/gnu/

title='2022-05-22 15:15:33 +0200'>2022-05-22

Age	Commit message (Expand)	Author
2021-07-29	services: setuid: More configurable setuid support....New record <setuid-program> with fields for setting the specific user and group, as well as specifically selecting the setuid and setgid bits, for a program within the setuid-program-service. * gnu/services.scm (setuid-program-file-like-deprecated): New function. (setuid-program-service-type): Make use of setuid-program->activation-gexp. Adjust the extend property to handle <setuid-program>. * gnu/build/activation.scm (activate-setuid-programs): Update to expect a <setuid-record> list for each program entry. * gnu/system.scm: (operating-system-setuid-programs): Renamed to %operating-system-setuid-programs and replace it with new procedure. (operating-system-default-essential-services, hurd-default-essential-services): Replace operating-system-setuid-programs with %operating-system-setuid-programs. * gnu/system/setuid.scm: New file. * doc/guix.texi (Setuid Programs): Document <setuid-program>. Co-authored-by: Brice Waegeneire <brice@waegenei.re>	Chris Lemmer-Webber
2021-04-03	activation: Do not dereference symlinks during home directory creation....Fixes <https://bugs.gnu.org/47584>. * gnu/build/activation.scm (copy-account-skeletons): Do not chown the home directory; leave this to 'activate-user-home'. (activate-user-home): Only chown the home directory after the account skeletons have been copied. Co-authored-by: Ludovic Courtès <ludo@gnu.org>.	Maxime Devos
2021-03-10	services: Prevent following symlinks during activation....This addresses a potential security issue, where a compromised service could trick the activation code in changing the permissions, owner and group of arbitrary files. However, this patch is currently only a partial fix, due to a TOCTTOU (time-of-check to time-of-use) race, which can be fixed once guile has bindings to openat and friends. Fixes: <https://lists.gnu.org/archive/html/guix-devel/2021-01/msg00388.html> * gnu/build/activation.scm: new procedure 'mkdir-p/perms'. * gnu/services/authentication.scm (%nslcd-activation, nslcd-service-type): use new procedure. * gnu/services/cups.scm (%cups-activation): likewise. * gnu/services/dbus.scm (dbus-activation): likewise. * gnu/services/dns.scm (knot-activation): likewise. Signed-off-by: Ludovic Courtès <ludo@gnu.org>	Maxime Devos
2021-02-09	activation: Do not make setuid programs setgid-root [security]....Fixes <https://bugs.gnu.org/46395>. Reported by Duncan Overbruck <mail@duncano.de>. * gnu/build/activation.scm (activate-setuid-programs): Change TARGET mode to not be setgid.	Ludovic Courtès
2020-06-09	activation: Fix function call for system activation...* gnu/build/activation.scm (boot-time-system): Evaluate the linux-command-line thunk for linux systems to boot Signed-off-by: Ludovic Courtès <ludo@gnu.org>	Royce Strange
2020-06-08	system: Support activation service for the Hurd....* gnu/build/activation.scm (boot-time-system): Use "command-line" for the Hurd. * gnu/system.scm (hurd-default-essential-services): Add %boot-service and %activation-service.	Jan (janneke) Nieuwenhuizen
2020-01-06	activation: Check whether /proc/sys/kernel/modprobe exists....* gnu/build/activation.scm (activate-modprobe): Check whether /proc/sys/kernel/modprobe exists before writing to it. Co-authored-by: Ludovic Courtès <ludo@gnu.org>	kanichos@yandex.ru
2020-01-02	activation: Keep going when failing to create one of the setuid programs....Fixes <https://bugs.gnu.org/38800>. Reported by Jakub Kądziołka <kuba@kadziolka.net>. * gnu/build/activation.scm (activate-setuid-programs): Catch 'system-error' around 'make-setuid-program' calls.	Ludovic Courtès
