Re: octave license is incompatible with openssl

Alex Vong writes: > I notice 'octave 4.0.2' has 'openssl@1.0.2h' as one of its inputs. As > far as I know, gplv3 is incompatible with openssl license > (https://people.gnome.org/~markmc/openssl-and-the-gpl.html). Looks like you’re right. Other projects add a special openSSL linking exception,

Re: [PATCH] gnu: Add ircii.

ng0 writes: > Thanks, in the new revision of the patch both issues you two found are > fixed. > + (replace 'configure > + (lambda* (#:key inputs outputs #:allow-other-keys) > + (let ((out (assoc-ref outputs "out")) > + (ncurses (assoc-ref inputs "

[PATCH] Add guile-commonmark

Hello guix-devel, This is a patch to add guile-commonmark, a fully specified variant of Markdown written in pure Guile. Thanks, Erik From 94785c022cf25e69bd7b46aa455c80fa5ea84989 Mon Sep 17 00:00:00 2001 From: Erik Edrosa Date: Thu, 4 Aug 2016 21:52:18 -0400 Subject: [PATCH] gnu: Add guile-commo

QtHaveModule

Hello, a little request for help, and a message to keep track of what I have tried out... The upgrade from Qt 5.5 to 5.6.1-1 broke owncloud-client and bitcoin-core. Apparently qtwebkit was moved into its own, community released (whatever this means) module. So I am trying to add a package for qtw

RE: How to get the package metadata as structured data?

Hi, Could the guix project please make available the results of `guix package -s .` that would list all available packages in recutils format for those who do not (yet) have fully functioning guix install? Thanks? > -Original Message- > From: Guix-devel [mailto:guix-devel-bounces+me

Guix on other distros: Gentoo. [You run Gentoo? Please help testing.]

TL;DR: Guix on Gentoo, need testers with moar isolated Gentoo VMs/systems. Don't blame me when it breaks your precious system, I said I needed testers. Hi, Since Gentoo upstream decided to finally solve their very old #355355 bug on ~20:00 UTC today, I take this opportunity to clean our Gentoo o

Re: python-updates

On Thu, Aug 04, 2016 at 05:23:24PM -0400, Leo Famulari wrote: > I'd like to upgrade setuptools as well. I should have pushed a patch for > that in an hour or so. This is done. Hopefully it all works!

Re: python-updates

On Thu, Aug 04, 2016 at 10:56:51PM +0200, Ludovic Courtès wrote: > Hello! > > Leo Famulari skribis: > > > On Mon, Jul 11, 2016 at 10:29:48AM +0200, Ludovic Courtès wrote: > >> The ‘python-updates’ branch would seem right to me. > > > > The brand new python-updates branch is now ready for more Py

Re: How to get the package metadata as structured data?

Hi! David Craven skribis: > All package metadata can be accessed easily through scheme. There is > no way to export this data currently, although it probably wouldn't be > too hard to implement. One way is: guix package -s . which returns a recutils database¹, which is essentially plain tex

python-updates

Hello! Leo Famulari skribis: > On Mon, Jul 11, 2016 at 10:29:48AM +0200, Ludovic Courtès wrote: >> The ‘python-updates’ branch would seem right to me. > > The brand new python-updates branch is now ready for more Python-related > commits! The build farm is almost idle now, apart from a long lis

Re: How to get the package metadata as structured data?

Hi Philippe, Thank you for your interest in guix =) All package metadata can be accessed easily through scheme. There is no way to export this data currently, although it probably wouldn't be too hard to implement. The approach I was planning on taking is the following: Take a package, remove al

Help me draft an email addressing the freedom issues in torbrowser (icecat fix).

