summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2021-03-10gnu: lib3mf: Update to 2.1.1 [security fixes].Léo Le Bouter
Non-exhaustively, fixes CVE-2021-21772. * gnu/packages/engineering.scm (lib3mf): Update to 2.1.1. [arguments]<#:phases>: Remove. [arguments]<#:configure-flags>: Do not use zlib, libzip, gtest and libressl vendored sources. [native-inputs]: Remove googletest-source, add googletest and pkg-config. [inputs]: Add libzip, libressl and zlib.
2021-03-10gnu: python-django-2.2: Update to 2.2.19 [security fixes].Léo Le Bouter
* gnu/packages/django.scm (python-django-2.2): Update to 2.2.19.
2021-03-10gnu: python-django: Update to 3.1.7 [security fixes].Léo Le Bouter
* gnu/packages/django.scm (python-django): Update to 3.1.7.
2021-03-10gnu: guile-bytestructures: Update to 1.0.10.Taylan Kammer
* gnu/packages/guile.scm (guile-bytestructures): Update to 1.0.10. Signed-off-by: Tobias Geerinckx-Rice <me@tobias.gr> See: <https://logs.guix.gnu.org/guix/2021-03-10.log#205043>
2021-03-10gnu: cuirass: Update to 0.0.1-77.88f3cf6.Mathieu Othacehe
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-77.88f3cf6.
2021-03-10gnu: sbcl-quri: Update to 0.3.0.Pierre Neidhardt
* gnu/packages/lisp-xyz.scm (sbcl-quri): Update to 0.3.0.
2021-03-10gnu: Add fof.Pierre Neidhardt
* gnu/packages/lisp-xyz.scm (cl-fof, ecl-fof, sbcl-fof): New variables.
2021-03-10gnu: sbcl-hu.dwim.defclass-star: Update to 20210309.Pierre Neidhardt
* gnu/packages/lisp-xyz.scm (sbcl-hu.dwim.defclass-star): Update to 20210309.
2021-03-10news: Add entry for 'guix import go'.Ludovic Courtès
* etc/news.scm: Add entry.
2021-03-10import: go: Compute the hash of Git checkouts.Ludovic Courtès
* guix/import/go.scm (vcs-file?, file-hash, git-checkout-hash): New procedures. (vcs->origin): Use 'git-checkout-hash' in the 'git case.
2021-03-10import: Add Go importer.Katherine Cox-Buday
This patch adds a 'guix import go' command. * doc/guix.texi (Requirements): Mention Guile-Lib dependency. (Invoking guix import): Document 'guix import go'. * gnu/packages/package-management.scm (guix)[inputs, propagated-inputs]: Add GUILE-LIB. * guix/self.scm (compiled-guix)[guile-lib]: New variable. [dependencies]: Add it. (specification->package): Add "guile-lib". * guix/build-system/go.scm (go-version->git-ref): New procedure. * guix/import/go.scm, guix/scripts/import/go.scm, tests/go.scm: New files. * guix/scripts/import.scm: Declare subcommand guix import go * po/guix/POTFILES.in: Add 'guix/scripts/import/go.scm'. * Makefile.am (MODULES): Add 'guix/import/go.scm' and 'guix/scripts/import/go.scm'. (SCM_TESTS): Add 'tests/go.scm'. Co-Authored-By: Helio Machado <0x2b3bfa0@gmail.com> Co-Authored-By: Francois Joulaud <francois.joulaud@radiofrance.com> Co-Authored-By: Maxim Cournoyer <maxim.cournoyer@gmail.com> Co-Authored-by: Ludovic Courtès <ludo@gnu.org>
2021-03-10services: Prevent following symlinks during activation.Maxime Devos
This addresses a potential security issue, where a compromised service could trick the activation code in changing the permissions, owner and group of arbitrary files. However, this patch is currently only a partial fix, due to a TOCTTOU (time-of-check to time-of-use) race, which can be fixed once guile has bindings to openat and friends. Fixes: <https://lists.gnu.org/archive/html/guix-devel/2021-01/msg00388.html> * gnu/build/activation.scm: new procedure 'mkdir-p/perms'. * gnu/services/authentication.scm (%nslcd-activation, nslcd-service-type): use new procedure. * gnu/services/cups.scm (%cups-activation): likewise. * gnu/services/dbus.scm (dbus-activation): likewise. * gnu/services/dns.scm (knot-activation): likewise. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-03-10gnu: hwloc: Update to 2.4.1.Ludovic Courtès
* gnu/packages/mpi.scm (hwloc-2): Update to 2.4.1. Adjust URL.
2021-03-10channels: Add the channel branch in sexp->channel.Mathieu Othacehe
* guix/channels.scm (sexp->channel): Add the channel branch.
2021-03-10gnu: cuirass: Update to 0.0.1-76.5f830da.Mathieu Othacehe
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-76.5f830da.
