[
https://issues.apache.org/jira/browse/YARN-4595?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15258546#comment-15258546
]
Varun Vasudev commented on YARN-4595:
-------------------------------------
Thanks for the update [~billie.rinaldi]. The one case that's been missed is
when a user submits an archive(like a tarball) and asks for the archive
directory to be mounted into the docker container. In that case, we need to
inspect the contents of the directory to make sure there are no symlinks inside
it.
> Add support for configurable read-only mounts
> ---------------------------------------------
>
> Key: YARN-4595
> URL: https://issues.apache.org/jira/browse/YARN-4595
> Project: Hadoop YARN
> Issue Type: Sub-task
> Components: yarn
> Reporter: Billie Rinaldi
> Assignee: Billie Rinaldi
> Attachments: YARN-4595.1.patch, YARN-4595.2.patch, YARN-4595.3.patch,
> YARN-4595.4.patch, YARN-4595.5.patch
>
>
> Mounting files or directories from the host is one way of passing
> configuration and other information into a docker container. We could allow
> the user to set a list of mounts in the environment of ContainerLaunchContext
> (e.g. /dir1:/targetdir1,/dir2:/targetdir2). These would be mounted read-only
> to the specified target locations.
> Due to permissions and user concerns, for this ticket we will require the
> mounts to be resources that are in the distributed cache.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
