* .guix-authorizations: Add fingerprint for bricewge.

* gnu/packages/chemistry.scm (gromacs): New variable.
* gnu/packages/patches/gromacs-tinyxml2.patch: New file...
* gnu/local.mk (dist_patch_DATA): ...add it here.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

* gnu/packages/algebra.scm (lmfit): New variable.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

* gnu/packages/chemistry.scm (tng): New variable.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

* doc/contributing.texi (Commit Access): Recommend against SHA1
signatures.

* doc/contributing.texi (Commit Access): Add instructions for
authorizing committers.

* guix/openpgp.scm (&openpgp-error, &openpgp-unrecognized-packet-error)
(&openpgp-invalid-signature-error): New error conditions.
(openpgp-hash-algorithm): Add 'signature-port' parameter.  Raise an
error condition instead of calling 'error'.
(parse-subpackets): Likewise.
(get-data): Raise instead of calling 'error'.
(get-openpgp-detached-signature/ascii): Likewise.
(get-signature): Likewise.

* build-aux/git-authenticate.scm (load-keyring-from-blob)
(load-keyring-from-reference): New procedures.
(authenticate-commits): Add #:keyring-reference and use
'load-keyring-from-reference'.

* build-aux/git-authenticate.scm (read-authorizations)
(commit-authorized-keys): New procedures.
(authenticate-commit): Use it instead of %AUTHORIZED-SIGNING-KEYS.

* .guix-authorizations: Add all the currently authorized committers.

It can now authenticate 14K+ commits in 23s instead of 4mn20.

* build-aux/git-authenticate.scm (%authorized-signing-keys): Turn
fingerprints into bytevectors.
(with-temporary-files): Remove.
(commit-signing-key): Add 'keyring' parameter.  Use
'string->openpgp-packet' and 'verify-openpgp-signature' instead of (guix
gnupg) procedures.
(authenticate-commit): Add 'keyring' parameter.  Pass it to
'commit-signing-key'.  Adjust to SIGNING-KEY being an <openpgp-public-key>.
(authenticate-commits): Remove 'parameterize'.  Load keyring with
'get-openpgp-keyring'.
(git-authenticate): When printing stats, adjust to SIGNER being an
<openpgp-public-key>.

* guix/openpgp.scm (string->openpgp-packet): New procedure.
* tests/openpgp.scm ("verify-openpgp-signature, missing key")
("verify-openpgp-signature, good signatures")
("verify-openpgp-signature, bad signature"): Use it.

Previously, 'lookup-key-by-{id,fingerprint}' would always return the
list of packets where the primary key is first.  Thus, the caller would
need to use 'find' to actually find the requested key.

* guix/openpgp.scm (keyring-insert): Always add KEY to PACKETS.
(lookup-key-by-id, lookup-key-by-fingerprint): Change to return the key
as the first value.
(verify-openpgp-signature): Remove now unneeded call to 'find'.
* tests/openpgp.scm ("get-openpgp-keyring"): Adjust accordingly.

* guix/openpgp.scm (verify-openpgp-signature): Use
'lookup-key-by-fingerprint' when SIG contains a fingerprint.
Honor FINGERPRINT in the 'find' predicate.  Upon missing-key, return
FINGERPRINT if available.
* tests/openpgp.scm ("verify-openpgp-signature, missing key"): Adjust
expected value accordingly.

* guix/openpgp.scm (<openpgp-keyring>)[table]: Rename to...
[ids]: ... this.
[fingerprints]: New field.
(keyring-insert, lookup-key-by-fingerprint): New procedures.
(%empty-keyring): Adjust.
(get-openpgp-keyring): Manipulate KEYRING instead of its vhash, use
'keyring-insert'.
* tests/openpgp.scm ("get-openpgp-keyring"): Test
'lookup-key-by-fingerprint'.

* guix/openpgp.scm (<openpgp-signature>)[issuer, issuer-fingerprint]:
New fields.
(openpgp-signature-issuer, openpgp-signature-issuer-fingerprint): Remove.
(verify-openpgp-signature): Use 'openpgp-signature-issuer-key-id'.
(get-signature): Initialize 'issuer' and 'issuer-fingerprint'.
* tests/openpgp.scm ("get-openpgp-detached-signature/ascii"): Adjust
accordingly.

