Thanks for the inspiration!
I used the same logic, with a tweak: I run
mountin a (privileged) initContainer and place my
umount in a sidecar (privileged) container that sleeps forever until preStop.
Compared to the approach documented here, mine seems a tad more complex. But there’s no
setup_complete dummy file. (My app requires the mounts during startup; readinessProbe doesn’t delay startup, so I needed another approach.)