Commit graph

75253 commits

Author SHA1 Message Date
Nicolas Goaziou
6cadf34d1f
gnu: Add rust-wasmparser-0.57.
* gnu/packages/crates-io.scm (rust-wasmparser-0.57): New variable.
2021-03-10 23:49:46 +01:00
Léo Le Bouter
00c1793ce8
gnu: ungoogled-chromium: Add xdg-utils to PATH with wrapper.
This will ensure that 'mailto:' links work out of the box, among others.

* gnu/packages/chromium.scm (ungoogled-chromium): Modify replacement 'install
phase to add xdg-utils to PATH with wrap-program.
2021-03-10 23:38:53 +01:00
Léo Le Bouter
9b52ae19b1
gnu: containerd: Update to 1.3.10 [security fixes].
* gnu/packages/docker.scm (containerd): Update to 1.3.10.
2021-03-10 23:37:52 +01:00
Léo Le Bouter
83cda00bc6
gnu: docker: Update to 19.03.15 [security fixes].
* gnu/packages/docker.scm (%docker-version): Bump to 19.03.15.
(docker-libnetwork): Bump to 19.03-1.55e924b.
(docker):
[source]: Set git-reference url to 'https://github.com/moby/moby'.
[arguments]<#:phases>: Modify 'delete-failing-tests phase to delete
'signal_linux_test.go'.
2021-03-10 23:37:52 +01:00
Ludovic Courtès
b665dd4a99
file-systems: 'mount-file-system' preserves the right mount flags.
Fixes <https://bugs.gnu.org/47007>.
Reported by Jelle Licht <jlicht@fsfe.org>.

Since commit dcb640f02b, we could end up
applying the wrong mount flags because the (find ...) expression could
pick the "wrong" mount point in the presence of bind mounts.

* gnu/build/file-systems.scm (mount-file-system): Use 'statfs' to
compute FLAGS whe FS is a bind mount.
2021-03-10 23:21:33 +01:00
Ludovic Courtès
9a6ea2f8dc
syscalls: Define the ST_* constants and add 'statfs-flags->mount-flags'.
* guix/build/syscalls.scm (linux?): New variable.
(define-statfs-flags): New macro.
(ST_RDONLY, ST_NOSUID, ST_NODEV, ST_NOEXEC, ST_SYNCHRONOUS)
(ST_MANDLOCK, ST_WRITE, ST_APPEND, ST_IMMUTABLE, ST_NOATIME)
(ST_NODIRATIME, ST_RELATIME): New variables.
(statfs-flags->mount-flags): New procedure.
2021-03-10 23:21:33 +01:00
Léo Le Bouter
b610e4b9a7
gnu: lib3mf: Update to 2.1.1 [security fixes].
Non-exhaustively, fixes CVE-2021-21772.

* gnu/packages/engineering.scm (lib3mf): Update to 2.1.1.
[arguments]<#:phases>: Remove.
[arguments]<#:configure-flags>: Do not use zlib, libzip, gtest and libressl
vendored sources.
[native-inputs]: Remove googletest-source, add googletest and pkg-config.
[inputs]: Add libzip, libressl and zlib.
2021-03-10 22:22:04 +01:00
Léo Le Bouter
6c5d358cc2
gnu: python-django-2.2: Update to 2.2.19 [security fixes].
* gnu/packages/django.scm (python-django-2.2): Update to 2.2.19.
2021-03-10 21:50:06 +01:00
Léo Le Bouter
1997ded2f4
gnu: python-django: Update to 3.1.7 [security fixes].
* gnu/packages/django.scm (python-django): Update to 3.1.7.
2021-03-10 21:50:05 +01:00
Taylan Kammer
b1eb744837
gnu: guile-bytestructures: Update to 1.0.10.
* gnu/packages/guile.scm (guile-bytestructures): Update to 1.0.10.

