Commit graph

1906 commits

Author SHA1 Message Date
Timotej Lazar
64314bba83
nongnu: intel-microcode: Update to 20241112 [security-fixes].
Fixes CVE-2024-21820, CVE-2024-21853, CVE-2024-23918.

* nongnu/packages/linux.scm (intel-microcode): Update to 20241112.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-11-23 00:30:47 +01:00
Attila Lendvai
99574ff94b
nonguix: binary-build-system: Print the patchelf version.
* nonguix/build/binary-build-system.scm (patchelf): Output patchelf version.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-11-10 16:46:13 -05:00
John Kehayias
f82534a8a8
build-system: binary: Add comment about patchelf version.
This is a followup to commit c7e6962eb3.

* nonguix/build-system/binary.scm (default-patchelf): Add comment and TODO
about using older patchelf-0.16 due to upstream bug.

Reported-by: Attila Lendvai <attila@lendvai.name>
2024-11-10 16:24:17 -05:00
Rutherther
425f3ee3dd
nongnu: firefox-esr: Wrap with pipewire.
Firefox needs pipewire in LD_LIBRARY_PATH for screensharing on Wayland,
otherwise the screensharing just won't start.

* nongnu/packages/mozilla.scm (firefox-esr)[arguments]: Add pipewire
lib path to LD_LIBRARY_PATH variable in 'wrap-program phase.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-11-10 16:14:18 -05:00
Timotej Lazar
c60ade9082
nongnu: intel-microcode: Update to 20241029.
* nongnu/packages/linux.scm (intel-microcode): Update to 20241029.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-11-10 16:12:50 -05:00
Hilton Chain
e6eccd3891
nongnu: linux-xanmod: Update to 6.11.7.
* nongnu/packages/linux.scm (linux-xanmod-version): Update to 6.11.7.
(linux-xanmod-source): Update hashes.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-11-10 16:12:04 -05:00
Hilton Chain
b79ef566ba
nongnu: linux-xanmod-lts: Update to 6.6.60.
* nongnu/packages/linux.scm (linux-xanmod-lts-version): Update to 6.6.60.
(linux-xanmod-lts-source): Update hash.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-11-10 16:12:02 -05:00
Hilton Chain
c7e6962eb3
build-system: binary: Use patchelf-0.16 by default.
Newer patchelf may break binaries.

This commit replaces patchelf with patchelf-0.16 for binary-build-system and
nvidia-driver (known affected package).

Fixes: https://gitlab.com/nonguix/nonguix/-/issues/350

* nonguix/build-system/binary.scm (default-patchelf): Replace patchelf with
patchelf-0.16.
* nongnu/packages/nvidia.scm (nvidia-driver)[native-inputs]: Likewise.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-11-10 16:11:07 -05:00
John Kehayias
3b78eca656
nongnu: linux-6.10: Remove variable.
linux-libre-6.10 is set to be dropped by upstream Guix, see
<https://issues.guix.gnu.org/74168>.  So, let's remove before then to prevent
guix pull from breaking due to a missing variable.

* nongnu/packages/linux.scm (linux-6.10): Remove variable.
2024-11-05 13:43:55 -05:00
John Kehayias
141db409ef
nongnu: linux: Set to linux-6.11.
Upstream set the default kernel to 6.11 in
<https://git.savannah.gnu.org/cgit/guix.git/commit/?id=00cb8509a46115950173f5a217abea43faa5515c>.

