Re: [Whonix-devel] GNU Guix Questions

On 2017-03-06 17:15, ng0 wrote: Hi bancfc, Hi ng0, great to see you here :) On 17-03-06 16:14:08, ban...@openmailbox.org wrote: Hi Guix devs, I am a privacy distro dev and we are looking at using Guix in our OS. I have a few questions: * Is the Guix package archive available from a Tor

Re: support for non-list search paths

Quoting Ludovic Courtès (2017-03-06 16:22:52) > Hi, > > Troy Sankey skribis: > > > My workaround involves using `guix package --search-paths=exact`, but > > this cost me some time debugging which I'd like to save the next person. > > I am not sure what the solution should

Re: bug#25463: guile-2.0.13 Check errors

Manolis Ragkousis skribis: > Hello Ludo, welcome back! > > On 03/06/2017 06:00 PM, Ludovic Courtès wrote: > >> Is it 100% reproducible if you run: >> >> ./check-guile 00-repl-server.test >> >> from Guile’s build tree? >> >> This test uses a Unix-domain socket, which on

Re: [PATCH 7/8] vm: Fix full-boot? option.

David Craven skribis: > * gnu/system/vm.scm (virtualized-operating-system): Add full-boot? > option. Don't add a %store-mapping when full-boot? is passed. This leads > the grub-configuration-file procedure to look for the kernel and initrd in > / instead of /gnu/store.

Re: Let’s freeze and build ‘core-updates’!

On Mon, Mar 06, 2017 at 04:39:56PM +0100, Ludovic Courtès wrote: > It’s been 3 days since their message and it hasn’t happened yet, so > perhaps we should simply run autoreconf. > > Thoughts? Okay. > BTW, xorg-server is a build-time dependency of gtk+@3 (for test > purposes), which is the main

Re: [PATCH 0/8] WIP: Better support for non-grub bootloaders.

Hi David, Please let me know if you don’t want to be bothered about this. Problem is there’s exciting stuff in this patch series and I’d probably have a few questions for you if you want. David Craven skribis: > These patches make changes to the bootloader API and will break

Re: 'guix build --target=' handling questions

On Mon, 06 Mar 2017 17:04:18 +0100 l...@gnu.org (Ludovic Courtès) wrote: > Sergei Trofimovich skribis: > > >> Question time: > >> > >> - Is there a way to run 'guix environment --target=' in the same way as > >> 'guix build --target=' > >> sets it up? I'd like to see how

Dealing with CVEs that apply to unspecified package versions

Hi! A couple of weeks ago you mentioned that CVE-2016-10165 (for lcms) is not reported by ‘guix lint -c cve’. This is due to the fact that the CVE does not specify the lcms version number it applies to, and thus (guix cve) ignores it. The attached patch fixes (guix cve) to honor CVEs with an

Re: [PATCH] gnu: fontconfig: Fix for PATH_MAX.

Hi, Manolis Ragkousis skribis: > I added a line in your commit message saying in which file you apply the > patch and also removed all the one space indentation changes, with the > purpose of making the patch more clear. > > I pushed it in core-updates. Right in time,

Re: support for non-list search paths

Hi, Troy Sankey skribis: > My workaround involves using `guix package --search-paths=exact`, but > this cost me some time debugging which I'd like to save the next person. > I am not sure what the solution should be. Maybe just a clarification > in documentation? What

Re: [PATCH] gnu: icecat: Add skia support.

On Mon, Mar 06, 2017 at 07:09:14PM +0100, Julien Lepiller wrote: > Hi, > > Here are three patches to add skia, a graphics library and add support > for it in icecat. It is not made the default graphics engine, so to > enable it, you need to go in about:config and change >

Re: Let’s freeze and build ‘core-updates’!

On Mon, Mar 06, 2017 at 07:54:06PM +0100, Marius Bakke wrote: > Another option is to keep version 2.6.2 around, which is better than a > specialized "flex-for-grub". If the previous version works for both grub > and wireshark, I prefer this alternative. The choices are a bit overwhelming; there

Re: Can (grub-configuration (device $DEV)) accept UUIDs?

