gitlab
/
omnibus-gitlab
mirror of https://gitlab.com/gitlab-org/omnibus-gitlab.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
17,966 Commits 1,205 Branches 4,516 Tags 56 MiB
Commit Graph

63 Commits

Author SHA1 Message Date
Balasankar 'Balu' C 935b1e012b Merge branch 'sh-use-gitlab-ruby-shadow' into 'master' 
Use gitlab-ruby-shadow gem instead of shadow source

See merge request https://gitlab.com/gitlab-org/omnibus-gitlab/-/merge_requests/7418

Merged-by: Balasankar 'Balu' C <balasankar@gitlab.com>
Approved-by: Clemens Beck <cbeck@gitlab.com>
Approved-by: Balasankar 'Balu' C <balasankar@gitlab.com>
Reviewed-by: Clemens Beck <cbeck@gitlab.com>
Co-authored-by: Stan Hu <stanhu@gmail.com>
 2024-02-14 04:29:11 +00:00
Stan Hu 2fc9d058a7
Use gitlab-ruby-shadow gem instead of shadow source 
Both the upstream project (https://github.com/apalmblad/ruby-shadow)
and the Chef fork
(https://github.com/chef/ruby-shadow/tree/lcg/ruby-3.0) have gone
unmaintained.

We've added CI, fixed Ruby 3.2 issues, and published our own gem in
https://gitlab.com/gitlab-org/ruby/gems/ruby-shadow/-/merge_requests/1,
so let's use that now.

Changelog: changed
 2024-02-08 08:08:52 -08:00
Ryan Egesdahl a63bb94ea0 Update Spamcheck to v0.3.2 
This commit updates Spamcheck to version v0.3.2, which has been modified
to be compatible with Go 1.21.

Changelog: changed
 2024-02-08 04:36:44 +00:00
Stan Hu aa5ed1f8c8
Add ruby-shadow to build 
1. In Chef 18.x, https://github.com/chef/chef/pull/11659 modified the
    Chef user provider to require the `ruby-shadow` gem anytime the
    NGINX user exists. This was introduced in order to update
    `/etc/shadow` with an expiration date, if present.

2. Previously it was not required because we don't set a password for
    the user:
    https://github.com/chef/chef/blob/v17.10.15/lib/chef/provider/user.rb#L69

3. The Chef Omnibus package ships with `ruby-shadow`, as it is listed
   in the `Gemfile`:
   3c35bd0e1d/Gemfile (L43)

4. This gem isn't listed in the `.gemspec`, so Ruby doesn't include it
   as an explicit requirement. However, Omnibus GitLab now needs this.

Relates to https://gitlab.com/gitlab-com/gl-infra/production/-/issues/17417
 2024-01-25 10:29:05 -08:00
Stan Hu 607ec5f99f
Remove libre2 from build 
With the update to re2 gem v2.0 in
https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131273, we no
longer need to build and ship libre2. The gem handles the building and
compiling of all dependencies (libre2 and abseil-cpp), and it also
ships with precompiled gems.

This unblocks upgrades to the `grpc` gem since
https://github.com/grpc/grpc/issues/33615 no longer applies.

Changelog: changed
 2023-09-11 20:02:31 -07:00
Hossein Pursultani 153fedec52 Drop Grafana and related code from the package 
Software configuration and related code and documentation are removed
from the package.

Closes https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/8092

Changelog: removed
 2023-08-01 20:48:58 +00:00
Stan Hu 54708e89be
Build PgBouncer from Git source 
This makes it possible to automate the dependencies updates since we
don't have to update a checksum. Previously the release source tarball
was downloaded.

This also adds some redundancy if the GitHub binary can't be
downloaded since we now have mirrors for this repository.

This came out of
https://gitlab.com/gitlab-org/omnibus-gitlab/-/merge_requests/6933.

