aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* doc: Recommend against SHA1 OpenPGP signatures.Ludovic Courtès2020-05-04
| | | | | * doc/contributing.texi (Commit Access): Recommend against SHA1 signatures.
* doc: Document committer authorization.Ludovic Courtès2020-05-04
| | | | | * doc/contributing.texi (Commit Access): Add instructions for authorizing committers.
* openpgp: Raise error conditions instead of calling 'error'.Ludovic Courtès2020-05-04
| | | | | | | | | | | * guix/openpgp.scm (&openpgp-error, &openpgp-unrecognized-packet-error) (&openpgp-invalid-signature-error): New error conditions. (openpgp-hash-algorithm): Add 'signature-port' parameter. Raise an error condition instead of calling 'error'. (parse-subpackets): Likewise. (get-data): Raise instead of calling 'error'. (get-openpgp-detached-signature/ascii): Likewise. (get-signature): Likewise.
* git-authenticate: Load the keyring from the repository.Ludovic Courtès2020-05-04
| | | | | | | * build-aux/git-authenticate.scm (load-keyring-from-blob) (load-keyring-from-reference): New procedures. (authenticate-commits): Add #:keyring-reference and use 'load-keyring-from-reference'.
* git-authenticate: Load the list of authorized keys from the tree.Ludovic Courtès2020-05-04
| | | | | | * build-aux/git-authenticate.scm (read-authorizations) (commit-authorized-keys): New procedures. (authenticate-commit): Use it instead of %AUTHORIZED-SIGNING-KEYS.
* .guix-authorizations: Augment.Ludovic Courtès2020-05-04
| | | | * .guix-authorizations: Add all the currently authorized committers.
* git-authenticate: Use (guix openpgp).Ludovic Courtès2020-05-04
| | | | | | | | | | | | | | | | | It can now authenticate 14K+ commits in 23s instead of 4mn20. * build-aux/git-authenticate.scm (%authorized-signing-keys): Turn fingerprints into bytevectors. (with-temporary-files): Remove. (commit-signing-key): Add 'keyring' parameter. Use 'string->openpgp-packet' and 'verify-openpgp-signature' instead of (guix gnupg) procedures. (authenticate-commit): Add 'keyring' parameter. Pass it to 'commit-signing-key'. Adjust to SIGNING-KEY being an <openpgp-public-key>. (authenticate-commits): Remove 'parameterize'. Load keyring with 'get-openpgp-keyring'. (git-authenticate): When printing stats, adjust to SIGNER being an <openpgp-public-key>.
* openpgp: Add 'string->openpgp-packet'.Ludovic Courtès2020-05-04
| | | | | | | * guix/openpgp.scm (string->openpgp-packet): New procedure. * tests/openpgp.scm ("verify-openpgp-signature, missing key") ("verify-openpgp-signature, good signatures") ("verify-openpgp-signature, bad signature"): Use it.
* openpgp: 'lookup-key-by-{id,fingerprint}' return the key first.Ludovic Courtès2020-05-04
| | | | | | | | | | | | Previously, 'lookup-key-by-{id,fingerprint}' would always return the list of packets where the primary key is first. Thus, the caller would need to use 'find' to actually find the requested key. * guix/openpgp.scm (keyring-insert): Always add KEY to PACKETS. (lookup-key-by-id, lookup-key-by-fingerprint): Change to return the key as the first value. (verify-openpgp-signature): Remove now unneeded call to 'find'. * tests/openpgp.scm ("get-openpgp-keyring"): Adjust accordingly.
* openpgp: 'verify-openpgp-signature' looks up by fingerprint when possible.Ludovic Courtès2020-05-04
| | | | | | | | | * guix/openpgp.scm (verify-openpgp-signature): Use 'lookup-key-by-fingerprint' when SIG contains a fingerprint. Honor FINGERPRINT in the 'find' predicate. Upon missing-key, return FINGERPRINT if available. * tests/openpgp.scm ("verify-openpgp-signature, missing key"): Adjust expected value accordingly.
