Balasankar 'Balu' C
935b1e012b
Merge branch 'sh-use-gitlab-ruby-shadow' into 'master'
...
Use gitlab-ruby-shadow gem instead of shadow source
See merge request https://gitlab.com/gitlab-org/omnibus-gitlab/-/merge_requests/7418
Merged-by: Balasankar 'Balu' C <balasankar@gitlab.com>
Approved-by: Clemens Beck <cbeck@gitlab.com>
Approved-by: Balasankar 'Balu' C <balasankar@gitlab.com>
Reviewed-by: Clemens Beck <cbeck@gitlab.com>
Co-authored-by: Stan Hu <stanhu@gmail.com>
2024-02-14 04:29:11 +00:00
Stan Hu
2fc9d058a7
Use gitlab-ruby-shadow gem instead of shadow source
...
Both the upstream project (https://github.com/apalmblad/ruby-shadow )
and the Chef fork
(https://github.com/chef/ruby-shadow/tree/lcg/ruby-3.0 ) have gone
unmaintained.
We've added CI, fixed Ruby 3.2 issues, and published our own gem in
https://gitlab.com/gitlab-org/ruby/gems/ruby-shadow/-/merge_requests/1 ,
so let's use that now.
Changelog: changed
2024-02-08 08:08:52 -08:00
Ryan Egesdahl
a63bb94ea0
Update Spamcheck to v0.3.2
...
This commit updates Spamcheck to version v0.3.2, which has been modified
to be compatible with Go 1.21.
Changelog: changed
2024-02-08 04:36:44 +00:00
Stan Hu
aa5ed1f8c8
Add ruby-shadow to build
...
1. In Chef 18.x, https://github.com/chef/chef/pull/11659 modified the
Chef user provider to require the `ruby-shadow` gem anytime the
NGINX user exists. This was introduced in order to update
`/etc/shadow` with an expiration date, if present.
2. Previously it was not required because we don't set a password for
the user:
https://github.com/chef/chef/blob/v17.10.15/lib/chef/provider/user.rb#L69
3. The Chef Omnibus package ships with `ruby-shadow`, as it is listed
in the `Gemfile`:
3c35bd0e1d/Gemfile (L43)
4. This gem isn't listed in the `.gemspec`, so Ruby doesn't include it
as an explicit requirement. However, Omnibus GitLab now needs this.
Relates to https://gitlab.com/gitlab-com/gl-infra/production/-/issues/17417
2024-01-25 10:29:05 -08:00
Stan Hu
607ec5f99f
Remove libre2 from build
...
With the update to re2 gem v2.0 in
https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131273 , we no
longer need to build and ship libre2. The gem handles the building and
compiling of all dependencies (libre2 and abseil-cpp), and it also
ships with precompiled gems.
This unblocks upgrades to the `grpc` gem since
https://github.com/grpc/grpc/issues/33615 no longer applies.
Changelog: changed
2023-09-11 20:02:31 -07:00
Hossein Pursultani
153fedec52
Drop Grafana and related code from the package
...
Software configuration and related code and documentation are removed
from the package.
Closes https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/8092
Changelog: removed
2023-08-01 20:48:58 +00:00
Stan Hu
54708e89be
Build PgBouncer from Git source
...
This makes it possible to automate the dependencies updates since we
don't have to update a checksum. Previously the release source tarball
was downloaded.
This also adds some redundancy if the GitHub binary can't be
downloaded since we now have mirrors for this repository.
This came out of
https://gitlab.com/gitlab-org/omnibus-gitlab/-/merge_requests/6933 .
Changelog: changed
2023-06-15 07:44:58 -07:00
Byron Boots
6b52d7c619
Remove gitlab-workhorse from custom_source.yml file for Omnibus builds
2023-03-21 21:09:43 +00:00
Balasankar 'Balu' C
d1f697ebdc
Bump ncurses to 6.3-20220416 to patch against CVE-2022-2945
...
Merge branch 'security-ncurses-CVE-2022-2945' into 'master'
See merge request gitlab-org/security/omnibus-gitlab!265
Changelog: security
2022-11-23 23:50:05 +00:00
Jenny Kim
be749da790
Merge branch 'security-grafana-patch' into 'master'
...
