| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This addresses a potential security issue, where a compromised
service could trick the activation code in changing the permissions,
owner and group of arbitrary files. However, this patch is
currently only a partial fix, due to a TOCTTOU (time-of-check to
time-of-use) race, which can be fixed once guile has bindings
to openat and friends.
Fixes: <https://lists.gnu.org/archive/html/guix-devel/2021-01/msg00388.html>
* gnu/build/activation.scm: new procedure 'mkdir-p/perms'.
* gnu/services/authentication.scm
(%nslcd-activation, nslcd-service-type): use new procedure.
* gnu/services/cups.scm (%cups-activation): likewise.
* gnu/services/dbus.scm (dbus-activation): likewise.
* gnu/services/dns.scm (knot-activation): likewise.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
| |
|
|
| |
* gnu/packages/mpi.scm (hwloc-2): Update to 2.4.1. Adjust URL.
|
| |
|
|
| |
* guix/channels.scm (sexp->channel): Add the channel branch.
|
| |
|
|
| |
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-76.5f830da.
|
| |
|
|
| |
* gnu/packages/python-xyz.scm (python-pikepdf): Update to 2.8.0.post2.
|
| |
|
|
| |
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-75.94a7f87.
|
| |
|
|
| |
* gnu/packages/package-management.scm (guix): Update to 1.2.0-15.f8953be.
|
| |
|
|
| |
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-74.c8051f3.
|
| |
|
|
|
|
|
| |
This is a follow-up of 6ee7e3d26b8f5d2a234518cc2ab1bfeba7cd7c18.
* guix/inferior.scm (cached-channel-instance): Introduce "symlink/safe" and
use it instead of symlink. Remove the duplicated "file-exists?" call.
|
| |
|
|
|
|
| |
This reverts commit 7d63b775513e7049047222dbe403a4181f63828d because it raises
some concerns, see:
https://lists.gnu.org/archive/html/guix-devel/2021-03/msg00124.html.
|
| |
|
|
|
|
|
|
| |
* gnu/packages/patches/mongodb-support-unknown-linux-distributions.patch:
Remove patch.
* gnu/local.mk (dist_patch_DATA): Ditto.
* gnu/packages/databases.scm (mongodb): Update to 3.4.24.
[source]: Drop patch. Update third_party libs folder names.
|
| |
|
|
| |
* gnu/packages/databases.scm (mysql): Update to 5.7.33.
|
| |
|
|
|
|
|
|
|
| |
* gnu/packages/python-web.scm (python-sanic) [version]: Update to 20.12.2.
[arguments]: Relax dependency versions.
[native-inputs]: Add python-pytest-asyncio.
[home-page]: Update.
[synopsis]: Remove Python version.
[description]: Ditto.
|
| |
|
|
|
|
|
| |
* gnu/packages/python-check.scm (python-pytest-sanic) [version]: Update to
1.7.0.
[propagated-inputs]: Replace python-aiohttp with python-httpx and add
python-websockets.
|
| |
|
|
| |
* gnu/packages/python-xyz.scm (python-aiofiles): Update to 0.6.0.
|
| |
|
|
| |
* gnu/packages/python-xyz.scm (python-ujson): Update to 4.0.2.
|
| |
|
|
|
| |
* gnu/packages/databases.scm (python-tortoise-orm) [version]: Update to 0.16.21.
[arguments]: Relax version requirements.
|
| |
|
|
|
|
| |
* gnu/packages/databases.scm (python-aiosqlite) [version]: Update to 0.17.0.
[arguments]: Run tests.
[propagated-inputs]: Add python-typing-extensions.
|
| |
|
|
| |
* gnu/packages/databases.scm (python-pypika): Update to 0.47.6.
|
| |
|
|
|
|
|
| |
* gnu/packages/check.scm (python-aiounittest) [version]: Update to 1.4.0.
[source]: Switch to git repository.
[arguments]: Run notetests.
[propagated-inputs]: Add python-wrapt.
|
| |
|
|
|
|
|
|
| |
Unmaintained upstream and its only dependent (python-gssapi) dropped it.
* gnu/packages/patches/python-shouldbe-0.1.2-cpy3.8.patch: Remove.
* gnu/local.mk: Drop patch file.
* gnu/packages/python-xyz.scm (python-shouldbe): Remove.
|
| |
|
|
| |
* gnu/packages/ssh.scm (python-asyncssh): Update to 2.5.0.
|
| |
|
|
|
|
| |
* gnu/packages/python-xyz.scm (python-gssapi) [version]: Update to 1.6.12.
[arguments]: Tests have been fixed upstream, remove.
[native-inputs]: python-shouldbea is not required any more, remove.
|
| |
|
|
|
|
|
| |
* gnu/packages/patches/cyrus-sasl-CVE-2019-19906.patch: New patch.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/cyrus-sasl.scm (cyrus-sasl/fixed): New variable. Apply patch.
(cyrus-sasl)[replacement]: Graft.
|
| |
|
|
|
| |
* gnu/packages/messaging.scm (gajim): Update to 1.3.1.
[arguments]: Modify custom 'disable-failing-tests phase.
|
| |
|
|
|
|
|
|
| |
* gnu/packages/embedded.scm (sdcc): Update to 4.1.0.
* gnu/packages/patches/sdcc-disable-non-free-code.patch: Update to match new
version.
Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
|
| |
|
|
|
|
| |
* gnu/packages/crypto.scm (botan): Update to 2.17.3.