On Mon, 06 Mar 2017 17:19:21 +0100 l...@gnu.org (Ludovic Courtès) wrote: > Unfortunately it can’t, because there are no UUIDs (that I know of) to > identify drives. > > However, as the manual vaguely suggests (too vaguely I admit), you can > use a GRUB device identifier such as “(hd0)”. This is

Re: documentation/behavior unclear of (tor-hidden-service)

On 17-03-06 13:47:12, Leo Famulari wrote: > On Mon, Mar 06, 2017 at 06:00:30PM +, ng0 wrote: > > from my experience they are not needed for a relay. Okay, they would be > > useful to increase security and to see how how Chinese government > > officials and their automated services want to get

Re: Let’s freeze and build ‘core-updates’!

On Mon, Mar 06, 2017 at 07:49:42PM +0100, Marius Bakke wrote: > Leo Famulari writes: > > Let's also decide what to do about GRUB. I updated it originally because > > something (I forgot what) failed to build without a newer GRUB. > > I think you meant "flex" here. Yup! :p >

Re: Let’s freeze and build ‘core-updates’!

Marius Bakke writes: > Leo Famulari writes: > >> On Mon, Mar 06, 2017 at 10:19:34AM +0100, Ludovic Courtès wrote: >>> Hello Guix! >>> >>> Looks like there’s been a disk space issue a few days ago that’s now >>> solved, so I’ve restarted an evaluation of

Re: Let’s freeze and build ‘core-updates’!

Leo Famulari writes: > On Mon, Mar 06, 2017 at 10:19:34AM +0100, Ludovic Courtès wrote: >> Hello Guix! >> >> Looks like there’s been a disk space issue a few days ago that’s now >> solved, so I’ve restarted an evaluation of the “core” subset. >> >> Is there any blocker left

Re: documentation/behavior unclear of (tor-hidden-service)

On Mon, Mar 06, 2017 at 06:00:30PM +, ng0 wrote: > from my experience they are not needed for a relay. Okay, they would be > useful to increase security and to see how how Chinese government > officials and their automated services want to get into your server, but > it's not really necessary

Re: Let’s freeze and build ‘core-updates’!

On Mon, Mar 06, 2017 at 10:19:34AM +0100, Ludovic Courtès wrote: > Hello Guix! > > Looks like there’s been a disk space issue a few days ago that’s now > solved, so I’ve restarted an evaluation of the “core” subset. > > Is there any blocker left or should we move forward after that? Let's also

Re: [PATCH 1/1] gnu: linux-libre@4.1, linux-libre@4.4, linux-libre@4.9: Fix CVE-2017-6074.

On Mon, Mar 06, 2017 at 11:00:15AM +0100, Ludovic Courtès wrote: > Leo Famulari skribis: > > > * gnu/packages/linux.scm (linux-libre-4.1, linux-libre-4.4, > > linux-libre-4.9): Add patch for CVE-2017-6074. > > If you haven’t done already, please push! Especially since this

[PATCH] gnu: icecat: Add skia support.

Hi, Here are three patches to add skia, a graphics library and add support for it in icecat. It is not made the default graphics engine, so to enable it, you need to go in about:config and change `gfx.content.azure.backends' and `gfx.canvas.azure.backends' to `skia' instead of cairo. Doing this

Re: documentation/behavior unclear of (tor-hidden-service)

On 17-03-06 08:19:00, dian_ce...@zoho.com wrote: > On Mon, 6 Mar 2017 12:08:20 + > ng0 wrote:> > > Maybe someone else can try and implement this, I only know what'S > > needed for running the relay but can't do it at the moment ;) > > Just for reference sake: >

Re: torbrowser

On 17-03-06 08:06:52, dian_ce...@zoho.com wrote: > On Mon, 6 Mar 2017 15:14:59 + > ng0 wrote: > > My idea is now to just reconstruct what torproject does, from the git > > checkout of torbrowser and eventually later fix Guix specific > > issues and fine tuning

Re: Can (grub-configuration (device $DEV)) accept UUIDs?