Signed-off-by: Tobias Geerinckx-Rice <me@tobias.gr>
See: <https://logs.guix.gnu.org/guix/2021-03-10.log#205043>
2021-03-10 21:22:42 +01:00
Mathieu Othacehe
60174c9c8c
gnu: cuirass: Update to 0.0.1-77.88f3cf6.
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-77.88f3cf6.
2021-03-10 19:26:24 +01:00
Pierre Neidhardt
6e70211b20
gnu: sbcl-quri: Update to 0.3.0.
* gnu/packages/lisp-xyz.scm (sbcl-quri): Update to 0.3.0.
2021-03-10 18:20:05 +01:00
Pierre Neidhardt
336088d521
gnu: Add fof.
* gnu/packages/lisp-xyz.scm (cl-fof, ecl-fof, sbcl-fof): New variables.
2021-03-10 18:20:05 +01:00
Pierre Neidhardt
c3e53066bd
gnu: sbcl-hu.dwim.defclass-star: Update to 20210309.
* gnu/packages/lisp-xyz.scm (sbcl-hu.dwim.defclass-star): Update to 20210309.
2021-03-10 18:20:05 +01:00
Ludovic Courtès
2673324efa
news: Add entry for 'guix import go'.
* etc/news.scm: Add entry.
2021-03-10 18:03:34 +01:00
Ludovic Courtès
d028aef31c
import: go: Compute the hash of Git checkouts.
* guix/import/go.scm (vcs-file?, file-hash, git-checkout-hash): New
procedures.
(vcs->origin): Use 'git-checkout-hash' in the 'git case.
2021-03-10 18:01:48 +01:00
Katherine Cox-Buday
02e2e093e8
import: Add Go importer.
This patch adds a 'guix import go' command.

* doc/guix.texi (Requirements): Mention Guile-Lib dependency.
(Invoking guix import): Document 'guix import go'.
* gnu/packages/package-management.scm (guix)[inputs, propagated-inputs]:
Add GUILE-LIB.
* guix/self.scm (compiled-guix)[guile-lib]: New variable.
[dependencies]: Add it.
(specification->package): Add "guile-lib".
* guix/build-system/go.scm (go-version->git-ref): New procedure.
* guix/import/go.scm, guix/scripts/import/go.scm, tests/go.scm: New files.
* guix/scripts/import.scm: Declare subcommand guix import go
* po/guix/POTFILES.in: Add 'guix/scripts/import/go.scm'.
* Makefile.am (MODULES): Add 'guix/import/go.scm' and
'guix/scripts/import/go.scm'.
(SCM_TESTS): Add 'tests/go.scm'.

Co-Authored-By: Helio Machado <0x2b3bfa0@gmail.com>
Co-Authored-By: Francois Joulaud <francois.joulaud@radiofrance.com>
Co-Authored-By: Maxim Cournoyer <maxim.cournoyer@gmail.com>
Co-Authored-by: Ludovic Courtès <ludo@gnu.org>
2021-03-10 18:01:48 +01:00
Maxime Devos
520bac7ed0
services: Prevent following symlinks during activation.
This addresses a potential security issue, where a compromised
service could trick the activation code in changing the permissions,
owner and group of arbitrary files.  However, this patch is
currently only a partial fix, due to a TOCTTOU (time-of-check to
time-of-use) race, which can be fixed once guile has bindings
to openat and friends.

Fixes: <https://lists.gnu.org/archive/html/guix-devel/2021-01/msg00388.html>

* gnu/build/activation.scm: new procedure 'mkdir-p/perms'.
* gnu/services/authentication.scm
  (%nslcd-activation, nslcd-service-type): use new procedure.
* gnu/services/cups.scm (%cups-activation): likewise.
* gnu/services/dbus.scm (dbus-activation): likewise.
* gnu/services/dns.scm (knot-activation): likewise.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-03-10 18:01:47 +01:00
Ludovic Courtès
1a1d0fe505
gnu: hwloc: Update to 2.4.1.
* gnu/packages/mpi.scm (hwloc-2): Update to 2.4.1.  Adjust URL.
2021-03-10 18:01:47 +01:00
Mathieu Othacehe
8f999e1ac2
channels: Add the channel branch in sexp->channel.
* guix/channels.scm (sexp->channel): Add the channel branch.
2021-03-10 16:53:51 +01:00
Mathieu Othacehe
c1baf9b824
gnu: cuirass: Update to 0.0.1-76.5f830da.
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-76.5f830da.
2021-03-10 16:41:42 +01:00
Nicolas Goaziou
efed8e6cb9
gnu: python-pikepdf: Update to 2.8.0.post2.
* gnu/packages/python-xyz.scm (python-pikepdf): Update to 2.8.0.post2.
2021-03-10 16:03:27 +01:00
Mathieu Othacehe
c260aff63e
gnu: cuirass: Update to 0.0.1-75.94a7f87.
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-75.94a7f87.
2021-03-10 16:01:36 +01:00
Mathieu Othacehe
6bed29b798
gnu: guix: Update to 1.2.0-15.f8953be.
* gnu/packages/package-management.scm (guix): Update to 1.2.0-15.f8953be.
2021-03-10 14:25:05 +01:00
Mathieu Othacehe
f8953bea85
gnu: cuirass: Update to 0.0.1-74.c8051f3.
* gnu/packages/ci.scm (cuirass): Update to 0.0.1-74.c8051f3.
2021-03-10 13:59:44 +01:00
Mathieu Othacehe
a831ff6bc3
inferior: Use a safe symlink monadic procedure.
This is a follow-up of 6ee7e3d26b.