ci: Do not rely on hardcoded cross-targets lists....* gnu/ci.scm (%cross-targets): Remove it ... (cross-jobs): ... and use the targets procedure instead. * etc/release-manifest.scm: Adapt it. Signed-off-by: Mathieu Othacehe <othacehe@gnu.org>	Mathieu Othacehe
2022-01-01	ci: Add extra jobs for tunable packages....This allows us to provide substitutes for tuned package variants. * gnu/ci.scm (package-job): Add #:suffix and honor it. (package->job): Add #:suffix and honor it. (%x86-64-micro-architectures): New variable. (tuned-package-jobs): New procedure. (cuirass-jobs): Add jobs for tunable packages.	Ludovic Courtès
2021-12-10	Merge remote-tracking branch 'signed/master' into core-updates	Mathieu Othacehe
2021-12-06	ci: Cross-build the 'guix' package....* gnu/ci.scm (%core-packages): Add GUIX.	Ludovic Courtès
2021-10-12	Merge remote-tracking branch 'origin/master' into core-updates-frozen.	Mathieu Othacehe
2021-10-04	ci: Allow manifests to contain any lowerable object....Previously, manifests could only contain packages: https://lists.gnu.org/archive/html/guix-devel/2021-10/msg00002.html This allows us to pass origins as found in 'etc/source-manifest.scm'. * gnu/ci.scm (derivation->job): Change default #:timeout value to 5h. (manifests->packages): Remove. (manifests->jobs): New procedure. (cuirass-jobs): Use it in the 'manifests' case.	Ludovic Courtès
2021-09-27	ci: Adjust 'channel-build-system' to monadic style....* gnu/ci.scm (channel-build-system): Adjust to new monadic style.	Ludovic Courtès
2021-07-10	ci: Build commencement packages supported on the target system....This is a followup to df49fe2a13d933c640e3189413c5adfced1103c5. * gnu/ci.scm (%bootstrap-packages): Rename to... (commencement-packages): ... this, and turn into a procedure. Filter packages that pass 'supported-package?'. (cuirass-jobs): Adjust accordingly.	Ludovic Courtès
2021-07-09	ci: Add bootstrap packages to the core subset....* gnu/ci.scm (%bootstrap-packages): New variable. (cuirass-jobs): Add it to the core subset.	Mathieu Othacehe
2021-07-09	ci: Add bootstrap packages to the core subset....* gnu/ci.scm (%bootstrap-packages): New variable. (cuirass-jobs): Add it to the core subset.	Mathieu Othacehe
2021-07-05	ci: Change "core" subset to include the latest GCC and Guile....* gnu/ci.scm (%core-packages): Replace GCC-7 by GCC-11 and GUILE-2.0 by GUILE-3.0.	Ludovic Courtès
2021-07-03	ci: Remove duplicate ".SYSTEM" extension for cross-compilation jobs....* gnu/ci.scm (package-cross-job): Remove ".SYSTEM".	Ludovic Courtès
2021-05-25	ci: Add derivation inputs....* gnu/ci.scm (derivation->job): Add the derivation inputs to the job association list.	Mathieu Othacehe
2021-05-25	ci: Add derivation inputs....* gnu/ci.scm (derivation->job): Add the derivation inputs to the job association list.	Mathieu Othacehe
2021-04-28	ci: Add custom subset....* gnu/ci.scm (cuirass-jobs): Add 'custom susbset.	Mathieu Othacehe
2021-04-28	ci: Add arguments->systems procedure....* gnu/ci.scm (arguments->systems): New procedure. (cuirass-jobs): Use it.	Mathieu Othacehe
2021-04-28	ci: Factorize image->job procedure....* gnu/ci.scm (image-jobs): Extract ->job procedure into ... (image->job): ... this new procedure.	Mathieu Othacehe
2021-04-18	ci: tarball: Use "current-guix" as profile name....Fixes: <https://issues.guix.gnu.org/47841>. * gnu/ci.scm (tarball-jobs): Use "current-guix" as profile name.	Mathieu Othacehe
2021-04-12	ci: Fix system-tests subset....* gnu/ci.scm (system-test-jobs): Make sure that "all-system-tests" is also covered by the "current-guix-package" parameter.	Mathieu Othacehe
