Hello, On Tue, 15 Mar 2011, Yamaban wrote:
IMHO this woud it make easy for a newbie and even a more experienced, but seldom packaging user to use OBS with all the needed tools without contaminating his/her working system with packages not needed for daily operation.
The only thing contaminated here by using "osc build" is /var/tmp/build. Along with these parts ==== of my ~/.oscrc ==== su-wrapper = sudo build-root = /var/tmp/build/%(repo)s-%(arch)s-root extra-pkgs = strace ltrace ==== and (the unoptimized, this is only a well-updated, "locked-down"[0] single user box though!) ==== of my /etc/sudoers ==== Defaults timestamp_timeout=0 dh localhost=(root) NOPASSWD:/usr/bin/build ==== using (e.g.) my ==== ~/bin/oscbuild11.2 ==== #!/bin/sh -x if ! test -d /ISO/suse; then umount /ISO mount /ISO || exit 1 fi osc build --prefer-pkgs=/ISO/suse/x86_64 -j 2 --ccache \ --local-package openSUSE_11.2 x86_64 "$@" # umount /ISO ### as this is the "system" .iso, I keep it mounted ### for other variants you might like to unmount. ==== and this in ==== /etc/fstab ==== /data/openSUSE-11.2-DVD-x86_64.iso /ISO iso9660 loop,user,users 0 0 ==== (more variants of that script and fstab entries may exist and may mount+umount other DVD-Images explicitly or not ;) gives me a quite flexible and easy to use 'osc build' wrapper having no side-effects on the system. E.g.: $ cd ~/osc/home:dnh/ddrescue $ oscbuild11.2 ddrescue.spec [..] $ oscbuild_snapshot ddrescue.spec [..] You probably may want to at least nail down the build-root for build in the sudoers, something which might need a wrapper around build that checks for that. YMMV, just wanted to throw some ideas into the discussion. HTH, -dnh, *rüberwinkend von Filderstadt in die Flandernstraße*, dessen Papa um die Ecke wohnte und der gegenüber auf der Kennenburg seinen Zivi geleistet hat ... ;) -> PM? [0] that 'build'-entry is as unspecific as my sudoers gets. Only my user can only call some few specified commands via sudo. root can do what he likes, and anyone else can do nothing via sudo. I despise the -buntu "do everything with sudo" adminning. When the password is cached (for more than say 3 CPU-cycles), it's unsafe. Go ahead, check your /etc/sudoers for -buntu like entries like: ALL ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'! That comment lies. It is inherently unsafe without Defaults timestamp_timeout=0 *GAH* -- Well I wish you'd just tell me rather than try to engage my enthusiasm, because I haven't got one. -- Marvin -- To unsubscribe, e-mail: opensuse-packaging+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-packaging+help@opensuse.org