gnu: transmission: Mention CVE-2018-5702.

* gnu/packages/bittorrent.scm (transmission): Add comment.

gnu: python-libxml2: Inherit the replacement source of libxml2.

Previously, python-libxml2 would inherit the ungrafted libxml2, missing
several patches on the libxml2 source code.

* gnu/packages/xml.scm (python-libxml2, python2-libxml2): Use
package/inherit.

gnu: libxml2: Fix CVE-2017-15412.

* gnu/packages/patches/libxml2-CVE-2017-15412.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/xml.scm (libxml2/fixed)[source]: Use it.

gnu: Add curlftpfs.

* gnu/packages/file-systems.scm (curlftpfs): New variable.

gnu: Add eureka.

* gnu/packages/game-development.scm (eureka): New variable.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

gnu: freedom: add native search-paths.

* gnu/packages/games.scm (freedoom) [native-search-paths]: Set DOOMWADDIR and
  DOOMWADPATH, so source ports and map editors can find the freedoom IWAD.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

gnu: python-matplotlib: Fix import failure

* gnu/packages/python.scm (python-matplotlib)[propagated-inputs]: Add
  python-pyqt.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

gnu: clojure: Update to 1.9.0.

* gnu/packages/java.scm (clojure): Update to 1.9.0. Add "core-specs-alpha-src"
and "spec-alpha-src". Remove "java-classpath-src" and "tools-reader-src".

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

doc: Fix typo.

Reported by Nicolas Goaziou.

* doc/guix.texi (Invoking guix archive): Fix typo.

gnu: fish-guix: Remove it.

fish-guix has been merged into Guix in 'etc/completion/fish'

* gnu/packages/shells.scm (fish-guix): Remove it.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

etc: Add completions for fish.

* etc/completion/fish/guix.fish: New file.
* Makefile.am: Register the file.
* configure.ac: Add the fish vendor-completions directory.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

gnu: mc: Update to 4.8.20.

* gnu/packages/mc.scm (mc): Update to 4.8.20.
[arguments]: Rename ‘fix-absolutism’ to (hopefully) more accurate
‘patch-FHS-file-names’.  Patch more.  Fix new VFS test.

gnu: mc: Use HTTPS for home page.

* gnu/packages/mc.scm (mc)[home-page]: Use HTTPS.

gnu: opensmtpd: Support PAM authentication.

* gnu/packages/mail.scm (opensmtpd)[arguments]: Add ‘--with-auth-pam’
to #:configure-flags.

gnu: opensmtpd: Update to 6.0.3p1.

* gnu/packages/mail.scm (opensmtpd): Update to 6.0.3p1.

gnu: Use HTTPS for invisible-island.net home pages.

* gnu/packages/ncurses.scm (dialog)[home-page]: Use HTTPS.
* gnu/packages/version-control.scm (diffstat)[home-page]: Likewise.
* gnu/packages/xorg.scm (xterm)[home-page]: Likewise.

gnu: dialog: Update to 1.3-20171209.

* gnu/packages/ncurses.scm (dialog): Update to 1.3-20171209.

gnu: audio: Use HTTPS for kokkinizita.linuxaudio.org home pages.

* gnu/packages/audio.scm (clalsadrv, amb-plugins, mcp-plugins, rev-plugins)
(fil-plugins, ste-plugins, vco-plugins, wah-plugins, g2reverb)
(zita-convolver, zita-resampler, zita-alsa-pcmi)[home-page]: Use HTTPS.

gnu: java: Use HTTPS for osgi.org home pages.

* gnu/packages/java.scm (java-osgi-annotation, java-osgi-core)
(java-osgi-service-event, java-osgi-cmpn)
(java-osgi-service-component-annotations, java-osgi-dto, java-osgi-resource)
(java-osgi-namespace-contract, java-osgi-namespace-extender)
(java-osgi-namespace-service, java-osgi-util-function)
(java-osgi-util-promise, java-osgi-service-metatype-annotations)
(java-osgi-service-repository, java-osgi-framework, java-osgi-service-log)
(java-osgi-service-jdbc, java-osgi-service-resolver, java-osgi-util-tracker)
(java-osgi-service-cm, java-osgi-service-packageadmin)[home-page]: Use HTTPS.

gnu: mpg123: Use HTTPS for home page.

* gnu/packages/mp3.scm (mpg123)[home-page]: Use HTTPS.