me
/
guix
Archived
1
0
Fork 0
Commit Graph

75835 Commits (7932034d071793f3ef79f36f0d7cf23a8d2600f9)

Author SHA1 Message Date
Ludovic Courtès ee21803288
gnu: openmpi: Update to 4.1.0.
* gnu/packages/mpi.scm (openmpi): Update to 4.1.0.
2021-03-19 13:23:27 +01:00
Ludovic Courtès 14aa86e50c
gnu: openmpi: Add 'release-monitoring-url' property.
* gnu/packages/mpi.scm (openmpi)[properties]: New field.
2021-03-19 13:23:26 +01:00
Ludovic Courtès a0f83602f8
gnu-maintenance: Better handle empty #:directory for 'latest-html-release'.
In particular, this makes sure we don't add a trailing slash when the
user specified a 'release-monitoring-url' property for the
'generic-html' updater.

* guix/gnu-maintenance.scm (latest-html-release): When DIRECTORY is
empty, do not append it.
2021-03-19 13:23:26 +01:00
Léo Le Bouter 60d629d777
gnu: busybox: Update to 1.33.0.
* gnu/packages/busybox.scm (busybox): Update to 1.33.0.
2021-03-19 12:00:13 +01:00
Léo Le Bouter 572528e7dd
gnu: busybox: Fix CVE-2021-28831.
* gnu/packages/patches/busybox-CVE-2021-28831.patch: New patch.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/busybox.scm (busybox): Apply it.
2021-03-19 11:56:38 +01:00
Léo Le Bouter c1245f01ef
gnu: ruby-kramdown: Update to 2.3.1 [fixes CVE-2021-28834].
* gnu/packages/ruby.scm (ruby-kramdown): Update to 2.3.1.
2021-03-19 11:44:41 +01:00
Marius Bakke 1155a88308
gnu: ungoogled-chromium: Update to 89.0.4389.90-1.
* gnu/packages/patches/ungoogled-chromium-system-opus.patch: New file.
* gnu/local.mk (dist_patch_DATA): Adjust accordingly.
* gnu/packages/chromium.scm (%preserved-third-party-files): Adjust for 89.
(%chromium-version): Remove variable.
(%ungoogled-revision): Set to 89.0.4389.90-1.
(%ungoogled-origin): Conditionally set file name based on commit/tag.
(%guix-patches): Add the new file.
(libvpx/chromium): Update to 1.9.0-104-gb5d77a48d.
(ungoogled-chromium)[version]: Use %UNGOOGLED-REVISION.
[source]: Update hash.
[arguments]: Adjust #:configure-flags for build system changes.  Don't build
with external WebRTC SSL library.  Remove obsolete substitution.
[inputs]: Remove OPENSSL.  Change from PIPEWIRE to PIPEWIRE-0.3.
2021-03-19 00:14:11 +01:00
Florian Pelz 5dd33960bc
news: Add ‘de’ translation.
* etc/news.scm (channel-news): Add German translation.
2021-03-18 22:33:53 +00:00
Tobias Geerinckx-Rice 1cf49786f0
news: Add ‘nl’ translation.
* etc/news.scm (channel-news): Add a Dutch translation.
2021-03-18 22:30:46 +01:00
Tobias Geerinckx-Rice 79f9091b0f
news: Update erratum for '--keep-failed' vulnerability.
* etc/news.scm: Change commit to behave in a (hopefully) more expected
manner.  Change http:// to https:// URL whilst here.
2021-03-18 22:15:00 +01:00
Tobias Geerinckx-Rice f62633a527
news: Add erratum for '--keep-failed' vulnerability.
* etc/news.scm: Add entry.
2021-03-18 21:52:02 +01:00
Leo Famulari 9ade2b720a
doc: Document the guidelines for removing inactive committers.
For more context, see the discussion in <https://bugs.gnu.org/47111>.

* doc/contributing.texi (Commit Access): Add paragraph about removing
inactive committers.
2021-03-18 16:09:11 -04:00
Tobias Geerinckx-Rice bb8a0d8057
gnu: emacsy-minimal: Fix build.
* gnu/packages/guile-xyz.scm (emacsy-minimal)[native-inputs]:
Add autoconf, automake, gettext-minimal, libtool, pkg-config,
and texinfo.
2021-03-18 21:07:46 +01:00
Leo Famulari 0d8d499036
tests: Make the STORE test more robust in a "pure" environment.
Otherwise, the test crashes (not fails) when run in `guix environment --pure guix`.

