[Buildd-tools-devel] schroot 1.1.0 released

Roger Leigh rleigh at whinlatter.ukfsn.org
Fri Aug 25 20:48:44 UTC 2006 

Hi folks,

I have released schroot 1.1.0.  This is the first release on the trunk
leading to what will be the new 1.2.x stable series.  While the
schroot-1.0 branch is frozen for etch, and is also buildable on woody,
the trunk must support etch+1 as well as being buildable on etch.  I'd
like to make the first stable 1.2.0 release sometime after etch is
released and all the items planned for the release are completed.

This release merges all the changes made on the schroot-1.0 branch, as
well as adding two new features: proper support for using the CTTY for
secure authentication and terminal handling, and a new configuration
option to filter the environment (not in the list of major changes
below).  The environment filtering previously used a hardcoded static
list, but now allows an [extended] regex filter, falling back to a
default regex for security if none is defined:

  ^(BASH_ENV|CDPATH|ENV|HOSTALIASES|IFS|KRB5_CONFIG|KRBCONFDIR|KRBTKFILE|KRB_CONF|LD_.*|LOCALDOMAIN|NLSPATH|PATH_LOCALE|RES_OPTIONS|TERMINFO|TERMINFO_DIRS|TERMPATH)$

* Major changes in 1.1.0:

  1) Authentication now uses the Controlling TTY (/dev/tty) for
     communication with the user.  This means PAM interaction with the
     user will work even if stdin, stdout and stderr are all
     redirected.  If authentication is required and no CTTY is
     available, it will fail (due to authentication being an
     interactive process).

  2) The syslog logging of the command or shell being run in the
     chroot now only occurs when running as root or switching to
     another user.  If the user is the same inside and outside the
     chroot, and not root, the command or shell being run will not be
     logged.

  3) A --directory option has been added to schroot, dchroot and
     dchroot-dsa.  This option allows the user to explictly specify
     the working directory inside the chroot.

The release is available from
  https://alioth.debian.org/project/shownotes.php?release_id=867
  https://alioth.debian.org/download.php/1750/schroot-1.1.0.tar.bz2
or
  svn://svn.debian.org/svn/buildd-tools/tags/schroot-1.1.0


If anyone wants any new features adding, or any changes making, now is
the time to suggest them!  There's currently a small list in TODO and
doc/schroot/html/todo.html.  Any suggestions would be welcome.

One thing I was thinking about doing (on a separate experimental
branch) is progressively porting parts of sbuild to C++.  It would act
as a wrapper around the existing sbuild perl script so that bits can
be moved out of sbuild gradually.  This is a good bit of work though,
and is nothing more than an idea at present.

This release does have some translation updates.  There's no urgency
in these being translated, because it is at least four months away
From release, if not six months or more.  Whatever is best for the
translation teams is fine here.

I'm just about to back to University to start a year long Masters
degree at the University of York, UK, so for the next 12 months I'll
probably have somewhat less time to devote to schroot (and sbuild)
development that I have had over the last 13 months since I started
the project.  I'll still try to give as much time as I can allow, and
try to keep on top of things.  However, if I'm a little slow to
respond, this is the reason.


Regards,
Roger

-- 
  .''`.  Roger Leigh
 : :' :  Debian GNU/Linux             http://people.debian.org/~rleigh/
 `. `'   Printing on GNU/Linux?       http://gutenprint.sourceforge.net/
   `-    GPG Public Key: 0x25BFB848   Please GPG sign your mail.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 188 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/buildd-tools-devel/attachments/20060825/d96189a1/attachment.pgp

More information about the Buildd-tools-devel mailing list