Commit graph

322 commits

Author SHA1 Message Date
Ricardo Wurmus
441010a2d1
Revert "gnu: Use patched static bash in glibc replacement."
This reverts commit 42958b5e0f.
2018-03-14 16:28:22 +01:00
Ricardo Wurmus
9c9912cf5b
Revert "gnu: Add missing module to (gnu packages base)."
This reverts commit 911e66f922.
2018-03-14 16:28:22 +01:00
Ricardo Wurmus
911e66f922
gnu: Add missing module to (gnu packages base).
This is a follow-up to commit 42958b5e0f.

Reported by pmikkelsen on IRC.

* gnu/packages/base.scm: Use srfi-1 for alist-delete.
2018-03-14 12:46:57 +01:00
Ricardo Wurmus
42958b5e0f
gnu: Use patched static bash in glibc replacement.
* gnu/packages/base.scm (glibc-2.26-patched): Rename...
(glibc-2.26-patched-boot): ...to this.
(patched-static-bash, glibc-2.26-patched): New variables.
2018-03-14 11:39:14 +01:00
Ludovic Courtès
036ed3a830
gnu: glibc-2.26-patch: Remove unneeded 'replacement' field.
* gnu/packages/base.scm (glibc-2.26-patched): Remove unneeded
'replacement' field.
2018-03-07 21:39:32 +01:00
Ricardo Wurmus
b672a81607
gnu: Graft glibc to allow execution on Linux 2.6.32.
* gnu/packages/patches/glibc-allow-kernel-2.6.32.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/base.scm (glibc/linux)[replacement]: New field.
(glibc-2.26-patched): New variable.
2018-03-01 21:32:36 +01:00
Mark H Weaver
e7ca634912
Merge branch 'master' into core-updates 2018-02-03 22:46:07 -05:00
Leo Famulari
537a17fbe8
gnu: Add copyright statement for Alex Vong.
This is a followup to commit 20be64dcf7.

* gnu/packages/base.scm: Add copyright statement.
2018-02-01 16:14:41 -05:00
Marius Bakke
5029b0bcc4
gnu: glibc@2.25: Don't apply glibc-CVE-2015-5180.patch.
This was mistakenly added in 67d527e35e and
already included in glibc 2.25.

* gnu/packages/base.scm (glibc-2.25)[source](patches): Remove
'glibc-CVE-2015-5180.patch'.
2018-02-01 11:09:16 +01:00
Leo Famulari
4adb40bffc
Merge branch 'master' into core-updates 2018-01-11 14:22:50 -08:00
Ludovic Courtès
20bf5fce7d
gnu: grep: Add dependency on PCRE.
Suggested by Oleg Pykhalov <go.wigust@gmail.com>
and Roel Janssen <roel@gnu.org>.

* gnu/packages/base.scm (grep)[inputs]: New field.
* gnu/packages/commencement.scm (grep-final)[inputs]: New field.
2018-01-11 22:49:15 +01:00
Marius Bakke
0c86790bfd
Revert "gnu: glibc: Fix CVE-2017-15670, CVE-2017-15671."
These issues has been classified as minor by Debian:

https://security-tracker.debian.org/tracker/CVE-2017-15670
https://security-tracker.debian.org/tracker/CVE-2017-15671

In addition, the patch only fixes one of the two CVEs it claims to fix.  We
don't backport most CVEs, especially non-critical ones, so no need to carry
this (which is in 2.26).  See discussion at <https://bugs.gnu.org/29490>.

This reverts commit 60e29339d8.
2018-01-02 16:55:17 +01:00
Ludovic Courtès
f3c294a2ab
gnu: coreutils: Fix cross-compilation.
Previously cross-compiling coreutils would fail with:

  aarch64-linux-gnu-gcc   -Os -g0 -Wl,--as-needed -static -pthread -o src/uptime src/uptime.o src/libver.a lib/libcoreutils.a  lib/libcoreutils.a
  /gnu/store/hk8615wmmzk28k5z06g69jm6vbhc8lgk-glibc-cross-aarch64-linux-gnu-2.26.105-g0890d5379c-static/lib/libc.a(mktime.o): In function `__mktime_internal':
  /tmp/guix-build-glibc-cross-aarch64-linux-gnu-2.26.105-g0890d5379c.drv-0/glibc-2.26-105-g0890d5379c/time/mktime.c:353: multiple definition of `__mktime_internal'
  lib/libcoreutils.a(mktime.o):mktime.c:(.text+0x214): first defined here
  collect2: error: ld returned 1 exit status

