[Buildd-tools-devel] schroot 1.1.0 released
Roger Leigh
rleigh at whinlatter.ukfsn.org
Fri Aug 25 20:48:44 UTC 2006
Hi folks,
I have released schroot 1.1.0. This is the first release on the trunk
leading to what will be the new 1.2.x stable series. While the
schroot-1.0 branch is frozen for etch, and is also buildable on woody,
the trunk must support etch+1 as well as being buildable on etch. I'd
like to make the first stable 1.2.0 release sometime after etch is
released and all the items planned for the release are completed.
This release merges all the changes made on the schroot-1.0 branch, as
well as adding two new features: proper support for using the CTTY for
secure authentication and terminal handling, and a new configuration
option to filter the environment (not in the list of major changes
below). The environment filtering previously used a hardcoded static
list, but now allows an [extended] regex filter, falling back to a
default regex for security if none is defined:
^(BASH_ENV|CDPATH|ENV|HOSTALIASES|IFS|KRB5_CONFIG|KRBCONFDIR|KRBTKFILE|KRB_CONF|LD_.*|LOCALDOMAIN|NLSPATH|PATH_LOCALE|RES_OPTIONS|TERMINFO|TERMINFO_DIRS|TERMPATH)$
* Major changes in 1.1.0:
1) Authentication now uses the Controlling TTY (/dev/tty) for
communication with the user. This means PAM interaction with the
user will work even if stdin, stdout and stderr are all
redirected. If authentication is required and no CTTY is
available, it will fail (due to authentication being an
interactive process).
2) The syslog logging of the command or shell being run in the
chroot now only occurs when running as root or switching to
another user. If the user is the same inside and outside the
chroot, and not root, the command or shell being run will not be
logged.
3) A --directory option has been added to schroot, dchroot and
dchroot-dsa. This option allows the user to explictly specify
the working directory inside the chroot.
The release is available from
https://alioth.debian.org/project/shownotes.php?release_id=867
https://alioth.debian.org/download.php/1750/schroot-1.1.0.tar.bz2
or
svn://svn.debian.org/svn/buildd-tools/tags/schroot-1.1.0
If anyone wants any new features adding, or any changes making, now is
the time to suggest them! There's currently a small list in TODO and
doc/schroot/html/todo.html. Any suggestions would be welcome.
One thing I was thinking about doing (on a separate experimental
branch) is progressively porting parts of sbuild to C++. It would act
as a wrapper around the existing sbuild perl script so that bits can
be moved out of sbuild gradually. This is a good bit of work though,
and is nothing more than an idea at present.
This release does have some translation updates. There's no urgency
in these being translated, because it is at least four months away
From release, if not six months or more. Whatever is best for the
translation teams is fine here.
I'm just about to back to University to start a year long Masters
degree at the University of York, UK, so for the next 12 months I'll
probably have somewhat less time to devote to schroot (and sbuild)
development that I have had over the last 13 months since I started
the project. I'll still try to give as much time as I can allow, and
try to keep on top of things. However, if I'm a little slow to
respond, this is the reason.
Regards,
Roger
--
.''`. Roger Leigh
: :' : Debian GNU/Linux http://people.debian.org/~rleigh/
`. `' Printing on GNU/Linux? http://gutenprint.sourceforge.net/
`- GPG Public Key: 0x25BFB848 Please GPG sign your mail.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 188 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/buildd-tools-devel/attachments/20060825/d96189a1/attachment.pgp
More information about the Buildd-tools-devel
mailing list