remove reliance on privileged containers

Question

remove reliance on privileged containers

ccraddock opened this issue 8 years ago · 3 comments

docker2singularity must run in a privileged containers due to its use of /dev/loop0 (and possibly other reasons). This makes it impossible to run in circleCI, which explicitly runs its containers without privileges. It would be awesome if a workaround could be found to remove the need on privilege so that we can do singularity deployments from circleCI.

Answer 1 · 2017-01-04T17:41:34.000Z

It might be worth trying if 2.2 does not rely on /dev/loop0 (especially when using tgz image format).

BTW Travis allows running docker with --privilege flag. I have successfully done singularity conversions with it. The main drawback is that Travis provides less disk space and have shorter timeout cutoffs than circle.

Answer 2 · 2017-10-18T03:13:48.000Z

@ccraddock is this still an issue for you? Note that you can pull a docker container directly to singularity, without sudo:

singularity pull docker://godlovedc/lolcow
Creating empty 495MiB image file: ./lolcow.img
Formatting image with ext3 file system
Image is done: ./lolcow.img
...

and for your own wellbeing, please run the image after you pull it :)

Answer 3 · 2018-05-31T00:54:40.000Z

I'm closing here, as Singularity can pull from docker without priviledges (and this issue is also very old!) @ccraddock please let us know if you need any further help!