Fixes <https://bugs.gnu.org/46445>.

* tests/store.scm (%shell): Fallback to "/bin/sh".
2021-03-18 15:16:07 -04:00
Ryan Prior via Guix-patches via efe7a17406
gnu: Add countdown.
* gnu/packages/time.scm (countdown): New variable.

Also adds copyright, adds necessary module dependencies, and sorts them alphabetically.

Signed-off-by: Nicolas Goaziou <mail@nicolasgoaziou.fr>
2021-03-18 19:41:32 +01:00
Morgan Smith a398e06cad
gnu: emacs-flymake-shellcheck: Update to 0.1-1.ac534e9
* gnu/packages/emacs-xyz.scm (emacs-flymake-shellcheck): Update to 0.1-1.ac534e9

Signed-off-by: Nicolas Goaziou <mail@nicolasgoaziou.fr>
2021-03-18 19:37:35 +01:00
Tobias Geerinckx-Rice a12de215e3
news: Fix ‘nl’ typo.
* etc/news.scm (channel-news): This locale's ‘locale’'s ‘lokale’.
2021-03-18 17:47:07 +01:00
Nicolas Goaziou bfaeee5675
gnu: emacs-leaf: Update to 4.4.4.
* gnu/packages/emacs-xyz.scm (emacs-leaf): Update to 4.4.4.
2021-03-18 17:35:22 +01:00
Tobias Geerinckx-Rice 6ce80c9008
news: Add ‘nl’ translation.
* etc/news.scm (channel-news): Add a Dutch translation.
2021-03-18 17:08:11 +01:00
Tobias Geerinckx-Rice b6df89efb0
gnu: dhewm3: Update to 1.5.1.
* gnu/packages/game-development.scm (dhewm3): Update to 1.5.1.
2021-03-18 17:08:11 +01:00
Tobias Geerinckx-Rice c2265e0285
gnu: elixir: Update to 1.11.4.
* gnu/packages/elixir.scm (elixir): Update to 1.11.4.
2021-03-18 17:08:10 +01:00
Tobias Geerinckx-Rice d9bdd6fa92
gnu: goffice: Update to 0.10.49.
* gnu/packages/gnome.scm (goffice): Update to 0.10.49.
2021-03-18 17:08:10 +01:00
Tobias Geerinckx-Rice e999ea12ea
gnu: di: Update to 4.49.
* gnu/packages/admin.scm (di): Update to 4.49.
[source]: Update URL.
2021-03-18 17:08:10 +01:00
Tobias Geerinckx-Rice 2baae75e82
gnu: isc-dhcp: Update bundled bind to 9.11.29.
* gnu/packages/admin.scm (isc-dhcp)[inputs]: Update bundled bind to
9.11.29.
2021-03-18 17:08:10 +01:00
Tobias Geerinckx-Rice 000e27b3d7
gnu: bind: Update to 9.16.13.
* gnu/packages/dns.scm (isc-bind): Update to 9.16.13.
2021-03-18 17:08:10 +01:00
Florian Pelz 9783645ee8
news: Add ‘de’ translation. 2021-03-18 14:38:57 +00:00
Ludovic Courtès 1955ef93b7
news: Add entry for '--keep-failed' vulnerability.
* etc/news.scm: Add entry.
2021-03-18 12:34:02 +01:00
Ludovic Courtès 94f0312546
gnu: guix: Update to ec7fb66 [security].
This updates the 'guix' package so that it provides the fix
for <https://bugs.gnu.org/47229>.

* gnu/packages/package-management.scm (guix): Update to ec7fb66.
2021-03-18 12:32:03 +01:00
Ludovic Courtès ec7fb66994
daemon: Prevent privilege escalation with '--keep-failed' [security].
Fixes <https://bugs.gnu.org/47229>.
Reported by Nathan Nye of WhiteBeam Security.

* nix/libstore/build.cc (DerivationGoal::startBuilder): When 'useChroot'
is true, add "/top" to 'tmpDir'.
(DerivationGoal::deleteTmpDir): Adjust accordingly.  When
'settings.keepFailed' is true, chown in two steps: first the "/top"
sub-directory, and then rename "/top" to its parent.
2021-03-18 12:18:56 +01:00
Leo Famulari 898489f48e
services: Enable "protected hardlinks" and "protected symlinks" by default.
References:

https://sysctl-explorer.net/fs/protected_hardlinks/
https://sysctl-explorer.net/fs/protected_symlinks/

* gnu/services/sysctl.scm (%default-sysctl-settings): New public variable.
(<sysctl-configuration>): Use %default-sysctl-settings as the default value.
* gnu/services/base.scm (%base-services): Add sysctl-service-type.
* doc/guix.texi (Miscellaneous Services): Document the new defaults.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-03-18 12:17:33 +01:00
Léo Le Bouter 45695cc8a7
Revert "gnu: python2-urllib3: Update to 1.26.4 [fixes CVE-2021-28363]."
In response to commit 1a265842e6 we should no
longer need this. Also see <https://bugs.gnu.org/47186>.