* guix/inferior.scm (cached-channel-instance): Introduce "symlink/safe" and
use it instead of symlink. Remove the duplicated "file-exists?" call.
2021-03-10 13:09:23 +01:00
Mathieu Othacehe
8898eaec57
Revert "inferior: Break cached-channel-instance into two procedures."
This reverts commit 7d63b77551 because it raises
some concerns, see:
https://lists.gnu.org/archive/html/guix-devel/2021-03/msg00124.html.
2021-03-10 13:08:32 +01:00
Léo Le Bouter
e5f89570c1
gnu: mongodb: Update to 3.4.24 [security fixes].
* gnu/packages/patches/mongodb-support-unknown-linux-distributions.patch:
Remove patch.
* gnu/local.mk (dist_patch_DATA): Ditto.
* gnu/packages/databases.scm (mongodb): Update to 3.4.24.
[source]: Drop patch. Update third_party libs folder names.
2021-03-10 13:03:12 +01:00
Léo Le Bouter
fdf82830d4
gnu: mysql: Update to 5.7.33 [security fixes].
* gnu/packages/databases.scm (mysql): Update to 5.7.33.
2021-03-10 12:22:55 +01:00
Lars-Dominik Braun
999a1cba54
gnu: python-sanic: Update to 20.12.2.
* gnu/packages/python-web.scm (python-sanic) [version]: Update to 20.12.2.
[arguments]: Relax dependency versions.
[native-inputs]: Add python-pytest-asyncio.
[home-page]: Update.
[synopsis]: Remove Python version.
[description]: Ditto.
2021-03-10 12:01:50 +01:00
Lars-Dominik Braun
955fcf0a19
gnu: python-pytest-sanic: Update to 1.7.0.
* gnu/packages/python-check.scm (python-pytest-sanic) [version]: Update to
1.7.0.
[propagated-inputs]: Replace python-aiohttp with python-httpx and add
python-websockets.
2021-03-10 12:01:49 +01:00
Lars-Dominik Braun
548d0ddd7f
gnu: python-aiofiles: Update to 0.6.0.
* gnu/packages/python-xyz.scm (python-aiofiles): Update to 0.6.0.
2021-03-10 12:01:48 +01:00
Lars-Dominik Braun
d58a7b45cd
gnu: python-ujson: Update to 4.0.2.
* gnu/packages/python-xyz.scm (python-ujson): Update to 4.0.2.
2021-03-10 12:01:47 +01:00
Lars-Dominik Braun
e7a3ae1e85
gnu: python-tortoise-orm: Update to 0.16.21.
* gnu/packages/databases.scm (python-tortoise-orm) [version]: Update to 0.16.21.
[arguments]: Relax version requirements.
2021-03-10 12:01:46 +01:00
Lars-Dominik Braun
281fd9ad71
gnu: python-aiosqlite: Update to 0.17.0.
* gnu/packages/databases.scm (python-aiosqlite) [version]: Update to 0.17.0.
[arguments]: Run tests.
[propagated-inputs]: Add python-typing-extensions.
2021-03-10 12:01:45 +01:00
Lars-Dominik Braun
f73ee73da7
gnu: python-pypika: Update to 0.47.6.
* gnu/packages/databases.scm (python-pypika): Update to 0.47.6.
2021-03-10 12:01:43 +01:00
Lars-Dominik Braun
b431840cbe
gnu: python-aiounittest: Update to 1.4.0.
* gnu/packages/check.scm (python-aiounittest) [version]: Update to 1.4.0.
[source]: Switch to git repository.
[arguments]: Run notetests.
[propagated-inputs]: Add python-wrapt.
2021-03-10 12:01:42 +01:00
Lars-Dominik Braun
38b0c64d7b
gnu: python-shouldbe: Remove.
Unmaintained upstream and its only dependent (python-gssapi) dropped it.

