bug#63485: Broken build libfprint

[Efraim Flashner]

On Mon, May 22, 2023 at 09:32:03PM +0100, Alex Devaure wrote:
> 
> Hi,
> Here is the patch to build libfprint.

I've adjusted the patch to remove all the styling changes so it's
clearer what changes were made. I've also added a copyright line for you
and pushed the patch. Thanks!


-- 
Efraim Flashner  רנשלפ םירפא
GPG key = A28B F40C 3E55 1372 662D  14F7 41AA E7DC CA3D 8351
Confidentiality cannot be guaranteed on emails sent or received unencrypted


signature.asc
Description: PGP signature

bug#63572: [PATCH] Re: bug#63572: htmlcxx-0.87 fails to build

[Efraim Flashner]

On Sat, May 20, 2023 at 11:43:46PM +0200, Dr. Arne Babenhauserheide wrote:
> Hi Bruno,
> 
> Bruno Victal  writes:
> >> So this may just need compiler parameters to set C++11 instead of C++17
> >> as target.
> >
> > Looking at the README file from 
> > ,
> > it looks to me that upstream has moved to 
> > . (judging by the name of the repo 
> > owner)
> > Can you try asking upstream for a new release? The last commit 
> > ()
> > has the message 'Fix c+11 compilation'.
> 
> I tried to build from the latest commit, but it did not build.
> 
> But I could now test adding the std argument and that works.

Thanks for checking.

> $ ./pre-inst-env guix build htmlcxx
> /gnu/store/3bqrqs2zzx1gy4xc1g9i59z8nnhwv2rs-htmlcxx-0.87
> 
> A patch is attached.

I didn't see any dependant packages. Patch pushed! Thanks.


-- 
Efraim Flashner  רנשלפ םירפא
GPG key = A28B F40C 3E55 1372 662D  14F7 41AA E7DC CA3D 8351
Confidentiality cannot be guaranteed on emails sent or received unencrypted


signature.asc
Description: PGP signature

bug#62948: Using home-ssh-agent-configuration on Ubuntu breaks login

[Janneke Nieuwenhuizen]

Janneke Nieuwenhuizen writes:

> Using home-openssh-service-type on Ubuntu 22.10 (OpenSSH_9.3p1, OpenSSL
> 1.1.1t 7 Feb 2023) always creates an ~/.ssh/authorized_keys that breaks
> key-based login.  I cannot access the logs and don't know what the
> problem might be.

Pushed to master as c57693846c7c6586c6cd1b4e4002fe399e3a2c42

-- 
Janneke Nieuwenhuizen   | GNU LilyPond https://LilyPond.org
Freelance IT https://www.JoyOfSource.com | Avatar® https://AvatarAcademy.com

bug#63678: Can't restart/halt system with shepherd 0.9.3 after upgrading

[Christopher Baines]

Hey!

On a system running shepherd 0.9.3 [1], I've reconfigured, but now can't
reboot or halt.

root@hamal ~# halt
Service root is not running.

1: /gnu/store/y6w0xix15cq08qasmq75f04yzgbl98jx-shepherd-0.9.3


signature.asc
Description: PGP signature

bug#63198: cups-service-type uses PAM-enabled 'cups' by default which prevents authentication

[muradm]

Hi Maxim,

Maxim Cournoyer  writes:


Hi muradm,

muradm  writes:

[...]

Could you look into adding "regular" login PAM support instead 
of a
bypass disabled by default?  The user should still be prompted 
for

its
password, and it should go through the PAM auth module.

I'm not very PAM-aware, but I believe there are examples 
spread in

the
code base.


This patch provides necessary configuration for proper PAM 
support.

I decided to take screen-locker-service-type's configuration as
basis, since it is was most simpliest and adequate enough for 
this

case.
This patch does not disables, baypasses or cheats PAM in any 
way.
User may navigate to CUPS portal. In the event of 
administrative

actions taken by user, CUPS portal asks user to authenticate.
With this configuration, it will attempt to authenticate as 
local
system user. In the event of proper system user/password 
supplied
and positively authenticated against PAM using "cups" service 
name,
user allowed to take administrative action. In the event of 
invalid

system user/password supplied, CUPS portal will keep looping
begging for password (just as in your original case). If user 
decides
to Cancel the authentication dialog, CUPS portal is navigated 
to

Unauthorized access informing page.