Apply Grafana CVE-2022-3110 patch
See merge request https://gitlab.com/gitlab-org/security/omnibus-gitlab/-/merge_requests/233
Merged-by: Jenny Kim <yjeankim@gitlab.com>
Approved-by: Robert Marshall <rmarshall@gitlab.com>
Approved-by: Kevin Morrison <kmorrison@gitlab.com>
Co-authored-by: Hossein Pursultani <hpursultani@gitlab.com>
Co-authored-by: Robert Marshall <rmarshall@gitlab.com>
Co-authored-by: DJ Mountney <dj@gitlab.com>
2022-09-27 15:40:14 +00:00
Hossein Pursultani
01e83fca75
Apply Grafana CVE-2022-3110 patch
...
Merge branch 'security-grafana-patch' into 'master'
See merge request gitlab-org/security/omnibus-gitlab!233
Changelog: security
2022-09-27 15:40:14 +00:00
Alessio Caiazza
5086b12249
Move KAS mirror on DEV to the proper namespace
...
In order to properly build on CNG with all the optimizations, projects
should have the same namespace on canonical and dev, with the only
distinction of gitlab-org that should be gitlab on dev.
This commit will reflect the above change also on omnibus.
Related to https://gitlab.com/gitlab-org/cluster-integration/gitlab-agent/-/issues/300
2022-09-22 08:52:35 -04:00
Balasankar 'Balu' C
98ae82dce9
Add security mirrors of GitLab projects
...
Update custom sources file with the security mirror repository
address for several projects.
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
2022-07-22 04:08:56 +00:00
Balasankar "Balu" C
476122055d
Build libtensorflow_lite and use it in spamcheck build
...
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
2022-01-22 09:00:21 +05:30
Balasankar "Balu" C
ea23589a7e
Add spamcheck to the package
...
Changelog: added
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
2022-01-22 08:58:31 +05:30
Robert Marshall
23cef1f739
Build pcre2 from git repository
...
- Transition the PCRE2 builds to use a git repository instead of a
tarball from the unofficial mirror
Closes https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/6359
Related https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/6281
Changelog: changed
Signed-off-by: Robert Marshall <rmarshall@gitlab.com>
2021-08-25 21:58:05 -04:00
Robert Marshall
2ff0b06a1f
Use git repository for nginx source
...
- Build nginx from the git repository instead of a tarball
Changelog: changed
Closes https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/3882
Signed-off-by: Robert Marshall <rmarshall@gitlab.com>
2021-08-03 23:05:15 -04:00
DJ Mountney
a6264f0ce6
Nginx build with security headers module
2021-04-28 10:25:26 -07:00
Matt Kasa
5e84cf4338
Extract gitlab-kas into a separate cookbook
...
Relates to https://gitlab.com/gitlab-org/gitlab/-/issues/223060
2020-10-08 17:45:19 +00:00
Lin Jen-Shin
df49977829
Use Gitlab::Version to pick the right source
2020-08-11 18:50:26 +08:00
DJ Mountney
eb85d0f64c
Merge branch '5112-patroni-omnibus' into 'master'
...
Add Patroni to Omnibus
Closes #5112
See merge request gitlab-org/omnibus-gitlab!3984
2020-06-10 16:16:27 +00:00
Hossein Pursultani
5c1d80c20a
Add Patroni runtime
...
This also includes Psycopg2 which is required by both patroni service
and patronictl commands.
2020-06-10 16:16:27 +00:00
Lin Jen-Shin
243e513a61
Add SECURITY_SOURCES to provide security sources
2020-06-10 02:56:58 +08:00
DJ Mountney
ce0e216619
Add libtiff license as accepted
...
The libtiff license is BSD-3-clause compatible, but written with more
MIT style language choice.
2020-05-26 11:53:35 +00:00
DJ Mountney
a375712299
Switch to mirrored sources, and add changelog
2020-03-23 11:25:07 -07:00
DJ Mountney
b330973db5
Add ligjpeg-turbo
2020-03-20 10:42:05 -07:00
DJ Mountney
37ce8651d2
Update the openssl software with upstream changes
...
- Removes the need for makedepend
- I've removed the fips support, and changed the patch to match our
current version
2019-12-31 15:47:51 -08:00
Robert Marshall
a9d049dbb7
Convert Redis to build from git source
...
- Converts Redis to build from git source, no version change included in
this iteration.