* openpgp: Add 'lookup-key-by-fingerprint'.Ludovic Courtès2020-05-04
| | | | | | | | | | | | * guix/openpgp.scm (<openpgp-keyring>)[table]: Rename to... [ids]: ... this. [fingerprints]: New field. (keyring-insert, lookup-key-by-fingerprint): New procedures. (%empty-keyring): Adjust. (get-openpgp-keyring): Manipulate KEYRING instead of its vhash, use 'keyring-insert'. * tests/openpgp.scm ("get-openpgp-keyring"): Test 'lookup-key-by-fingerprint'.
* openpgp: Store the issuer key id and fingerprint in <openpgp-signature>.Ludovic Courtès2020-05-04
| | | | | | | | | | * guix/openpgp.scm (<openpgp-signature>)[issuer, issuer-fingerprint]: New fields. (openpgp-signature-issuer, openpgp-signature-issuer-fingerprint): Remove. (verify-openpgp-signature): Use 'openpgp-signature-issuer-key-id'. (get-signature): Initialize 'issuer' and 'issuer-fingerprint'. * tests/openpgp.scm ("get-openpgp-detached-signature/ascii"): Adjust accordingly.
* openpgp: Decode the issuer-fingerprint signature subpacket.Ludovic Courtès2020-05-04
| | | | | | | | | | | | | | * guix/openpgp.scm (SUBPACKET-ISSUER-FINGERPRINT): New variable. (openpgp-signature-issuer-fingerprint): New procedure. (key-id-matches-fingerprint?): New procedure. (get-signature): Look for the 'issuer and 'issuer-fingerprint subpackets. Ensure the issuer key ID matches the fingerprint when both are available. (parse-subpackets): Handle SUBPACKET-ISSUER-FINGERPRINT. * tests/openpgp.scm (%rsa-key-fingerprint) (%dsa-key-fingerprint, %ed25519-key-fingerprint): New variables. * tests/openpgp.scm ("get-openpgp-detached-signature/ascii"): Check the result of 'openpgp-signature-issuer-fingerprint'.
* Add (guix openpgp).Ludovic Courtès2020-05-04
| | | | | | | | | * guix/openpgp.scm, tests/openpgp.scm, tests/civodul.key, tests/dsa.key, tests/ed25519.key, tests/rsa.key, tests/ed25519.sec: New files. * Makefile.am (MODULES): Add guix/openpgp.scm. (SCM_TESTS): Add tests/openpgp.scm. (EXTRA_DIST): Add tests/*.key and tests/ed25519.sec.
* Add '.guix-authorizations'.Ludovic Courtès2020-05-04
| | | | * .guix-authorizations: New file.
* gnu: emacs-relint: Update to 1.16.Nicolas Goaziou2020-05-03
| | | | * gnu/packages/emacs-xyz.scm (emacs-relint): Update to 1.16.
* gnu: emacs-xr: Update to 1.19.Nicolas Goaziou2020-05-03
| | | | * gnu/packages/emacs-xyz.scm (emacs-xr): Update to 1.19.
* linux-initrd: Provide fsck for F2FS.Danny Milosavljevic2020-05-03
| | | | * gnu/system/linux-initrd.scm (file-system-packages): Add F2FS fsck.
* gnu: f2fs-tools-static: Work around bug in our util-linux.Danny Milosavljevic2020-05-03
| | | | * gnu/packages/linux.scm (f2fs-tools/static): Work around bug in our util-linux.
* file-systems: Fix UTF-16 handling in initrd.Danny Milosavljevic2020-05-03
| | | | | | | Follow-up to f73f4b3a2d7a313a6cb1667bd69205ea4b09f57c. * gnu/build/file-systems.scm (bytevector->u16-list): New procedure. (utf16->string): New procedure.
