Releases: containers/bubblewrap
0.11.1
Bug fixes:
-
Reset disposition of
SIGCHLD, restoring normal subprocess management if bwrap was run from a process that was ignoring that signal, such as Erlang or volumeicon (#705, Joel Pelaez Jorge) -
Don't ignore
--userns 0,--userns2 0or--pidns 0if used (#731, Daniel Cazares). Note that using a fd number ≥ 3 for these purposes is still preferred, to avoid confusion with the stdin, stdout, stderr that will be inherited by the command inside the container. -
Fix grammar in an error message (#694, J. Neuschäfer)
-
Fix a broken link in the documentation (#729, Aaron Brooks)
Internal changes:
-
Enable user namespaces in Github Actions configuration, fixing a CI regression with newer Ubuntu (#728, Joel Pelaez Jorge)
-
Clarify comments (#737, Simon McVittie)
c1b7455a1283b1295879a46d5f001dfd088c0bb0f238abb5e128b3583a246f71 *bubblewrap-0.11.1.tar.xz
0.11.0
Released: 2024-10-30
Dependencies:
-
Remove the Autotools build system. Meson ≥ 0.49.0 is now required at build-time. (#625, @WhyNotHugo)
-
For users of bash-completion, bash-completion ≥ 2.10 is recommended. With older bash-completion, bubblewrap might install completions outside its
${prefix}unless overridden with-Dbash_completion_dir=….
Enhancements:
-
New
--overlay,--tmp-overlay,--ro-overlayand--overlay-srcoptions allow creation of overlay mounts. This feature is not available when bubblewrap is installed setuid. (#412, #663; @rhendric, @wmanley, @smcv) -
New
--level-prefixoption produces output that can be parsed by tools likelogger --prio-prefixandsystemd-cat --level-prefix=1(#646, @smcv)
Bug fixes:
-
Handle
EINTRwhen doing I/O on files or sockets (#657, @smcv) -
Don't make assumptions about alignment of socket control message data (#637, @smcv)
-
Update URLs in documentation to https (#566, @TotalCaesar659)
Internal changes:
988fd6b232dafa04b8b8198723efeaccdb3c6aa9c1c7936219d5791a8b7a8646 *bubblewrap-0.11.0.tar.xz
Contributors
Assets 4
0.10.0
New features:
- Add the
--[ro-]bind-fdoption, which can be used to mount a filesystem represented by a file descriptor without time-of-check/time-of-use attacks. This is needed when resolving CVE-2024-42472 (GHSA-7hgv-f2j8-xw87) in Flatpak.
Other changes:
- Fix some confusing syntax in
SetupOpFlag(no functional change). (#636)
0.6.3
This release is intended to be used as part of Flatpak 1.14.x. If possible, please upgrade to 0.10.0 or later instead.
- Backport the
--[ro-]bind-fdoption from 0.10.0. This can be used to mount a filesystem represented by a file descriptor without time-of-check/time-of-use attacks, and is needed when resolving CVE-2024-42472 (GHSA-7hgv-f2j8-xw87) in Flatpak.
d8cab8943a36cd1bc1b8c63596c6ef6b29b12883d90ed9b14a969795ac60ddef bubblewrap-0.6.3.tar.xz
0.9.0
Build system
- Building this version of bubblewrap with Meson is recommended. The source release
bubblewrap-0.9.0.tar.xzno longer contains Autotools-generated files, although this version can still be built using Autotools after running./autogen.sh. Future versions are likely to remove the Autotools build system altogether.