Hi, skribis: > I am in the process of trying to get GuixSD installed on my desktop and > I've run into a minor issue. The documentation doesn't mention any > support for UUIDs for grub-configuration (I'm going by the webpage with > the install instead of the info files on

Re: documentation/behavior unclear of (tor-hidden-service)

On Mon, 6 Mar 2017 12:08:20 + ng0 wrote:> > Maybe someone else can try and implement this, I only know what'S > needed for running the relay but can't do it at the moment ;) Just for reference sake: https://www.torproject.org/docs/tor-doc-relay.html.en What is

Re: torbrowser

On 17-03-06 16:47:26, Ludovic Courtès wrote: > ng0 skribis: > > > Cloning takes a rather long time, this is where Andy's shallow-clone > > would be useful, which is where I ran into issue and delayed re-working > > this for now. If someone is interested I can post the

Re: gnu-patches back log

Hi Pjotr! Pjotr Prins skribis: > Now we have debbugs we can see there is a building back-log: > > > https://debbugs.gnu.org/cgi/pkgreport.cgi?package=guix-patches;max-bugs=100;base-order=1;bug-rev=1 > > A patch like this one > >

support for non-list search paths

The file "~/.guix-profile/etc/profile" treats all search paths as colon-separated lists. Some variables are not supposed to be lists, but treating them as such could confuse programs which read them. GIT_EXEC_PATH is one that has caused me trouble, so I'll be using it as an example below. The

Re: torbrowser

On Mon, 6 Mar 2017 15:14:59 + ng0 wrote: > My idea is now to just reconstruct what torproject does, from the git > checkout of torbrowser and eventually later fix Guix specific > issues and fine tuning (freedom issues etc etc). Would it be possible to grab the

Re: [Whonix-devel] GNU Guix Questions

Hi bancfc, On 17-03-06 16:14:08, ban...@openmailbox.org wrote: > Hi Guix devs, I am a privacy distro dev and we are looking at using Guix in > our OS. I have a few questions: > > * Is the Guix package archive available from a Tor hidden service? There are > many advantages of updating a system

Re: 'guix build --target=' handling questions

Sergei Trofimovich skribis: >> Question time: >> >> - Is there a way to run 'guix environment --target=' in the same way as >> 'guix build --target=' >> sets it up? I'd like to see how both compilers are supposed to be present >> in there. >> >> - Why default g++ in PATH is

Re: bug#25463: guile-2.0.13 Check errors

Hi Manolis, Manolis Ragkousis skribis: > On 02/11/2017 11:03 PM, Ludovic Courtès wrote: >> Hello! >> >> ren...@openmailbox.org skribis: >> >>> I am trying to build guile version 2.0.13 in GNU Hurd through Guix >>> package manager, in the 'Check' phase I have 4 errors; I

Re: [PATCH 0/5] gnu/packages/aux-files

Alex Kost skribis: > Alex Kost (2017-02-18 12:21 +0300) wrote: > >> Hello, as discussed at >> >> http://lists.gnu.org/archive/html/guix-devel/2016-12/msg01174.html >> >> this patchset moves linux-libre .conf files and "guix-emacs.el" (needed >> for Emacs) to

Re: torbrowser

ng0 skribis: > NixOS in Nixpkgs[2] makes use of patchelf to just fix up the prebuild > variant found on dist.torproject.org. > > > I suspect that the way Nix 'fixes' this is a no-go for us. Indeed. :-) > My idea is now to just reconstruct what torproject does, from

GNU Guix Questions

Hi Guix devs, I am a privacy distro dev and we are looking at using Guix in our OS. I have a few questions: * Is the Guix package archive available from a Tor hidden service? There are many advantages of updating a system over Tor such as preventing a target adversary from fingerprinting and

Re: documentation/behavior unclear of (tor-hidden-service)

ng0 skribis: > On 17-03-06 11:13:32, Ludovic Courtès wrote: >> Hi! >> >> ng0 skribis: >> >> > moving on, this could be improved: >> > In case one aims for keeping the config public this is a bad idea but >> > what about creating the

Re: ANNOUNCE: Guix on Aarch64 !!

Efraim Flashner skribis: > On March 6, 2017 11:57:44 AM GMT+02:00, l...@gnu.org wrote: [...] >>It would be great if you could start looking for an aarch64 machine >> to >>plug into Hydra, or maybe start with a VM. >> >>Thoughts? >> >>Cheers, >>Ludo’. > > The odroid-c2 is

Re: Let’s freeze and build ‘core-updates’!