Why would I submit something that it is not working?


I didn't mean to imply that it didn't work; I just thought that 
it was
somehow bypassing PAM (and the original problem it caused in the 
first
place).  As I wrote earlier, I know next to nothing about PAM, 
and

misread your patch.

I've now installed the change.  Thanks for the fix, and thanks 
to

Ricardo for the reminder.


Cool, thanks!


signature.asc
Description: PGP signature

bug#63050: "guix pull" requires graphical libraries

[Ludovic Courtès]

Hi,

Andreas Enge  skribis:

> Am Sat, May 20, 2023 at 06:12:47PM +0200 schrieb Ludovic Courtès:
>> > The closure size reduction is substantial:
>> > $ ./pre-inst-env guix size graphviz | tail -1
>> > total: 183.6 MiB
>> > $ guix size graphviz | tail -1
>> > total: 242.3 MiB
>> > But I suspect we’d still need the full-blown variant for things like
>> > xdot.
>> Here’s a proposal:
>>   https://issues.guix.gnu.org/63610
>
> Typo? The issue is not found.

Typo on your side then?  :-)

> Note that I do not care so much about the closure size, but about the
> number of packages that are needed to just build guix (although of course
> the two are related). Or otherwise said, the dependencies for "guix pull".

Yes, understood.  Graphviz is not in the closure anyway, it’s a
build-only dependency.

With commit 9fa92acbf0c4dbc734ac7d83b31bd6d12e09a401 this is mostly
fixed.  There’s still another path leading to libx11 though:

--8<---cut here---start->8---
$ ./pre-inst-env guix graph --path guix libx11
guix@1.4.0-6.dc5430c
guile-avahi@0.4.1
avahi@0.8
dbus@1.14.0
libx11@1.8.1
--8<---cut here---end--->8---

(The same applies to “guix pull”.)

Not sure what can be done about it.

Ludo’.

bug#55857: Odd Shepherd message on 'guix system reconfigure': (map (# ?) ?)

[Ludovic Courtès]

Hi,

Maxim Cournoyer  skribis:

> This bug was closed as notabug, but I still see it as an issue worth
> fixing.  Just using the (gnu services herd) API to query live services
> ends up producing such a messages; I think from the 'resolve-transients'
> procedure there that calls to eval-there unconditionally.

I think the ‘eval-there’ call from ‘resolve-transients’ no longer
happens with shepherd 0.10.0, because the ‘transient?’ entry is always
present in the service alist.

Can you confirm?

Ludo’.

bug#63680: long lines in cookbook in German language

[Gottfried]

Hi,

in the cookbook, German translation
there are long lines till the end, even unfinished,
so not readable to the end.

This is a problem, if somebody needs the line with a terminal command.

"unreadable overlong lines is an issue with
the PDF version of the cookbook in any language".
"On first sight, it looks like complicated TeX tricks are needed to fix
this.  I do not know."
says Felix Lechner



Kind regards

Gottfried



OpenPGP_0x61FAF349C9FB7F94.asc
Description: OpenPGP public key


OpenPGP_signature
Description: OpenPGP digital signature

bug#63672: rxvt-unicode crashes X

[Marco van Hulten]

Hello—

urxvt 9.30 crashes my X/spectrwm.  This happens both when running
urxvtd and urxvt.

This problem was introduced earlier this month after an upgrade.