* gnu/packages/base.scm (coreutils)[arguments]: Add #:configure-flags
when cross-compiling.
2017-12-29 13:31:10 +01:00
Ludovic Courtès
8d6cd08573
gnu: diffutils: Fix Gnulib/getopt cross-compilation issue.
Previously cross-compilation would fail:

     CC       xvasprintf.o
   xstrtol-error.c:50:16: warning: 'struct rpl_option' declared inside parameter list
		   int exit_status)
		   ^
   xstrtol-error.c: In function 'xstrtol_error':
   xstrtol-error.c:84:5: error: invalid use of undefined type 'struct rpl_option'

* gnu/packages/patches/diffutils-getopt.patch: New file.
* gnu/packages/base.scm (diffutils)[source]: Use it.
* gnu/local.mk (dist_patch_DATA): Add it.
2017-12-20 23:19:31 +01:00
Marius Bakke
2bbd674ba0
gnu: glibc-locales: Don't inherit 'move-static-libs' phase from glibc.
This is a follow-up to commit 6dff905e51.

* gnu/packages/base.scm (glibc-locales)[arguments]: Delete failing
'move-static-libs' phase.
2017-12-06 15:16:21 +01:00
Marius Bakke
e3f9406b7c
gnu: glibc: Update to 2.26.105-g0890d5379 [fixes CVE-2017-15804].
* gnu/packages/base.scm (glibc/linux): Update to 2.26.105-g0890d5379.
2017-12-05 23:33:03 +01:00
Marius Bakke
c6bc8e22e9
gnu: glibc: Don't use full version string in locale path.
This is a follow-up to commit ee3ebf1a35.
Fixes <https://bugs.gnu.org/29537>.

