Version information
This version is compatible with:
- Puppet Enterprise 2023.8.x, 2023.7.x, 2023.6.x, 2023.5.x, 2023.4.x, 2023.3.x, 2023.2.x, 2023.1.x, 2023.0.x, 2021.7.x, 2021.6.x, 2021.5.x, 2021.4.x, 2021.3.x, 2021.2.x, 2021.1.x, 2021.0.x
- Puppet >= 7.0.0 < 9.0.0
- , , , ,
Start using this module
Add this module to your Puppetfile:
mod 'treydock-apptainer', '4.0.0'Learn more about managing modules with a PuppetfileDocumentation
puppet-module-apptainer
Table of Contents
Overview
This module manages the apptainer installation and configuration of apptainer.conf.
RedHat and Debian (except Debian 10) based systems will by default install from apptainer package
Debian 10 will by default install from source
Usage
apptainer
Install and configure apptainer.
include apptainer
For both package and source installs, it's best to define the desired version. This Puppet module supports both upgrades and downgrades of Apptainer.
apptainer::version: '1.0.1'
The following Hiera example of building from source (default for Debian 10) with several additional options passed.
golang::version: '1.19.2'
apptainer::version: '1.0.1'
apptainer::install_method: source
apptainer::build_flags:
without-suid: true
mandir: /some/other/path
apptainer::build_env:
GOPATH=/some/other/path
apptainer::prefix: /opt/apptainer
apptainer::sysconfdir: /opt/apptainer/etc
apptainer::localstatedir: /opt/apptainer/var
Compile and install a Apptainer plugin from the Apptainer source:
apptainer::plugins:
github.com/apptainer/apptainer/log-plugin:
source_dir: examples/plugins/log-plugin
If replacing Singularity with Apptainer, it's possible to have this module cleanup Singularity to avoid conflicts:
apptainer::remove_singularity: true
Enabling Singularity removal will result in the following actions:
- Remove /etc/singularity
Reference
Reference
Table of Contents
Classes
Public Classes
apptainer: Manage Apptainer
Private Classes
apptainer::config: Private classapptainer::install::os: Private classapptainer::install::package: Private classapptainer::install::source: Private classapptainer::singularity: Private class
Defined types
apptainer::plugin: Manage Apptainer plugin
Classes
apptainer
Manage Apptainer
Examples
include ::apptainer
Parameters
The following parameters are available in the apptainer class:
install_methodinstall_setuidversionmanage_reporemove_singularitypackage_namesource_dependenciesmanage_gorebuild_on_gosource_base_dirsource_mconfig_pathbuild_flagsbuild_envprefixlocalstatedirsysconfdirsource_exec_pathpluginsconfig_pathconfig_templateallow_setuidmax_loop_devicesallow_pid_nsconfig_passwdconfig_groupconfig_resolv_confmount_procmount_sysmount_devmount_devptsmount_homemount_tmpmount_hostfsbind_pathsuser_bind_controlenable_fusemountenable_overlayenable_underlaymount_slavesessiondir_max_sizelimit_container_ownerslimit_container_groupslimit_container_pathsallow_containersallow_setuid_mount_encryptedallow_setuid_mount_squashfsallow_setuid_mount_extfsallow_net_usersallow_net_groupsallow_net_networksalways_use_nvuse_nvidia_container_clialways_use_rocmroot_default_capabilitiesmemory_fs_typecni_configuration_pathcni_plugin_pathbinary_pathmksquashfs_procsmksquashfs_memshared_loop_devicesimage_driverdownload_concurrencydownload_part_sizedownload_buffer_sizesystemd_cgroupsapptheus_socket_pathallow_monitoringnamespace_usersnamespace_begin_idnamespace_id_rangesubid_template
install_method
Data type: Enum['package','source','os']
Sets how Apptainer will be installed,
package will install the upstream package
source from source
os will install from standard OS repositories for example from EPEL on RedHat family.