No `~/.xsession-errors' is created, which may point to another problem.

marco@graviton ~$ uname -a
Linux graviton.instanton 6.2.15-gnu #1 SMP PREEMPT_DYNAMIC 1 x86_64 GNU/Linux

—Marco

bug#63683: duc-1.4.5: check phase fails

[Christopher Howard]

Package "duc" fails check phase. Build log attached. Built today with command

```
guix time-machine -- build duc
```

Here is my system information:

```
christopher@theoden 
--- 
OS: Guix System x86_64 
Host: OptiPlex 9020 00 
Kernel: 5.15.112-gnu 
Uptime: 19 mins 
Packages: 93 (guix-system), 184 (guix-user) 
Shell: bash 5.1.16 
Resolution: 1920x1080 
DE: GNOME 
Theme: Adwaita [GTK2/3] 
Icons: Adwaita [GTK2/3] 
Terminal: shepherd 
CPU: Intel i5-4570 (4) @ 3.600GHz 
GPU: AMD ATI Radeon HD 8490 / R5 235X OEM 
GPU: Intel HD Graphics 
Memory: 1242MiB / 7867MiB 
```

-- 
📛 Christopher Howard
🚀 gemini://gem.librehacker.com
🌐 http://gem.librehacker.com

בראשית ברא אלהים את השמים ואת הארץ


dn0ygz56m3293i0qg0z5cwzr03272c-duc-1.4.5.drv.gz
Description: application/gunzip

bug#63684: hw-probe-1.6.5: fails wrap phase

[Christopher Howard]

Package "hw-probe" fails wrap phase. Package built today with command

```
guix time-machine -- build hw-probe
```

Build log attached.

My system information:

```
christopher@theoden 
--- 
OS: Guix System x86_64 
Host: OptiPlex 9020 00 
Kernel: 5.15.112-gnu 
Uptime: 23 mins 
Packages: 93 (guix-system), 184 (guix-user) 
Shell: bash 5.1.16 
Resolution: 1920x1080 
DE: GNOME 
Theme: Adwaita [GTK2/3] 
Icons: Adwaita [GTK2/3] 
Terminal: shepherd 
CPU: Intel i5-4570 (4) @ 3.600GHz 
GPU: AMD ATI Radeon HD 8490 / R5 235X OEM 
GPU: Intel HD Graphics 
Memory: 1243MiB / 7867MiB 
```

-- 
📛 Christopher Howard
🚀 gemini://gem.librehacker.com
🌐 http://gem.librehacker.com

בראשית ברא אלהים את השמים ואת הארץ


gcfkw30w7wpqr4ixnh9sqz3myjxswn-hw-probe-1.6.5.drv.gz
Description: application/gunzip

bug#63685: python-pikepdf-2.16.1: fails build phase

[Christopher Howard]

Package "python-pikepdf" fails build phase. Build log attached. Built with

```
guix time-machine -- build python-pikepdf
```

Here is my system information:

```
christopher@theoden 
--- 
OS: Guix System x86_64 
Host: OptiPlex 9020 00 
Kernel: 5.15.112-gnu 
Uptime: 34 mins 
Packages: 93 (guix-system), 184 (guix-user) 
Shell: bash 5.1.16 
Resolution: 1920x1080 
DE: GNOME 
Theme: Adwaita [GTK2/3] 
Icons: Adwaita [GTK2/3] 
Terminal: shepherd 
CPU: Intel i5-4570 (4) @ 3.600GHz 
GPU: AMD ATI Radeon HD 8490 / R5 235X OEM 
GPU: Intel HD Graphics 
Memory: 1241MiB / 7867MiB 
```

-- 
📛 Christopher Howard
🚀 gemini://gem.librehacker.com
🌐 http://gem.librehacker.com

בראשית ברא אלהים את השמים ואת הארץ


9p183pj53rbzsylgrwcsjnnv9bwnrj-python-pikepdf-2.16.1.drv.gz
Description: application/gunzip

bug#63686: sound-juicer-3.38-0: fails configure phase

[Christopher Howard]

Package "sound-juicer" fails configure phase. Build log attached. Built with 
command:

```
guix time-machine -- build sound-juicer
```

Here is my system information:

```
christopher@theoden 
--- 
OS: Guix System x86_64 
Host: OptiPlex 9020 00 
Kernel: 5.15.112-gnu 
Uptime: 38 mins 
Packages: 93 (guix-system), 184 (guix-user) 
Shell: bash 5.1.16 
Resolution: 1920x1080 
DE: GNOME 
Theme: Adwaita [GTK2/3] 
Icons: Adwaita [GTK2/3] 
Terminal: shepherd 
CPU: Intel i5-4570 (4) @ 3.600GHz 
GPU: AMD ATI Radeon HD 8490 / R5 235X OEM 
GPU: Intel HD Graphics 
Memory: 1667MiB / 7867MiB 
```