Hi, Following up to the Icecat problem I think we could draft and write a message together addressing torbrowser project, a text which is easy to understand, manages to point out the issues, avoids unnecessary propaganda and rethorics, shows the similiar goals and shows how each project can benefi

Re: FOSDEM 2016 was awesome! Let's do FOSDEM 2017

Hi! Pjotr Prins skribis: > FOSDEM 2017 call for proposals has started: > > https://fosdem.org/2017/news/2016-07-20-call-for-participation/ > > We need help with writing the proposal (we can build on last years > this time), we need help on selecting talks and we need help creating > the schedu

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 06:55:34PM +0200, Andy Wingo wrote: > On Thu 04 Aug 2016 18:44, Leo Famulari writes: > > > How would the rest of us distinguish between > > > > 1) a range of your commits with a signed HEAD > > 2) a range of your commits with a signed HEAD that you pushed after I > > pushe

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 08:32:42PM +0200, Andreas Enge wrote: > On Thu, Aug 04, 2016 at 12:37:07PM -0400, Leo Famulari wrote: > > git rebase "$range" --exec "git commit --amend --no-edit --gpg-sign" || > > git rebase --abort > > So it is not enough to just do a >git rebase -S > ? I though

How to get the package metadata as structured data?

Is there a way to get all the package metadata as pure data beside the html page [1] or the Guile sources [2]? Like some JSON of sorts or similar? That would be somewhat needed to audit the licenses asserted in the metadata and compare them with actually detected licenses. [1] https://www.gnu.or

Re: License auditing

On Wed, 3 Aug 2016 19:55:11 +0200, Danny Milosavljevic wrote: > See also (especially > ), > (also > lists several license checkers; Fossology seems to be a whole webser

Re: License auditing

On Wed, 3 Aug 2016 19:55:11 +0200, Danny Milosavljevic wrote: > See also (especially > ), > (also > lists several license checkers; Fossology seems to be a whole webser

Re: [PATCH] gnu: Add ircii.

Hi, ng0 writes: > 宋文武 writes: > >> Leo Famulari writes: >> >>> On Mon, Aug 01, 2016 at 07:34:49PM +, ng0 wrote: * gnu/packages/irc.scm (ircii): New variable. >>> >>> Cool! >>> + (snippet + '(begin + (substitute* "bsdinstall"

Re: [PATCH] change zsh to shells.scm in POTFILES.in, [PATCH] change gnu packages tcsh to gnu packages shells.

Ricardo Wurmus writes: > ng0 writes: > >> This Fixed broken master build. >> >> One typo in commit message. > > Thanks. I pushed the module renaming patch to master as > b7194849ad9d059956d287396a4587a896113d20 after rewording the commit > message. > > ~~ Ricardo > Second patch part can be cons

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 04:45:56PM +0200, Mathieu Lirzin wrote: > With gpg-agent and git properly setup, signing every local commit is not > that inconvenient IME. > I recommend you to give a try. ;) Ever so often I try gpg@2 (I do not remember whether 2.0 or 2.1), it works for a while, it stops

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 12:37:07PM -0400, Leo Famulari wrote: > And if you don't want to sign every commit as you work (it can be > tedious if your gpg-agent has a short cache lifetime), you can use > git-rebase to sign a commit range before pushing, as in this shell > script: > > git-sign () { >

Re: octave license is incompatible with openssl

John Darrington writes: > I would not be at all suprised if there were more incompatibilities like > this. Ought we not have a lint rule that checks this? > > J' > > On Fri, Aug 05, 2016 at 12:35:54AM +0800, Alex Vong wrote: > Hi guixes, > > First, congratulations to Ricardo Wur

Re: octave license is incompatible with openssl

I would not be at all suprised if there were more incompatibilities like this. Ought we not have a lint rule that checks this? J' On Fri, Aug 05, 2016 at 12:35:54AM +0800, Alex Vong wrote: Hi guixes, First, congratulations to Ricardo Wurmus as new maintainer and the new 0.1

Re: FOSDEM 2016 was awesome! Let's do FOSDEM 2017

If I make it, maybe I can present on new developments on network freedom and Guile... perhaps either on a survey of the new guile async developments or presenting on the federation stuff I've been working on in Guile, which should be usable by then? Anyway last year was a blast! I'm sure this yea

Re: curl security update

On Thu, Aug 04, 2016 at 09:11:39AM -0400, Leo Famulari wrote: > * gnu/packages/curl.scm (curl)[replacement]: New field. > (curl-7.50.1): New variable. Pushed as e686e633a signature.asc Description: PGP signature

Re: ‘core-updates’ merge is a squashed commit

On Thu 04 Aug 2016 18:44, Leo Famulari writes: > How would the rest of us distinguish between > > 1) a range of your commits with a signed HEAD > 2) a range of your commits with a signed HEAD that you pushed after I > pushed a commit created with `git commit --author="Andy Wingo" I'm not sure wh