Default value: 'package'
install_setuid
Data type: Boolean
Whether to install the setuid portion of apptainer
Default value: false
version
Data type: String
Version of Apptainer to install
Default value: '1.3.3'
manage_repo
Data type: Boolean
Enable repositories for apptainer packages, e.g. EPEL on RedHat
Default value: true
remove_singularity
Data type: Boolean
Set whether to remove Singularity before installing Apptainer
Default value: false
package_name
Data type: String
Apptainer package name Only used when install_method=package
Default value: 'apptainer'
source_dependencies
Data type: Array
Packages needed to build from source Only used when install_method=source
Default value: []
manage_go
Data type: Boolean
Sets if golang module should be included Only used when install_method=source
Default value: true
rebuild_on_go
Data type: Boolean
Sets if Apptainer should be rebuilt on updates to Go via golang module Only used when install_method=source and manage_go=true
Default value: true
source_base_dir
Data type: Stdlib::Absolutepath
Base directory of where Apptainer source will be extracted Only used when install_method=source
Default value: '/opt'
source_mconfig_path
Data type: Stdlib::Absolutepath
Path to source install mconfig script
Default value: '/usr/local/sbin/apptainer-mconfig.sh'
build_flags
Data type: Hash
Build flags to pass to mconfig when building Apptainer Only used when install_method=source
Default value: {}
build_env
Data type: Hash
Environment variables to use when building from source Only used when install_method=source
Default value: {}
prefix
Data type: Stdlib::Absolutepath
The --prefix value when building from source Only used when install_method=source
Default value: '/usr'
localstatedir
Data type: Stdlib::Absolutepath
The --localstatedir value when building from source Only used when install_method=source
Default value: '/var'
sysconfdir
Data type: Stdlib::Absolutepath
The --sysconfdir value when building from source Only used when install_method=source
Default value: '/etc'
source_exec_path
Data type: String
Set PATH when building from source Only used when install_method=source
Default value: '/usr/local/bin:/bin:/usr/bin:/usr/local/sbin:/usr/sbin:/sbin'
plugins
Data type: Hash
Hash to define apptainer::plugin resources
Default value: {}
config_path
Data type: Stdlib::Absolutepath
Path to apptainer.conf
Default value: '/etc/apptainer/apptainer.conf'
config_template
Data type: String
Template used for apptainer.conf
Default value: 'apptainer/apptainer.conf.erb'
allow_setuid
Data type: Enum['yes','no']
See apptainer.conf: allow setuid
Default value: 'yes'
max_loop_devices
Data type: Integer
See apptainer.conf: max loop devices
Default value: 256
allow_pid_ns
Data type: Enum['yes','no']
See apptainer.conf: allow pid ns
Default value: 'yes'
config_passwd
Data type: Enum['yes','no']
See apptainer.conf: config passwd
Default value: 'yes'
config_group
Data type: Enum['yes','no']
See apptainer.conf: config group
Default value: 'yes'
config_resolv_conf
Data type: Enum['yes','no']
See apptainer.conf: config resolv conf
Default value: 'yes'
mount_proc
Data type: Enum['yes','no']
See apptainer.conf: mount proc
Default value: 'yes'
mount_sys
Data type: Enum['yes','no']
See apptainer.conf: mount sys
Default value: 'yes'
mount_dev
Data type: Enum['yes','no']
See apptainer.conf: mount dev
Default value: 'yes'
mount_devpts
Data type: Enum['yes','no']
See apptainer.conf: mount devpts
Default value: 'yes'
mount_home
Data type: Enum['yes','no']
See apptainer.conf: mount home
Default value: 'yes'
mount_tmp
Data type: Enum['yes','no']
See apptainer.conf: mount tmp
Default value: 'yes'
mount_hostfs
Data type: Enum['yes','no']
See apptainer.conf: mount hostfs
Default value: 'no'
bind_paths
Data type: Array[Stdlib::Absolutepath]
See apptainer.conf: bind paths
Default value: ['/etc/localtime', '/etc/hosts']
user_bind_control
Data type: Enum['yes','no']
See apptainer.conf: user bind control
Default value: 'yes'
enable_fusemount
Data type: Enum['yes','no']
See apptainer.conf: enable fusemount
Default value: 'yes'
enable_overlay
Data type: Enum['yes','no','try','driver']
See apptainer.conf: enable overlay
Default value: 'yes'
enable_underlay
Data type: Enum['yes','no','preferred']
See apptainer.conf: enable underlay
Default value: 'yes'
mount_slave
Data type: Enum['yes','no']
See apptainer.conf: mount slave
Default value: 'yes'
sessiondir_max_size
Data type: Integer
See apptainer.conf: sessiondir max size
Default value: 64
limit_container_owners
Data type: Optional[Array]
See apptainer.conf: limit container owners
Default value: undef
limit_container_groups
Data type: Optional[Array]
See apptainer.conf: limit container groups
Default value: undef
limit_container_paths
Data type: Optional[Array]
See apptainer.conf: limit container paths
Default value: undef
allow_containers
Data type: Hash[String,Enum['yes','no']]
See apptainer.conf: allow containers
Default value:
{
'sif' => 'yes',
'encrypted' => 'yes',
'squashfs' => 'yes',
'extfs' => 'yes',
