Don't mess with the ownership of /var/lib/arvados refs #18732

author Peter Amstutz <peter.amstutz@curii.com>

Fri, 18 Mar 2022 18:19:15 +0000 (14:19 -0400)

committer Peter Amstutz <peter.amstutz@curii.com>

Fri, 18 Mar 2022 18:19:15 +0000 (14:19 -0400)
author Peter Amstutz <peter.amstutz@curii.com>
Fri, 18 Mar 2022 18:19:15 +0000 (14:19 -0400)
committer Peter Amstutz <peter.amstutz@curii.com>
Fri, 18 Mar 2022 18:19:15 +0000 (14:19 -0400)
diff --git a/tools/arvbox/lib/arvbox/docker/createusers.sh b/tools/arvbox/lib/arvbox/docker/createusers.sh

index 9c81a66cedb5fcbb9f2efcef96bc6f93fbb8211f..4cafd8c09c2f6fbbd0758b53a9a0a1368765159d 100755 (executable)
--- a/tools/arvbox/lib/arvbox/docker/createusers.sh
+++ b/tools/arvbox/lib/arvbox/docker/createusers.sh
@@ -34,20 +34,12 @@ if ! grep "^arvbox:" /etc/passwd >/dev/null 2>/dev/null ; then
          chown arvbox:arvbox -R /usr/local $ARVADOS_CONTAINER_PATH \
                /var/lib/passenger /var/lib/postgresql \
                /var/lib/nginx /var/log/nginx /etc/ssl/private \
-              /var/lib/gopath /var/lib/pip /var/lib/npm \
-              /var/lib/arvados
+              /var/lib/gopath /var/lib/pip /var/lib/npm
      fi
  
      mkdir -p /tmp/crunch0 /tmp/crunch1
      chown crunch:crunch -R /tmp/crunch0 /tmp/crunch1
  
-    # singularity needs to be owned by root and suid
-    chown root /var/lib/arvados/bin/singularity \
-         /var/lib/arvados/etc/singularity/singularity.conf \
-         /var/lib/arvados/etc/singularity/capability.json \
-         /var/lib/arvados/etc/singularity/ecl.toml
-    chmod u+s /var/lib/arvados/bin/singularity
-
      echo "arvbox    ALL=(crunch) NOPASSWD: ALL" >> /etc/sudoers
  
      cat <<EOF > /etc/profile.d/paths.sh
author	Peter Amstutz <peter.amstutz@curii.com>
	Fri, 18 Mar 2022 18:19:15 +0000 (14:19 -0400)
committer	Peter Amstutz <peter.amstutz@curii.com>
	Fri, 18 Mar 2022 18:19:15 +0000 (14:19 -0400)