Releases: apptainer/singularity
Singularity 3.1.1
Greetings Singularity containerds! 🤓
Here comes a brand new point release for Singularity!
Singularity 3.1.1 contains a whole slew of bug fixes and some minor improvements and new features. Here’s a high-level overview of the changes. For more details, see the git log.
New Commands
- New hidden
buildcfg
command to display compile-time parameters - Added support for
LDFLAGS
,CFLAGS
,CGO_
variables in build system - Added
--nocolor
flag to Singularity client to disable color in logging
Removed Commands
singularity capability <add/drop> --desc
has been removedsingularity capability list <--all/--group/--user>
flags have all been removed
New features / functionalities
- The
--builder
flag to thebuild
command implicitly sets--remote
- Repeated binds no longer cause Singularity to exit and fail, just warn instead
- Corrected typos and improved docstrings throughout
- Removed warning when CWD does not exist on the host system
- Added support to spec file for RPM building on SLES 11
Please report any bugs to:
https://github.com/sylabs/singularity/issues/new
And if you think that you've discovered a security vulnerability please report it to:
[email protected]
Thanks! Happy hacking!
Singularity 3.1.0
Great news Singularity fans!
Here comes a new feature release! And this is a big one!
Singularity v3.1.0 contains a ton of new features, enhancements and bug fixes. The big news is that there is now an OCI compliant variant of the Singularity runtime! (Thanks @cclerget!) Using the oci
command group, a user can launch a fully OCI compliant version of Singularity.
Here’s a high-level overview of the changes in this release. For more details, see the git log.
New Commands
- Introduced the
oci
command group to support a new OCI compliant variant of the Singularity runtime:attach
Attach console to a running container processcreate
Create a container from a bundle directorydelete
Delete containerexec
Execute a command within containerkill
Kill a containermount
Mount create an OCI bundle from SIF imagepause
Suspends all processes inside the containerresume
Resumes all processes previously paused inside the containerrun
Create/start/attach/delete a container from a bundle directorystart
Start container processstate
Query state of a containerumount
Umount delete bundleupdate
Update container cgroups resources
- Added
cache
command group to inspect and manage cached filesclean
Clean your local Singularity cachelist
List your local Singularity cache
New features / functionalities
- Can now build CLI on darwin for limited functionality on Mac
- Added the
scratch
bootstrap agent to build from anything - Reintroduced support for zypper bootstrap agent
- Added the ability to overwrite a new
singularity.conf
when building from RPM if desired - Fixed several regressions and omissions in SCIF support
- Added caching for containers pulled/built from the Container Library
- Changed
keys
command group tokey
(retained hiddenkeys
command for backward compatibility) - Created an
RPMPREFIX
variable to allow RPMs to be installed in custom locations - Greatly expanded CI unit and end-to-end testing
As always, please report any bugs to:
https://github.com/sylabs/singularity/issues/new
And if you think that you've discovered a security vulnerability please report it to:
[email protected]
Thanks! Happy hacking!
Singularity 3.0.3
Howdy Singularity containerizers!
Announcing Singularity version 3.0.3!
This point release for the 3.0 series contains several important bug fixes and a few improvements. Here are the highlights:
- Bind paths in
singularity.conf
are properly parsed and applied at runtime - Singularity runtime will properly fail if
singularity.conf
file is not owned by the root user - Several improvements to RPM packaging including using golang from epel, improved support for Fedora, and avoiding overwriting conf file on new RPM install
- Unprivileged
--contain
option now properly mountsdevpts
on older kernels - Uppercase proxy environment variables are now rightly respected
Enjoy this new version of Singularity!
As always, please report any bugs to:
https://github.com/sylabs/singularity/issues/new
And if you think that you've discovered a security vulnerability please report it to:
[email protected]
Singularity 3.0.2
Greetings Singularity community!
It is a pleasure to announce the release of Singularity version 3.0.2!
This point release for the 3.0 series fixes a ton of bugs. Here are the highlights:
- Added the
--docker-login
flag to enable interactive authentication with docker registries - Added support for pulling directly from HTTP and HTTPS
- Made minor improvements to RPM packaging and added basic support for alpine packaging
- The
$SINGULARITY_NOHTTPS
,$SINGULARITY_TMPDIR
, and$SINGULARITY_DOCKER_USERNAME
/$SINGULARITY_DOCKER_PASSWORD
environment variables are now correctly respected - Pulling from a private shub registry now works as expected
- Running a container with
--network="none"
no longer incorrectly fails with an error message - Commands now correctly return 1 when incorrectly executed without arguments
- Progress bars no longer incorrectly display when running with
--quiet
or--silent
- Contents of
91-environment.sh
file are now displayed if appropriate when runninginspect --environment
Have fun playing with this new, more stable version of Singularity!
As always, please report any bugs to:
https://github.com/sylabs/singularity/issues/new
And if you think that you've discovered a security vulnerability please report it to:
[email protected]
Singularity 2.6.1
Greetings Singularity containerizers!