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 05:06:15PM +0200, Andy Wingo wrote: > On Thu 04 Aug 2016 14:36, Mark H Weaver writes: > > > Unfortunately, when I tried to push it to 'master', it was rejected > > because of 56 unsigned commits on the 'core-updates' branch. > > What's the rationale for requiring non-HEAD

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 04:45:56PM +0200, Mathieu Lirzin wrote: > With gpg-agent and git properly setup, signing every local commit is not > that inconvenient IME. And if you don't want to sign every commit as you work (it can be tedious if your gpg-agent has a short cache lifetime), you can use g

octave license is incompatible with openssl

Hi guixes, First, congratulations to Ricardo Wurmus as new maintainer and the new 0.11 release is good (it passed all tests)! I notice 'octave 4.0.2' has 'openssl@1.0.2h' as one of its inputs. As far as I know, gplv3 is incompatible with openssl license (https://people.gnome.org/~markmc/openssl-a

Re: ‘core-updates’ merge is a squashed commit

On Thu 04 Aug 2016 14:36, Mark H Weaver writes: > Unfortunately, when I tried to push it to 'master', it was rejected > because of 56 unsigned commits on the 'core-updates' branch. What's the rationale for requiring non-HEAD commits to be signed when pushing? For me a signed HEAD implicitly sig

Re: ‘core-updates’ merge is a squashed commit

Hi, Andreas Enge writes: > On Thu, Aug 04, 2016 at 09:23:50AM -0400, Mark H Weaver wrote: >> I just did this. Huge thanks to Lisa Marie Maginnis, GNU sysadmin >> extraordinaire, for promptly responding to my plea for help :) > > Thanks to both of you! > >> However, we should take steps to avoid

Re: License auditing

On Thu, Aug 4, 2016, at 09:23 AM, Ludovic Courtès wrote: > Strictly speaking it’s wrong, but I think it better reflects the intent > of the authors (I think authors who throw a GPLv3 ‘COPYING’ file without > bothering to add file headers probably think that GPLv3 and maybe later > versions apply, b

Re: curl security update

Leo Famulari skribis: > There are some new bugs disclosed in curl: > https://curl.haxx.se/docs/security.html > > Grafting the new version seems like the right approach to me when I > consider libcurl's ABI compatibility policy: > https://curl.haxx.se/libcurl/abi.html Sounds good. > From ef6ae37

Re: curl security update

Leo Famulari writes: > There are some new bugs disclosed in curl: > https://curl.haxx.se/docs/security.html > > Grafting the new version seems like the right approach to me when I > consider libcurl's ABI compatibility policy: > https://curl.haxx.se/libcurl/abi.html > > Thoughts? Looks good to m

Re: License auditing

Hi, Alex Griffin skribis: > On Wed, Aug 3, 2016, at 03:42 PM, Ludovic Courtès wrote: >> However, in Guix we encode such cases as ‘gpl3+’ (or similar), rather >> than ‘gpl1+’. > > That seems wrong and confusing. Strictly speaking it’s wrong, but I think it better reflects the intent of the autho

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 09:23:50AM -0400, Mark H Weaver wrote: > I just did this. Huge thanks to Lisa Marie Maginnis, GNU sysadmin > extraordinaire, for promptly responding to my plea for help :) Thanks to both of you! > However, we should take steps to avoid this problem in the future. The > m

Re: ‘core-updates’ merge is a squashed commit

Mark H Weaver skribis: > Leo Famulari writes: > >> On Thu, Aug 04, 2016 at 02:40:32PM +0200, Andreas Enge wrote: >>> On Thu, Aug 04, 2016 at 08:36:28AM -0400, Mark H Weaver wrote: >>> Good news, thanks for all this work! >> >> Indeed! >> >>> > Unfortunately, when I tried to push it to 'master',

Re: ‘core-updates’ merge is a squashed commit

Leo Famulari writes: > On Thu, Aug 04, 2016 at 02:40:32PM +0200, Andreas Enge wrote: >> On Thu, Aug 04, 2016 at 08:36:28AM -0400, Mark H Weaver wrote: >> Good news, thanks for all this work! > > Indeed! > >> > Unfortunately, when I tried to push it to 'master', it was rejected >> > because of 56

curl security update

There are some new bugs disclosed in curl: https://curl.haxx.se/docs/security.html Grafting the new version seems like the right approach to me when I consider libcurl's ABI compatibility policy: https://curl.haxx.se/libcurl/abi.html Thoughts? From ef6ae3732facb1eba77e82c6a6066832784bca5d Mon Sep