-- 
📛 Christopher Howard
🚀 gemini://gem.librehacker.com
🌐 http://gem.librehacker.com

בראשית ברא אלהים את השמים ואת הארץ


mz0qsapgl4hz2wyxvrp7mcsls4gq1z-sound-juicer-3.38.0.drv.gz
Description: application/gunzip

bug#63516: [PATCH Guile-Netlink 00/11] Add 'wait-for-link' and related code

[Ludovic Courtès]

Hello,

Julien Lepiller  skribis:

> Thanks, I was able to test it simply by doing something like
> (wait-for-link "veth0") and from another terminal, "ip l add veth0 type
> veth peer veth1" (it doesn't have to be veth, it's the first one I
> thought of that I didn't have to reach the manual for).

Neat (I really need to take modern networking class :-)).

> Pushed to guile-netlink's master :)

That was fast, thanks a lot!

Are you planning to tag a release soonish?  If you do, we could use
‘wait-for-link’ to fix .

Ludo’.

bug#63687: gnome-dictionary-40.0: fails configure phase

[Christopher Howard]

Package "gnome-dictionary" fails configure phase. Build log attached. Built 
with command

```
guix time-machine -- build gnome-dictionary
```

Here is my system information:

```
christopher@theoden 
--- 
OS: Guix System x86_64 
Host: OptiPlex 9020 00 
Kernel: 5.15.112-gnu 
Uptime: 41 mins 
Packages: 93 (guix-system), 184 (guix-user) 
Shell: bash 5.1.16 
Resolution: 1920x1080 
DE: GNOME 
Theme: Adwaita [GTK2/3] 
Icons: Adwaita [GTK2/3] 
Terminal: shepherd 
CPU: Intel i5-4570 (4) @ 3.600GHz 
GPU: AMD ATI Radeon HD 8490 / R5 235X OEM 
GPU: Intel HD Graphics 
Memory: 1731MiB / 7867MiB 
```

-- 
📛 Christopher Howard
🚀 gemini://gem.librehacker.com
🌐 http://gem.librehacker.com

בראשית ברא אלהים את השמים ואת הארץ


4n55h6cnlf8kmqxzi076xlslqgx8i3-gnome-dictionary-40.0.drv.gz
Description: application/gunzip

bug#63666: sporadic “guix substitute: error: connect*: Connection timed out”

[Ludovic Courtès]

Hi,

Simon Tournier  skribis:

> On Tue, 23 May 2023 at 17:14, Simon Tournier  wrote:
>
>> The most recent failure uses 3f59fd6 (pulled on May 23) with:
>>
>> $ /root/.config/guix/current/bin/guix-daemon --version
>> guix-daemon (GNU Guix) 1.3.0-31.3170843
>
> Just in case, using recent guix-daemon as 3f59fd6, I see:
>
>  gumbo-parser-0.10.1  149KiB  
>   
>555KiB/s 00:00 ▕██▏ 
> 100.0%
>  cups-minimal-2.4.2  4.9MiB   
>   
>533KiB/s 00:03 ▕█▎▏  
> 29.2%guix substitute: warning: while fetching 
> https://ci.guix.gnu.org/nar/lzip/mcdi162f45smrgvjmm3vldx2i1xhz0x5-iso-codes-4.5.0:
>  server is somewhat slow
> guix substitute: warning: try `--no-substitutes' if the problem persists
> retrying download of 
> '/gnu/store/mcdi162f45smrgvjmm3vldx2i1xhz0x5-iso-codes-4.5.0' with other 
> substitute URLs...

Good, that’s the expected behavior.  (Of course that may still fail if
there are no other valid substitute URLs.)