This reverts commit db87d6ddaf.
2021-03-18 11:26:11 +01:00
Léo Le Bouter 2e0ff59f0c
gnu: imagemagick/fixed: Redirect old sonames to new sonames.
* gnu/packages/imagemagick.scm (imagemagick/fixed)[arguments]: Add
'fix-compat-cheat-rename-so phase to redirect old soname paths (expected
without grafting) to new sonames introduced by ImageMagick 6.9.12-0 and
later. These sonames are probably not forward compatible but most probably
backwards compatible so it should suffice until we remove the graft.
2021-03-18 11:13:18 +01:00
Leo Famulari 334c6850c6
gnu: linux-libre 4.4: Update to 4.4.262.
* gnu/packages/linux.scm (linux-libre-4.4-version): Update to 4.4.262.
(linux-libre-4.4-pristine-source): Update hash.
2021-03-18 01:05:49 -04:00
Leo Famulari c3504337cc
gnu: linux-libre 4.9: Update to 4.9.262.
* gnu/packages/linux.scm (linux-libre-4.9-version): Update to 4.9.262.
(linux-libre-4.9-pristine-source): Update hash.
2021-03-18 01:05:48 -04:00
Leo Famulari d72347deec
gnu: linux-libre 4.14: Update to 4.14.226.
* gnu/packages/linux.scm (linux-libre-4.14-version): Update to 4.14.226.
(linux-libre-4.14-pristine-source): Update hash.
2021-03-18 01:05:48 -04:00
Leo Famulari 1ff0377a52
gnu: linux-libre 4.19: Update to 4.19.181.
* gnu/packages/linux.scm (linux-libre-4.19-version): Update to 4.19.181.
(linux-libre-4.19-pristine-source): Update hash.
2021-03-18 01:05:48 -04:00
Leo Famulari 1de35e8036
gnu: linux-libre 5.4: Update to 5.4.106.
* gnu/packages/linux.scm (linux-libre-5.4-version): Update to 5.4.106.
(linux-libre-5.4-pristine-source): Update hash.
2021-03-18 01:05:48 -04:00
Leo Famulari e0dcafc1c2
gnu: linux-libre 5.10: Update to 5.10.24.
* gnu/packages/linux.scm (linux-libre-5.10-version): Update to 5.10.24.
(linux-libre-5.10-pristine-source): Update hash.
2021-03-18 01:05:48 -04:00
Leo Famulari aacfbb8c24
gnu: linux-libre: Update to 5.11.7.
* gnu/packages/linux.scm (linux-libre-5.11-version): Update to 5.11.7.
(linux-libre-5.11-pristine-source): Update hash.
2021-03-18 01:05:48 -04:00
Christopher Baines 806125e52f
weather: Only show request statistics when requests were made.
This avoids the script crashing if all data is fetched from the cache.

* guix/scripts/weather.scm (report-server-coverage): Only show request
statistics when some requests have been made.
2021-03-17 23:12:31 +00:00
qblade 966e61fb8f
gnu: Add libucl.
* gnu/packages/wm.scm (libucl): New variable.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-03-17 23:10:20 +01:00
Maxime Devos ce10e2b3e9
gnu: Use autoconf instead of autoconf-wrapper when possible.
This should reduce confusion on when to use the "autoconf"
package and when to use "autoconf-wrapper" instead in
package definitions.

Fixes <https://bugs.gnu.org/46564>.

