;;; GNU Guix --- Functional package management for GNU ;;; Copyright © 2019 Ludovic Courtès ;;; ;;; This file is part of GNU Guix. ;;; ;;; GNU Guix is free software; you can redistribute it and/or modify it ;;; under the terms of the GNU General Public License as published by ;;; the Free Software Foundation; either version 3 of the License, or (at ;;; your option) any later version. ;;; ;;; GNU Guix is distributed in the hope that it will be useful, but ;;; WITHOUT ANY WARRANTY; without even the implied warranty of ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ;;; GNU General Public License for more details. ;;; ;;; You should have received a copy of the GNU General Public License ;;; along with GNU Guix. If not, see . (define-module (gnu build locale) #:use-module (guix build utils) #:use-module (srfi srfi-1) #:use-module (ice-9 rdelim) #:use-module (ice-9 match) #:use-module (ice-9 regex) #:export (build-locale normalize-codeset locale->name+codeset read-supported-locales)) (define locale-rx ;; Regexp matching a locale line in 'localedata/SUPPORTED'. (make-regexp "^[[:space:]]*([[:graph:]]+)/([[:graph:]]+)[[:space:]]*\\\\$")) (define (read-supported-locales port) "Read the 'localedata/SUPPORTED' file from PORT. That file is actually a makefile snippet, with one locale per line, and a header that can be discarded." (let loop ((locales '())) (define line (read-line port)) (cond ((eof-object? line) (reverse locales)) ((string-prefix? "#" (string-trim line)) ;comment (loop locales)) ((string-contains line "=") ;makefile variable assignment (loop locales)) (else (match (regexp-exec locale-rx line) (#f (loop locales)) (m (loop (alist-cons (match:substring m 1) (match:substring m 2) locales)))))))) (define (normalize-codeset codeset) "Compute the \"normalized\" variant of CODESET." ;; info "(libc) Using gettextized software", for the algorithm used to ;; compute the normalized codeset. (letrec-syntax ((-> (syntax-rules () ((_ proc value) (proc value)) ((_ proc rest ...) (proc (-> rest ...)))))) (-> (lambda (str) (if (string-every char-set:digit str) (string-append "iso" str) str)) string-downcase (lambda (str) (string-filter char-set:letter+digit str)) codeset))) (define* (build-locale locale #:key (localedef "localedef") (directory ".") (codeset "UTF-8") (name (string-append locale "." codeset))) "Compute locale data for LOCALE and CODESET--e.g., \"en_US\" and \"UTF-8\"--with LOCALEDEF, and store it in DIRECTORY under NAME." (format #t "building locale '~a'...~%" name) (invoke localedef "--no-archive" "--prefix" directory "-i" locale "-f" codeset (string-append directory "/" name))) (define (locale->name+codeset locale) "Split a locale name such as \"aa_ER@saaho.UTF-8\" into two values: the language/territory/modifier part, and the codeset." (match (string-rindex locale #\.) (#f (values locale #f)) (dot (values (string-take locale dot) (string-drop locale (+ dot 1)))))) I03d2c620872e86b6f591abe0f1c8317aa1245383 Signed-off-by: Ludovic Courtès <ludo@gnu.org> Reepca Russelstein 2024-09-06activation: Fix TOCTTOU in mkdir-p/perms....Fixes <https://issues.guix.gnu.org/47584>. I removed the 'Based upon mkdir-p from (guix build utils)' comment because it's quite a bit different now. * gnu/build/activation.scm (verify-not-symbolic): Delete. (mkdir-p/perms): Rewrite in terms of 'openat'. Signed-off-by: Ludovic Courtès <ludo@gnu.org> Change-Id: Id2f5bcbb903283afd45f6109190210d02eb383c7 Maxime Devos 2024-08-11privilege: Add POSIX capabilities(7) support....* gnu/system/privilege.scm (<privileged-program>): Add a field representing the program's POSIX capabilities. (privileged-program-capabilities): New public procedure. * doc/guix.texi (Privileged Programs): Document it. * gnu/build/activation.scm (activate-privileged-programs): Take a LIBCAP package argument providing setcap(8) to apply said capabilities. * gnu/services.scm (privileged-program->activation-gexp): Pass said package argument where supported. Include privileged-program-capabilities in the compatibility hack. Tobias Geerinckx-Rice 2024-08-11build: Rename activate-setuid-programs....* gnu/build/activation.scm (activate-setuid-programs): Rename this… (activate-privileged-programs): …to this. Operate on a list of <privileged-program> records. * gnu/services.scm (setuid-program->activation-gexp): Adjust caller. Tobias Geerinckx-Rice 2024-08-11services: setuid-program: Populate /run/privileged/bin....Create /run/setuid-programs compatibility symlinks so that we can migrate all users (both package and human) piecemeal at our leisure. Apart from being symlinks, this should be a user-invisible change. * gnu/build/activation.scm (%privileged-program-directory): New variable. [activate-setuid-programs]: Put privileged copies in %PRIVILEGED-PROGRAM-DIRECTORY, with compatibility symlinks to each in %SETUID-DIRECTORY. * gnu/services.scm (setuid-program-service-type): Update docstring. * doc/guix.texi (Setuid Programs): Update @file{} name accordingly. Tobias Geerinckx-Rice 2024-02-19services: activation: Ensure /run existence....* gnu/build/activation.scm (activation-script): Ensure /var/run existence. * gnu/build/install.scm (evaluate-populate-directive) [directives]: Remove directory /run. Change-Id: I19ca8e7605c0cff598ab89077a94e20390ba27b0 Signed-off-by: Ludovic Courtès <ludo@gnu.org> Nicolas Graves