[Crunch] Allow site admin to add arbitrary arguments to all "docker run" commands
The motivating use case is adding a --volume argument to modify the list of trusted certificate authorities trusted by Crunch jobs running in containers. This makes it possible to use a self-signed certificate for the API server, without having to customize the docker images being used.
If an environment variable CRUNCH_JOB_DOCKER_RUN_ARGS is added to the crunch-dispatch run script, this should be propagated to crunch-job much like CRUNCH_JOB_DOCKER_BIN is now. Crunch-job should include this every time it uses
7868: Update API server's arvados-cli version.
Curoverse clusters are deployed by setting CRUNCH_JOB_BIN,
effectively excluding it from the bundle, but this is not true for
clusters deployed following the install guide. Out of the box,
they'll use the version of crunch-job that's actually in the
arvados-cli gem in the bundle.
crunch-dispatch has functionality in it that requires a newer
arvados-cli, so update accordingly. This is not exactly the version
produced by #7868, but it's pretty close.
I think there's a strong case that we should update this version
whenever we make a substantial change to crunch-job. But since I'm
pushing this without discussion or review, I'm doing the smallest
#2 Updated by Joshua Randall over 3 years ago
Another use case could be "-e http_proxy -e https_proxy" to pass host proxy configuration in to a container when it is required by local network configuration.
The advice to administrators should probably be to avoid using this unless it is required by some local requirements that prevent generic containers from running correctly without it.