* gnu/packages/base.scm (glibc/linux)[version]: Change to 2.26.91-gaaa2eb83b8.
[source](uri): Adjust accordingly.
[arguments]: Use VERSION-MAJOR+MINOR for locales path.
(glibc-locales, glibc-utf8-locales): Likewise.
* guix/packages.scm (patch-and-repack): Likewise.
* guix/profiles.scm (ca-certificate-bundle, profile-derivation): Likewise.
2017-12-03 16:23:43 +01:00
Marius Bakke
ee3ebf1a35
gnu: glibc: Update to 2.26-91-gaaa2eb83b8.
* gnu/packages/base.scm (glibc/linux): Update to 2.26-91-gaaa2eb83b8.
[source](uri): Download from alpha.gnu.org.
[source](patches): Remove glibc-CVE-2017-15670-15671.patch.
2017-11-28 14:24:09 +01:00
Eric Bavier
acc2dab7f2
gnu: Disable gnulib's test-lock test in packages.
* gnu/packages/base.scm (findutils)[source]: Disable test-lock.
* gnu/packages/gettext.scm (gettext-minimal)[source]: Ditto.
* gnu/packages/libidn.scm (libidn)[source]: Ditto.
* gnu/packages/libunistring.scm (libunistring)[source]: Ditto.
* gnu/packages/augeas.scm (augeas)[source]: Ditto.
* gnu/packages/gsasl.scm (gsasl)[source]: Ditto.
* gnu/packages/patches/findutils-gnulib-multi-core.patch,
gnu/packages/patches/gettext-gnulib-multi-core.patch,
gnu/packages/patches/gettext-multi-core.patch,
gnu/packages/patches/libunistring-gnulib-multi-core.patch: Delete patches.
* gnu/local.mk (DIST_PATCH_DATA): Remove them.
2017-11-06 17:32:42 -06:00
Leo Famulari
75aea16fb0
gnu: tzdata-for-tests: Update to 2017c.
* gnu/packages/base.scm (tzdata-for-tests): Make it a 'hidden-package' and
update to 2017c.
2017-11-04 10:32:30 -04:00
Leo Famulari
f9c3bd2e01
gnu: Generalize the variable name of the test-only tzdata package.
* gnu/packages/base.scm (tzdata-2017a): Rename variable to tzdata-for-tests.
* gnu/packages/calcurse.scm (calcurse)[native-inputs, arguments]: Adjust
accordingly.
gnu/packages/glib.scm (glib): Likewise.
* gnu/packages/perl.scm (perl-libtime-parsedate): Adjust accordingly and
add tzdata-for-tests #:disallowed-references.
* gnu/packages/statistics.scm (r-minimal): Adjust accordingly.
2017-11-04 10:32:30 -04:00
Leo Famulari
232ffa842d
gnu: tzdata: Update to 2017c.
* gnu/packages/base.scm (base)[tzdata]: Update to 2017c.
2017-11-04 10:32:27 -04:00
Marius Bakke
67d527e35e
gnu: glibc: Update to 2.26.
* gnu/packages/base.scm (glibc/linux): Update to 2.26.
[source](patches): Remove 'glibc-memchr-overflow-i686.patch',
'glibc-o-largefile.patch', 'glibc-vectorized-strcspn-guards.patch,
'glibc-CVE-2017-1000366-pt1.patch', 'glibc-CVE-2017-1000366-pt2.patch' and
'glibc-CVE-2017-1000366-pt3.patch'.
(glibc-2.25): New public variable.
2017-10-24 22:15:10 +02:00
Marius Bakke
2cce5fc598
gnu: glibc: Incorporate grafted changes.
* gnu/packages/base.scm (glibc/linux)[source](patches): Add
'glibc-CVE-2017-15670-15671.patch'.
(glibc/fixed): Remove variable.
2017-10-24 22:04:29 +02:00
Marius Bakke
ca4fd41de8
Merge branch 'master' into core-updates 2017-10-24 22:00:23 +02:00
Marius Bakke
60e29339d8
gnu: glibc: Fix CVE-2017-15670, CVE-2017-15671.
* gnu/packages/patches/glibc-CVE-2017-15670-15671.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/base.scm (glibc/linux)[replacement]: New field.
(glibc/fixed): New variable.
(glibc-2.24, glibc-2.23, glibc-2.22)[source](patches): Add
'glibc-CVE-2017-15670-15671.patch'.
2017-10-22 23:13:09 +02:00
Marius Bakke
c01ef97594
Merge branch 'master' into core-updates 2017-10-10 22:33:28 +02:00
Efraim Flashner
656a5ba0d5
gnu: coreutils: Update build phase.
* gnu/packages/base.scm (coreutils)[arguments]: Use 'modify-phases'
syntax. Substitute with 'which sh'.
2017-10-08 00:59:06 +03:00
Efraim Flashner
2320d4f058
gnu: glibc-locales: Use 'modify-phases' syntax.
* gnu/packages/base.scm (glibc-locales)[arguments]: Use 'modify-phases'
syntax.
2017-10-06 16:00:11 +03:00
Efraim Flashner
d31e7bad8c
Revert "gnu: binutils: Update to 2.29.1."
This reverts commit 3097edf549.
2017-10-03 08:55:48 +03:00
Efraim Flashner
3097edf549
gnu: binutils: Update to 2.29.1.
* gnu/packages/base.scm (binutils): Update to 2.29.1.
[source]: Add patch.
* gnu/packages/patches/binutils-CVE-2017-14729.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-10-02 12:13:39 +03:00
Efraim Flashner
45953b1f67
gnu: binutils: Update to 2.28.1.
* gnu/packages/base.scm (binutils): Update to 2.28.1.
[replacement]: Remove field.
* gnu/packages/commencement.scm (binutils-boot0, binutils-final): Don't
use 'package/inherit'.
2017-10-01 22:16:24 +03:00
Efraim Flashner
64df08f0cf
Merge remote-tracking branch 'origin/master' into core-updates 2017-10-01 22:16:22 +03:00
Efraim Flashner
ce27857f71
gnu: binutils: Fix security issues.
* gnu/packages/base.scm (binutils)[replacement]: New field.
(binutils/fixed): New variable.
* gnu/packages/commencement.scm (binutils-boot0, binutils-final): Use
'package/inherit' to correctly use replacement binutils.
2017-09-17 22:45:21 +03:00
Ludovic Courtès
9f993702a6
gnu: coreutils: Update to 8.28.
* gnu/packages/base.scm (coreutils): Update to 8.28.
[source]: Remove 'patches'.
* gnu/packages/patches/coreutils-cut-huge-range-test.patch: Remove.
* gnu/local.mk (dist_patch_DATA): Adjust accordingly.
2017-09-05 10:18:39 +02:00
Ludovic Courtès
6dff905e51
gnu: glibc: Add "static" output.
This shrinks glibc:out from 37 MiB to 29 MiB.