* gnu/packages/autotools.scm (autoconf-wrapper):
  advise to use the "autoconf" package instead where
  possible.
* gnu/packages/game-development.scm (tsukundere)[native-inputs]:
  use "autoconf" instead of "autoconf-wrapper".
* gnu/packages/gimp.scm
  (glimpse)[native-inputs]: likewise.
  (gimp-resynthesizer)[native-inputs]: add comment on why
  "autoconf-wrapper" is used.
* gnu/packages/gnunet.scm (gnunet)[native-inputs]:
  use "autoconf" instead of "autoconf-wrapper".
* gnu/packages/gnupg.scm (signing-party)[native-inputs]:
  add comment on why "autoconf-wrapper" is used.
* gnu/packages/guile-xyz.scm
  (guile-bash,guile-filesystem,guile-ics,guile-udev)[native-inputs]:
  use "autoconf" instead of "autoconf-wrapper".
* gnu/packages/libevent.scm (libuv)[native-inputs]: indicates
  "autoconf-wrapper" needs to be replaced with "autoconf"
  on core-updates.
* gnu/packages/logging.scm (glog)[native-inputs]: use "autoconf"
  instead of "autoconf-wrapper".
* gnu/packages/mail.scm (libetpan)[native-inputs]: likewise.
* gnu/packages/mate.scm
  (mate-icon-theme-faenza)[native-inputs]: add comment on why
  "autoconf-wrapper" is used.
  (mate-screensaver)[native-inputs]: use "autoconf" instead of
  "autoconf-wrapper".
* gnu/packages/package-management.scm (guix)[native-inputs]: likewise.
* gnu/packages/sawfish.scm (librep)[native-inputs]: likewise.
* gnu/packages/video.scm (motion)[native-inputs]: likewise.
* gnu/packages/zile.scm (zile)[native-inputs]: likewise.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-03-17 23:10:19 +01:00
Ludovic Courtès f526105210
doc: Tweak "Invoking guix refresh" node.
* doc/guix.texi (Invoking guix refresh): Update output in '--recursive'
example.  Use @xref, not @ref, at the beginning of a sentence.
2021-03-17 23:10:19 +01:00
Ludovic Courtès 62c1b0b744
import: gnome: Silence URL redirect messages.
* guix/import/gnome.scm (latest-gnome-release): Pass #:log-port to
'http-fetch/cached'.
2021-03-17 23:10:19 +01:00
Ludovic Courtès dbfc6a32bb
http-client: 'http-fetch' and 'http-fetch/cached' accept #:log-port.
* guix/http-client.scm (http-fetch, http-fetch/cached): Add #:log-port
and honor it.
2021-03-17 23:10:19 +01:00
Ludovic Courtès c81eeabb99
import: gnome: Exclude version numbers that do not start with a digit.
Fixes a bug whereby NetworkManager would be updated to version "rc2".

* guix/import/gnome.scm (latest-gnome-release)[even-minor-version?]:
Change catch-all case to return #f when the first part is not a digit.
2021-03-17 23:10:19 +01:00
Christopher Baines c37f78a9f5
scripts: weather: Provide more representative request statistics.
Previously, the "seconds per request" and "requests per second" statistics
really reported (cache lookups + requests) per second.  By looking at the
actual number of requests made within lookup-narinfos, a more representative
value can be reported.

* guix/scripts/weather.scm (let/time): Allow for multiple return values.
(report-server-coverage): Alter the reporting of request statistics.
2021-03-17 20:46:21 +00:00
Christopher Baines c5ab78f90b
substitutes: lookup-narinfos: Return the number of requests made.
As an additional value, in addition to the narinfos.  This value is useful in
the weather script for reporting how many requests to the substitute server
were made.

* guix/substitutes.scm (lookup-narinfos): Additionally return the number of
requests made.
2021-03-17 20:46:20 +00:00
Christopher Baines b48204259a
scripts: substitute: Tweak error reporting in process-substitution.
The call-with-connection-error-handling was added in
20c08a8a45, but that error handling was
previously inside of open-connection-for-uri/maybe, which is related
to (call-)with-cached-connection which was used in process-substitution, but
only actually used with call-with-cached-connection when used in
fetch-narinfos.

There's some handling for similar errors within with-networking, which is used
within process-substitution.

* guix/scripts/substitute.scm (process-substitution): Remove
call-with-connection-error-handling call.
2021-03-17 20:41:13 +00:00
Christopher Baines c37e3b92ad
scripts: substitute: Add back some error handling.
In f50f5751ff, the way fetch was called within
process-substitution was changed.  As call-with-cached-connection actually
includes important error handling for the opening of a HTTP request, this
change removed some error handling.  This commit adds that back.

Fixes <https://bugs.gnu.org/47157>.

* guix/scripts/substitute.scm (call-with-cached-connection): New procedure.
(with-cached-connection): New syntax rule.
(process-substitution): Retry once for some errors when making HTTP requests
to fetch substitutes.
2021-03-17 20:41:10 +00:00