* gnu/packages/glib.scm (glib-minimal): Update to 2.86.0.
[#:phases]<disable-failing-tests>: Drop substitute* for testfilemonitor.
<patch-pkg-config-files>: Use map.
Also patch “lib/pkgconfig/girepository-2.0.pc”.
Rationale: the version 1.1.1u was captured in the phase gexp and carried over
in the inherited openssl 3.0.8 package.
* gnu/packages/tls.scm (openssl-1.1) [#:phases] <configure>: Remove version
from openssldir value.
<remove-miscellany>: Adjust accordingly.
Change-Id: I2795f0b57b8b8382b14e313e3741d0f1c22939ae
* gnu/packages/documentation.scm (mallard-ducktype)
[build-system, arguments]: Build using a custom build-system.
Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>
This allows us to decouple meson and all its dependents from the
pyproject-build-system, and avoid a lot of rebuilds (rusts, llvm...).
* gnu/packages/build-tools.scm (meson)
[build-system]: Replace pyproject-build-system with a patched
gnu-build-system.
[arguments]<#:phases>: Adapt accordindly.
[native-inputs]: Replace python-setuptools by python-setuptools-bootstrap.
Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>
This makes it so that GnuTLS always knows to locate the nss-certs without
users having to do anything. This default behavior can be modified by users
via the p11-kit configuration mechanism, which can be be done per-user.
* gnu/packages/patches/gnutls-skip-trust-store-test.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): De-register it.
* gnu/packages/tls.scm (gnutls) [source]: Remove
'gnutls-skip-trust-store-test.patch' patch.
[#:configure-flags]: Delete "--with-default-trust-store-dir=/etc/ssl/certs".
Add "--with-default-trust-store-pkcs11=pkcs11:". Update comment.
Fixes: <https://issues.guix.gnu.org/75902>
Fixes: <https://issues.guix.gnu.org/46779>
Change-Id: Ie45bfe8c2884c1ab277b0fba6135a5af3a9b6a3d
* gnu/packages/tls.scm (gnutls)[source] <patches>: Add gnutls-no-which.patch.
[arguments] <#:configure-flags>: Do not build without p11-kit on
mips64el (debian has a package for it, it ought to work). Add
--with-zlib=link flag.
<#:phases>: Delete disable-failing-tests phase.
[native-inputs]: Remove which.
[propagated-inputs]: Do not avoid p11-kit on mips64el architecture.
* gnu/packages/patches/gnutls-no-which.patch: Add file.
* gnu/local.mk (dist_patch_DATA): Register it.
Change-Id: I6519b789896dba00de6a1af7a6f772906ce660c1
* gnu/packages/tls.scm (p11-kit): [native-inputs]: Add nss-certs.
[arguments] <#:configure-flags>: Expose its certs via an 'anchors'
subdirectory to the trust paths.
Change-Id: Iee727edb1f51f8503fcbdd4ec1dee0d47a6bba39
* gnu/packages/tls.scm (p11-kit): Update to 0.25.5.
[source]: Drop hurd patch.
[arguments]: Delete #:phases.
<#:configure-flags>: Add more trust paths, for better compatibility with foreign distributions.
[native-inputs]: Add python-minimal. Remove autoconf, automake,
gettext-minimal and libtool when targeting the Hurd.
Change-Id: I3d52b681c580ddcf10646411b07f7f86541ba163
* gnu/packages/prolog.scm (trealla): Switch to running the standard tests.
[native-inputs]: Delete it.
[arguments]: Adjust the test target to be test.
Running the valgrind memory checks is overkill for our purposes. Valgrind
should only be run in a local development workflow and not in our
CI. Switching to running the standard tests will also mimic what upstream runs
in their own CI for the Trealla project. Switching to running only the
standard tests also greatly reduces the time that it takes to run the full
Guix build for the trealla variable.
Change-Id: I912b85bfbe3fde03e6c0b98a47b2dbaa9b4b5d8a
* etc/teams.scm: Make rhou a member of teams python, science and c++.