* gnu/packages/base.scm (glibc/linux)[outputs]: Add "static".
[arguments]: Add #:modules.  Add 'move-static-libs' phase.
* gnu/packages/commencement.scm (static-bash-for-glibc): Augment
 #:configure-flags to pass "-L LIBC:STATIC".  Add the "static" output of
GLIBC-FINAL to 'inputs'.
(%boot2-inputs, %final-inputs): Likewise.
(canonical-package): Adjust to deal with multiple-output packages.
* gnu/packages/cross-base.scm (cross-gcc): Add the "static" output of
LIBC to 'native-inputs'.
2017-09-05 10:18:39 +02:00
Efraim Flashner
63adf0fd67
gnu: grep: Update to 3.1.
* gnu/packages/base.scm (grep): Update to 3.1.
[source]: Remove patch.
* gnu/packages/patches/grep-gnulib-lock.patch: Remove file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-08-30 08:08:52 +03:00
Mark H Weaver
f167595ba1
Merge branch 'master' into core-updates 2017-08-06 00:23:20 -04:00
Efraim Flashner
edd08fb7ac
gnu: glibc@2.22: Fix security issues.
Fixes CVE-2015-{5180,7547}, CVE-2016-{3075,3706,4429}.

* gnu/packages/base.scm (glibc@2.22)[source]: Add patches.
* gnu/packages/patches/glibc-CVE-2015-7547.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-08-02 21:51:35 +03:00
Efraim Flashner
a0ae64a334
gnu: glibc@2.23: Fix CVE-2015-5180, CVE-2016-{3075,3706,4429}.
* gnu/packages/base.scm (glibc@2.23)[source]: Add patches.
* gnu/packages/patches/glibc-CVE-2016-3075.patch,
gnu/packages/patches/glibc-CVE-2016-3706.patch,
gnu/packages/patches/glibc-CVE-2016-4429.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register them.
2017-08-02 21:51:33 +03:00
Efraim Flashner
575e5e4e51
gnu: glibc@2.24: Fix CVE-2015-5180.
* gnu/packages/base.scm (glibc@2.24)[source]: Add patch.
* gnu/packages/patches/glibc-CVE-2015-5180.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-08-02 21:51:31 +03:00
Leo Famulari
6c1a317e29
Merge branch 'master' into core-updates 2017-07-23 03:42:12 -04:00
Ludovic Courtès
6d833b13b7
gnu: Remove glibc@2.21 and its traces.
* gnu/packages/base.scm (glibc-2.21): Remove.
* gnu/system/locale.scm (localedef-command)[maybe-version-directory]:
Remove.  Replace call with use of 'package-version'.
(single-locale-directory): Remove 'version>=' conditional.
2017-07-17 23:41:36 +02:00
Ludovic Courtès
d5ec5ed719
packages: Mark 'replacement' as an "innate" field.
Suggested by Mark H Weaver
at <https://lists.gnu.org/archive/html/guix-devel/2017-06/msg00355.html>.

