gnu: Use HTTPS on 2f30.org.

* gnu/packages/suckless.scm (spoon, xbattmon, wificurse, skroll, sbm)
(prout, noice, fortify-headers, colors)[source, home-page]: Use HTTPS.
(human)[home-page]: Likewise.
* gnu/packages/version-control.scm (stagit)[source, home-page]: Likewise.

gnu: version-control: Use HTTPS where possible.

* gnu/packages/version-control.scm (git)[home-page]: Use HTTPS.
(cvs)[source, home-page]: Likewise.

gnu: git-crypt: Double-space Texinfo mark-up.

* gnu/packages/version-control.scm (git-crypt)[description]: Use two spaces
where one would suffice.

gnu: diffstat: Use @command mark-up.

* gnu/packages/version-control.scm (diffstat)[synopsis, description]:
Use @command.

gnu: diffstat: Update to 1.61.

* gnu/packages/version-control.scm (diffstat): Update to 1.61.
[source]: Add http://invisible-mirror.net mirror.

gnu: neon: Use @enumerate mark-up.

* gnu/packages/version-control.scm (neon)[description]: Use @enumerate.

gnu: neon: Update to 0.30.2.

* gnu/packages/version-control.scm (neon): Update to 0.30.2.

gnu: cgit: Update to 1.1.

* gnu/packages/version-control.scm (cgit): Update to 1.1.
(git@2.9): Rename to...
(git@2.10): ... this.  Update to 2.10.
(cgit)[inputs]: Replace git@2.9 with git@2.10.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

gnu: tmux: Update to 2.4.

* gnu/packages/tmux.scm (tmux): Update to 2.4.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

gnu: cargo: Simplify unpacking.

Fixes <http://bugs.gnu.org/26166>.

* gnu/packages/rust.scm (cargo)
[arguments]<:modules>: Add (srfi srfi-1).
[arguments]<:phases>: Adapt 'unpack-submodule-sources' phase to more clearly
seperate the tasks it does.  Add helper procedures 'unpack', 'touch',
'install-rust-library'.
[arguments]<:phases>: Rename 'set-cargo-home' to 'set-environment-up' and
make it use official cargo directories.
[arguments]<:phases>: Remove 'configure' phase.

gnu: icecat: Update to 52.0.2-gnu1; add fixes from ESR 52.1.

* gnu/packages/gnuzilla.scm (icecat): Update to 52.0.2-gnu1.
[source]: Remove all patches except "icecat-avoid-bundled-libraries.patch".
Add selected fixes from the upstream mozilla-esr52 repository, up to 52.1.
Remove "dom/devicestorage" in the snippet.
[inputs]: Remove gstreamer and gst-plugins-base.  Add ffmpeg and gtk+3.  Move
yasm to native-inputs.
[native-inputs]: Add autoconf-2.13 and yasm.
[arguments]: In configure-flags, remove the following switches which are no
longer accepted: --enable-{pango,svg,canvas,mathml,gstreamer=1.0} and
"--disable-gnomevfs".  Use "--enable-default-toolkit=cairo-gtk3" to switch to
Gtk+3.  Remove the 'remove-h264parse-from-blacklist' phase.  Adapt the
'arrange-to-link-libxul-with-libraries-it-might-dlopen' phase as needed.  In
the 'configure' phase, set the AUTOCONF environment variable.
(mozilla-patch): Update the URL pattern to fetch from the mozilla-esr52
repository.
* gnu/packages/patches/icecat-avoid-bundled-libraries.patch: Adapt to mozilla-esr52.
* gnu/packages/patches/icecat-binutils.patch: Remove file.
* gnu/packages/patches/icecat-bug-1299500-pt10.patch: New file.
* gnu/local.mk (dist_patch_DATA): Remove "icecat-binutils.patch".
Add "icecat-bug-1299500-pt10.patch".

gnu: Add autoconf@2.13.

* gnu/packages/autotools.scm (autoconf-2.13): New variable.

gnu: nss: Disable long b64 tests.

Suggested by Marius Bakke <mbakke@fastmail.com> in
<https://lists.gnu.org/archive/html/guix-devel/2017-04/msg00440.html>.

* gnu/packages/patches/nss-disable-long-b64-tests.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/gnuzilla.scm (nss)[source]: Add patch.

gnu: nss: Update to 3.30.2 [fixes CVE-2017-5461].

* gnu/packages/gnuzilla.scm (nss): Update to 3.30.2.

gnu: graphite2: Add fixes for CVE-2017-5436 and other bugs.

* gnu/packages/fontutils.scm (graphite2)[replacement]: New field.
(graphite2/fixed): New variable.
* gnu/packages/patches/graphite2-CVE-2017-5436.patch,
gnu/packages/patches/graphite2-check-code-point-limit.patch,
gnu/packages/patches/graphite2-fix-32-bit-wrap-arounds.patch,
gnu/packages/patches/graphite2-non-linear-classes-even-number.patch:
New files.
* gnu/local.mk (dist_patch_DATA): Add them.

gnu: hypre: Delete unused patches.

* gnu/packages/patches/hypre-doc-tables.patch,
gnu/packages/patches/hypre-ldflags.patch: Delete.
* gnu/local.mk (dist_patch_DATA): Remove them.

derivations: Avoid string-to-bytevector conversions.

On Guile 2.2.1, this yields a 5% speedup on:

  guix build libreoffice xmonad certbot -n --no-substitutes --no-build-hook

* guix/derivations.scm (derivation->string): Rename to...
(derivation->bytevector): ... this.  Use 'open-bytevector-output-port'
instead of 'call-with-output-string'.
(derivation-hash): Remove string-to-bytevector conversion before
'sha256' call.
(build-expression->derivation): Use 'add-data-to-store' and an
bytevector port instead of a string port for the expression.

gnu: ceph: Disable SSE3 instructions.

Some early 64-bit AMD processors do not support this instruction set.

* gnu/packages/patches/ceph-disable-cpu-optimizations.patch: Disable SSE3.

gnu: nss-certs: Update to 3.30.2.

* gnu/packages/certs.scm (nss-certs): Update to 3.30.2.

gnu: gst-plugins-base: Remove dead comment.

This is a followup to 1d8e7273578e95f6b5e4293ac34c4f6fe5d5c579.

* gnu/packages/gstreamer.scm (gst-plugins-base): Remove dead comment.