Search code examples
dockergoogle-cloud-storagegoogle-cloud-rungcsfuse

Unable to mount bucket with gcsfuse on Cloud Run


With the second generation runtime of Google Cloud Run, it's now possible to mount Google Storage Buckets using gcsfuse.

https://cloud.google.com/run/docs/tutorials/network-filesystems-fuse

The python3 example is working fine. Unfortunately, I keep getting this error with my Dockerfile:

bin/fusermount: failed to open /dev/fuse: Permission denied
mountWithArgs: mountWithConn: Mount: mount: running /bin/fusermount: exit status 1

screenshot

Dockerfile

# https://github.com/chiaen/docker-gcsfuse
FROM golang:1.17.5-alpine as gcsfuse
RUN apk add --no-cache git
ENV GOPATH /go
RUN go get -u github.com/googlecloudplatform/gcsfuse

FROM composer:2 as vendor
COPY composer.json composer.json
COPY composer.lock composer.lock
RUN composer install --ignore-platform-reqs --no-interaction --prefer-dist

FROM craftcms/nginx:7.4

ENV MNT_DIR /mnt/gcs

USER root
RUN apk add --no-cache mysql-client postgresql-client ca-certificates fuse nano sudo tini bash

RUN mkdir -p $MNT_DIR
RUN chown www-data:www-data $MNT_DIR
USER www-data

COPY --chown=www-data:www-data --from=vendor /app/vendor/ /app/vendor/
COPY --chown=www-data:www-data . .
COPY --from=gcsfuse /go/bin/gcsfuse /usr/local/bin
COPY supervisor.conf /etc/supervisor/conf.d/supervisor.conf

Since there are a few files, I put all the files into a github repo. https://github.com/internetztube/cloud-run-persistent-storage-issue


Solution

  • Update:

    I solved it mounting GCS bucket in Cloud Run and read/write of object with the following changes:

    • Dockerfile:
    # https://github.com/chiaen/docker-gcsfuse
    FROM golang:1.17.5-alpine as gcsfuse
    RUN apk add --no-cache git
    ENV GOPATH /go
    RUN go get -u github.com/googlecloudplatform/gcsfuse
    
    FROM composer:2 as vendor
    COPY composer.json composer.json
    COPY composer.lock composer.lock
    RUN composer install --ignore-platform-reqs --no-interaction --prefer-dist
    
    FROM craftcms/nginx:7.4
    
    ENV MNT_DIR /mnt/gcs
    
    USER root
    RUN apk add --no-cache mysql-client postgresql-client ca-certificates fuse nano sudo tini bash
    RUN mkdir -p $MNT_DIR
    RUN chown www-data:www-data $MNT_DIR
    
    COPY --chown=www-data:www-data --from=vendor /app/vendor/ /app/vendor/
    COPY --chown=www-data:www-data . .
    COPY --from=gcsfuse /go/bin/gcsfuse /usr/local/bin
    COPY supervisor.conf /etc/supervisor/conf.d/supervisor.conf
    
    • Added -file-mode=777 -dir-mode=777 together with gcsfuse command in gcsfuse.sh to enable read/write inside the mounted directory of GCS bucket:
    gcsfuse -o rw,allow_other -file-mode=777 -dir-mode=777 --foreground --debug_http --debug_gcs --debug_fuse --implicit-dirs $DISK_BUCKET $MNT_DIR
    
    • Hardcoding the path (/mnt/gcs/demo.txt instead of ../storage/demo.txt) for testing in the file web/index.php.

    Screenshot output:

    enter image description here