Support --no-mount in --oci mode
#1781
Comments
19 tasks
dtrudg
added a commit
to dtrudg/singularity
that referenced
this issue
Jun 16, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs#1781
dtrudg
added a commit
to dtrudg/singularity
that referenced
this issue
Jun 19, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs#1781
dtrudg
added a commit
to dtrudg/singularity
that referenced
this issue
Jun 19, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs#1781
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this issue
Jul 10, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs/singularity#1781 Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this issue
Jul 11, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs/singularity#1781 Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this issue
Jul 21, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs/singularity#1781 Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this issue
Jul 24, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs/singularity#1781 Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this issue
Jul 24, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs/singularity#1781 Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this issue
Jul 24, 2023
Allow the `--no-mount` flag to be specified in `--oci` mode. This allows disabling the following mounts: * proc * sys * devpts * tmp * home Note that `dev` cannot be supported in `--oci` mode, as an OCI runtime *requires* that certain devices are present, and will include them in a `/dev` tmpfs. We currently run similar to native mode `--compat`, so we don't mount the current working directory. Therefore, `--no-mount cwd` is not supported. Similarly, `--compat` infers that `bind path` entries from `singularity.conf` are ignored. We may handle them in some way, in future. Fixes sylabs/singularity#1781 Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In
--ocimode,--no-mountshould support disabling the following mounts...The following are not supported, and should warn...
The following values should warn for now, pending consideration of how/when to handle
singularity.confbind pathentries.singularity.confbind-pathsThe text was updated successfully, but these errors were encountered: