By merely forking PID 1, details from PID 1 (shepherd) would leak into
the marionette process, such as the set of modules in scope and state
inherited from the shepherd process (<service> instances, fibers,
etc.). Running a fresh Guile instance avoids that.
* gnu/tests.scm (marionette-program): New procedure.
(marionette-shepherd-service): Change 'start' to use
'make-forkexec-constructor', and run the result of 'marionette-program'.
The previous code worked "by chance": 'start' from (shepherd service)
happened to be in scope because the marionette REPL is created by a mere
'primitive-fork', and 'start' happened to kinda work.
* gnu/tests/base.scm (run-basic-test): Use 'start-service' from (gnu
services herd), not 'start' from (shepherd service), which is not
supposed to work.
* gnu/tests/install.scm (run-install): Likewise.
This fixes CVE-2022-39316, CVE-2022-39317, CVE-2022-39318, CVE-2022-39319,
CVE-2022-39320, CVE-2022-41877, CVE-2022-39347, CVE-2022-39282,
CVE-2022-39283, CVE-2021-41159 and CVE-2021-41160.
* gnu/packages/rdesktop.scm (freerdp): Update to 2.2.0.
[arguments]: Use gexps. Do not set DOCBOOKXSL_DIR in #:configureflags.
This causes authentication failures such as those generated by SSH brute force
attacks to appear in /var/log/secure, which is picked up by tools such as
fail2ban.
* gnu/services/base.scm (%default-syslog.conf): Add a auth.info selector for
the /var/log/secure log.
Series-to: 62802@debbugs.gnu.org
This is a cosmetic change.
* gnu/services/base.scm (%default-syslog.conf): Add a comment referencing the
documentation. Strip the extraneous leading trailing white space indent.
Having the configuration live at a static location makes it possible to
hot-reload it.
* gnu/services/base.scm (syslog.conf): New variable.
(syslog-etc, syslog-shepherd-service): New procedures.
(syslog-service-type): Rewrite using the above new variable and procedures,
extending etc-service-type with its configuration file.
* gnu/packages/bioinformatics.scm (bppsuite): Update to 2.4.1.
[source]: Remove the commit and use the release version. Changed to the github
repo.
[arguments]: Remove the disabled parallel-build.
[inputs]: Use list.
[home-page]: Changed to github page.
* gnu/packages/bioinformatics.scm (bpp-popgen): Update to 2.4.1.
[source]: Remove the commit and use the release version. Changed to the github
repo.
[arguments]: Remove the disabled parallel-build.
[home-page]: Changed to new host Université Claude-Bernard Lyon 1.
* gnu/packages/bioinformatics.scm (bpp-phyl): Update to 2.4.1.
[source]: Remove the commit and use the release version. Changed to the github
repo.
[arguments]: Remove the disabled parallel-build and out-of-source.
[home-page]: Changed to new host Université Claude-Bernard Lyon 1.
[synopsis]: Use proper capitalization.
* gnu/packages/bioinformatics.scm (bpp-seq): Update to 2.4.1.
[source]: Remove the commit and use the release version. Changed to the github
repo.
[arguments]: Remove the disabled parallel-build and out-of-source.
[home-page]: Changed to new host Université Claude-Bernard Lyon 1.
* gnu/packages/bioinformatics.scm (bpp-core): Update to 2.4.1.
[source]: Remove the commit and use the release version. Changed to the github
stored sources.
[arguments]: Remove the disabled parallel-build.
[home-page]: Changed to new host Université Claude-Bernard Lyon 1.
This is a followup to d3bc56da04.
* gnu/packages/web-browsers.scm (luakit)[arguments]<#:phases>: Remove
unnecessary INPUTS key.
[inputs]: Sort alphabetically.
* gnu/packages/parallel.scm (clog): New variable.
* gnu/packages/patches/clog-fix-shared-build.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
Signed-off-by: Nicolas Goaziou <mail@nicolasgoaziou.fr>
This fixes a version incompatibility with WebkitGTK.
* gnu/packages/gnome.scm (komikku): Update to 1.17.0.
Signed-off-by: Nicolas Goaziou <mail@nicolasgoaziou.fr>