2017-07-05 21:53:31 +00:00
|
|
|
{ pkgs, stdenv, lib, bundler, fetchurl, fetchFromGitHub, bundlerEnv, libiconv
|
2017-09-03 13:38:28 +00:00
|
|
|
, ruby, tzdata, git, procps, dpkg, nettools
|
2015-01-25 21:01:48 +00:00
|
|
|
}:
|
2014-10-25 16:22:49 +00:00
|
|
|
|
2016-01-30 13:47:04 +00:00
|
|
|
/* When updating the Gemfile add `gem "activerecord-nulldb-adapter"`
|
|
|
|
to allow building the assets without a database */
|
|
|
|
|
2014-10-25 16:22:49 +00:00
|
|
|
let
|
2017-09-03 13:38:28 +00:00
|
|
|
rubyEnv = bundlerEnv {
|
|
|
|
name = "gitlab-env-${version}";
|
2015-01-25 21:01:48 +00:00
|
|
|
inherit ruby;
|
2017-01-17 23:26:30 +00:00
|
|
|
gemdir = ./.;
|
2015-01-25 21:01:48 +00:00
|
|
|
meta = with lib; {
|
|
|
|
homepage = http://www.gitlab.com/;
|
|
|
|
platforms = platforms.linux;
|
2017-09-02 21:23:09 +00:00
|
|
|
maintainers = with maintainers; [ fpletz globin ];
|
2015-01-25 21:01:48 +00:00
|
|
|
license = licenses.mit;
|
|
|
|
};
|
|
|
|
};
|
2014-10-25 16:22:49 +00:00
|
|
|
|
2018-03-14 13:14:03 +00:00
|
|
|
version = "10.5.4";
|
2017-09-03 13:38:28 +00:00
|
|
|
|
|
|
|
gitlabDeb = fetchurl {
|
|
|
|
url = "https://packages.gitlab.com/gitlab/gitlab-ce/packages/debian/jessie/gitlab-ce_${version}-ce.0_amd64.deb/download";
|
2018-03-14 13:14:03 +00:00
|
|
|
sha256 = "1fsz2rdfcb1a2a2jwl8009r8ldi1rg8rj07751lgwy52jdp1ihka";
|
2017-09-03 13:38:28 +00:00
|
|
|
};
|
2017-03-02 03:18:19 +00:00
|
|
|
|
2015-01-25 21:01:48 +00:00
|
|
|
in
|
2014-10-25 16:22:49 +00:00
|
|
|
|
2015-01-25 21:01:48 +00:00
|
|
|
stdenv.mkDerivation rec {
|
|
|
|
name = "gitlab-${version}";
|
2016-01-30 13:47:04 +00:00
|
|
|
|
|
|
|
src = fetchFromGitHub {
|
|
|
|
owner = "gitlabhq";
|
|
|
|
repo = "gitlabhq";
|
|
|
|
rev = "v${version}";
|
2018-03-14 13:14:03 +00:00
|
|
|
sha256 = "1glvqzbspaw88nwmgpxvkz52a4pz3wp3h5xs1f9kc32k2vh384nz";
|
2015-10-21 17:48:56 +00:00
|
|
|
};
|
|
|
|
|
2018-01-07 03:59:27 +00:00
|
|
|
buildInputs = [
|
|
|
|
rubyEnv ruby bundler tzdata git procps dpkg nettools
|
|
|
|
];
|
|
|
|
|
2014-10-25 16:22:49 +00:00
|
|
|
patches = [
|
|
|
|
./remove-hardcoded-locations.patch
|
2016-01-30 13:47:04 +00:00
|
|
|
./nulladapter.patch
|
2017-09-03 13:38:28 +00:00
|
|
|
./fix-36783.patch
|
2014-10-25 16:22:49 +00:00
|
|
|
];
|
2016-01-30 13:47:04 +00:00
|
|
|
|
2014-10-25 16:22:49 +00:00
|
|
|
postPatch = ''
|
2015-01-25 21:01:48 +00:00
|
|
|
# For reasons I don't understand "bundle exec" ignores the
|
|
|
|
# RAILS_ENV causing tests to be executed that fail because we're
|
|
|
|
# not installing development and test gems above. Deleting the
|
|
|
|
# tests works though.:
|
|
|
|
rm lib/tasks/test.rake
|
2014-10-25 16:22:49 +00:00
|
|
|
|