Changelog: changed
 2023-06-15 07:44:58 -07:00
Byron Boots 6b52d7c619 Remove gitlab-workhorse from custom_source.yml file for Omnibus builds 2023-03-21 21:09:43 +00:00
Balasankar 'Balu' C d1f697ebdc Bump ncurses to 6.3-20220416 to patch against CVE-2022-2945 
Merge branch 'security-ncurses-CVE-2022-2945' into 'master'

See merge request gitlab-org/security/omnibus-gitlab!265

Changelog: security
 2022-11-23 23:50:05 +00:00
Jenny Kim be749da790 Merge branch 'security-grafana-patch' into 'master' 
Apply Grafana CVE-2022-3110 patch

See merge request https://gitlab.com/gitlab-org/security/omnibus-gitlab/-/merge_requests/233

Merged-by: Jenny Kim <yjeankim@gitlab.com>
Approved-by: Robert Marshall <rmarshall@gitlab.com>
Approved-by: Kevin Morrison <kmorrison@gitlab.com>
Co-authored-by: Hossein Pursultani <hpursultani@gitlab.com>
Co-authored-by: Robert Marshall <rmarshall@gitlab.com>
Co-authored-by: DJ Mountney <dj@gitlab.com>
 2022-09-27 15:40:14 +00:00
Hossein Pursultani 01e83fca75 Apply Grafana CVE-2022-3110 patch 
Merge branch 'security-grafana-patch' into 'master'

See merge request gitlab-org/security/omnibus-gitlab!233

Changelog: security
 2022-09-27 15:40:14 +00:00
Alessio Caiazza 5086b12249
Move KAS mirror on DEV to the proper namespace 
In order to properly build on CNG with all the optimizations, projects
should have the same namespace on canonical and dev, with the only
distinction of gitlab-org that should be gitlab on dev.

This commit will reflect the above change also on omnibus.

Related to https://gitlab.com/gitlab-org/cluster-integration/gitlab-agent/-/issues/300
 2022-09-22 08:52:35 -04:00
Balasankar 'Balu' C 98ae82dce9 Add security mirrors of GitLab projects 
Update custom sources file with the security mirror repository
address for several projects.

Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
 2022-07-22 04:08:56 +00:00
Balasankar "Balu" C 476122055d
Build libtensorflow_lite and use it in spamcheck build 
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
 2022-01-22 09:00:21 +05:30
Balasankar "Balu" C ea23589a7e
Add spamcheck to the package 
Changelog: added
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
 2022-01-22 08:58:31 +05:30
Robert Marshall 23cef1f739 Build pcre2 from git repository 
- Transition the PCRE2 builds to use a git repository instead of a
  tarball from the unofficial mirror

Closes https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/6359

Related https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/6281

Changelog: changed

Signed-off-by: Robert Marshall <rmarshall@gitlab.com>
 2021-08-25 21:58:05 -04:00
Robert Marshall 2ff0b06a1f Use git repository for nginx source 
- Build nginx from the git repository instead of a tarball

Changelog: changed

Closes https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/3882

Signed-off-by: Robert Marshall <rmarshall@gitlab.com>
 2021-08-03 23:05:15 -04:00
DJ Mountney a6264f0ce6
Nginx build with security headers module 2021-04-28 10:25:26 -07:00
Matt Kasa 5e84cf4338 Extract gitlab-kas into a separate cookbook 
Relates to https://gitlab.com/gitlab-org/gitlab/-/issues/223060
 2020-10-08 17:45:19 +00:00
Lin Jen-Shin df49977829
Use Gitlab::Version to pick the right source 2020-08-11 18:50:26 +08:00
DJ Mountney eb85d0f64c Merge branch '5112-patroni-omnibus' into 'master' 
Add Patroni to Omnibus

Closes #5112

See merge request gitlab-org/omnibus-gitlab!3984
 2020-06-10 16:16:27 +00:00
Hossein Pursultani 5c1d80c20a Add Patroni runtime 
This also includes Psycopg2 which is required by both patroni service
and patronictl commands.
 2020-06-10 16:16:27 +00:00
Lin Jen-Shin 243e513a61
Add SECURITY_SOURCES to provide security sources 2020-06-10 02:56:58 +08:00
DJ Mountney ce0e216619 Add libtiff license as accepted 
The libtiff license is BSD-3-clause compatible, but written with more
MIT style language choice.
 2020-05-26 11:53:35 +00:00
DJ Mountney a375712299
Switch to mirrored sources, and add changelog 2020-03-23 11:25:07 -07:00
DJ Mountney b330973db5
Add ligjpeg-turbo 2020-03-20 10:42:05 -07:00
DJ Mountney 37ce8651d2
Update the openssl software with upstream changes 
- Removes the need for makedepend
- I've removed the fips support, and changed the patch to match our
current version
 2019-12-31 15:47:51 -08:00
Robert Marshall a9d049dbb7 Convert Redis to build from git source 
- Converts Redis to build from git source, no version change included in
  this iteration.