Marius Bakke skribis: > Ludovic Courtès writes: > >> Hello Guix! >> >> Looks like there’s been a disk space issue a few days ago that’s now >> solved, so I’ve restarted an evaluation of the “core” subset. >> >> Is there any blocker left or should we move

torbrowser

I'm currently occupying the time where I don't study various things and debug gnunet-service with packaging torbrowser. So Gentoo (inofficially, 'torbrowser-overlay'[1]) uses the pre-build archives found on dist.torproject.org in combination with a git checkout and the torbrowser + firefox

Re: Let’s freeze and build ‘core-updates’!

Ludovic Courtès writes: > Hello Guix! > > Looks like there’s been a disk space issue a few days ago that’s now > solved, so I’ve restarted an evaluation of the “core” subset. > > Is there any blocker left or should we move forward after that? We were waiting for the xorg-server

Re: `guix pull` over HTTPS

Ludovic Courtès writes: > Hi! > > Marius Bakke skribis: > >> From 800051909362b5817bbb386029edf14ffd8269a8 Mon Sep 17 00:00:00 2001 >> From: Marius Bakke >> Date: Tue, 28 Feb 2017 22:34:29 +0100 >> Subject: [PATCH] pull: Default to HTTPS.

hiawatha package description

Hi, I'm not very happy with the description and synopsis I initially provided. Any ideas what could be fixed? I'll comment on what I think is bad: >synopsis: Webserver with focus on security >description: Hiawatha has been written with security in mind. This The entire second sentence is

Re: documentation/behavior unclear of (tor-hidden-service)

On 17-03-06 11:13:32, Ludovic Courtès wrote: > Hi! > > ng0 skribis: > > > moving on, this could be improved: > > In case one aims for keeping the config public this is a bad idea but > > what about creating the hostname + private_key in $name as plain-file? > > Would

Re: [PATCH 1/2] doc: Symlink daemon start-up files.

Leo Famulari skribis: > On Mon, Jan 16, 2017 at 10:49:32AM +0100, Ludovic Courtès wrote: >> > On Fri, Nov 18, 2016 at 03:31:24PM -0500, Leo Famulari wrote: >> > I think we should go back to the "old way" of instructing users to copy >> > the file... >> > >> >> I'd argue it

Re: [PATCH 1/1] services: openssh: Parameterize the OpenSSH package used by the service.

Leo Famulari skribis: > * gnu/services/ssh.scm ()[openssh]: New field. > (openssh-activation), (openssh-shepherd-service): Use it. ^ ^ (Nitpick: no need to close/open parens here.) It’s a good idea, please push! Thanks, Ludo’.

Re: Changing guix download page from using HTTP to HTTPS

Leo Famulari skribis: > On Sun, Mar 05, 2017 at 11:15:25PM +0800, Alex Vong wrote: >> Hello, >> >> In the guix download page[0], it mentions "Source code for the Guix >> System Distribution USB installation images as well as GNU Guix can be >> found on the GNU ftp server for

Re: ANNOUNCE: Guix on Aarch64 !!

On March 6, 2017 11:57:44 AM GMT+02:00, l...@gnu.org wrote: >Hello! > >Efraim Flashner skribis: > >> Its my pleasure to announce that guix now has all the code necessary >to >> support aarch64! Currently support is limited to the core-updates >> branch, but that shouldn't

Re: core-updates: flex is broken [was: GRUB fails to build]

Leo Famulari skribis: > On Sat, Mar 04, 2017 at 01:42:34PM -0500, Leo Famulari wrote: >> On core-updates, GRUB fails to build like this: > >> ./grub-core/script/yylex.l:34:0: error: "yyalloc" redefined [-Werror] >> #define yyalloc(size, scanner) (grub_malloc((size))) >> ^

Re: documentation/behavior unclear of (tor-hidden-service)

Hi! ng0 skribis: > moving on, this could be improved: > In case one aims for keeping the config public this is a bad idea but > what about creating the hostname + private_key in $name as plain-file? > Would this be overwritten by (tor-hidden-service) or would this

Re: `guix pull` over HTTPS

Hi! Marius Bakke skribis: > From 800051909362b5817bbb386029edf14ffd8269a8 Mon Sep 17 00:00:00 2001 > From: Marius Bakke > Date: Tue, 28 Feb 2017 22:34:29 +0100 > Subject: [PATCH] pull: Default to HTTPS. > > * guix/build/download.scm (tls-wrap): Allow