* guix/packages.scm (<package>)[replacement]: Mark as "innate".
* gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24)
(glibc-2.23, glibc-2.22, glibc-2.21, glibc-locales): Remove
'replacement' field, which was set to #f.
* gnu/packages/commencement.scm (perl-boot0): Likewise.
* gnu/packages/fontutils.scm (graphite2/fixed): Likewise.
* gnu/packages/ghostscript.scm (ghostscript/fixed): Likewise.
* gnu/packages/gnupg.scm (libgcrypt-1.7.8): Likewise.
* gnu/packages/guile.scm (guile-2.0/fixed, guile-2.2): Likewise.
* gnu/packages/icu4c.scm (icu4c/fixed): Likewise.
* gnu/packages/image.scm (libpng-apng): Likewise.
* gnu/packages/make-bootstrap.scm (%guile-static): Likewise.
* gnu/packages/pcre.scm (pcre/fixed): Likewise.
* gnu/packages/perl.scm (perl/fixed): Likewise.
* gnu/packages/ruby.scm (ruby-2.3, ruby-2.2, ruby-2.1)
(ruby-1.8): Likewise.
* gnu/packages/tls.scm (gnutls-3.5.13, gnutls/guile-2.2): Likewise.
* gnu/packages/xml.scm (expat-2.2.1): Likewise.
2017-07-03 23:51:22 +02:00
Mark H Weaver
13fa4d7c35
gnu: glibc: Fix build on i686.
This is followup to 503a4df904.
Fixes <https://bugs.gnu.org/27489>.

* gnu/packages/base.scm (glibc/linux): Add
"glibc-vectorized-strcspn-guards.patch" to patches.
2017-07-01 02:18:32 -04:00
Ludovic Courtès
503a4df904
gnu: glibc/linux: Add patches for CVE-2017-1000366.
* gnu/packages/patches/glibc-CVE-2017-1000366-pt1.patch,
gnu/packages/patches/glibc-CVE-2017-1000366-pt2.patch,
gnu/packages/patches/glibc-CVE-2017-1000366-pt3.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/base.scm (glibc/linux)[source](patches): Add them.
[replacement]: Remove.
(glibc-2.25-patched): Remove.
(glibc-2.24, glibc-2.23, glibc-2.22, glibc-2.21)
(glibc-locales): Remove 'replacement' field.
2017-06-29 22:03:33 +02:00
Mark H Weaver
ed068b960e
Merge branch 'master' into core-updates 2017-06-26 00:00:58 -04:00
Mark H Weaver
ffc015bea2
gnu: glibc: Fix replacement on i686.
This is followup to 665d6a5916.
Fixes <https://bugs.gnu.org/27489>.

* gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24, glibc-2.23)
(glibc-2.22): Add glibc-vectorized-strcspn-guards.patch to patches.
Move a comment where it belongs.
* gnu/packages/patches/glibc-CVE-2017-1000366-pt2.patch: Swap with ...
* gnu/packages/patches/glibc-CVE-2017-1000366-pt3.patch: ... this.
* gnu/packages/patches/glibc-vectorized-strcspn-guards.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.  Fix formatting.
2017-06-25 21:56:22 -04:00
Efraim Flashner
665d6a5916
gnu: glibc: Add mitigations for CVE-2017-1000366.
* gnu/packages/base.scm (glibc/linux)[replacement]: New field.
(glibc-2.25-patched): New variable.
(glibc-2.24, glibc-2.23, glibc-2.22, glibc-2.21)[source]: Add patches.
[replacement]: New field.
(glibc-locales)[replacement]: New field.
* gnu/packages/patches/glibc-CVE-2017-1000366-pt1.patch,
gnu/packages/patches/glibc-CVE-2017-1000366-pt2.patch,
gnu/packages/patches/glibc-CVE-2017-1000366-pt3.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.

Modified-By: Mark H Weaver <mhw@netris.org>
2017-06-24 02:42:37 -04:00
Mark H Weaver
56ed97c8b5
gnu: glibc-2.22: Return #t from 'fix-pwd' phase.
Based on a patch by Efraim Flashner <efraim@flashner.co.il>.

* gnu/packages/base.scm (glibc-2.22)[arguments]: Return #t from 'fix-pwd'
phase.
2017-06-24 02:42:24 -04:00