* nongnu/packages/linux.scm (linux): Set to linux-6.11.
2024-11-05 13:42:11 -05:00
Isaac van Bakel
9f065c321e
nongnu: kind: Fix baked-in source in unpack overrides.
* nongnu/packages/k8s.scm (kind)[#:phases]<unpack>: Replace #$source by
keyword argument source.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Isaac van Bakel
e72d4a7741
nongnu: helm-kubernetes: Fix baked-in source in unpack overrides.
* nongnu/packages/k8s.scm (helm-kubernetes)[#:phases]<unpack>: Replace source
G-expression by keyword argument source.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Isaac van Bakel
ba4c8bdd42
nongnu: kompose: Fix baked-in source in unpack overrides.
* nongnu/packages/k8s.scm (kompose)[#:phases]<unpack>: Replace #$source by
keyword argument source.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Isaac van Bakel
b91474f15e
nongnu: kubectl: Fix baked-in source in unpack overrides.
* nongnu/packages/k8s.scm (kubectl)[#:phases]<unpack>: Replace #$source by
keyword argument source.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Isaac van Bakel
c1fb20ea53
nongnu: katenary: Fix baked-in source in unpack overrides.
* nongnu/packages/k8s.scm (katenary)[#:phases]<unpack>: Replace #$source by
keyword argument source.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Isaac van Bakel
d0e6e969ed
nongnu: k9s: Fix baked-in source in unpack overrides.
* nongnu/packages/k8s.scm (k9s)[#:phases]<unpack>: Replace #$source by keyword
argument source.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Isaac van Bakel
bb03bb5dba
nongnu: vscodium: Fix baked-in source in unpack overrides.
* nongnu/packages/editors.scm (vscodium)[#:phases]<unpack>: Replace source
G-expression by keyword argument source.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Isaac van Bakel
aa1bfa802f
nongnu: zoom: Fix baked-in source in unpack overrides.
* nongnu/packages/messaging.scm (zoom)[#:phases]<unpack>: Replace #$source by
keyword argument source.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Isaac van Bakel
9734a6a1fe
nongnu: nvidia-nvml: Fix baked-in source in unpack overrides.
* nongnu/packages/nvidia.scm (nvidia-nvml)[#:phases]<unpack>: Replace source
G-expression by keyword argument source.

These cases of `replace 'unpack` were referring to the `#$source` of the
package in the g-exp, which was baking in the source *at the point of
package definition* to the g-exp. This prevented inheritor packages from
modifying the source field and getting the expected effect.

The correct way to refer to the source field from a phase override is
with the `source` key. This modifies all the references to `#$source` I
could find in `unpack` phase replacements.

Signed-off-by: Jelle Licht <jlicht@fsfe.org>
2024-11-03 13:05:26 +01:00
Giacomo Leidi
00e2480d23
nongnu: google-chrome-unstable: Update to 131.0.6738.0.
* nongnu/packages/chrome.scm (google-chrome-unstable): Update to 131.0.6738.0.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-11-01 23:06:16 +01:00
Giacomo Leidi
831f184a7d
nongnu: google-chrome-beta: Update to 130.0.6723.19.
* nongnu/packages/chrome.scm (google-chrome-beta): Update to 130.0.6723.19.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-11-01 23:06:16 +01:00
Giacomo Leidi
459700a58a
nongnu: google-chrome-stable: Update to 129.0.6668.89.
* nongnu/packages/chrome.scm (google-chrome-stable): Update to 129.0.6668.89.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-11-01 23:06:16 +01:00
Giacomo Leidi
a3bdbb9ec1
nongnu: anytype: Update to 0.43.1.
* nongnu/packages/productivity.scm (anytype): Update to 0.43.1.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-11-01 22:55:01 +01:00
Rodion Goritskov
883c28fcec
nongnu: lgogdownloader: Update to 3.15.
* nongnu/packages/gog.scm (lgogdownloader): Update to 3.15.
[inputs]: Remove htmlcxx, liboauth, qtbase-5, qtdeclarative-5,
qtwebchannel-5. Add tidy-hmtl. Replace qtwebengine-5 with qtwebengine.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-11-01 22:52:31 +01:00
Tomas Volf
714db288db
nongnu: firefox-esr: Update to 128.4.0esr [security fixes].
Fixes CVE-2024-10458, CVE-2024-10459, CVE-2024-10460, CVE-2024-10461,
CVE-2024-10462, CVE-2024-10463, CVE-2024-10464, CVE-2024-10465,
CVE-2024-10466, CVE-2024-10467.