Re: midnight commander package fixes, opinions wanted

On 17-03-06 11:55:27, Efraim Flashner wrote: > On Wed, Mar 01, 2017 at 05:01:23PM +, ng0 wrote: > > On 17-03-01 16:58:41, ng0 wrote: > > > Hi, > > > > > > I already fixed some of the open issues with our package of 'mc'. > > > > > > I think people will expect features to just work and not

Re: `guix pull` over HTTPS

Leo Famulari skribis: > On Wed, Mar 01, 2017 at 03:36:11AM +0100, Marius Bakke wrote: >> Subject: [PATCH] pull: Default to HTTPS. >> >> * guix/build/download.scm (tls-wrap): Add CERTIFICATE-DIRECTORY parameter. >> (open-connection-for-uri): Adjust parameters to match. >>

Re: midnight commander package fixes, opinions wanted

On 17-03-01 17:01:23, ng0 wrote: > On 17-03-01 16:58:41, ng0 wrote: > > Hi, > > > > I already fixed some of the open issues with our package of 'mc'. > > > > I think people will expect features to just work and not being broken > > (as they are right now). > > My personal opinion ignored, how do

Re: [PATCH 1/1] gnu: linux-libre@4.1, linux-libre@4.4, linux-libre@4.9: Fix CVE-2017-6074.

Leo Famulari skribis: > * gnu/packages/linux.scm (linux-libre-4.1, linux-libre-4.4, > linux-libre-4.9): Add patch for CVE-2017-6074. If you haven’t done already, please push! Especially since this vulnerability is ranked as “high”. Thank you! Ludo’.

Re: ANNOUNCE: Guix on Aarch64 !!

Hello! Efraim Flashner skribis: > Its my pleasure to announce that guix now has all the code necessary to > support aarch64! Currently support is limited to the core-updates > branch, but that shouldn't be too much of a problem, since currently > everything needs to be

Re: midnight commander package fixes, opinions wanted

On Wed, Mar 01, 2017 at 05:01:23PM +, ng0 wrote: > On 17-03-01 16:58:41, ng0 wrote: > > Hi, > > > > I already fixed some of the open issues with our package of 'mc'. > > > > I think people will expect features to just work and not being broken > > (as they are right now). > > My personal

Re: building packages with git+ssh

Hello, Sorry for the late reply. Chaitan Rogers skribis: > We are trying to build code that is stored in a internal repository that is > only accessible via git+ssh. This failed because openssh isn't included in the > set of inputs that are available to the cloning

Re: Leaving the guix project

Hello David, This is bad news for my first day back from vacations (I knew I should have stayed on vacation! ;-)). I’m sad to see you leave. I understand we have disagreements on the project’s goals, and I respect that. The goals haven’t changed since Day 1 though, and I think it’s a project

Re: [PATCH 5/6] gnu: gcc: Force Aarch64 to use /lib.

Efraim Flashner skribis: > On February 22, 2017 9:42:58 PM GMT+02:00, Efraim Flashner > wrote: >>On Tue, Feb 14, 2017 at 09:51:20PM +0200, Efraim Flashner wrote: >>> On Tue, Feb 14, 2017 at 09:51:47AM +0100, Ludovic Courtès wrote: >>> > Danny

Re: Let’s freeze and build ‘core-updates’!

Hello Guix! Looks like there’s been a disk space issue a few days ago that’s now solved, so I’ve restarted an evaluation of the “core” subset. Is there any blocker left or should we move forward after that? Thanks, Ludo’.

Re: [PATCH 0/15]: Add pplacer and OCaml dependencies.

Hi Ben, Sorry for the delay. Ben Woodcroft skribis: > On 10/02/17 08:32, Ludovic Courtès wrote: >> Hi Ben, >> >> Ben Woodcroft skribis: >> >>> I'm quite happy to send these patches in, pplacer has been near the >>> top of my most wanted list since

Re: [PATCH 1/2] doc: Symlink daemon start-up files.

Am 05.03.2017 um 21:55 schrieb Leo Famulari: > I've attached two patches. The first updates the instructions in the > manual, and the second builds the service files with the '/var/guix...' > path. LGTM -- Regards Hartmut Goebel | Hartmut Goebel | h.goe...@crazy-compilers.com