[arguments]: Add 'library-path-for-tests phase to fix 'check phase by setting
LD_LIBRARY_PATH to intermediate build directory so tests can find libbotan.
|
| |
|
|
|
|
|
| |
Non-exhaustively, fixes CVE-2018-16548 and CVE-2018-17828.
* gnu/packages/compression.scm (zziplib/fixed): New variable.
(zziplib)[replacement]: Graft.
|
| |
|
|
| |
* gnu/packages/radio.scm (unixcw): New variable.
|
| |
|
|
| |
* gnu/packages/radio.scm (aldo): New variable.
|
| |
|
|
|
|
| |
* gnu/packages/messaging.scm (python-nbxmpp) [version]: Update to 2.0.2.
Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
|
| |
|
|
|
|
| |
* gnu/packages/patches/bsdiff-CVE-2014-9862.patch: New patch.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/compression.scm (bsdiff): Apply it.
|
| |
|
|
|
|
|
| |
This is a follow-up of 6c883d0f1deacff4fc227a4f925414a3733efc6e.
* gnu/tests/cuirass.scm (simple-cuirass-service, %cuirass-simple-test): Remove
them.
|
| |
|
|
|
|
|
|
| |
The Cuirass configuration has been simplified so that this is no longer
needed.
* gnu/services/cuirass.scm (<build-manifest>, <simple-cuirass-configuration>,
simple-cuirass-configuration->specs): Remove them.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This removes hydra support to use Cuirass as the only continuous integration
system.
* build-aux/hydra/gnu-system.scm: Remove it.
* build-aux/hydra/guix-modular.scm: Ditto.
* build-aux/hydra/guix.scm: Ditto.
* build-aux/cuirass/hydra-to-cuirass.scm: Ditto.
* Makefile.am (EXTRA_DIST): Update it.
(hydra-jobs.scm): Remove it.
(cuirass-jobs.scm): Update it.
* build-aux/hydra/evaluate.scm: Move it to ...
* build-aux/cuirass/evaluate.scm: ... here.
* build-aux/cuirass/guix-modular.scm: Remove it.
* build-aux/cuirass/gnu-system.scm: Ditto.
* guix/packages.scm (%hydra-supported-systems): Rename it to ...
(%cuirass-supported-systems): ... this variable.
* build-aux/check-final-inputs-self-contained: Adapt it.
* etc/release-manifest.scm: Ditto.
* gnu/ci.scm (package->alist): Remove it.
(derivation->job): New procedure.
(package-job, package-cross-job, cross-jobs, image-jobs, system-test-jobs,
tarball-jobs): Use it.
(guix-jobs): New procedure.
(hydra-jobs): Rename it to ...
(cuirass-jobs): ... this procedure.
|
| |
|
|
| |
* guix/channels.scm (channel-instance->sexp): Export it.
|
| |
|
|
|
| |
* guix/inferior.scm (cached-profile): Do not create the profile symlink if it
already exists.
|
| |
|
|
|
|
|
|
|
|
|
| |
Break cached-channel-instance into two different procedures:
channels->cached-profile and instances->cached-profile operating respectively
on channels and channels instances.
* guix/inferior.scm (cached-channel-instance): Rename it into ...
(cached-profile): ... this new procedure.
(channels->cached-profile, instances->cached-profile): New procedures.
* guix/scripts/time-machine.scm (guix-time-machine): Adapt accordingly.
|
| |
|
|
|
|
|
| |
Fixes: <https://issues.guix.gnu.org/46683>.
* gnu/services/cuirass.scm (cuirass-activation): Since the PostgreSQL switch,
it is no longer needed to create the database directory.
|
| |
|
|
|
|
| |
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-73.14e1335.
[arguments]: Enable tests and add new 'set-PATH-for-tests phase.
[native-inputs]: Add ephemeralpg.
|
| |
|
|
| |
* gnu/packages/guile-xyz.scm (guile-simple-zmq): Update to 0.0.0-9.b2ea97e.
|
| |
|
|
|
|
| |
* gnu/packages/cobol.scm (gnucobol): Update to 3.1.2.
[arguments]: Add 'set-TERM phase before 'check to set the TERM environment
variable for tests that expect it.
|
| |
|
|
|
| |
* gnu/packages/build-tools.scm (osc): Update to 0.172.0.
[native-inputs]: Add python-chardet. Required by tests.
|
| |
|
|
|
| |
* gnu/packages/python-crypto.scm (python-m2crypto)[arguments]: Set '#:tests?'
to '#f'.
|
| |
|
|
|
| |
* gnu/packages/linux.scm (linux-libre-5.4-version): Update to 5.4.104.
(linux-libre-5.4-pristine-source): Update hash.
|
| |
|
|
|
| |
* gnu/packages/linux.scm (linux-libre-5.10-version): Update to 5.10.22.
(linux-libre-5.10-pristine-source): Update hash.
|
| |
|
|
|
| |
* gnu/packages/linux.scm (linux-libre-5.11-version): Update to 5.11.5.
(linux-libre-5.11-pristine-source): Update hash.
|
| |
|
|
|
| |
* gnu/packages/adns.scm (c-ares/fixed): New variable.
(c-ares)[replacement]: Graft.
|
| |
|
|
|
|
| |
* gnu/packages/imagemagick.scm (imagemagick/fixed):
[version]: Append 'g'.
[source]: Hardcode version.
|
| |
|
|
|
|
|
|
|
| |
* gnu/packages/password-utils.scm (password-store): Update to
1.7.3-1.918992c.
[arguments]<#:phases>['wrap-path]: Add "wl-clipboard".
[inputs]: Add "wl-clipboard".
Signed-off-by: Tobias Geerinckx-Rice <me@tobias.gr>
|