2021-03-10gnu: python-pikepdf: Update to 2.8.0.post2.Nicolas Goaziou
* gnu/packages/python-xyz.scm (python-pikepdf): Update to 2.8.0.post2.
2021-03-10gnu: cuirass: Update to 0.0.1-75.94a7f87.Mathieu Othacehe
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-75.94a7f87.
2021-03-10gnu: guix: Update to 1.2.0-15.f8953be.Mathieu Othacehe
* gnu/packages/package-management.scm (guix): Update to 1.2.0-15.f8953be.
2021-03-10gnu: cuirass: Update to 0.0.1-74.c8051f3.Mathieu Othacehe
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-74.c8051f3.
2021-03-10inferior: Use a safe symlink monadic procedure.Mathieu Othacehe
This is a follow-up of 6ee7e3d26b8f5d2a234518cc2ab1bfeba7cd7c18. * guix/inferior.scm (cached-channel-instance): Introduce "symlink/safe" and use it instead of symlink. Remove the duplicated "file-exists?" call.
2021-03-10Revert "inferior: Break cached-channel-instance into two procedures."Mathieu Othacehe
This reverts commit 7d63b775513e7049047222dbe403a4181f63828d because it raises some concerns, see: https://lists.gnu.org/archive/html/guix-devel/2021-03/msg00124.html.
2021-03-10gnu: mongodb: Update to 3.4.24 [security fixes].Léo Le Bouter
* gnu/packages/patches/mongodb-support-unknown-linux-distributions.patch: Remove patch. * gnu/local.mk (dist_patch_DATA): Ditto. * gnu/packages/databases.scm (mongodb): Update to 3.4.24. [source]: Drop patch. Update third_party libs folder names.
2021-03-10gnu: mysql: Update to 5.7.33 [security fixes].Léo Le Bouter
* gnu/packages/databases.scm (mysql): Update to 5.7.33.
2021-03-10gnu: python-sanic: Update to 20.12.2.Lars-Dominik Braun
* gnu/packages/python-web.scm (python-sanic) [version]: Update to 20.12.2. [arguments]: Relax dependency versions. [native-inputs]: Add python-pytest-asyncio. [home-page]: Update. [synopsis]: Remove Python version. [description]: Ditto.
2021-03-10gnu: python-pytest-sanic: Update to 1.7.0.Lars-Dominik Braun
* gnu/packages/python-check.scm (python-pytest-sanic) [version]: Update to 1.7.0. [propagated-inputs]: Replace python-aiohttp with python-httpx and add python-websockets.
2021-03-10gnu: python-aiofiles: Update to 0.6.0.Lars-Dominik Braun
* gnu/packages/python-xyz.scm (python-aiofiles): Update to 0.6.0.
2021-03-10gnu: python-ujson: Update to 4.0.2.Lars-Dominik Braun
* gnu/packages/python-xyz.scm (python-ujson): Update to 4.0.2.
2021-03-10gnu: python-tortoise-orm: Update to 0.16.21.Lars-Dominik Braun
* gnu/packages/databases.scm (python-tortoise-orm) [version]: Update to 0.16.21. [arguments]: Relax version requirements.
2021-03-10gnu: python-aiosqlite: Update to 0.17.0.Lars-Dominik Braun
* gnu/packages/databases.scm (python-aiosqlite) [version]: Update to 0.17.0. [arguments]: Run tests. [propagated-inputs]: Add python-typing-extensions.
2021-03-10gnu: python-pypika: Update to 0.47.6.Lars-Dominik Braun
* gnu/packages/databases.scm (python-pypika): Update to 0.47.6.
2021-03-10gnu: python-aiounittest: Update to 1.4.0.Lars-Dominik Braun
* gnu/packages/check.scm (python-aiounittest) [version]: Update to 1.4.0. [source]: Switch to git repository. [arguments]: Run notetests. [propagated-inputs]: Add python-wrapt.
2021-03-10gnu: python-shouldbe: Remove.Lars-Dominik Braun
Unmaintained upstream and its only dependent (python-gssapi) dropped it. * gnu/packages/patches/python-shouldbe-0.1.2-cpy3.8.patch: Remove. * gnu/local.mk: Drop patch file. * gnu/packages/python-xyz.scm (python-shouldbe): Remove.
2021-03-10gnu: python-asyncssh: Update to 2.5.0.Lars-Dominik Braun
* gnu/packages/ssh.scm (python-asyncssh): Update to 2.5.0.
2021-03-10gnu: python-gssapi: Update to 1.6.12.Lars-Dominik Braun
* gnu/packages/python-xyz.scm (python-gssapi) [version]: Update to 1.6.12. [arguments]: Tests have been fixed upstream, remove. [native-inputs]: python-shouldbea is not required any more, remove.
2021-03-10gnu: cyrus-sasl: Fix CVE-2019-19906.Léo Le Bouter
* gnu/packages/patches/cyrus-sasl-CVE-2019-19906.patch: New patch. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/cyrus-sasl.scm (cyrus-sasl/fixed): New variable. Apply patch. (cyrus-sasl)[replacement]: Graft.