> And I do not know which other substitute URLs are since I pass the
> option ’--substitute-urls=https://ci.guix.gnu.org’; both to guix-daemon
> and to “guix shell”.
>
> Last, I start to see the progress bar, then something happens and I only
> see this:
>
> substitution of 
> /gnu/store/6r4brvchlkbbqx2n2iz2p6i2ki78zfp2-kexec-tools-2.0.23 complete
>
> substitution of /gnu/store/rfx142plc19c12mcfk86a8ff0c7bpch0-lame-3.100 
> complete
>
> substitution of /gnu/store/65rbvsb9fyx74ff1sjnar1bp8qif7k07-libaacs-0.11.0 
> complete
>
> No more progress bars.

That’s because you have max-jobs > 1: progress bars aren’t displayed
when several jobs are running in parallel.

Thanks for testing!

Ludo’.

bug#63516: [PATCH Guile-Netlink 00/11] Add 'wait-for-link' and related code

[Julien Lepiller]

I'll probably tag a release this week-end.

Le 24 mai 2023 16:55:56 GMT+02:00, "Ludovic Courtès"  a écrit :
>Hello,
>
>Julien Lepiller  skribis:
>
>> Thanks, I was able to test it simply by doing something like
>> (wait-for-link "veth0") and from another terminal, "ip l add veth0 type
>> veth peer veth1" (it doesn't have to be veth, it's the first one I
>> thought of that I didn't have to reach the manual for).
>
>Neat (I really need to take modern networking class :-)).
>
>> Pushed to guile-netlink's master :)
>
>That was fast, thanks a lot!
>
>Are you planning to tag a release soonish?  If you do, we could use
>‘wait-for-link’ to fix .
>
>Ludo’.

bug#63082: [PATCH v3 02/16] services: mpd: Add an 'update' action to trigger a database update.

[Bruno Victal]

Hi Maxim,

On 2023-05-05 19:28, Maxim Cournoyer wrote:
> * gnu/services/audio.scm (mpd-shepherd-service): Register a new update action.
> * doc/guix.texi (Audio Services): Document it.
> ---
>  doc/guix.texi  | 10 ++
>  gnu/services/audio.scm | 11 +++
>  2 files changed, 21 insertions(+)
> 

I've been looking at this part for the past few weeks in attempt to
make it more robust and after countless hours, I'd advise against this
(in its current form), reason being that this only works if your
configuration happens to match the default values used by mpc.

My attempts at getting the values from the configuration into
something that mpc understands have been unsuccessful. Not only the
decision “logic” of what values to pass is non-trivial, parsing the
endpoints field has been so far a complete nightmare. (with interesting
gems like IPv6 address formats that the daemon is happy to use yet
mpc will reject)

Having the proper hostname (and port) intelligently deduced from
the endpoints field is a big minefield that is likely to end in
unmaintainable spaghetti.

Short of introducing additional fields like “internal-mpc-host” and
“internal-mpc-port”, you could modify this to relay the
'environment-variables' field for mpc as well. (since it can make use
of the MPD_HOST and MPD_PORT varibles if present)


-- 
Furthermore, I consider that nonfree software must be eradicated.

Cheers,
Bruno.

bug#63082: [PATCH v3 04/16] services: mpd: Rename %set-user-group to set-user-group.

[Bruno Victal]

On 2023-05-05 19:28, Maxim Cournoyer wrote:
> The convention to use % as a prefix is for "special" variables rather than
> procedures.
> 
> * gnu/services/audio.scm ((%set-user-group): Rename to...
> (set-user-group): ... this.
> ---
>  gnu/services/audio.scm | 6 +++---
>  1 file changed, 3 insertions(+), 3 deletions(-)

Though that's what is stated in
,
there is precedent within guix to prefix “internal” procedures with
% in certain cases like changing the default constructor for the
record-type itself.

Some commits that show this: 22dd558c70901a336de97187f0470be584571158,
2397f4768091210b0a705ef750f2f38d6946fb89.

-- 
Furthermore, I consider that nonfree software must be eradicated.

Cheers,
Bruno.

bug#63082: [PATCH v3 07/16] services: mpd; Refactor start slot directory initialization.

