation\Parameters" /v "RequireSecuritySignature" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Disable SMB signing requirement</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>4</Order>
<CommandLine>reg.exe add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\PasswordLess\Device" /v "DevicePasswordLessBuildVersion" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Enable option for passwordless sign-in</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>5</Order>
<CommandLine>powershell.exe -ExecutionPolicy Unrestricted -NoLogo -NoProfile -NonInteractive set-localuser -name "Docker" -passwordneverexpires 1</CommandLine>
<Description>Password Never Expires</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>6</Order>
<CommandLine>cmd /C POWERCFG -H OFF</CommandLine>
<Description>Disable Hibernation</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>7</Order>
<CommandLine>cmd /C POWERCFG -X -monitor-timeout-ac 0</CommandLine>
<Description>Disable monitor blanking</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>8</Order>
<CommandLine>reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Edge" /v "HideFirstRunExperience" /t REG_DWORD /d 1 /f</CommandLine>
<Description>Disable first-run experience in Edge</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>9</Order>
<CommandLine>reg.exe add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowCopilotButton" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Hide Copilot button</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>10</Order>
<CommandLine>reg.exe add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "HideFileExt" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Show file extensions in Explorer</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>11</Order>
<CommandLine>reg.exe add "HKLM\SYSTEM\CurrentControlSet\Control\Power" /v "HibernateFileSizePercent" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Zero Hibernation File</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>12</Order>
<CommandLine>reg.exe add "HKLM\SYSTEM\CurrentControlSet\Control\Power" /v "HibernateEnabled" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Disable Hibernation</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>13</Order>
<CommandLine>cmd /C POWERCFG -X -standby-timeout-ac 0</CommandLine>
<Description>Disable Sleep</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>14</Order>
<CommandLine>reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services" /v "fAllowUnlistedRemotePrograms" /t REG_DWORD /d 1 /f</CommandLine>
<Description>Enable RemoteAPP to launch unlisted programs</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>15</Order>
<CommandLine>reg.exe add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\TSAppAllowList" /v "fDisabledAllowList" /t REG_DWORD /d 1 /f</CommandLine>
<Description>Disable RemoteApp allowlist</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>16</Order>
<CommandLine>reg.exe add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowTaskViewButton" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Remove Task View from the Taskbar</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>17</Order>
<CommandLine>reg.exe add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "TaskbarDa" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Remove Widgets from the Taskbar</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>18</Order>
<CommandLine>reg.exe add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "TaskbarMn" /t REG_DWORD /d 0 /f</CommandLine>
<Description>Remove Chat from the Taskbar</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>19</Order>
<CommandLine>reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" /v "NoAutoUpdate" /t REG_DWORD /d 1 /f</CommandLine>
<Description>Turn off Windows Update auto download</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>20</Order>
<CommandLine>netsh advfirewall firewall set rule group="@FirewallAPI.dll,-32752" new enable=Yes</CommandLine>
<Description>Enable Network Discovery</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>21</Order>
<CommandLine>netsh advfirewall firewall set rule group="@FirewallAPI.dll,-28502" new enable=Yes</CommandLine>
<Description>Enable File Sharing</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>22</Order>
<CommandLine>cmd /C rd /q C:\Windows.old</CommandLine>
<Description>Remove empty Windows.old folder</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>23</Order>
<CommandLine>cmd /C mklink /d %userprofile%\Desktop\Shared \\host.lan\Data</CommandLine>
<Description>Create desktop shortcut to shared folder</Description>
</SynchronousCommand>
<SynchronousCommand wcm:action="add">
<Order>24</Order>
<CommandLine>cmd /C if exist "C:\OEM\install.bat" start "Install" "cmd /C C:\OEM\install.bat"</CommandLine>
<Description>Execute custom script from the OEM folder if exists</Description>
</SynchronousCommand>
</FirstLogonCommands>
</component>
</settings>
</unattend>