Re: Emacs and URLs in Git commit messages

Hi, Thank you for the replies! Maxime Devos writes: > I don't known any emacs command for that, but you inspired me to write > such a command myself: [1]. > > Maxime. > [1]: > https://notabug.org/mdevos/things/commit/b0400ba06b6f031e88f1f89b47079c3c6d7dcac4 zimoun writes: > I am not

Re: Unreproducible “guix pack -f docker” because config.scm-builder

Hi Ludo, On Fri, 05 Feb 2021 at 11:09, Ludovic Courtès wrote: > So I guess you can propose a patch and let someone else review it. > :-) I will. :-) > Looks like tar made this file a hard link in one case and not in the > other. This is weird because we don’t ask it to create hard links >

Re: Blog post about the upcoming FOSDEM + Guix Day

On Fri, Feb 05, 2021 at 11:37:49AM +0100, Ludovic Courtès wrote: > On IRC Leo (American timezone) was thinking about having a session to > discuss branching strategies, and there were also discussions about > substitute availability and continuous builds for QA. Yes, I think we can discuss

Re: Potential security weakness in Guix services

On Fri, 2021-02-05 at 13:20 +0100, Maxime Devos wrote: > On Fri, 2021-02-05 at 10:57 +0100, Ludovic Courtès wrote: > > [...] > [...] > > I'll try to implement this API in Scheme (using the FFI), and post > it at https://notabug.org/mdevos/things. I'll post a follow-up > messsage once I've

Re: Potential security weakness in Guix services

On Fri, 2021-02-05 at 10:57 +0100, Ludovic Courtès wrote: > Hi Maxime, > > > I don't know how I should implement this properly in Guile, though. > > In C, I would use loop using openat with O_NOFOLLOW, in combination > > with stat, but Guile doesn't have openat or O_NOFOLLOW. > > In this case

Re: Emacs and URLs in Git commit messages

Hi, Chris Marusich skribis: > Many Guix commits look like this: > > commit f9978346e73359ac1d8b88c9ed874edc7225582b > Author: Ludovic Courtès > Date: Fri Dec 18 18:10:04 2020 +0100 > > avahi: Remove poll timeout when possible. > > Fixes .

Re: Questions regarding Python packaging

Am 23.01.21 um 13:34 schrieb Lars-Dominik Braun: Remove pip and setuptools from python (saves almost 20MiB from the closure When doing to we need to be carefully. pip is expected to be available after installing "python". So when removing pip and setuptool, we would need some

Re: Blog post about the upcoming FOSDEM + Guix Day

Hi, Pjotr Prins skribis: > We start Monday at 5am UTC (6am AMS/Berlin, 7am Athens) to cater for > some of Asia. The day ends when the last one switches off the lights > :). Manolis, Efraim and Bonface have promised to be there. The > bluebutton link will be announced a day ahead. Could you

Re: 03/163: build/python: Add a new guix-pythonpath procedure.

Hi Maxim, many thanks for picking up this issue. Indeed, I thought about the possibility to filter the GUIX_PYTHONPATH entries based on their version at runtime after I wrote my initial reply. It makes life easier. I've updated the cu/farewell-to-pythonpath branch with this new way of doing

Re: Unreproducible “guix pack -f docker” because config.scm-builder

Hi, zimoun skribis: > then the sysconfdir is set to /usr/local/etc because it is the default. > And so it leads to subtle differences really hard to guess. I think it > is worth to add one sentence or footnote at the end of the section > «Running Guix Before It Is Installed», right after: > >

Re: Potential security weakness in Guix services

Hi Maxime, Maxime Devos skribis: > On Tue, 2021-02-02 at 14:07 +0100, Ludovic Courtès wrote: >> OK, I see. Roughly, this symlink chown story would be a local exploit >> that the attacker can take advantage of after exploiting the RCE to >> potentially get root access. >> >> ‘mkdir-p/perms’