* nongnu/packages/mozilla.scm (firefox-esr): Update to 128.4.0esr.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-31 10:54:15 +01:00
Leo Famulari
ad966c3844
nongnu: Add linux 6.11.
* nongnu/packages/linux.scm (linux-6.11): New variable.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-10-20 16:22:40 -04:00
John Kehayias
d47b2f5a7b
nongnu: firefox: Update to 131.0.3 [security fixes].
Fixes CVE-2024-9936 and, in previous versions since 130.0.1, CVE-2024-9680,
CVE-2024-9391, CVE-2024-9392, CVE-2024-9393, CVE-2024-9394, CVE-2024-9395,
CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399, CVE-2024-9400,
CVE-2024-9401, CVE-2024-9402, and CVE-2024-9403.

Upstream removed firefox.desktop files which can be generated from their mach
tool.  However, this will try to download various dependencies.  So, for now
at least, use a patch which reverts that commit so we can use the included
desktop file.  In Arch, for example, they include a separate pre-generated
desktop file rather than doing this at build time.

* nongnu/packages/mozilla.scm (firefox): Update to 131.0.3.
* nongnu/packages/patches/firefox-CVE-2024-9680.patch: Delete patch.
* nongnu/packages/patches/firefox-restore-desktop-files.patch: Add patch.
2024-10-19 01:26:32 -04:00
Zhu Zihao
14c3e1fdc8
nongnu: winetricks: Improve package style.
* nongnu/packages/wine.scm (winetricks)[inputs]: Use label-less style.
[arguments]: Use G-expressions.
<#:make-flags>: Replace '(assoc-ref %outputs "out")' with '#$output'.
<#:phases>: In 'wrap-program' and 'patch-perl-path', Replace
'(assoc-ref inputs ...)' with 'this-package-input'.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-10-18 15:01:05 -04:00
Maxim Cournoyer
8cffc6b168
nongnu: linux-firmware: Use Zstd compression.
This halves the size of the firmware collection from 1.1 GiB to 509 MiB.

* nongnu/packages/linux.scm (linux-firmware)[phases]: Override install phase.
[native-inputs]: Add zstd.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-10-18 14:51:28 -04:00
Maxim Cournoyer
15fa7d02b6
nongnu: linux-firmware: Update to 20241017.
* nongnu/packages/linux.scm (linux-firmware): Update to 20241017.
[arguments]<#:phases>: New keyword argument.  Add 'patch-out-check_whence.py phase.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-10-18 14:20:03 -04:00
Maxim Cournoyer
630dc221ab
nongnu: Add mediatek-firmware.
* nongnu/packages/linux.scm (mediatek-firmware): New variable.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-10-18 14:15:26 -04:00
Julian Flake
38f77e9399
nongnu: sof-firmware: Update to 2024.09.
* nongnu/packages/linux.scm (sof-firmware): Update to 2024.09.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-10-18 13:58:33 -04:00
Gabriel Wicki
1fa6d4c194
nongnu: signal-desktop: Update to 7.28.0.
* nongnu/packages/messaging.scm (signal-desktop): Update to 7.28.0.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-10-18 13:57:22 -04:00
Hilton Chain
e355a2ff67
nongnu: firefox: Fix CVE-2024-9680.
* nongnu/packages/patches/firefox-CVE-2024-9680.patch: New file.
* nongnu/packages/mozilla.scm (firefox)[source]<patches>: Add it.
(%firefox-build-id): Update.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-11 00:03:14 +02:00
Tomas Volf
db0bb9d0a6
nongnu: firefox-esr: Update to 128.3.1esr [security fixes].
Fixes CVE-2024-9680.

* nongnu/packages/mozilla.scm (firefox-esr): Update to 128.3.1esr.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-10 10:46:30 +02:00
Ashish SHUKLA
ea84538b88
nonguix: binary: Improve .deb unpacking.
.deb could contain data.tar compressed in any format, not just .xz as it
assumes now.