* gnu: libusb-0.1: fix build failure on newer gccChristopher Howard2020-05-03
| | | | | | * gnu/packages/libusb.scm (libusb-0.1): Disable -Werror. Signed-off-by: Jakub Kądziołka <kuba@kadziolka.net>
* file-systems: Fix F2FS volume name accessor.Danny Milosavljevic2020-05-03
| | | | | | | | Follow-up to 23b37c3d40d497cc6f07437ab26ab10e60fb6e09. * gnu/build/file-systems.scm (bytevector-utf16-length): New procedure. (null-terminated-utf16->string): New procedure. (f2fs-superblock-volume-name): Use it.
* install: Add f2fs-tools to the installation image.Danny Milosavljevic2020-05-03
| | | | * gnu/system/install.scm (installation-os)[packages]: Add f2fs-tools.
* tests: install: Test a F2FS root file system.Danny Milosavljevic2020-05-03
| | | | | * gnu/tests/install.scm (%f2fs-root-os, %f2fs-root-installation-script, %test-f2fs-root-os): New variables.
* gnu: network-manager-openconnect: Add missing input.Efraim Flashner2020-05-03
| | | | * gnu/packages/gnome.scm (network-manager-openconnect)[inputs]: Add lz4.
* gnu: znc: Update to 1.8.0.Tobias Geerinckx-Rice2020-05-03
| | | | * gnu/packages/messaging.scm (znc): Update to 1.8.0.
* gnu: qemu-minimal: Don't include libcacard as an input.base-for-series-3832base-for-series-3831base-for-series-3829Christopher Baines2020-05-03
| | | | | | | This probably isn't useful for QEMU without GUI support. * gnu/package/virtualization.scm (qemu-minimal)[inputs]: Don't include libcacard.
* gnu: Add bchoppr.Alexandros Theodotou2020-05-03
| | | | | | * gnu/packages/music.scm (bchoppr): New variable. Signed-off-by: Christopher Baines <mail@cbaines.net>
* gnu: Add f2fs-fsck-static.raingloom2020-05-03
| | | | | | * gnu/packages/linux.scm (f2fs-fsck/static): New public variable. Signed-off-by: Danny Milosavljevic <dannym@scratchpost.org>
* gnu: spice: Add libcacard as an input to enable smartcard support.Christopher Baines2020-05-03
| | | | | | | | | This is to fix an issue with gnome-boxes when trying to start a virtual machine: unsupported type name: smartcard * gnu/packages/spice.scm (spice)[inputs]: Add libcacard.
* gnu: qemu: Add libcacard as an input to enable smartcard support.Christopher Baines2020-05-03
| | | | | | | | | This fixes an error in gnome-boxes when starting virtual machines: Unable to start domain: unsupported configuration: this QEMU binary lacks smartcard passthrough mode support * gnu/packages/virtualization.scm (qemu)[inputs]: Add libcacard.
* gnu: Add libcacard.Christopher Baines2020-05-03
| | | | | | Required for smartcard support in QEMU. * gnu/packages/spice.scm (libcacard): New variable.
* gnu: Add softhsm.Christopher Baines2020-05-03
| | | | | | Required for the libcacard tests. * gnu/packages/security-token.scm (softhsm): New variable.
* gnu: supercollider: Enable SCClassLibrary library lookup.Giacomo Leidi2020-05-03
| | | | | | | | | | | This hardcodes the path of SCClassLibrary to fix a lookup error that was preventing SCServer's boot. * gnu/packages/audio.scm (supercollider)[source]: Fetch via git, [arguments]: build release target and add a new 'patch-scclass-dir phase to hardcode SCClassLibrary path. Signed-off-by: Mathieu Othacehe <m.othacehe@gmail.com>
* gnu: edi: Update to 0.8.0.base-for-series-3826Efraim Flashner2020-05-03
| | | | | | | | * gnu/packages/enlightenment.scm (edi): Update to 0.8.0. [source]: Download from new uri. [arguments]: Add custom phase to fix clang headers discovery. [native-inputs]: Add check, gettext-minimal. [license]: Add gpl3.