The 2.6.1 release contains fixes for a high severity security issue affecting Singularity 2.4.0 through 2.6.0 on modern distributions managed with systemd where mount points are mounted with shared mount propagation by default (CVE-2018-19295). A malicious user with local/network access to the host system (e.g. ssh) could exploit this vulnerability to mount arbitrary directories into the host mount namespace resulting in privilege escalation on the host.
Singularity 2.6.1 should be installed immediately, and all previous versions of Singularity should be removed. The vulnerability addressed in this release affects systems on which the /
mount point or any exploitable mount point (eg: /run
, /var
...) are set shared. If you are unable to upgrade immediately, you should set:
mount --make-rprivate /
so that /
and all mount points belonging to /
are no longer mounted shared. This change must be repeated on every reboot.
Security related fix
- disables instance features for mount commands, disables instance join for start command, and disables daemon start for action commands
Great thanks to Matthias Gerstner of the SUSE security team for confidentially reporting this vulnerability to Sylabs!
As always, please report any bugs to:
https://github.com/singularityware/singularity/issues/new
If you think that you’ve discovered a security vulnerability, please email the Sylabs team at:
[email protected]
Singularity 3.0.1
Greetings Singularity community!
We're happy to announce the release of singularity v3.0.1
. This release fixes some major problems with building and installing v3.0.0
as an RPM. We've also greatly enhanced the general stability of the runtime.
In order to build v3.0.1
as an RPM:
- Download the
singularity-3.0.1.tar.gz
asset - Run
rpmbuild -tb singularity-3.0.1.tar.gz
- Install the RPM
As always, we appreciate your continued feedback and contributions.
Singularity 3.0.0
Greetings Singularity Folks!
Note: to install from a tarball, please use the attached singularity-v3.0.0.tar.gz
asset. The Source code (zip)
and Source code (tar.gz)
are automatically generated by GitHub will provide a development environment, not the release source.
To install from the included singularity-v3.0.0.tar.gz
asset, extract the tarball to ${GOPATH}/src/github.com/sylabs/singularity
using the following command and then continue with the procedure outlined in the installation instructions:
tar xf singularity-v3.0.0.tar.gz -C ${GOPATH}/src/github.com/sylabs/
It is our greatest pleasure to finally announce the release of Singularity v3.0.0
. For the last 10 months, we've been hard at work on making sure this new iteration of Singularity is as successful as possible.
On the SylabsIO website you can read about our decision to migrate from C to Golang, the new Singularity Image Format (SIF), our new GitHub branch structure, the Sylabs Container Library, and more on all parts the development cycle of v3.0.0
.
A full list of changes and improvements from v2.6.0
-> v3.0.0
can be found in the changelog.
If you have any feedback, please reach out to us. As always, we greatly appreciate your feedback and contributions.
Singularity 3.0.0 Beta 1
Greetings Singularity Folks!
It is our great pleasure to announce the v3.0.0-beta.1
Singularity after many months of work. This release again contains major bug-fixes, improvements, and enhancements when compared to v3.0.0-alpha.2
. Further, we feel that this release achieves feature parity (with some minor differences here and there) with the 2.x
versions of Singularity. We anticipate that all major features have already been committed at this point, and thus all development for the rest of the pre-release of v3.0.0
will be geared towards catching and fixing bugs.
It would be greatly appreciated if everybody in the community could spend as much time as possible trying to break this release. If you do happen to notice anything that doesn't seem right, something that works in 2.x
but isn't working now, or any other minor bugs/problems, please let us know on our slack channel or on the Issues Tab of the Singularity repository.
A full changelog and release notes for everything being introduced and changed in v3.0.0
will be available when we officially tag the v3.0.0
release. For the time being, you can refer to this blog post by @ArangoGutierrez about what we expect the release to look like.
Known Issues:
- Zypper bootstrap does not work correctly in some scenarios
%files
section is not supported when building remotely via the Sylabs Remote Build Service- The command
singularity help ...
always returns 0, even when attempting to get help on a non-existent subcommand. This behavior is different from2.x
- Similarly, the command
singularity instance list
now returns 0 even when no instances are running on the system. - The command
singularity inspect
does not yet provide inspection for individual apps, only the base image
Over the coming weeks, we will be tirelessly squashing bugs to ensure the most stable release of v3.0.0
possible. Stay tuned, and as always, we welcome your feedback and contributions!
Singularity 3.0.0 Alpha 2
Greetings Singularity Folks!
We are pleased to announce the second alpha version of Singularity 3.0. This release is a large improvement over 3.0.0-alpha.1, with major fixes to bugs and feature parity issues. We've also just moved the repository from singularityware/singularity
to sylabs/singularity
. Nothing should change with this update, but if any complications arise as a result of the move please reach out to us on our slack channel.
It is our intention to quickly iterate, with further alpha and beta releases over the coming weeks. Stay tuned, and as always, we welcome your feedback and contributions!
Singularity 3.0.0 Alpha 1
Greetings Singularity Folks!
We are pleased to announce the first alpha version of Singularity 3.0. This release is not for the faint of heart, with bugs must be squashed, features that are not yet complete, and new development environment requirements. On that last point, be sure to check out the installation instructions.
It is our intention to quickly iterate, with further alpha (and eventually beta) releases over the coming weeks. Stay tuned, and as always, we welcome your feedback and contributions!