aboutsummaryrefslogtreecommitdiff
path: root/doc/manual/src/release-notes/rl-1.1.md
diff options
context:
space:
mode:
authorEelco Dolstra <edolstra@gmail.com>2020-07-22 23:17:48 +0200
committerEelco Dolstra <edolstra@gmail.com>2020-07-23 18:26:48 +0200
commitef606760abd87c98371fbc08c1f25ad897823a2a (patch)
treea1f5c77f1302c7cf3b2b1a8945b175d8cde77c66 /doc/manual/src/release-notes/rl-1.1.md
parentd004715665046ff424f267deccccb78c9d5cabb7 (diff)
Pandoc conversion
Diffstat (limited to 'doc/manual/src/release-notes/rl-1.1.md')
-rw-r--r--doc/manual/src/release-notes/rl-1.1.md61
1 files changed, 61 insertions, 0 deletions
diff --git a/doc/manual/src/release-notes/rl-1.1.md b/doc/manual/src/release-notes/rl-1.1.md
new file mode 100644
index 000000000..1e658fe15
--- /dev/null
+++ b/doc/manual/src/release-notes/rl-1.1.md
@@ -0,0 +1,61 @@
+# Release 1.1 (2012-07-18)
+
+This release has the following improvements:
+
+ - On Linux, when doing a chroot build, Nix now uses various namespace
+ features provided by the Linux kernel to improve build isolation.
+ Namely:
+
+ - The private network namespace ensures that builders cannot talk
+ to the outside world (or vice versa): each build only sees a
+ private loopback interface. This also means that two concurrent
+ builds can listen on the same port (e.g. as part of a test)
+ without conflicting with each other.
+
+ - The PID namespace causes each build to start as PID 1. Processes
+ outside of the chroot are not visible to those on the inside. On
+ the other hand, processes inside the chroot *are* visible from
+ the outside (though with different PIDs).
+
+ - The IPC namespace prevents the builder from communicating with
+ outside processes using SysV IPC mechanisms (shared memory,
+ message queues, semaphores). It also ensures that all IPC
+ objects are destroyed when the builder exits.
+
+ - The UTS namespace ensures that builders see a hostname of
+ `localhost` rather than the actual hostname.
+
+ - The private mount namespace was already used by Nix to ensure
+ that the bind-mounts used to set up the chroot are cleaned up
+ automatically.
+
+ - Build logs are now compressed using `bzip2`. The command `nix-store
+ -l` decompresses them on the fly. This can be disabled by setting
+ the option `build-compress-log` to `false`.
+
+ - The creation of build logs in `/nix/var/log/nix/drvs` can be
+ disabled by setting the new option `build-keep-log` to `false`. This
+ is useful, for instance, for Hydra build machines.
+
+ - Nix now reserves some space in `/nix/var/nix/db/reserved` to ensure
+ that the garbage collector can run successfully if the disk is full.
+ This is necessary because SQLite transactions fail if the disk is
+ full.
+
+ - Added a basic `fetchurl` function. This is not intended to replace
+ the `fetchurl` in Nixpkgs, but is useful for bootstrapping; e.g., it
+ will allow us to get rid of the bootstrap binaries in the Nixpkgs
+ source tree and download them instead. You can use it by doing
+ `import <nix/fetchurl.nix> { url =
+ url; sha256 =
+ "hash"; }`. (Shea Levy)
+
+ - Improved RPM spec file. (Michel Alexandre Salim)
+
+ - Support for on-demand socket-based activation in the Nix daemon with
+ `systemd`.
+
+ - Added a manpage for nix.conf5.
+
+ - When using the Nix daemon, the `-s` flag in `nix-env -qa` is now
+ much faster.