mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-11-24 07:53:19 +00:00
bfac961c8c
prometheus 2.40.x is out of support since 12/2022 therefore the update to 2.41.0
between those two releases security critical patches have been added both to
prometheus codebase and upstream dependecies, see:
* 2.40.6 / 2022-12-09
https://github.com/prometheus/prometheus/pull/11690
[SECURITY] Security upgrade from go and upstream dependencies that include
security fixes to the net/http and os packages. #11691
* 2.40.4 / 2022-11-29
https://github.com/advisories/GHSA-7rg2-cxvp-9p7p
https://github.com/advisories/GHSA-4v48-4q5m-8vx4
[SECURITY] Fix basic authentication bypass vulnerability
(CVE-2022-46146) GHSA-4v48-4q5m-8vx4
147 lines
4.8 KiB
Nix
147 lines
4.8 KiB
Nix
{ stdenv
|
|
, lib
|
|
, go
|
|
, pkgs
|
|
, buildGoModule
|
|
, fetchFromGitHub
|
|
, fetchurl
|
|
, nixosTests
|
|
, enableAWS ? true
|
|
, enableAzure ? true
|
|
, enableConsul ? true
|
|
, enableDigitalOcean ? true
|
|
, enableDNS ? true
|
|
, enableEureka ? true
|
|
, enableGCE ? true
|
|
, enableHetzner ? true
|
|
, enableIONOS ? true
|
|
, enableKubernetes ? true
|
|
, enableLinode ? true
|
|
, enableMarathon ? true
|
|
, enableMoby ? true
|
|
, enableNomad ? true
|
|
, enableOpenstack ? true
|
|
, enablePuppetDB ? true
|
|
, enableScaleway ? true
|
|
, enableTriton ? true
|
|
, enableUyuni ? true
|
|
, enableVultr ? true
|
|
, enableXDS ? true
|
|
, enableZookeeper ? true
|
|
}:
|
|
|
|
let
|
|
version = "2.41.0";
|
|
webUiStatic = fetchurl {
|
|
url = "https://github.com/prometheus/prometheus/releases/download/v${version}/prometheus-web-ui-${version}.tar.gz";
|
|
sha256 = "sha256-0EFeAuhQUu+4TCoHsWHTbWTGJLjS37POacP1K42sGqI=";
|
|
};
|
|
in
|
|
buildGoModule rec {
|
|
pname = "prometheus";
|
|
inherit version;
|
|
|
|
src = fetchFromGitHub {
|
|
rev = "v${version}";
|
|
owner = "prometheus";
|
|
repo = "prometheus";
|
|
sha256 = "sha256-J3KDN02m639bUGrnUrqeCLferrqIHaJ2VEBjIqfm/GY=";
|
|
};
|
|
|
|
vendorSha256 = "sha256-4Of1euBp5Lka6Bb2UJYUQuRa7t2/B1HaXCWSOqCASYw=";
|
|
|
|
excludedPackages = [ "documentation/prometheus-mixin" ];
|
|
|
|
postPatch = ''