* nonguix/build/binary-build-system (unpack-deb): find a data.tar archive to
extract.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-02 23:25:02 +02:00
Krzysztof Baranowski
2be61e5d23
nongnu: font-apple-sf-symbols: Update to 6.
* nongnu/packages/fonts (font-apple-sf-symbols): Update to 6.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-02 22:43:12 +02:00
Krzysztof Baranowski
3e986ae6eb
nongnu: font-apple-new-york: Update source archive.
No visible version change but all the other Apple font packages got an
update to a newer internet archive timestamp so New York gets one too.

* nongnu/packages/fonts (font-apple-new-york): Update source archive.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-02 22:43:12 +02:00
Krzysztof Baranowski
c21ece1b05
nongnu: font-apple-sf-arabic: Update to 20.0d8e1.
* nongnu/packages/fonts (font-apple-sf-arabic): Update to 20.0d8e1.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-02 22:43:12 +02:00
Krzysztof Baranowski
6a9fb8ea30
nongnu: font-apple-sf-mono: Update to 20.0d8e1.
* nongnu/packages/fonts (font-apple-sf-mono): Update to 20.0d8e1.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-02 22:43:12 +02:00
Krzysztof Baranowski
c2712c15ab
nongnu: font-apple-sf-compact: Update to 20.0d8e1.
* nongnu/packages/fonts (font-apple-sf-compact): Update to 20.0d8e1.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-02 22:43:12 +02:00
Krzysztof Baranowski
62cbdd9112
nongnu: font-apple-sf-pro: Update to 20.0d8e1.
* nongnu/packages/fonts (font-apple-sf-pro): Update to 20.0d8e1.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-02 22:43:12 +02:00
Tomas Volf
cd0932c23c
nongnu: firefox-esr: Update to 128.3.0esr [security fixes].
Fixes CVE-2024-8900, CVE-2024-9392, CVE-2024-9393, CVE-2024-9394,
CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399,
CVE-2024-9400, CVE-2024-9401, CVE-2024-9402.

* nongnu/packages/mozilla.scm (firefox-esr): Update to 128.3.0esr.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-10-02 22:32:58 +02:00
Julian Flake
820e171503
nongnu: sof-firmware: Also install sof-ace-tplg.
* nongnu/packages/linux.scm (sof-firmware)[arguments]<#:install-plan>: Also
install sof-ace-tplg.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-09-29 16:23:25 -04:00
Julian Flake
b2ce94fe65
nongnu: sof-firmware: Update to 2024.06.
* nongnu/packages/linux.scm (sof-firmware): Update to 2024.06.
[arguments]: Adapt install plan.

Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2024-09-22 21:34:12 +02:00
Giacomo Leidi
269997b06c
nongnu: anytype: Update to 0.42.4.
* nongnu/packages/productivity.scm (anytype): Update to 0.42.4.
[arguments]<#:phases>: Add disable-auto-updates and strip-regedit phases.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-09-22 15:24:58 -04:00
Krzysztof Baranowski
a26aa5ecad
nongnu: facetimehd: Update to 0.6.8.2.
* nongnu/packages/linux.scm (facetimehd): Update to 0.6.8.2.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-09-22 15:22:46 -04:00
Krzysztof Baranowski
1f6e595e26
nongnu: google-chrome: support GTK 4.
Use it by launching Chrome with '--gtk-version=4'.  (At the time of this
writing, at least; Google changes these flags often.)

* nongnu/packages/chrome (google-chrome):
[inputs]: Add gtk.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-09-22 15:21:23 -04:00
Hilton Chain
fc5e2c7cb6
nongnu: nvidia-driver: Update to 550.120.
* nongnu/packages/nvidia.scm (nvidia-version): Update to 550.120.
(%nvidia-driver-hashes,%nvidia-settings-hashes): Update hash.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-09-22 15:15:31 -04:00
Hilton Chain
74b354fc26
nongnu: nvidia: Separate hash storage.
* nongnu/packages/nvidia.scm (%nvidia-driver-hashes,%nvidia-settings-hashes):
New variables.
(nvidia-source,nvidia-settings): Use them.
(nvidia-source-hash): Delete procedure.

Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2024-09-22 15:15:29 -04:00