[skip ci]
[ci skip]
Signed-off-by: Robert Marshall <rmarshall@gitlab.com>
2019-11-22 17:09:07 +00:00
Stan Hu
cb4fed4d7c
Build from Docker Distribution fork and update to v2.7.4-gitlab
...
v2.7.2-gitlab has the patch to enable MD5 checksums on top of v2.7.1.
This change is done for a number of reasons:
1. To prepare for future changes in the GitLab Container Registry
2. To get the version number right (e.g. v2.7.2-gitlab instead of
v2.7.1.m)
3. To make the build consistent with the one used by the cloud-native
container.
v2.7.3-gitlab updates the storage driver to use the latest Google SDK:
https://gitlab.com/gitlab-org/container-registry/merge_requests/2
v2.7.4-gitlab fixes an issues with v2.7.3-gitlab with non-default
Google credentials:
https://gitlab.com/gitlab-org/container-registry/merge_requests/7
This registry upgrade hopefully will fix 0-byte upload issues:
https://github.com/googleapis/google-cloud-go/issues/746
2019-10-20 23:07:59 -07:00
DJ Mountney
c74f15761b
Revert "Point to chef-sugar mirror location"
...
This reverts commit be5f683e35
, reversing
changes made to a82be75c42
.
The gem in rubygems has been restored, and the workaround is no longer
needed.
2019-09-20 16:07:09 -07:00
DJ Mountney
24bfe1a3eb
Point to chef-sugar mirror location
2019-09-19 09:54:44 -07:00
Adrien Kohlbecker
ce3ee71323
Update custome sources with repository rename
2019-09-16 16:04:09 +00:00
Balasankar "Balu" C
199c3914c3
Change URLs of gitlab-rails public mirrors to match new locations
...
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
2019-09-13 19:56:11 +05:30
Adrien Kohlbecker
17e746cd6f
Rename gitlab-monitor to gitlab-exporter
2019-09-12 15:11:12 +00:00
Balasankar "Balu" C
12953977ec
Use Ohai from custom fork
...
Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>
2019-06-24 22:41:44 +05:30
Ben Kochie
e1cfa00eb4
Remove Prometheus 1.x support
...
* Upgrade binary to Prometheus 2.10.0.
* Remove dual-version support.
* Force-upgrade storage to 2.x format.
* Cleanup 1.x Prometheus rules.
* Remove support for storage migration tool.
2019-06-05 11:08:00 +02:00
Ian Baum
a56be9466c
Move software built from git to omnibus-mirror builds
...
Remove some external dependencies in the package build process
2019-04-19 07:21:55 +00:00
Ben Kochie
b6fcd4d511
Add grafana-dashboards to auto-provisioning
...
Auto-provision official Grafana dashboards.
* Include the GitLab grafana-dashboards repo.
* Copy the dashboard json files into the auto-provisioning directory.
* Setup provisioning yaml config to add the dashboards.
2019-04-05 16:50:14 +02:00
Marin Jankovski
b9257446af
Change the prometheus-storage-migrator mirror to dev.gitlab.org
2019-02-11 10:37:21 +01:00
Kamil Trzciński
966007b1b5
Bundle Docker Distribution Pruner
2019-01-30 12:11:17 +01:00
Ben Kochie
2d285e8fe6
Add new module to custom sources.
2018-11-06 21:21:09 +01:00
Stan Hu
0ecf24f936
Add support for PgBouncer Exporter
2018-05-15 11:06:19 +00:00
Ben Kochie
8a1fd88b3f
Add Prometheus alertmanager
...
Add the Prometheus alertmanager.
* Configure email routing if configured.
2018-04-13 16:25:43 +02:00
Ian Baum
58f985af9b
Update chef-acme build to use omnibus-mirror
2018-02-08 14:37:48 -06:00
Ian Baum
8a6393663c
Use http for gitlab.com
2018-02-05 11:36:45 -06:00
Ian Baum
a957a091cb
Don't use dev for source for chef-acme
2018-02-05 11:36:45 -06:00
Ian Baum
d122f71264
Build chef-acme against my fork
2018-02-05 11:36:45 -06:00
Ian Baum
68b743fa04
Remove my personal mirror from custom_sources for chef-acme
...
Changes have been merged upstream. Use that repository for the build
2018-02-05 11:36:44 -06:00
Ian Baum
eff8625b95
Build chef-acme against my custom branch
2018-02-05 11:35:09 -06:00
Balasankar C
59c593ba72
Fix paths to omnibus-mirror group
2017-08-30 17:41:05 +05:30