[skip ci]
[ci skip]

Signed-off-by: Robert Marshall <rmarshall@gitlab.com>
 2019-11-22 17:09:07 +00:00
Stan Hu cb4fed4d7c Build from Docker Distribution fork and update to v2.7.4-gitlab 
v2.7.2-gitlab has the patch to enable MD5 checksums on top of v2.7.1.
This change is done for a number of reasons:

1. To prepare for future changes in the GitLab Container Registry
2. To get the version number right (e.g. v2.7.2-gitlab instead of
v2.7.1.m)
3. To make the build consistent with the one used by the cloud-native
container.

v2.7.3-gitlab updates the storage driver to use the latest Google SDK:
https://gitlab.com/gitlab-org/container-registry/merge_requests/2

v2.7.4-gitlab fixes an issues with v2.7.3-gitlab with non-default
Google credentials:
https://gitlab.com/gitlab-org/container-registry/merge_requests/7

This registry upgrade hopefully will fix 0-byte upload issues:
https://github.com/googleapis/google-cloud-go/issues/746
 2019-10-20 23:07:59 -07:00
DJ Mountney c74f15761b
Revert "Point to chef-sugar mirror location" 
This reverts commit be5f683e35, reversing
changes made to a82be75c42.

The gem in rubygems has been restored, and the workaround is no longer
needed.
 2019-09-20 16:07:09 -07:00
DJ Mountney 24bfe1a3eb
Point to chef-sugar mirror location 2019-09-19 09:54:44 -07:00
Adrien Kohlbecker ce3ee71323 Update custome sources with repository rename 2019-09-16 16:04:09 +00:00
Balasankar "Balu" C 199c3914c3
Change URLs of gitlab-rails public mirrors to match new locations 
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
 2019-09-13 19:56:11 +05:30
Adrien Kohlbecker 17e746cd6f Rename gitlab-monitor to gitlab-exporter 2019-09-12 15:11:12 +00:00
Balasankar "Balu" C 12953977ec
Use Ohai from custom fork 
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
 2019-06-24 22:41:44 +05:30
Ben Kochie e1cfa00eb4
Remove Prometheus 1.x support 
* Upgrade binary to Prometheus 2.10.0.
* Remove dual-version support.
* Force-upgrade storage to 2.x format.
* Cleanup 1.x Prometheus rules.
* Remove support for storage migration tool.
 2019-06-05 11:08:00 +02:00
Ian Baum a56be9466c Move software built from git to omnibus-mirror builds 
Remove some external dependencies in the package build process
 2019-04-19 07:21:55 +00:00
Ben Kochie b6fcd4d511
Add grafana-dashboards to auto-provisioning 
Auto-provision official Grafana dashboards.
* Include the GitLab grafana-dashboards repo.
* Copy the dashboard json files into the auto-provisioning directory.
* Setup provisioning yaml config to add the dashboards.
 2019-04-05 16:50:14 +02:00
Marin Jankovski b9257446af
Change the prometheus-storage-migrator mirror to dev.gitlab.org 2019-02-11 10:37:21 +01:00
Kamil Trzciński 966007b1b5 Bundle Docker Distribution Pruner 2019-01-30 12:11:17 +01:00
Ben Kochie 2d285e8fe6
Add new module to custom sources. 2018-11-06 21:21:09 +01:00
Stan Hu 0ecf24f936 Add support for PgBouncer Exporter 2018-05-15 11:06:19 +00:00
Ben Kochie 8a1fd88b3f
Add Prometheus alertmanager 
Add the Prometheus alertmanager.
* Configure email routing if configured.
 2018-04-13 16:25:43 +02:00
Ian Baum 58f985af9b
Update chef-acme build to use omnibus-mirror 2018-02-08 14:37:48 -06:00
Ian Baum 8a6393663c
Use http for gitlab.com 2018-02-05 11:36:45 -06:00
Ian Baum a957a091cb
Don't use dev for source for chef-acme 2018-02-05 11:36:45 -06:00
Ian Baum d122f71264
Build chef-acme against my fork 2018-02-05 11:36:45 -06:00
Ian Baum 68b743fa04
Remove my personal mirror from custom_sources for chef-acme 
Changes have been merged upstream. Use that repository for the build
 2018-02-05 11:36:44 -06:00
Ian Baum eff8625b95
Build chef-acme against my custom branch 2018-02-05 11:35:09 -06:00
Balasankar C 59c593ba72
Fix paths to omnibus-mirror group 2017-08-30 17:41:05 +05:30