base icon indicating copy to clipboard operation
base copied to clipboard
verified publisher icon containerbase

Support readonly root filesystem

Open viceice opened this issue 2 years ago • 8 comments

general

  • /usr/local/bin is symlinked to /opt/containerbase/bin
  • /usr/local/lib is symlinked to /opt/containerbase/lib
  • tool prepare state is stored at /var/lib/containerbase
  • all cache files are stored at /tmp/containerbase
  • files and folders in user home are symlinked to /tmp/containerbase/cache (eg .cache, .npmrc, .npm)

binarySource=global

  • needs /tmp writable

binarySource=install

  • needs /tmp writable
  • needs /opt/containerbase writable

related issues

  • #101
  • #380
  • #1384
  • #1385

viceice avatar Jan 30 '24 09:01 viceice

@rarkins There is one more issue! npm always tries to write to ~/.npm/_logs.

viceice avatar Feb 13 '24 12:02 viceice

It cannot be stopped??

rarkins avatar Feb 13 '24 13:02 rarkins

not i'm aware of. i'm now redirecting home to /opt/containerbase/home, see linked PR.

We need to think about the existing data at /opt/containerbase when mounting a volume which will hide all existing. 🤔

viceice avatar Feb 13 '24 15:02 viceice

I think we need to split installs again.

So when running as root and it's a docker build, then install tools to some other persistent path. Otherwise all files and prepare information are gone when mounting a volume to /opt/containerbase 🤔

I would add a new containerbase-cli restore command, which recreates all missing folders and files. It then symlinks the root installed files there, so the layout looks like now.

containerbase-cli restore will be called automatically by the entrypoint script and should be called by custom images with their own entrypoint.

@rarkins WDYT? Can you follow me?

viceice avatar Feb 14 '24 12:02 viceice

I'm not sure I fully follow, but I guess you mean that when the user mounts a volume to /opt/containerbase then anything we've put there prior is lost. So you're planning to put it in another location and symlink it over whenever the container runs?

rarkins avatar Feb 14 '24 13:02 rarkins

Yes, that's the core idea.

When later running install-tool as user it will simply install to /opt/containerbase as now. I can propably also check and run the containerbase-cli restore command implicit from install-tool when something is missing inside /opt/containerbase.

viceice avatar Feb 14 '24 14:02 viceice

Would it be a viable alternative to allow the user to configure the containerbase rw location via env variable? If configured then the restore happens from /opt/containerbase otherwise /opt/containerbase is used? Or is it too hard to set up PATH etc?

rarkins avatar Feb 14 '24 14:02 rarkins

we can't ensure path then. a user would need to explicit set it 😞

viceice avatar Feb 14 '24 16:02 viceice