gitlab security release 12.10.7 is available in fasttrack
|Deletions are marked like this.||Additions are marked like this.|
|Line 16:||Line 16:|
|Gitlab 12.10.3 is available in [[FastTrack|unofficial fasttrack repo]] targeting buster as base distribution. (no open security issues).||Gitlab 12.10.7 is available in [[FastTrack|unofficial fasttrack repo]] targeting buster as base distribution. (no open security issues).|
|Line 65:||Line 65:|
|Gitlab 12.10.3 is available in experimental (no open security issues).||Gitlab 12.10.7 is available in experimental (no open security issues).|
Gitlab is a git front end with repository management, graphs, links, goodies, commands to run, and review capabilities similar in feel to a self-hosted ?GitHub.
Note 1: For a smooth upgrade experience, always stay on the latest major version of gitlab. For example, if latest version of gitlab is 12.0.0 and you are currently on 11.3.6, then update to 12.0.0 as soon as possible, certainly before the debian package is updated to 13.x. Ideally, you should update as soon as a new version with security updates is available.
Note 2: It is recommended to subscribe to changes in this wiki page or frequently check this page for updates. Alternatively, you can subscribe to https://tracker.debian.org/pkg/gitlab to get notified when new versions are uploaded.
Buster Fast Track (Recommended)
Gitlab 12.10.7 is available in unofficial fasttrack repo targeting buster as base distribution. (no open security issues).
Some packages are still needed from personal repo of gitlab maintainer because golang packages cannot be uploaded in fasttrack.debian.net because of a bug in dak setup. Please note the new URL of this repo if you are upgrading from an older version (people.debian.org/~praveen/gitlab is now people.debian.org/~praveen/gitaly and gpg key used for signing is also changed).
Add to /etc/apt/sources.list
deb https://fasttrack.debian.net/debian/ buster-fasttrack main contrib # For dependency packages not in testing only temporarily due to freeze, transitions or delayed by backports-new or NEW. deb https://fasttrack.debian.net/debian/ buster-backports main contrib deb https://deb.debian.org/debian buster-backports contrib main # To avoid some hours of delay between upload and availability in archive deb http://incoming.debian.org/debian-buildd buildd-buster-backports main # Eventually the packages in this repo will be moved to one of the previous two repos deb https://people.debian.org/~praveen/gitaly buster-backports main
# apt update
You may encounter the following error message:
The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 0B76920762A6B785
If so, those commands can help:
# wget https://people.debian.org/~praveen/gitaly/praveen.key.new.asc # wget http://fasttrack.debian.net/fasttrack-archive-key.asc # apt-key add praveen.key.new.asc # apt-key add fasttrack-archive-key.asc
# apt -t buster-backports install gitlab
Note: https://gitlab.debian.net is running on this version.
Unstable (be careful when updating packages)
Gitlab 12.6.8 is available in unstable (many security issues), and installation is broken. Please use experimental.
We try to keep the version in unstable in a good shape with the latest security updates, but some times dependency updates break GitLab.
Experimental - During freeze and transitions
Gitlab 12.10.7 is available in experimental (no open security issues).
Since gitlab-common moved to src:gitaly from src:gitlab, gitlab source package should now be in contrib. Since this binary package move includes a section change, it is in NEW. You can install new versions of gitlab from https://people.debian.org/~praveen/new/ until it clears NEW. gitlab 12.10.3 is available from this repo.
If you are using experimental for the first time, check DebianExperimental.
Some rails 6 transition is delaying upload to unstable.
Install some dependencies from experimental,
# apt install git # apt -t experimental install ruby-rails # apt install ruby-aws-sdk/experimental ruby-rails-i18n/experimental # apt install ruby-gitaly/experimental gitaly/experimental gitlab-common/experimental
Currently gitlab installation is broken due to a change in libsass. A work around is to downgrade libsass and libsass-dev to 3.6.1. Use http://snapshot.debian.org/package/libsass/3.6.1-1/
Now install gitlab from experimental,
# apt install gitlab/experimental
Gitlab on Stretch
This is moved to gitlab/stretch now.
Gitlab with apache2
Gitlab can use apache instead of nginx. To get a working configuration for your version the best thing to do is to follow the (gitlab-recipes repository) instructions.
Debug installation and configuration
Gitlab is composed of several parts. As always logs (/var/log/gitlab), debian specific documentation (/usr/share/doc/gitlab/) and (official) documentation provide lots of information.
gitlab-rake is convenience script to easily run rake commands provided by gitlab in debian environment.
# gitlab-rake gitlab:check # gitlab-rake gitlab:env:info
gitlab-rails-console is another convenience script to launch a rails console in gitlab debian environment.
Just make sure you don't have any gems installed from rubygems.org conflicting with debian packaged versions of the gems required by gitlab. /var/lib/gems/<ruby_version> (/var/lib/gems/2.5.0 or /var/lib/gems/2.7.0) should not have any gems.
You can reach the maintainers of the gitlab package via
Matrix at #debian-gitlab:poddery.com (join via browser)
IRC #debian-gitlab on OFTC network (join via browser)
Installing gitlab on an lxc container to test - See gitlab/lxc
Updating gitlab package to newer versions - See Teams/Ruby/Packaging/newUpstreamRailsApp
Backport/Fasttrack checklist - See gitlab/BackportChecklist
Dependencies Transitions checklist - See gitlab/DependenciesTransitions
Managing Components - See gitlab/ManagingComponents
Plan to move gitlab-common binary to gitlab-shell source package - See ?gitlab/gitlab-common-to-gitlab-shell-plan
Aim to get gitlab back in main by bullseye release by packaging all node dependencies. current status This is now an Outreachy project (from December 2019 to March 2020).
- Get autopkgtest working so we can detect problems when someone updates dependencies without coordinating with us.
Note: this section is about the installation of upstream-provided unofficial packages.
all actions are performed under the root user, in ~ unless otherwise noted.
navigate to https://about.gitlab.com/install/ and copy down the link to the Debian deb package.
as of this writing @ June 5, 2014
- dpkg -i gitlab*
i got errors 1st time around 2nd time around gitlab looked like it set everything and ran well.
To avoid errors, execute /opt/gitlab/embedded/bin/runsvdir-start for one minute, more or less (tested in 7.9.0 and 7.9.1 omnibus versions).
- gitlab-ctl reconfigure
to verify that things are running
- gitlab-ctl status
navigate to your servers IP address or domain name, and login as:
user: root password: 5iveL!fe