'dir' => 'yes',
}
allow_setuid_mount_encrypted
Data type: Optional[Enum['yes','no']]
See apptainer.conf allow setuid-mount encrypted
Default value: undef
allow_setuid_mount_squashfs
Data type: Optional[Enum['yes','no','iflimited']]
See apptainer.conf allow setuid-mount squashfs
Default value: undef
allow_setuid_mount_extfs
Data type: Optional[Enum['yes','no']]
See apptainer.conf allow setuid-mount extfs
Default value: undef
allow_net_users
Data type: Array
See apptainer.conf: allow net users
Default value: []
allow_net_groups
Data type: Array
See apptainer.conf: allow net groups
Default value: []
allow_net_networks
Data type: Array
See apptainer.conf: allow net networks
Default value: []
always_use_nv
Data type: Enum['yes','no']
See apptainer.conf: always use nv
Default value: 'no'
use_nvidia_container_cli
Data type: Enum['yes','no']
See apptainer.conf: use nvidia-container-cli
Default value: 'no'
always_use_rocm
Data type: Enum['yes','no']
See apptainer.conf: always use rocm
Default value: 'no'
root_default_capabilities
Data type: Enum['full','file','default','no']
See apptainer.conf: root default capabilities
Default value: 'full'
memory_fs_type
Data type: Enum['tmpfs','ramfs']
See apptainer.conf: memory fs type
Default value: 'tmpfs'
cni_configuration_path
Data type: Optional[Stdlib::Absolutepath]
See apptainer.conf: cni configuration path
Default value: undef
cni_plugin_path
Data type: Optional[Stdlib::Absolutepath]
See apptainer.conf: cni plugin path
Default value: undef
binary_path
Data type: Optional[String[1]]
See apptainer.conf: binary path
Default value: undef
mksquashfs_procs
Data type: Integer[0,default]
See apptainer.conf: mksquashfs procs
Default value: 0
mksquashfs_mem
Data type: Optional[String[1]]
See apptainer.conf: mksquashfs mem
Default value: undef
shared_loop_devices
Data type: Enum['yes','no']
See apptainer.conf: shared loop devices
Default value: 'no'
image_driver
Data type: Optional[String]
See apptainer.conf: image driver
Default value: undef
download_concurrency
Data type: Integer[0,default]
See apptainer.conf: download concurrency
Default value: 3
download_part_size
Data type: Integer[0,default]
See apptainer.conf: download part size
Default value: 5242880
download_buffer_size
Data type: Integer[0,default]
See apptainer.conf: download buffer size
Default value: 32768
systemd_cgroups
Data type: Enum['yes','no']
See apptainer.conf: systemd cgroups
Default value: 'yes'
apptheus_socket_path
Data type: Stdlib::Absolutepath
See apptainer.conf apptheus socket path
Default value: '/run/apptheus/gateway.sock'
allow_monitoring
Data type: Enum['yes','no']
See apptainer.conf allow monitoring
Default value: 'no'
namespace_users
Data type: Array
List of uses to add to /etc/subuid and /etc/subgid to support user namespaces
Default value: []
namespace_begin_id
Data type: Integer
The beginning ID for /etc/subuid and /etc/subgid. The value is incremented For each user by start + namespace_id_range + 1
Default value: 65537
namespace_id_range
Data type: Integer
The range of UIDs/GIDs usable by a user in namespaces
Default value: 65536
subid_template
Data type: String
The template to use for /etc/subuid and /etc/subgid
Default value: 'apptainer/subid.erb'
Defined types
apptainer::plugin
Manage Apptainer plugin
Examples
install log plugin
apptainer::plugin { 'github.com/apptainer/apptainer/log-plugin':
source_dir => 'examples/plugins/log-plugin',
}
Parameters
The following parameters are available in the apptainer::plugin defined type:
source_dir
Data type: Optional[String]
The plugin source directory
This path must be relative to Apptainer source directory $apptainer::install::source::source_dir
Default value: undef
ensure
Data type: Enum['present', 'absent']
Whether to install (present) or uninstall (absent) the plugin
Default value: 'present'
sif_name
Data type: Optional[String]
The name of the SIF image to use for install after the plugin is compiled.
The default is to use part after last / in the plugin name so
plugin examples/plugins/log-plugin will have SIF name of log-plugin.sif.
Default value: undef
Change log
All notable changes to this project will be documented in this file. The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
v4.0.0 (2024-10-22)
Changed
v3.0.0 (2024-07-24)
Changed
v2.0.0 (2022-11-17)
Changed
v1.1.0 (2022-11-16)
Added
v1.0.0 (2022-11-14)
Changed
- Fix plugin testing for 1.1.x, update parameters to match apptainer 1.1.x configs #6 (treydock)
- Ensure apptainer 1.1.x support #5 (treydock)
- Add install_setuid to optionally add setuid bits #4 (treydock)
Added
- Support installation from EPEL #3 (traylenator)
v0.1.1 (2022-05-12)
Fixed
v0.1.0 (2022-04-08)
Added
* This Changelog was automatically generated by github_changelog_generator
Dependencies
- puppetlabs/stdlib (>= 9.0.0 <10.0.0)
- treydock/golang (>= 1.0.0 <4.0.0)
- puppet/archive (>= 1.0.0 <8.0.0)
- puppet/epel (>= 4.0.0 <6.0.0)
Copyright (C) 2022 Trey Dockendorf <treydock@gmail.com>
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.