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 02:40:32PM +0200, Andreas Enge wrote: > On Thu, Aug 04, 2016 at 08:36:28AM -0400, Mark H Weaver wrote: > Good news, thanks for all this work! Indeed! > > Unfortunately, when I tried to push it to 'master', it was rejected > > because of 56 unsigned commits on the 'core-upd

Re: PHP 7.0 & php-fpm

Hi, pe...@krutt.org writes: > Hello ng0, > > I'm still interested in working on this, and I think I will need help > regarding how to setup a service for GNU Shepherd and how to configure > compiler flags for guix. Will you assist me on this? Besides the Guix > manual, where can I find good and d

Re: [PATCH] gnu: tuxguitar: Update to 1.3.2.

On Thu, Aug 04, 2016 at 02:41:27PM +0200, Ricardo Wurmus wrote: > >> + (let ((classpath (string-join (append (find-files lib > >> "\\.jar$") > >> + (find-files swt > >> "\\.jar$")) > The classpath consists of only absolute

Re: Unpatched security flaws in GNU IceCat 38

Ricardo Wurmus writes: > Mark H Weaver writes: > >> I'm sorry to report that GNU IceCat 38 can no longer be safely used, due >> to critical security flaws that are believed to allow remote code >> execution. I was unable to backport upstream fixes from 45.3 to 38. >> >> Until IceCat 45.3 is ava

Re: [PATCH] gnu: tuxguitar: Update to 1.3.2.

Andreas Enge writes: > Hello, > > On Wed, Aug 03, 2016 at 06:45:03PM +0200, Ricardo Wurmus wrote: >> * gnu/packages/music.scm (tuxguitar): Update to 1.3.2. >> [arguments]: Use ant-build-system and rearrange build phases. >> [native-inputs]: Remove field. > > looks good! > >> + (add-after

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 08:36:28AM -0400, Mark H Weaver wrote: > On my local machine, I did this successfully by first reverting a couple > of later commits, then reverting the squashed merge, then doing a proper > merge, and finally cherry-picking the later commits. I verified that > this sequenc

Re: ‘core-updates’ merge is a squashed commit

Andreas Enge writes: > On Thu, Aug 04, 2016 at 03:50:51AM -0400, Mark H Weaver wrote: >> How about reverting the squashed commit and then re-doing a proper merge >> from 'core-updates-2016-08-01' into 'master'? > > If this is possible without too many complications, that sounds like a good > opti

Re: [PATCH] Add trio (dependency of ghostscript)

Leo Famulari writes: > On Sat, Jul 23, 2016 at 01:36:41AM +0200, Ricardo Wurmus wrote: >> * gnu/packages/code.scm (trio): New variable. > > LGTM Thanks. Pushed as a4e6356e110bb2cd3ad90d8943fd6a700de97ca8. ~~ Ricardo

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 03:50:51AM -0400, Mark H Weaver wrote: > How about reverting the squashed commit and then re-doing a proper merge > from 'core-updates-2016-08-01' into 'master'? I think we should do this. It's worth a little blemish in the commit history in order to retain the history of t

Qjson

Hello, a while ago, I packaged qjson, presumably as a prerequisite for some version of KDE. It needs Qt-4 and currently is not a dependency of anything. Are you okay with me deleting it from the distribution? Andreas

Re: Unpatched security flaws in GNU IceCat 38

Mark H Weaver writes: > I'm sorry to report that GNU IceCat 38 can no longer be safely used, due > to critical security flaws that are believed to allow remote code > execution. I was unable to backport upstream fixes from 45.3 to 38. > > Until IceCat 45.3 is available, I recommend that you use

Re: [PATCH] gnu: tuxguitar: Update to 1.3.2.

