[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Daemon update again
From: |
Ludovic Courtès |
Subject: |
Daemon update again |
Date: |
Thu, 04 Jun 2015 00:07:27 +0200 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux) |
Commit 54c260e updates the daemon again from upstream Nix code. Few
interesting changes this time; interesting changes include:
• Fixed-output derivations (such as downloads) are now also run in a
chroot environment. The difference with other derivations is that
they do not get a separate network name space, which allows them to
access the network, and they get additional files such as
/etc/resolv.conf.
• pivot_root(2) is used in addition to chroot(2), which is claimed to
really prevent getting out of the chroot (though in practice build
processes are non-root so I don’t see how they could get away.)
• The ‘verifyStore’ RPC (more on that soon.)
Please report any issues!
Ludo’.
- Daemon update again,
Ludovic Courtès <=