2021-03-10gnu: gajim: Update to 1.3.1.Raghav Gururajan
* gnu/packages/messaging.scm (gajim): Update to 1.3.1. [arguments]: Modify custom 'disable-failing-tests phase.
2021-03-10gnu: sdcc: Update to 4.1.0.Simon South
* gnu/packages/embedded.scm (sdcc): Update to 4.1.0. * gnu/packages/patches/sdcc-disable-non-free-code.patch: Update to match new version. Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
2021-03-10gnu: botan: Update to 2.17.3 [fixes CVE-2021-24115].Léo Le Bouter
* gnu/packages/crypto.scm (botan): Update to 2.17.3. [arguments]: Add 'library-path-for-tests phase to fix 'check phase by setting LD_LIBRARY_PATH to intermediate build directory so tests can find libbotan.
2021-03-10gnu: zziplib: Update to 0.13.72 [security fixes].Léo Le Bouter
Non-exhaustively, fixes CVE-2018-16548 and CVE-2018-17828. * gnu/packages/compression.scm (zziplib/fixed): New variable. (zziplib)[replacement]: Graft.
2021-03-10gnu: Add unixcw.Guillaume Le Vaillant
* gnu/packages/radio.scm (unixcw): New variable.
2021-03-10gnu: Add aldo.Guillaume Le Vaillant
* gnu/packages/radio.scm (aldo): New variable.
2021-03-10gnu: python-nbxmpp: Update to 2.0.2.Raghav Gururajan
* gnu/packages/messaging.scm (python-nbxmpp) [version]: Update to 2.0.2. Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
2021-03-10gnu: bsdiff: Fix CVE-2014-9862.Léo Le Bouter
* gnu/packages/patches/bsdiff-CVE-2014-9862.patch: New patch. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/compression.scm (bsdiff): Apply it.
2021-03-10tests: cuirass: Remove cuirass simple test.Mathieu Othacehe
This is a follow-up of 6c883d0f1deacff4fc227a4f925414a3733efc6e. * gnu/tests/cuirass.scm (simple-cuirass-service, %cuirass-simple-test): Remove them.
2021-03-10services: cuirass: Remove simple cuirass configuration.Mathieu Othacehe
The Cuirass configuration has been simplified so that this is no longer needed. * gnu/services/cuirass.scm (<build-manifest>, <simple-cuirass-configuration>, simple-cuirass-configuration->specs): Remove them.
2021-03-10ci: Remove hydra support.Mathieu Othacehe
This removes hydra support to use Cuirass as the only continuous integration system. * build-aux/hydra/gnu-system.scm: Remove it. * build-aux/hydra/guix-modular.scm: Ditto. * build-aux/hydra/guix.scm: Ditto. * build-aux/cuirass/hydra-to-cuirass.scm: Ditto. * Makefile.am (EXTRA_DIST): Update it. (hydra-jobs.scm): Remove it. (cuirass-jobs.scm): Update it. * build-aux/hydra/evaluate.scm: Move it to ... * build-aux/cuirass/evaluate.scm: ... here. * build-aux/cuirass/guix-modular.scm: Remove it. * build-aux/cuirass/gnu-system.scm: Ditto. * guix/packages.scm (%hydra-supported-systems): Rename it to ... (%cuirass-supported-systems): ... this variable. * build-aux/check-final-inputs-self-contained: Adapt it. * etc/release-manifest.scm: Ditto. * gnu/ci.scm (package->alist): Remove it. (derivation->job): New procedure. (package-job, package-cross-job, cross-jobs, image-jobs, system-test-jobs, tarball-jobs): Use it. (guix-jobs): New procedure. (hydra-jobs): Rename it to ... (cuirass-jobs): ... this procedure.
2021-03-10channels: Export channel-instance->sexp.Mathieu Othacehe
* guix/channels.scm (channel-instance->sexp): Export it.
2021-03-10inferior: Fix concurrent cached-profile calls.Mathieu Othacehe
* guix/inferior.scm (cached-profile): Do not create the profile symlink if it already exists.
2021-03-10inferior: Break cached-channel-instance into two procedures.Mathieu Othacehe
Break cached-channel-instance into two different procedures: channels->cached-profile and instances->cached-profile operating respectively on channels and channels instances. * guix/inferior.scm (cached-channel-instance): Rename it into ... (cached-profile): ... this new procedure. (channels->cached-profile, instances->cached-profile): New procedures. * guix/scripts/time-machine.scm (guix-time-machine): Adapt accordingly.
2021-03-10services: cuirass: Do not create the database directory.Mathieu Othacehe
Fixes: <https://issues.guix.gnu.org/46683>. * gnu/services/cuirass.scm (cuirass-activation): Since the PostgreSQL switch, it is no longer needed to create the database directory.
generated by cgit v1.2.3 (git 2.46.2) at 2024-11-15 04:01:39 +0000