* gnu/packages/patches/python-shouldbe-0.1.2-cpy3.8.patch: Remove.
* gnu/local.mk: Drop patch file.
* gnu/packages/python-xyz.scm (python-shouldbe): Remove.
2021-03-10 12:01:41 +01:00
Lars-Dominik Braun
714465ec7c
gnu: python-asyncssh: Update to 2.5.0.
* gnu/packages/ssh.scm (python-asyncssh): Update to 2.5.0.
2021-03-10 12:01:40 +01:00
Lars-Dominik Braun
9a05af61ac
gnu: python-gssapi: Update to 1.6.12.
* gnu/packages/python-xyz.scm (python-gssapi) [version]: Update to 1.6.12.
[arguments]: Tests have been fixed upstream, remove.
[native-inputs]: python-shouldbea is not required any more, remove.
2021-03-10 12:01:35 +01:00
Léo Le Bouter
70128b8afa
gnu: cyrus-sasl: Fix CVE-2019-19906.
* gnu/packages/patches/cyrus-sasl-CVE-2019-19906.patch: New patch.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/cyrus-sasl.scm (cyrus-sasl/fixed): New variable. Apply patch.
(cyrus-sasl)[replacement]: Graft.
2021-03-10 11:51:09 +01:00
Raghav Gururajan
fb4ccb86c2
gnu: gajim: Update to 1.3.1.
* gnu/packages/messaging.scm (gajim): Update to 1.3.1.
[arguments]: Modify custom 'disable-failing-tests phase.
2021-03-10 12:22:42 +02:00
Simon South
e6cd049e2f
gnu: sdcc: Update to 4.1.0.
* gnu/packages/embedded.scm (sdcc): Update to 4.1.0.
* gnu/packages/patches/sdcc-disable-non-free-code.patch: Update to match new
version.

Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
2021-03-10 12:22:42 +02:00
Léo Le Bouter
47ce29666b
gnu: botan: Update to 2.17.3 [fixes CVE-2021-24115].
* gnu/packages/crypto.scm (botan): Update to 2.17.3.
[arguments]: Add 'library-path-for-tests phase to fix 'check phase by setting
LD_LIBRARY_PATH to intermediate build directory so tests can find libbotan.
2021-03-10 11:20:08 +01:00
Léo Le Bouter
f7fdafeff5
gnu: zziplib: Update to 0.13.72 [security fixes].
Non-exhaustively, fixes CVE-2018-16548 and CVE-2018-17828.

* gnu/packages/compression.scm (zziplib/fixed): New variable.
(zziplib)[replacement]: Graft.
2021-03-10 10:59:12 +01:00
Guillaume Le Vaillant
b8e71b390d
gnu: Add unixcw.
* gnu/packages/radio.scm (unixcw): New variable.
2021-03-10 10:54:56 +01:00
Guillaume Le Vaillant
e212f32dce
gnu: Add aldo.
* gnu/packages/radio.scm (aldo): New variable.
2021-03-10 10:54:56 +01:00
Raghav Gururajan
f4fd7bda51
gnu: python-nbxmpp: Update to 2.0.2.
* gnu/packages/messaging.scm (python-nbxmpp) [version]: Update to 2.0.2.

Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
2021-03-10 11:03:46 +02:00
Léo Le Bouter
b66fc0a64b
gnu: bsdiff: Fix CVE-2014-9862.
* gnu/packages/patches/bsdiff-CVE-2014-9862.patch: New patch.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/compression.scm (bsdiff): Apply it.
2021-03-10 09:54:27 +01:00
Mathieu Othacehe
207ef1a2b4
tests: cuirass: Remove cuirass simple test.
This is a follow-up of 6c883d0f1d.

* gnu/tests/cuirass.scm (simple-cuirass-service, %cuirass-simple-test): Remove
them.
2021-03-10 09:37:48 +01:00