2015-10-21 17:48:56 +00:00
|
|
|
rm config/initializers/gitlab_shell_secret_token.rb
|
|
|
|
|
|
|
|
substituteInPlace app/controllers/admin/background_jobs_controller.rb \
|
|
|
|
--replace "ps -U" "${procps}/bin/ps -U"
|
2014-10-25 16:22:49 +00:00
|
|
|
|
|
|
|
# required for some gems:
|
|
|
|
cat > config/database.yml <<EOF
|
|
|
|
production:
|
2016-01-30 13:47:04 +00:00
|
|
|
adapter: <%= ENV["GITLAB_DATABASE_ADAPTER"] || sqlite %>
|
2014-10-25 16:22:49 +00:00
|
|
|
database: gitlab
|
|
|
|
host: <%= ENV["GITLAB_DATABASE_HOST"] || "127.0.0.1" %>
|
|
|
|
password: <%= ENV["GITLAB_DATABASE_PASSWORD"] || "blerg" %>
|
|
|
|
username: gitlab
|
|
|
|
encoding: utf8
|
|
|
|
EOF
|
2015-01-25 21:01:48 +00:00
|
|
|
'';
|
2016-01-30 13:47:04 +00:00
|
|
|
|
2015-01-25 21:01:48 +00:00
|
|
|
buildPhase = ''
|
2016-01-30 13:47:04 +00:00
|
|
|
mv config/gitlab.yml.example config/gitlab.yml
|
2017-03-02 03:18:19 +00:00
|
|
|
|
2018-01-07 03:59:27 +00:00
|
|
|
# work around unpacking deb containing binary with suid bit
|
|
|
|
ar p ${gitlabDeb} data.tar.gz | gunzip > gitlab-deb-data.tar
|
|
|
|
tar -f gitlab-deb-data.tar --delete ./opt/gitlab/embedded/bin/ksu
|
|
|
|
tar -xf gitlab-deb-data.tar
|
|
|
|
|
2017-09-03 13:38:28 +00:00
|
|
|
mv -v opt/gitlab/embedded/service/gitlab-rails/public/assets public
|
|
|
|
rm -rf opt
|
2017-03-02 03:18:19 +00:00
|
|
|
|
2016-01-30 13:47:04 +00:00
|
|
|
mv config/gitlab.yml config/gitlab.yml.example
|
2017-09-03 13:38:28 +00:00
|
|
|
rm -f config/secrets.yml
|
2016-01-30 13:47:04 +00:00
|
|
|
mv config config.dist
|
2014-10-25 16:22:49 +00:00
|
|
|
'';
|
2016-01-30 13:47:04 +00:00
|
|
|
|
2015-01-25 21:01:48 +00:00
|
|
|
installPhase = ''
|
2017-10-14 20:58:02 +00:00
|
|
|
rm -r tmp
|
2015-01-25 21:01:48 +00:00
|
|
|
mkdir -p $out/share
|
|
|
|
cp -r . $out/share/gitlab
|
2017-09-03 13:38:28 +00:00
|
|
|
rm -rf $out/share/gitlab/log
|
|
|
|
ln -sf /run/gitlab/log $out/share/gitlab/log
|
2016-01-30 13:47:04 +00:00
|
|
|
ln -sf /run/gitlab/uploads $out/share/gitlab/public/uploads
|
|
|
|
ln -sf /run/gitlab/config $out/share/gitlab/config
|
2017-10-14 20:58:02 +00:00
|
|
|
ln -sf /run/gitlab/tmp $out/share/gitlab/tmp
|
2017-03-21 11:52:39 +00:00
|
|
|
|
|
|
|
# rake tasks to mitigate CVE-2017-0882
|
|
|
|
# see https://about.gitlab.com/2017/03/20/gitlab-8-dot-17-dot-4-security-release/
|
|
|
|
cp ${./reset_token.rake} $out/share/gitlab/lib/tasks/reset_token.rake
|
2015-01-25 21:01:48 +00:00
|
|
|
'';
|
2016-01-30 13:47:04 +00:00
|
|
|
|
2015-01-25 21:01:48 +00:00
|
|
|
passthru = {
|
2017-09-03 13:38:28 +00:00
|
|
|
inherit rubyEnv;
|
2015-01-25 21:01:48 +00:00
|
|
|
inherit ruby;
|
2014-10-25 16:22:49 +00:00
|
|
|
};
|
|
|
|
}
|