* guix/openpgp.scm (SUBPACKET-ISSUER-FINGERPRINT): New variable.
(openpgp-signature-issuer-fingerprint): New procedure.
(key-id-matches-fingerprint?): New procedure.
(get-signature): Look for the 'issuer and 'issuer-fingerprint
subpackets.  Ensure the issuer key ID matches the fingerprint when both
are available.
(parse-subpackets): Handle SUBPACKET-ISSUER-FINGERPRINT.
* tests/openpgp.scm (%rsa-key-fingerprint)
(%dsa-key-fingerprint, %ed25519-key-fingerprint): New variables.
* tests/openpgp.scm ("get-openpgp-detached-signature/ascii"): Check the
result of 'openpgp-signature-issuer-fingerprint'.

* guix/openpgp.scm, tests/openpgp.scm, tests/civodul.key,
tests/dsa.key, tests/ed25519.key, tests/rsa.key,
tests/ed25519.sec: New files.
* Makefile.am (MODULES): Add guix/openpgp.scm.
(SCM_TESTS): Add tests/openpgp.scm.
(EXTRA_DIST): Add tests/*.key and tests/ed25519.sec.

* .guix-authorizations: New file.

* gnu/packages/emacs-xyz.scm (emacs-relint): Update to 1.16.

* gnu/packages/emacs-xyz.scm (emacs-xr): Update to 1.19.

* gnu/system/linux-initrd.scm (file-system-packages): Add F2FS fsck.

* gnu/packages/linux.scm (f2fs-tools/static): Work around bug in our util-linux.

Follow-up to f73f4b3a.

* gnu/build/file-systems.scm (bytevector->u16-list): New procedure.
(utf16->string): New procedure.

* gnu/packages/libusb.scm (libusb-0.1): Disable -Werror.

Signed-off-by: Jakub Kądziołka <kuba@kadziolka.net>

Follow-up to 23b37c3d.

* gnu/build/file-systems.scm (bytevector-utf16-length): New procedure.
(null-terminated-utf16->string): New procedure.
(f2fs-superblock-volume-name): Use it.

* gnu/system/install.scm (installation-os)[packages]: Add f2fs-tools.

* gnu/tests/install.scm (%f2fs-root-os, %f2fs-root-installation-script,
%test-f2fs-root-os): New variables.

* gnu/packages/gnome.scm (network-manager-openconnect)[inputs]: Add lz4.

* gnu/packages/messaging.scm (znc): Update to 1.8.0.

This probably isn't useful for QEMU without GUI support.

* gnu/package/virtualization.scm (qemu-minimal)[inputs]: Don't include
libcacard.

* gnu/packages/music.scm (bchoppr): New variable.

Signed-off-by: Christopher Baines <mail@cbaines.net>

* gnu/packages/linux.scm (f2fs-fsck/static): New public variable.

Signed-off-by: Danny Milosavljevic <dannym@scratchpost.org>

This is to fix an issue with gnome-boxes when trying to start a virtual
machine:

  unsupported type name: smartcard

* gnu/packages/spice.scm (spice)[inputs]: Add libcacard.

This fixes an error in gnome-boxes when starting virtual machines:

  Unable to start domain: unsupported configuration: this QEMU binary lacks
  smartcard passthrough mode support

* gnu/packages/virtualization.scm (qemu)[inputs]: Add libcacard.

Required for smartcard support in QEMU.

* gnu/packages/spice.scm (libcacard): New variable.

Required for the libcacard tests.

* gnu/packages/security-token.scm (softhsm): New variable.

This hardcodes the path of SCClassLibrary to fix a lookup error that was
preventing SCServer's boot.

* gnu/packages/audio.scm (supercollider)[source]: Fetch via git,
[arguments]: build release target and add a new 'patch-scclass-dir phase to
hardcode SCClassLibrary path.

Signed-off-by: Mathieu Othacehe <m.othacehe@gmail.com>

* gnu/packages/enlightenment.scm (edi): Update to 0.8.0.
[source]: Download from new uri.
[arguments]: Add custom phase to fix clang headers discovery.
[native-inputs]: Add check, gettext-minimal.
[license]: Add gpl3.

* gnu/packages/enlighenment.scm (evisum): Update to 0.4.0.
[build-system]: Switch to meson-build-system.
[arguments]: Remove make-flags, custom phases.
[inputs]: Remove alsa-lib, perl.