Hello, On Wed, Aug 03, 2016 at 06:45:03PM +0200, Ricardo Wurmus wrote: > * gnu/packages/music.scm (tuxguitar): Update to 1.3.2. > [arguments]: Use ant-build-system and rearrange build phases. > [native-inputs]: Remove field. looks good! > + (add-after 'unpack 'enter-dir-and-set-flags > +

Re: [PATCH] gnu: add kicad

Hello, On Thu, Aug 04, 2016 at 01:54:45AM +0200, Danny Milosavljevic wrote: > > Unusual choice but I don't object to it. This would be the first package > > to refer to libressl in our tree. > We can also use openssl, I don't have a strong preference, really. Both > projects seem to merge each ot

Re: Unpatched security flaws in GNU IceCat 38

Hi Mark, thanks for the information, which is quite worrying. There used to be icecat versions every seven firefox releases, corresponding to the long term releases. So icecat 45 should have been out for some while now... Andreas

Re: [PATCH] gnu: Add netcat-openbsd. [v2]

For future reference: At least 4 people including myself decided to drop netcat-openbsd: - It is unmaintained upstream (debian) - no commits since 2012 - but maintained in bsd-upstream, - the reply of the debian developer read like no one is responsible for all the lines of code in the patch

Re: ‘core-updates’ merge is a squashed commit

On Thu, Aug 04, 2016 at 03:50:51AM -0400, Mark H Weaver wrote: > How about reverting the squashed commit and then re-doing a proper merge > from 'core-updates-2016-08-01' into 'master'? If this is possible without too many complications, that sounds like a good option; the earlier the better, prob

Re: [PATCH] Add python-pythondialog

Leo Famulari writes: > On Thu, Jul 28, 2016 at 12:53:15PM +0200, Vincent Legoll wrote: >> And actually the patch is wrong, I think it's missing a closing paren >> for python2-pythondialog... > > I re-wrote it using the 'python2-variant' system, as attached. Does it > work for you? > > I'm not sur

Re: [PATCH] gnu: libpsl: Update to 0.14.0.

Hello, Tobias, On Thu, Aug 04, 2016 at 03:32:32AM +0200, Tobias Geerinckx-Rice wrote: > * gnu/packages/web.scm (libpsl): Update to 0.14.0. > -(version "0.13.0") > +(version "0.14.0") > -"0afn2c4s2m65xifa5sfdll0s2gyqbh2q9k9nq4nsmx1b6c2i3i7x" > +"1yrfkwjw5

Re: Mysterious error while refactoring guix/scripts/system.scm

On Thu 04 Aug 2016 08:20, Chris Marusich writes: > 1038: 3 [thunk] > In gnu/packages/bootstrap.scm: > 191: 2 [raw-build # "guile-bootstrap-2.0" ...] > In gnu/packages.scm: > 91: 1 [search-bootstrap-binary "tar" #] > In unknown file: >?: 0 [string-append # "/" "tar"] > > ERROR: In procedure

Re: ‘core-updates’ merge is a squashed commit

Leo Famulari writes: > On Wed, Aug 03, 2016 at 10:29:21PM +0200, Ludovic Courtès wrote: >> In fact, commit 455859a50f88f625d13fc2f304111f02369b366b, which is the >> core-updates merge, is *not* a merge commit. Instead it seems to be a >> squashed commit of all of core-updates. Consequently, par

Re: Unpatched security flaws in GNU IceCat 38

Hi Mike, Mike Gerwitz writes: > On Wed, Aug 03, 2016 at 23:06:17 -0400, Mark H Weaver wrote: >> I'm sorry to report that GNU IceCat 38 can no longer be safely used, due >> to critical security flaws that are believed to allow remote code >> execution. I was unable to backport upstream fixes fro

Re: Unpatched security flaws in GNU IceCat 38

Mark: On Wed, Aug 03, 2016 at 23:06:17 -0400, Mark H Weaver wrote: > I'm sorry to report that GNU IceCat 38 can no longer be safely used, due > to critical security flaws that are believed to allow remote code > execution. I was unable to backport upstream fixes from 45.3 to 38. > > Until IceCat

Re: Unpatched security flaws in GNU IceCat 38

Hi Mark, On Wed, 03 Aug 2016 23:06:17 -0400 Mark H Weaver wrote: > I'm sorry to report that GNU IceCat 38 can no longer be safely used, due > to critical security flaws that are believed to allow remote code > execution. I was unable to backport upstream fixes from 45.3 to 38. > > Until IceCat