Change-Id: I208d8158b746136495c9b61248e2be7331b4bae4
Signed-off-by: Andreas Enge <andreas@enge.fr>
To prevent redirection to the versioned maual, use devel on master branch.
* doc/htmlxref.cnf: Point GUIX to devel manual.
Change-Id: I6b2bf3b78ca5815ff49e6ebe50bc12383e64a7fd
* gnu/packages/prolog.scm (trealla): Update to 2.89.1 and apply formatting.
[native-inputs]: Remove xxd.
[arguments]: Set PREFIX and HOST_CC environment variables.
Remove install phase.
This update also installs the newly created man page for Trealla.
Change-Id: I2fb8e67af2ca075d0dd863a45763fec1483966ae
* gnu/packages/lisp-xyz.scm (sbcl-cl-posix-mqueue): Format to modern style.
[native-inputs]: Format to modern style.
[inputs]: Format to modern style.
Change-Id: I3ce9decc7a106bb98168137cdcbb218b48c25093
* gnu/packages/lisp-xyz.scm (sbcl-cl-posix-mqueue): Update to 0.1.3.
This uses the tagged release which is at the same commit as the direct commit
that was previously used.
Change-Id: I5e7c59a09da75c1fe377e2425a5e2ea28e94f20d
Partially reverts e642300195.
Only semver is a required dependency, zstd is optional.
* configure.ac: Remove check for Guile-zstd being available.
Change-Id: I1fe0fe77d0f15b1d383c890b46ce678402054efc
These were omitted from the configure script, leading to failure during the
build, instead of an earlier failure during ./configure.
Change-Id: I62a69eccf854acc1f7ae9a7aeb26897cf433478c
On architectures other than x86_64, the kernel page is not shown. That means
the kernel will be an empty list. This leads to an exception during
installation.
Followup of 139a69b602, part of #5515.
* gnu/installer/kernel.scm (kernel->configuration): Accept empty kernel.
Change-Id: I7891f189ecc8d557aa9bb900a6633a570e46a3b6
Contains fixes for:
CVE-2026-0877: Mitigation bypass in the DOM: Security component
CVE-2026-0878: Sandbox escape due to incorrect boundary conditions in
the Graphics: CanvasWebGL component
CVE-2026-0879: Sandbox escape due to incorrect boundary conditions in
the Graphics component
CVE-2026-0880: Sandbox escape due to integer overflow in the Graphics
component
CVE-2026-0881: Sandbox escape in the Messaging System component
CVE-2026-0882: Use-after-free in the IPC component
CVE-2026-0883: Information disclosure in the Networking component
CVE-2026-0884: Use-after-free in the JavaScript Engine component
CVE-2026-0885: Use-after-free in the JavaScript: GC component
CVE-2026-0886: Incorrect boundary conditions in the Graphics component
CVE-2026-0887: Clickjacking issue, information disclosure in the PDF
Viewer component
CVE-2026-0888: Information disclosure in the XML component
CVE-2026-0889: Denial-of-service in the DOM: Service Workers component
CVE-2026-0890: Spoofing issue in the DOM: Copy & Paste and Drag & Drop
component
CVE-2026-0891: Memory safety bugs fixed in Firefox ESR 140.7,
Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147
CVE-2026-0892: Memory safety bugs fixed in Firefox 147 and Thunderbird
147
* gnu/packages/librewolf.scm (librewolf-bsys6): New variable.
* gnu/packages/librewolf.scm (make-librewolf-source): Don’t attempt to GPG
sign the source tarball, the key isn’t available.
* gnu/packages/librewolf.scm (librewolf): Update to 147.0.1-3.
[native-inputs] Add librewolf-bsys6.
[phases 'patch-icu-lookup]: Delete.
[phases 'install-desktop-entry]: Use the .desktop file template from librewolf-bsys6.
Change-Id: Ic7ff0197294cbb2485cb8db2f42f4fb499e39277