2021-04-08	ci: Introduce new subsets....Introduce 'images, 'system-tests and 'tarball subsets. * gnu/ci.scm (cuirass-jobs): Break the 'all subset into smaller subsets.	Mathieu Othacehe
2021-04-08	ci: Remove the job period argument....Cuirass now deals with periodicity directly on specifications. * gnu/ci.scm (derivation->job): Remove the period argument. (image-jobs, system-test-jobs, tarball-jobs): Adapt them.	Mathieu Othacehe
2021-03-23	ci: %cross-targets: Add powerpc64le-linux-gnu....* gnu/ci.scm (%cross-targets): Add an entry for powerpc64le-linux-gnu.	Chris Marusich
2021-03-23	ci: Change manifest argument type....* gnu/ci.scm (arguments->manifests): Change manifest argument type.	Mathieu Othacehe
2021-03-14	ci: Support packages with multiple channels....This is a follow-up of 61a1165340a8bcc45550259edca25275d899fe09. For packages provided by external channels, package-channels procedure will return at least two channels. Take it into account. * gnu/ci.scm (cuirass-jobs): Fix channels subset argument.	Mathieu Othacehe
2021-03-14	ci: Add channel subset support....* gnu/ci.scm (cuirass-jobs): Add channel subset support.	Mathieu Othacehe
2021-03-10	ci: Remove hydra support....This removes hydra support to use Cuirass as the only continuous integration system. * build-aux/hydra/gnu-system.scm: Remove it. * build-aux/hydra/guix-modular.scm: Ditto. * build-aux/hydra/guix.scm: Ditto. * build-aux/cuirass/hydra-to-cuirass.scm: Ditto. * Makefile.am (EXTRA_DIST): Update it. (hydra-jobs.scm): Remove it. (cuirass-jobs.scm): Update it. * build-aux/hydra/evaluate.scm: Move it to ... * build-aux/cuirass/evaluate.scm: ... here. * build-aux/cuirass/guix-modular.scm: Remove it. * build-aux/cuirass/gnu-system.scm: Ditto. * guix/packages.scm (%hydra-supported-systems): Rename it to ... (%cuirass-supported-systems): ... this variable. * build-aux/check-final-inputs-self-contained: Adapt it. * etc/release-manifest.scm: Ditto. * gnu/ci.scm (package->alist): Remove it. (derivation->job): New procedure. (package-job, package-cross-job, cross-jobs, image-jobs, system-test-jobs, tarball-jobs): Use it. (guix-jobs): New procedure. (hydra-jobs): Rename it to ... (cuirass-jobs): ... this procedure.	Mathieu Othacehe
2021-01-31	ci: Remove the package version from the job name....Match Hydra behaviour where the job_name is <package_name>.<system>. This allows to operate on several builds of the same package in the CI, regardless of their version. * gnu/ci.scm (job-name): Remove package version from the job name.	Mathieu Othacehe
2021-01-29	ci: Raise max-silent-time to 3600....* gnu/ci.scm (image-jobs, system-test-jobs): Raise max-silent-time to 3600 seconds.	Mathieu Othacehe
2020-12-03	ci: Build novena-barebones-raw-image....* gnu/ci.scm (%guix-system-images): Add novena-barebones-raw-image.	Danny Milosavljevic
2020-12-01	Revert "ci: Temporarily disable image-jobs."...This reverts commit a79041f0b583ef3399bb46ac2a6c03a4db636573. The issue has been fixed with 07a33b1d21e240781072352f93206cfdc765f907.	Mathieu Othacehe
2020-11-29	ci: Temporarily disable image-jobs....* gnu/ci.scm (hydra-jobs): Temporarily disable image-jobs.	Mathieu Othacehe
2020-11-25	ci: Limit image and system tests jobs periodicity....System tests and images jobs are extremely expensive in I/O operations and storage size, pass a "period" argument to Cuirass to limit their periodicity. * gnu/ci.scm (hours): New procedure, (image-jobs, system-test-jobs, tarball-jobs): set a period argument.	Mathieu Othacehe
2020-11-20	image: Add pinebook-pro support....* gnu/system/images/pinebook-pro.scm: New file. * gnu/local.mk (GNU_SYSTEM_MODULES): Add it. * gnu/ci.scm (%guix-system-images): Add pinebook-pro-barebones-raw-image.	Mathieu Othacehe