Project

General

Profile

Idea #8815

Updated by Peter Amstutz over 8 years ago

In order to run arbitrary containers, we need crunchrunner (a compiled Go program) and a TLS certificates file available inside the container.    Currently arvados-cwl-runner provides this by assuming a collection with a specific PDH is available on the system.    This is brittle, as crunchrunner is an infrastructure that should be managed as part of installation and upgrade. 

 Solution: 

 - Create arvados-crunchrunner package which is automatically installed on compute & shell nodes 
 - crunch-job bind mounts crunchrunner & host system TLS certs file at a well known location 
 - crunchrunner crunch script uses well know location to run crunchrunner instead of running from collection 
 - remove code from arvados-cwl-runner for handling crunchrunner collection 


Back