In [None]:
source vars.sh

<link href="https://cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-Zenh87qX5JnK2Jl0vWa8Ck2rdkQ2Bzep5IDxbcnCeuOxjzrPF/et3URy9Bv1WTRi" crossorigin="anonymous">

# Containers on Milton

# Motivation

## Why Containers?

* Reproducibility: ensure the analysis is insulated from changes in the outside system such as upgrades, environment variables etc.
    * e.g. you can compile a container with the exact R version, packages and data required to reproduce your analysis!
* Easy Usage: no need to install dependencies, use `make` etc, since they are all bundled. Sometimes users don't have permissions to install dependencies.
    * e.g. WEHI's AlphaFold
* Portability: the same `.cif` container can be run on any Linux machine with the same CPU architecture. No need to install using `apt`/`yum`/`conda` etc
    e.g. deploying a web application such as Shiny
* Maintainability: developers don't need to edit code to accommodate updates to language version etc
* OS Support: can be used to run old or new software that isn't compatible with the OS without breaking everything else.

[More information](https://apptainer.org/docs/user/main/introduction.html#use-cases)

## Why Apptainer?

Linux supports various container engines:

* Docker: most popular, but insecure on shared systems
* Podman: open source re-implementation of Docker. More secure
* Apptainer: different API from docker, designed to be HPC-first
* Singularity: old version of Singularity

# Running Containers

## Setting Up Apptainer

First we need to load apptainer. The most common way to load apptainer is as an [Environment Module](https://modules.readthedocs.io/en/latest/). On milton, the latest version we have access to is `1.1.0`.

In [None]:
module load apptainer/1.1.0

In [None]:
apptainer version

In [18]:
grep --help

Usage: grep [OPTION]... PATTERN [FILE]...
Search for PATTERN in each FILE or standard input.
PATTERN is, by default, a basic regular expression (BRE).
Example: grep -i 'hello world' menu.h main.c

Regexp selection and interpretation:
  -E, --extended-regexp     PATTERN is an extended regular expression (ERE)
  -F, --fixed-strings       PATTERN is a set of newline-separated fixed strings
  -G, --basic-regexp        PATTERN is a basic regular expression (BRE)
  -P, --perl-regexp         PATTERN is a Perl regular expression
  -e, --regexp=PATTERN      use PATTERN for matching
  -f, --file=FILE           obtain PATTERN from FILE
  -i, --ignore-case         ignore case distinctions
  -w, --word-regexp         force PATTERN to match only whole words
  -x, --line-regexp         force PATTERN to match only whole lines
  -z, --null-data           a data line ends in 0 byte, not newline

Miscellaneous:
  -s, --no-messages         suppress error messages
  -v, --invert-match        select non-mat

In [15]:
apptainer help


Linux container platform optimized for High Performance Computing (HPC) and
Enterprise Performance Computing (EPC)

Usage:
  apptainer [global options...]

Description:
  Apptainer containers provide an application virtualization layer enabling
  mobility of compute via both application and environment portability. With
  Apptainer one is capable of building a root file system that runs on any
  other Linux system where Apptainer is installed.

Options:
      --build-config    use configuration needed for building containers
  -c, --config string   specify a configuration file (for root or
                        unprivileged installation only) (default
                        "/stornext/System/data/tools/apptainer/apptainer-1.1.0/etc/apptainer/apptainer.conf")
  -d, --debug           print debugging information (highest verbosity)
  -h, --help            help for apptainer
      --nocolor         print without color output (default False)
  -q, --quiet           suppress normal outpu

You can run Apptainer images using the `apptainer run ` command. This executes the "runscript" inside the container, which is the default executable:

In [None]:
apptainer run --help

If you're working with an image you have downloaded, this will probably be a `.sif` file:

In [None]:
apptainer run WelcomeImage/hello.sif

In [None]:
#apptainer run oras://ghcr.io/WEHI-ResearchComputing/hello:latest

Next, we will try to run a Docker container. This is the most common type of container you will likely find in the wild, since Apptainer is mostly only used on HPC:

<div class="alert alert-info" role="alert">
    Try this yourself!
</div>

In [None]:
apptainer run docker://hello-world

In [None]:
apptainer exec docker://docker/whalesay cowsay boo

This was originally from: https://hub.docker.com/r/docker/whalesay/

In [None]:
* Note that ultimately the Docker image is converted to `.sif` format

In [None]:
cd WelcomeImage
apptainer build hello.sif hello.def

In [None]:
apptainer run hello.sif

In [None]:
ls /vast/projects/alphafold/alphafold/alphafold-2.2.0.0/

In [None]:
cat /vast/projects/alphafold/alphafold/alphafold-2.2.0.0/bin/alphafold

In [None]:
singularity run /vast/projects/alphafold/alphafold/alphafold-2.2.0.0/AlphaFold-2.2.0.0.sif \
    

## Building Containers

## Hosting Containers

### Create a Repository

### Create a Token

* Visit https://github.com/settings/tokens
* "Generate a new token (classic)"
* Check `write:packages`
* Click "Generate token"

## Login

* Run `apptainer remote login --username <YOUR GITHUB USERNAME> docker://ghcr.io`, and then paste in the access token
* Run `apptainer push WelcomeImage/hello.cif oras://ghcr.io/<YOUR GITHUB USERNAME>/hello:latest`

In [None]:
apptainer remote login --username $GITHUB_USERNAME --password $GITHUB_TOKEN docker://ghcr.io

In [None]:
apptainer push WelcomeImage/hello.cif oras://ghcr.io/$GITHUB_USERNAME/hello:latest