* gnu: evisum: Update to 0.4.0.Efraim Flashner2020-05-03
| | | | | | | * gnu/packages/enlighenment.scm (evisum): Update to 0.4.0. [build-system]: Switch to meson-build-system. [arguments]: Remove make-flags, custom phases. [inputs]: Remove alsa-lib, perl.
* gnu: python-efl: Update to 1.24.0.Efraim Flashner2020-05-03
| | | | * gnu/packages/enlightenment.scm (python-efl): Update to 1.24.0.
* gnu: enlightenment: Change mount/umount binaries.Efraim Flashner2020-05-03
| | | | | * gnu/packages/enlightenment.scm (enlightenment)[arugments]: Use the setuid binaries for mount/umount.
* gnu: efl: Update to 1.24.0.Efraim Flashner2020-05-03
| | | | | | | | * gnu/packages/enlightenment.scm (efl): Update to 1.24.0. [propagated-inputs]: Remove bullet. Add libpng. Move libtiff, libwebp ... [inputs]: ... to here. Add openjpeg. Remove libxp. [arguments]: In configure-flags disable scim, enable avahi, glib. Use setuid mount/umount binaries.
* gnu: linux-libre: Update to 5.4.38.base-for-series-3821Mark H Weaver2020-05-02
| | | | | * gnu/packages/linux.scm (linux-libre-5.4-version): Update to 5.4.38. (linux-libre-5.4-pristine-source): Update hash.
* gnu: linux-libre@5.6: Update to 5.6.10.Mark H Weaver2020-05-02
| | | | | * gnu/packages/linux.scm (linux-libre-5.6-version): Update to 5.6.10. (linux-libre-5.6-pristine-source): Update hash.
* gnu: linux-libre@4.19: Update to 4.19.120.Mark H Weaver2020-05-02
| | | | | * gnu/packages/linux.scm (linux-libre-4.19-version): Update to 4.19.120. (linux-libre-4.19-pristine-source): Update hash.
* gnu: linux-libre@4.14: Update to 4.14.178.Mark H Weaver2020-05-02
| | | | | * gnu/packages/linux.scm (linux-libre-4.14-version): Update to 4.14.178. (linux-libre-4.14-pristine-source): Update hash.
* gnu: linux-libre@4.9: Update to 4.9.221.Mark H Weaver2020-05-02
| | | | | * gnu/packages/linux.scm (linux-libre-4.9-version): Update to 4.9.221. (linux-libre-4.9-pristine-source): Update hash.
* gnu: linux-libre@4.4: Update to 4.4.221.Mark H Weaver2020-05-02
| | | | | * gnu/packages/linux.scm (linux-libre-4.4-version): Update to 4.4.221. (linux-libre-4.4-pristine-source): Update hash.
* gnu: linux-libre: Update deblob scripts.Mark H Weaver2020-05-02
| | | | * gnu/packages/linux.scm (deblob-scripts-5.4): Update to 5.4.37.
* gnu: youtube-dl: Update to 2020.05.03.Oleg Pykhalov2020-05-02
| | | | * gnu/packages/video.scm (youtube-dl): Update to 2020.05.03.
* gnu: openconnect: Add LZ4 support.base-for-series-3815Tobias Geerinckx-Rice2020-05-02
| | | | * gnu/packages/vpn.scm (openconnect)[inputs]: Add lz4.
* gnu: openconnect: Update to 8.09 [fixes CVE-2020-12105].Tobias Geerinckx-Rice2020-05-02
| | | | * gnu/packages/vpn.scm (openconnect): Update to 8.09.
* gnu: Add musl-cross.Danny Milosavljevic2020-05-02
| | | | | | | * gnu/packages/patches/musl-cross-locate.patch: New file. * gnu/packages/heads.scm: New file. * gnu/local.mk (dist_patch_DATA): Add one. (GNU_SYSTEM_MODULES): Add the other.