[Bruno Victal]

On 2023-05-05 19:29, Maxim Cournoyer wrote:
> -  (make-forkexec-constructor
> -   (list #$(file-append package "/bin/mpd")
> - "--no-daemon"
> - #$config-file)
> -   #:environment-variables '#$environment-variables)))
> +   (start
> +(with-imported-modules (source-module-closure
> +'((gnu build activation)))

How about adding '(gnu build activation) into %default-imported-modules
(and %default-modules) at gnu/services/shepherd.scm?
Services should be using the start field to perform these kinds of tasks
anyways. (rather than extend activation-service-type which is incorrect use)

> +  #~(begin
> +  (use-modules (gnu build activation))

In general, rather than #~(begin (use-modules ...)), it's preferred to specify
additional modules using the 'modules' field e.g.

--8<---cut here---start->8---
(modules (cons '(gnu build activation)
%default-modules))
--8<---cut here---end--->8---

> +
> +  (let ((user (getpw #$username)))
> +
> +(define (init-directory directory)
> +  (unless (file-exists? directory)
> +(mkdir-p/perms directory user #o755)))
> +
> +(for-each
> + init-directory
> + '#$(map dirname
> + ;; XXX: Delete the potential "syslog"
> + ;; log-file value, which is not a directory.
> + (delete "syslog"
> + (filter-map maybe-value
> + (list db-file
> +   log-file
> +   state-file
> +   sticker-file))

Perhaps treat “syslog” as a symbol instead?
Strings seem more adequate when the value is a path, with a symbol
being a sign that the value is to be treated “specially”.
(this aligns with how mympd handles this)


-- 
Furthermore, I consider that nonfree software must be eradicated.

Cheers,
Bruno.

bug#63082: [PATCH v3 10/16] services: mpd: Let Shepherd effect the user/group change.

[Bruno Victal]

On 2023-05-05 19:29, Maxim Cournoyer wrote:
> Relates to .
> 
> Quoting a MPD developer, regarding MPD's feature to switch user itself:
> "that's legacy for the dark ages when proper service managers did not exist"
> :-).
> 
> * gnu/services/audio.scm (mpd-serialize-user-account)
> (mpd-serialize-user-group): Delete procedures.
> * gnu/services/audio.scm (mpd-configuration) [user]: Do not serialize.
> [group]: Likewise.
> (mpd-shepherd-service): Provide the #:user, #:group and #:supplementary-groups
> arguments.
> (mympd-shepherd-service): Likewise, and remove the '--user' argument.
> * doc/guix.texi (Audio Services): Update doc.
> (mympd-configuration) [port]: Change default value to 8080.
> [ssl-port]: Change default value to 443.
> * gnu/tests/audio.scm (run-mympd-test): Adjust accordingly.
> ---
>  doc/guix.texi  | 12 +-
>  gnu/services/audio.scm | 52 +-
>  gnu/tests/audio.scm|  4 ++--
>  3 files changed, 39 insertions(+), 29 deletions(-)

This contains a submarine change that isn't easily spotted from the
commit message, that mympd is getting its default port changed and that
it can no longer bind to privileged ports, since although mympd can
start as root in order to bind to possibly privileged ports, it will
explicitly refuse to continue running as root afterwards.

I think we can have shepherd effect for mympd, but only if (and after)
shepherd gets support for POSIX capabilities (CAP_NET_BIND_SERVICE) or
a suitable way to specify that “yes, the program invoked by the service
should have CAP_NET_BIND_SERVICE” is provided.


-- 
Furthermore, I consider that nonfree software must be eradicated.

Cheers,
Bruno.

bug#63680: long lines in cookbook in German language

[pelzflorian (Florian Pelz)]

Gottfried  writes:
> "unreadable overlong lines is an issue with
> the PDF version of the cookbook in any language".
> "On first sight, it looks like complicated TeX tricks are needed to fix
> this.  I do not know."
> says Felix Lechner

It was me who wrote these sentences, Felix commented on something else.
 ;)

Thank you Gottfried for writing the issue.

Regards,
Florian