oci: support for writable extfs img overlay via fuse-overlayfs #1740
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
preminger
force-pushed
the
1728-support-writable-bare-image-overlays-oci
branch
from
2487bf7
to
1e682e3
Compare
preminger
changed the title
preminger
force-pushed
the
1728-support-writable-bare-image-overlays-oci
branch
from
1c0c979
to
8b86f45
Compare
dtrudg
requested changes
Jun 7, 2023
There was a problem hiding this comment.
I'm afraid that this isn't operating in the same way as the native mode, in two significant ways. For the examples below, the overlay was created with:
singularity overlay create --size 1024 /tmp/test.img
- Permissions in effect are such that in
--ocimode I cannot create a file in the root directory/, which I should be able to do.
$ singularity run --oci --overlay /tmp/test.img:rw docker://alpine
2023/06/07 09:24:16 info unpack layer: sha256:8a49fdb3b6a5ff2bd8ec6a86c05b2922a0f7454579ecc07637e94dfd1d0639b6
unknown argument ignored: lazytime
~ $ touch /bob
touch: /bob: Permission denied
$ singularity run --overlay /tmp/test.img:rw docker://alpine
INFO: Using cached SIF image
Singularity> touch /bob
Singularity>
Note that in --oci mode this does work for directories, so it's not a generic issue for all rw overlays.. so is definitely within the scope of this PR.
$ singularity run --oci --overlay overlaydir:rw docker://alpine
2023/06/07 09:28:26 info unpack layer: sha256:8a49fdb3b6a5ff2bd8ec6a86c05b2922a0f7454579ecc07637e94dfd1d0639b6
~ $ touch /bob
~ $
- If I use an overlay
rwand then later use itroI expect to see the created contents overlayed. In--ocimode, theupper/workare visible:
# In native mode... note the `/bob` file present.
$ singularity exec --overlay /tmp/test.img:ro docker://alpine ls /
INFO: Using cached SIF image
bin environment lib opt run srv usr
bob etc media proc sbin sys var
dev home mnt root singularity tmp
# In --oci mode, note the upper / work directories, and `/bob` is inside `/upper`
$ singularity exec --oci --overlay /tmp/test.img:ro docker://alpine ls /
2023/06/07 09:33:10 info unpack layer: sha256:8a49fdb3b6a5ff2bd8ec6a86c05b2922a0f7454579ecc07637e94dfd1d0639b6
bin lib opt sbin upper
dev lost+found proc srv usr
etc media root sys var
home mnt run tmp work
This is actually a generic issue that applies to --oci overlays in general. Apologies I didn't catch it with the directory overlay. It is up to you whether to address it here, or as a separate issue / PR.
preminger
force-pushed
the
1728-support-writable-bare-image-overlays-oci
branch
from
89d2395
to
1656ef9
Compare
preminger
force-pushed
the
1728-support-writable-bare-image-overlays-oci
branch
3 times, most recently
from
497d69a
to
18b045b
Compare
preminger
force-pushed
the
1728-support-writable-bare-image-overlays-oci
branch
from
e519a85
to
1daed8e
Compare
dtrudg
requested changes
Jun 8, 2023
dtrudg
approved these changes
Jun 8, 2023
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this pull request
Jul 6, 2023
(sylabs/singularity#1740) * oci: support for writable extfs img overlay via fuse-overlayfs * added unit- and e2e-tests * fixed exposure of "upper" & "work" subdir in readonly overlays * added fix for file-ownership in FUSE-mounted images + e2e test of fix * fix handling of "upper" in :ro overlay dirs, adjust e2e tests Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this pull request
Jul 6, 2023
(sylabs/singularity#1740) * oci: support for writable extfs img overlay via fuse-overlayfs * added unit- and e2e-tests * fixed exposure of "upper" & "work" subdir in readonly overlays * added fix for file-ownership in FUSE-mounted images + e2e test of fix * fix handling of "upper" in :ro overlay dirs, adjust e2e tests Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this pull request
Jul 7, 2023
(sylabs/singularity#1740) * oci: support for writable extfs img overlay via fuse-overlayfs * added unit- and e2e-tests * fixed exposure of "upper" & "work" subdir in readonly overlays * added fix for file-ownership in FUSE-mounted images + e2e test of fix * fix handling of "upper" in :ro overlay dirs, adjust e2e tests Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this pull request
Jul 11, 2023
(sylabs/singularity#1740) * oci: support for writable extfs img overlay via fuse-overlayfs * added unit- and e2e-tests * fixed exposure of "upper" & "work" subdir in readonly overlays * added fix for file-ownership in FUSE-mounted images + e2e test of fix * fix handling of "upper" in :ro overlay dirs, adjust e2e tests Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this pull request
Jul 21, 2023
(sylabs/singularity#1740) * oci: support for writable extfs img overlay via fuse-overlayfs * added unit- and e2e-tests * fixed exposure of "upper" & "work" subdir in readonly overlays * added fix for file-ownership in FUSE-mounted images + e2e test of fix * fix handling of "upper" in :ro overlay dirs, adjust e2e tests Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this pull request
Jul 24, 2023
(sylabs/singularity#1740) * oci: support for writable extfs img overlay via fuse-overlayfs * added unit- and e2e-tests * fixed exposure of "upper" & "work" subdir in readonly overlays * added fix for file-ownership in FUSE-mounted images + e2e test of fix * fix handling of "upper" in :ro overlay dirs, adjust e2e tests Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this pull request
Jul 24, 2023
(sylabs/singularity#1740) * oci: support for writable extfs img overlay via fuse-overlayfs * added unit- and e2e-tests * fixed exposure of "upper" & "work" subdir in readonly overlays * added fix for file-ownership in FUSE-mounted images + e2e test of fix * fix handling of "upper" in :ro overlay dirs, adjust e2e tests Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
edytuk
pushed a commit
to vzokay/apptainer
that referenced
this pull request
Jul 24, 2023
(sylabs/singularity#1740) * oci: support for writable extfs img overlay via fuse-overlayfs * added unit- and e2e-tests * fixed exposure of "upper" & "work" subdir in readonly overlays * added fix for file-ownership in FUSE-mounted images + e2e test of fix * fix handling of "upper" in :ro overlay dirs, adjust e2e tests Signed-off-by: Edita Kizinevic <edita.kizinevic@cern.ch>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description of the Pull Request (PR):
Adds support for mounting extfs images as read-write overlays, by using
fuse2fs(if available) to mount the image followed byfuse-overlayfs(if available) to mount it as a read-write overlay.This fixes or addresses the following GitHub issues: