bug#34124: gnome-shell crash when opening the activities overview

[Ben Sturmfels]

On Wed, 24 Apr 2019, Christopher Baines wrote:

> Ben Sturmfels  writes:
>
>> On Tue, 2019-04-23 at 21:33 +0100, Christopher Baines wrote:
>>> Ricardo Wurmus  writes:
>>>
>>> > Christopher Baines  writes:
>>> >
>>> > > On one system running GuixSD, Gnome Shell crashes when opening
>>> > > the
>>> > > activities overview (super key, or clicking on the activities
>>> > > button in
>>> > > the top left).
>>> > >
>>> > >
>>> > > (.gnome-shell-real:2471): GLib-GIO-CRITICAL **: 10:36:30.639:
>>> > > g_file_new_for_path: assertion 'path != NULL' failed
>>> > >
>>> > > (.gnome-shell-real:2471): GLib-GIO-CRITICAL **: 10:36:30.639:
>>> > > g_loadable_icon_load: assertion 'G_IS_LOADABLE_ICON (icon)'
>>> > > failed
>>> > >
>>> > > (.gnome-shell-real:2471): Gtk-WARNING **: 10:36:30.639: Could not
>>> > > load a pixbuf from icon theme.
>>> > > This may indicate that pixbuf loaders or the mime database could
>>> > > not be found.
>>> > > **
>>> > > Gtk:ERROR:gtkicontheme.c:4261:gtk_icon_info_load_icon_finish:
>>> > > assertion failed: (icon_info_get_pixbuf_ready (icon_info))
>>> >
>>> > Could you try to see if setting LD_LIBRARY_PATH in the environment
>>> > where
>>> > GNOME Shell is launched to the lib directory of the “gdk-
>>> > pixbuf+svg” (or
>>> > “gdk-pixbuf”) package makes any difference?
>>> >
>>> > You may need to do this in ~/.xsession and launch the gnome-session
>>> > manually.
>>>
>>> It's been a while since I've experienced this issue, and I don't
>>> think I
>>> have the generation that was affected around anymore.
>>>
>>> If I remember, I think I may have worked around this by removing a
>>> package, although I'm not sure which.
>>
>> Christopher, can you tell me how you found these error messages? I'm
>> interested in troubleshooting to see if I'm having the same issue.
>>
>> All I can find is the following in /var/log/messages after I click
>> "Activities", "Show Applications":
>>
>> Apr 24 13:56:34 localhost gnome-session-binary[857]: WARNING:
>> Application 'org.gnome.Shell.desktop' killed by signal 6
>
> I think I ran `gnome-shell --replace` from a terminal, and watched the
> output. You might also have some success writing to a log file,
> e.g. `gnome-shell --replace 1>&2 | tee gnome-shell.log`.

Great, thanks Christopher. Wow, nice going Ricardo, that fixes the
issue!

I ran:

  $ find ~/.guix-profile/ -type d -wholename '*lib/gdk-pixbuf*'
  /home/ben/.guix-profile/lib/gdk-pixbuf-2.0
  /home/ben/.guix-profile/lib/gdk-pixbuf-2.0/2.10.0
  /home/ben/.guix-profile/lib/gdk-pixbuf-2.0/2.10.0/loaders

and then:

  LD_LIBRARY_PATH=/home/ben/.guix-profile/lib gnome-shell

after which I could then select "Activities" and "Show Applications"
without any problems.

As you suggested was able to make the workaround persistent with:

  $ echo "LD_LIBRARY_PATH=/home/ben/.guix-profile/lib gnome-session" > 
~/.xsession
  $ chmod a+x ~/.xsession

Is there a way to fix this more permanently in Gnome?

Regards,
Ben


signature.asc
Description: PGP signature

bug#35416: OpenVPN Client Service

[Raghav Gururajan]

Hello Guix!

Including "openvpn-client-service-type" does not invoke and add
"openvpn" package into the system. Without "openvpn" package, openvpn
client commands cannot be used. Therefore, "openvpn-client-service-
type" is of no use, if it does not invoke and add "openvpn" package
into the system.

Regards,
RG.

bug#35417: Tor Service

[Raghav Gururajan]

Hello Guix!

Including "tor-service-type" does not invoke and add "tor" package into
the system. Without "tor" package, tor commands cannot be used.
Therefore, "tor-service-type" is of little or no use, if it does not
invoke and add "tor" package into the system.

Regards,
RG.

bug#33924: OpenJPEG security issues

[Marius Bakke]

Leo Famulari  writes:

> There are several open security bugs in our package of OpenJPEG 2.3.0:
>
> http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=openjpeg
>
> `guix refresh -l openjpeg` reports that several thousand packages would
> need to be rebuilt if we changed OpenJPEG, so we will need to fix these
> bugs by cherry-picking the upstream bugfix patches in a grafted
> replacement package.
>
> If anyone is interested in doing the work and needs advice, please ask
> for help :)
>
> These are the CVE identifiers:
>
> CVE-2017-17479
> CVE-2018-5727
> CVE-2018-5785
> CVE-2018-6616
> CVE-2018-7648
> CVE-2018-14423
> CVE-2018-16375
> CVE-2018-16376
> CVE-2018-17480
> CVE-2018-18088

I believe commit 0e2b0b05accdea7c3f016f8483d0ec04021114d3 fixed these.


signature.asc
Description: PGP signature

bug#35417: Tor Service

[Julien Lepiller]

Le 24 avril 2019 18:34:22 GMT+02:00, Raghav Gururajan  a 
écrit :
>Hello Guix!
>
>Including "tor-service-type" does not invoke and add "tor" package into
>the system. Without "tor" package, tor commands cannot be used.
>Therefore, "tor-service-type" is of little or no use, if it does not
>invoke and add "tor" package into the system.
>
>Regards,
>RG.

Hi,

What kind of command do you want to run? The tor service runs tor and you can 
configure, eg. your browser to use it through a socks proxy. So it is of some 
use :)

bug#35417: Tor Service

[Raghav Gururajan]

Hi,

I think there commands to interact with tor in real-time. The list of commands 
should be available via command "tor --help". :)On 24 Apr 2019 13:02, Julien 
Lepiller  wrote:
>
> Le 24 avril 2019 18:34:22 GMT+02:00, Raghav Gururajan  a 
> écrit : 
> >Hello Guix! 
> > 
> >Including "tor-service-type" does not invoke and add "tor" package into 
> >the system. Without "tor" package, tor commands cannot be used. 
> >Therefore, "tor-service-type" is of little or no use, if it does not 
> >invoke and add "tor" package into the system. 
> > 
> >Regards, 
> >RG. 
>
> Hi, 
>
> What kind of command do you want to run? The tor service runs tor and you can 
> configure, eg. your browser to use it through a socks proxy. So it is of some 
> use :) 

bug#35417: Tor Service

[Tobias Geerinckx-Rice]

Raghav,

Raghav Gururajan wrote:
Including "tor-service-type" does not invoke and add "tor" 
package into

the system.


To use the ‘tor’ command, like any other package, you must install 
the ‘tor’ package into either the system profile (using 
SYSTEM-PACKAGES) or that of your user (using ‘guix package’).


I'd recommend SYSTEM-PACKAGES in this case so the tor commands 
will always match the version of Tor used by the service.


This is by design; services can't pollute the environment of 
users, including the system profile.  That's a good thing.


Therefore, "tor-service-type" is of little or no use, if it does 
not

invoke and add "tor" package into the system.


That's just not true.  The tor service does its job and works just 
fine without the ‘tor’ command.  I just checked both of my Tor 
nodes (both run Guix :-) and neither of them have ‘tor’ installed 
into any profile.  Nyx and herd (and emacs torrc) are all I need 
to administrate them.