|
|
tar -C web/ui -xzf ${webUiStatic}
|
|
|
|
patchShebangs scripts
|
|
|
|
# Enable only select service discovery to shrink binaries.
|
|
(
|
|
true # prevent bash syntax error when all plugins are disabled
|
|
${lib.optionalString (enableAWS)
|
|
"echo - github.com/prometheus/prometheus/discovery/aws"}
|
|
${lib.optionalString (enableAzure)
|
|
"echo - github.com/prometheus/prometheus/discovery/azure"}
|
|
${lib.optionalString (enableConsul)
|
|
"echo - github.com/prometheus/prometheus/discovery/consul"}
|
|
${lib.optionalString (enableDigitalOcean)
|
|
"echo - github.com/prometheus/prometheus/discovery/digitalocean"}
|
|
${lib.optionalString (enableDNS)
|
|
"echo - github.com/prometheus/prometheus/discovery/dns"}
|
|
${lib.optionalString (enableEureka)
|
|
"echo - github.com/prometheus/prometheus/discovery/eureka"}
|
|
${lib.optionalString (enableGCE)
|
|
"echo - github.com/prometheus/prometheus/discovery/gce"}
|
|
${lib.optionalString (enableHetzner)
|
|
"echo - github.com/prometheus/prometheus/discovery/hetzner"}
|
|
${lib.optionalString (enableIONOS)
|
|
"echo - github.com/prometheus/prometheus/discovery/ionos"}
|
|
${lib.optionalString (enableKubernetes)
|
|
"echo - github.com/prometheus/prometheus/discovery/kubernetes"}
|
|
${lib.optionalString (enableLinode)
|
|
"echo - github.com/prometheus/prometheus/discovery/linode"}
|
|
${lib.optionalString (enableMarathon)
|
|
"echo - github.com/prometheus/prometheus/discovery/marathon"}
|
|
${lib.optionalString (enableMoby)
|
|
"echo - github.com/prometheus/prometheus/discovery/moby"}
|
|
${lib.optionalString (enableNomad)
|
|
"echo - github.com/prometheus/prometheus/discovery/nomad"}
|
|
${lib.optionalString (enableOpenstack)
|
|
"echo - github.com/prometheus/prometheus/discovery/openstack"}
|
|
${lib.optionalString (enablePuppetDB)
|
|
"echo - github.com/prometheus/prometheus/discovery/puppetdb"}
|
|
${lib.optionalString (enableScaleway)
|
|
"echo - github.com/prometheus/prometheus/discovery/scaleway"}
|
|
${lib.optionalString (enableTriton)
|
|
"echo - github.com/prometheus/prometheus/discovery/triton"}
|
|
${lib.optionalString (enableUyuni)
|
|
"echo - github.com/prometheus/prometheus/discovery/uyuni"}
|
|
${lib.optionalString (enableVultr)
|
|
"echo - github.com/prometheus/prometheus/discovery/vultr"}
|
|
${lib.optionalString (enableXDS)
|
|
"echo - github.com/prometheus/prometheus/discovery/xds"}
|
|
${lib.optionalString (enableZookeeper)
|
|
"echo - github.com/prometheus/prometheus/discovery/zookeeper"}
|
|
) > plugins.yml
|
|
'';
|
|
|
|
preBuild = ''
|
|
if [[ -d vendor ]]; then GOARCH= make -o assets assets-compress plugins; fi
|
|
'';
|
|
|
|
tags = [ "builtinassets" ];
|
|
|
|
ldflags =
|
|
let
|
|
t = "github.com/prometheus/common/version";
|
|
in
|
|
[
|
|
"-X ${t}.Version=${version}"
|
|
"-X ${t}.Revision=unknown"
|
|
"-X ${t}.Branch=unknown"
|
|
"-X ${t}.BuildUser=nix@nixpkgs"
|
|
"-X ${t}.BuildDate=unknown"
|
|
"-X ${t}.GoVersion=${lib.getVersion go}"
|
|
];
|
|
|
|
preInstall = ''
|
|
mkdir -p "$out/share/doc/prometheus" "$out/etc/prometheus"
|
|
cp -a $src/documentation/* $out/share/doc/prometheus
|
|
cp -a $src/console_libraries $src/consoles $out/etc/prometheus
|
|
'';
|
|
|
|
doCheck = !stdenv.isDarwin; # https://hydra.nixos.org/build/130673870/nixlog/1
|
|
|
|
passthru.tests = { inherit (nixosTests) prometheus; };
|
|
|
|
meta = with lib; {
|
|
description = "Service monitoring system and time series database";
|
|
homepage = "https://prometheus.io";
|
|
license = licenses.asl20;
|
|
maintainers = with maintainers; [ benley fpletz globin willibutz Frostman ];
|
|
platforms = platforms.unix;
|
|
};
|
|
}
|