New features
- Add
--argv0(#91)
Other enhancements
--symlinkis now idempotent, meaning it succeeds if the symlink already exists and already has the desired target (#549, flatpak/flatpak#2387, flatpak/flatpak#3477, flatpak/flatpak#5255)- Clarify security considerations in documentation (#555, #560, #621)
- Clarify documentation for
--cap-add(#562) - Report a better error message if
mount(2)fails withENOSPC(#615, ValveSoftware/steam-runtime#637) - Make it easier to add new unit tests (#420)
- Drop support for ancient Python versions in demo code
Bug fixes
- Fix a double-close on error reading from
--args,--seccompor--add-seccomp-fdargument (#558) - Improve memory allocation behaviour (#556, #624)
- Silence various compiler warnings (#559)
- Silence an Automake warning (#622)
- Fix a test failure when running as uid 0 in a container (#488)
- Fix a test failure when
/mntis a symlink (#599) - Fix a test failure on NixOS (#603)
c6347eaced49ac0141996f46bba3b089e5e6ea4408bc1c43bab9f2d05dd094e1 *bubblewrap-0.9.0.tar.xz
0.8.0
New features:
- Add
--disable-usernsoption to prevent the sandbox from creating its own nested user namespace (#488) - Add
--assert-userns-disabledoption to check that an existing userns was created with--disable-userns(#488) - Give a clearer error message if the kernel doesn't have
CONFIG_SECCOMPandCONFIG_SECCOMP_FILTER(#550)
Bug fixes:
- Fix test failure with recent versions of
capsh(#544) - Fix test failure since 0.7.0 when not using post-2013 GNU coreutils (#539)
- Fix test failure since 0.7.0 if bubblewrap is setuid (#539)
Known issues:
- Tests fail if run as root (#554)
$ sha256sum -b bubblewrap-0.8.0.tar.xz
957ad1149db9033db88e988b12bcebe349a445e1efc8a9b59ad2939a113d333a *bubblewrap-0.8.0.tar.xz
v0.7.0
New features:
--sizeoption controls the size of a subsequent--tmpfs(#509)- Better error messages if a mount operation fails (#472)
- Better error message if creating the new user namespace fails with
ENOSPC(#487) - When building as a Meson subproject, a
RUNPATHcan be set on the executable to make it easier to bundle itslibcapdependency
Bug fixes:
- When building with Autotools, ensure initial setup for
pkg-configis not disabled by--with-bash-completion-dir=PATH(#316, #342, #441) - Fix test failures when running as uid 0 but with limited capabilities (#510)
- Use POSIX
command -vin preference to non-standardwhich(#527) - Fix a copy/paste error in
--help(#531)
$ sha256sum -b bubblewrap-0.7.0.tar.xz
764ab7100bd037ea53d440d362e099d7a425966bc62d1f00ab26b8fbb882a9dc *bubblewrap-0.7.0.tar.xz
0.6.2
New features in Meson build:
- Auto-detect whether the man page can be generated
-Dbwrapdir=...changes the installation directory (useful when being used as a subproject)-Dtests=falsedisables unit tests
Bug fixes:
- Add
--add-seccomp-fdto shell completions - Document
--add-seccomp-fd,--json-status-fdand--share-netin the man page - Add attributes to silence various compiler warnings
- Allow compilation of tests with musl on mips architectures
- Allow compilation with older glibc
- Disable sanitizers for a test helper whose seccomp profile breaks the instrumentation
- Disable AddressSanitizer leak detection where it interferes with unit testing
$ sha256sum -b bubblewrap-0.6.2.tar.xz
8a0ec802d1b3e956c5bb0a40a81c9ce0b055a31bf30a8efa547433603b8af20b *bubblewrap-0.6.2.tar.xz
0.6.1
0.6.0
New features:
- New
--add-seccompoption can be used to add more than one seccomp program (#453) - Add a warning when repeating options where only the last one will be used, in particular
--seccomp(#454) - Add a Meson build system. (#432)
- This can be used as a subproject by larger Meson projects. When used as a subproject, the
-Dprogram_prefixoption is required: seetests/use-as-subproject/for an example. - There is no equivalent of the
--with-priv-mode=setuidoption in this build system. Distributions that still require a setuid bubblewrap executable will need tochownandchmodthe executable appropriately as a separate step in their packaging. - The Autotools build system is still supported in this release, but might be removed in a future release if the Meson build system is sufficiently successful.
- This can be used as a subproject by larger Meson projects. When used as a subproject, the
Bug fixes:
- Invoke bash via
PATHfor better compatibility with non-FHS operating systems - Exit early when
argc == 0, to harden against the equivalent of CVE-2021-4034 (this is not a security issue in our case)
Other changes:
- The default branch is now named
main - Partial REUSE support (add SPDX-License-Identifier to many source files)
- Remove old CI integration
$ sha256sum -b bubblewrap-0.6.0.tar.xz
11393cf2058f22e6a6c6e9cca3c85ff4c4239806cb28fee657c62a544df35693 *bubblewrap-0.6.0.tar.xz