From: Nicolas Graves via Guix-patches via <guix-patches@gnu.org>
To: 73692@debbugs.gnu.org
Cc: Nicolas Graves <ngraves@ngraves.fr>
Subject: [bug#73692] [PATCH v6 1/2] gnu: timescaledb: Update to 2.16.1. [security fixes]
Date: Sat, 19 Oct 2024 12:00:39 +0200 [thread overview]
Message-ID: <20241019100044.32070-1-ngraves@ngraves.fr> (raw)
In-Reply-To: <20241008062619.24136-1-ngraves@ngraves.fr>
This fixes CVE-2023-25149.
* gnu/packages/databases.scm (timescaledb): Update to 2.16.1.
[arguments]<#:phases>: Remove comment and symlink trick in
'prepare-tests phase.
---
gnu/packages/databases.scm | 21 +++------------------
1 file changed, 3 insertions(+), 18 deletions(-)
diff --git a/gnu/packages/databases.scm b/gnu/packages/databases.scm
index f05566becd..df346893b8 100644
--- a/gnu/packages/databases.scm
+++ b/gnu/packages/databases.scm
@@ -1412,7 +1412,7 @@ (define-public postgresql postgresql-14)
(define-public timescaledb
(package
(name "timescaledb")
- (version "2.8.1")
+ (version "2.16.1")
(source (origin
(method git-fetch)
(uri (git-reference
@@ -1421,7 +1421,7 @@ (define-public timescaledb
(file-name (git-file-name name version))
(sha256
(base32
- "1gbadna0ilmqad7sbrixm12wd71h43njhsbp1kh5lispb6drdb6r"))
+ "1v17x00a15il4r3rbr0waqjv1nwzy6rcqxgfi2hdk1x235s5dg5h"))
(modules '((guix build utils)))
(snippet
;; Remove files carrying the proprietary TIMESCALE license.
@@ -1476,22 +1476,7 @@ (define-public timescaledb
(pg-union (string-append (getcwd) "/../pg-union")))
(match inputs
(((names . directories) ...)
- ;; PG will only load extensions from its own $libdir,
- ;; which it calculates based on argv[0]. As of
- ;; PostgreSQL 13.6, it calls 'canonicalize_path' on
- ;; argv[0] so a merge symlink is not enough to trick
- ;; it; thus, the code below makes a full copy of PG
- ;; and friends such that 'pg_config --libdir', for
- ;; instance, points to PG-UNION, allowing it to load
- ;; the timescaledb extension.
- ;; TODO: The above comment and the #:symlink trick can
- ;; be removed in the next rebuild cycle.
- (union-build pg-union (cons #$output directories)
- #:symlink
- (lambda (old new)
- (if (file-is-directory? old)
- (copy-recursively old new)
- (copy-file old new))))))
+ (union-build pg-union (cons #$output directories))))
(setenv "PATH" (string-append pg-union "/bin:"
(getenv "PATH")))
(invoke "initdb" "-D" pg-data)
--
2.46.0
next prev parent reply other threads:[~2024-10-19 10:02 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-10-08 6:26 [bug#73692] [PATCH] gnu: timescaledb: Update to 2.16.1. [security fixes] Nicolas Graves via Guix-patches via
2024-10-16 5:12 ` [bug#73692] [PATCH v2] gnu: timescaledb: Ignore failing tests Nicolas Graves via Guix-patches via
2024-10-16 12:28 ` Z572
2024-10-16 17:19 ` Nicolas Graves via Guix-patches via
2024-10-16 23:24 ` [bug#73692] [PATCH v3 1/2] gnu: timescaledb: Update to 2.16.1. [security fixes] Nicolas Graves via Guix-patches via
2024-10-16 23:24 ` [bug#73692] [PATCH v3 2/2] gnu: timescaledb: Ignore failing tests Nicolas Graves via Guix-patches via
2024-10-17 4:37 ` [bug#73692] [PATCH v4 1/2] gnu: timescaledb: Update to 2.16.1. [security fixes] Nicolas Graves via Guix-patches via
2024-10-17 4:37 ` [bug#73692] [PATCH v4 2/2] gnu: timescaledb: Ignore failing tests Nicolas Graves via Guix-patches via
2024-10-17 5:51 ` [bug#73692] [PATCH v5 1/2] gnu: timescaledb: Update to 2.16.1. [security fixes] Nicolas Graves via Guix-patches via
2024-10-17 5:51 ` [bug#73692] [PATCH v5 2/2] gnu: timescaledb: Ignore failing tests Nicolas Graves via Guix-patches via
2024-10-19 10:00 ` Nicolas Graves via Guix-patches via [this message]
2024-10-19 10:00 ` [bug#73692] [PATCH v6 " Nicolas Graves via Guix-patches via
2024-10-20 14:05 ` [bug#73692] [PATCH v7 1/2] gnu: timescaledb: Update to 2.16.1. [security fixes] Nicolas Graves via Guix-patches via
2024-10-20 14:05 ` [bug#73692] [PATCH v7 2/2] gnu: timescaledb: Ignore failing tests Nicolas Graves via Guix-patches via
2024-10-20 14:33 ` Zheng Junjie
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://guix.gnu.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20241019100044.32070-1-ngraves@ngraves.fr \
--to=guix-patches@gnu.org \
--cc=73692@debbugs.gnu.org \
--cc=ngraves@ngraves.fr \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).