I'm closing this because there's no bug here…

Kind regards,

T G-R


signature.asc
Description: PGP signature

bug#35341: Guix System installer does not set up passwords and profile directories

[Ludovic Courtès]

Password issue moved to .

bug#35399: Guix System installer does not set up passwords

[Ludovic Courtès]

Ludovic Courtès  skribis:

>> Another option would be to have an activation snippet that runs when
>> booting the newly installed system: if would check for a flag or
>> something (it could check for uninitialized passwords), and if it
>> determines it’s a first boot, open a dialog box asking for passwords.
>> We’d need to add a “post-install” service in the OS config that would do
>> just that.
>> 
>> That would be the most robust approach, but it’s also a bit more work I
>> guess.  It’s also not so nice that users will see this extra service in
>> their config.
>> 
>> Thoughts?
>
> To which Florian replied:
>
>> Why can’t the installer just chroot into the new system and call
>> passwd?
>
> That makes a lot of sense, I feel silly for not thinking about it.  :-)
>
> (In fact, we don’t even have to chroot since we can directly use (gnu
> build accounts) to write the shadow file in the right place.)

This is implemented by these commits:

  91a7c4998f installer: Ask for the root account password.
  898677ed17 installer: Ask for user password and initialize /etc/shadow.

I ran a full install and confirmed that it works as expected.  You’re of
course welcome to try it out!

I realized later that I forgot to add a password confirmation box.  I
guess we should add one, right?

Thanks,
Ludo’.

bug#35422: LibreOffice builds for me, but not on CI server

[Ben Sturmfels]

Hi Folks,

When I `guix pull` and `guix package --manifest` the system will usually
need build LibreOffice. The build succeeds, but it takes several hours.
It would be great to resolve whatever is preventing it building on the
CI server.

Hydra currently shows that the LibreOffice cannot be build due to failed
dependencies:

 - libcmis
 - libepubgen

For example: http://hydra.gnu.org/build/3443570

Both these packages build successfully for me, but on Hydra they fail at the
testing phase, with exceptions mentioning "entropy_error" and
"getrandom".

The Boost docs say:

  The exception boost::uuids::entropy_error is thrown if there is an
  error getting entropy from the operating system.

  https://www.boost.org/doc/libs/1_69_0/libs/uuid/doc/uuid.html

I can see though that providing entropy does work against the goal of
reproducible builds though. Is this a case where the tests should be
modified or disabled?

Regards,
Ben

bug#35417: closed (Re: Tor Service)

[Raghav Gururajan]

Ah! My bad. I thought only Tor commands can be used to administrate tor 
service. Didn't know Nyx, herd and emacs torrc can be used to administrate tor 
service. All cool. :)

April 24, 2019 2:54 PM, help-debb...@gnu.org wrote:

> Your bug report
> 
> #35417: Tor Service
> 
> which was filed against the guix package, has been closed.
> 
> The explanation is attached below, along with your original report.
> If you require more details, please reply to 35...@debbugs.gnu.org.
> 
> -- 
> 35417: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=35417
> GNU Bug Tracking System
> Contact help-debb...@gnu.org with problems

bug#35424: Gnome terminal doesn't keep current working directory in new tab

[Ben Sturmfels]

Hi Folks,

Just minor thing, but on other systems I use, when you open subsequent
Gnome Terminal tabs, the current working directory is maintained in the
new tab. On my Guix System, new tabs start up back at /home/ben.

Very low priority of course.

Regards,
Ben

bug#35425: owncloud-client not saving password

[Ben Sturmfels]

Hi Folks,

I have owncloud-client installed on my Guix System. It successfully
stores my account and username, but prompts for a password each time it
starts up, saying "Reading from keychain failed with error: 'Unknown
error'". It's been this way since I started using the package some
months ago.

It would be really convenient if it could save the password too.

I'm running a Gnome/Slim based Guix System. I suspect it's not related,
but I do also have the account set up in Gnome Online Accounts under
"NextCloud".

Regards,
Ben

bug#35303:

[Luther Thompson]

On Wed, 2019-04-24 at 11:09 +1000, Ben Sturmfels wrote:
> On Wed, 17 Apr 2019, Luther Thompson wrote:
> 
> > unsubscribe
> 
> Hi Luther,
> 
> You'll probably want to unsubscribe from the mailing list here:
> https://lists.gnu.org/mailman/options/bug-guix

Thanks, but I've already taken care of it. It's just hard to get the "-
request" address right, sometimes.

Luther