mastodon: 4.2.13 -> 4.3.0 #337545

Izorkin · 2024-08-26T20:12:52Z

Description of changes

Updata package to version 4.3.0.
Changelog: https://github.com/mastodon/mastodon/releases/tag/v4.3.0-beta.1

Things done

Add a 👍 reaction to pull requests you find important.

erictapen

Looks good so far. The first commit is missing a link to the changelog (please put that also in the PR description) and the two commits would need to be squashed, as it wouldn't make sense to apply/revert them individually, afait.

pkgs/top-level/all-packages.nix

pkgs/servers/mastodon/update.sh

erictapen · 2024-08-26T21:34:52Z

Will close #277697

leo60228 · 2024-08-27T03:48:56Z

nixos/modules/services/web-apps/mastodon.nix

+          bin/rails db:encryption:init | grep --only-matching "ACTIVE_RECORD_ENCRYPTION_DETERMINISTIC_KEY=[^ ]\+" | sed 's/^ACTIVE_RECORD_ENCRYPTION_DETERMINISTIC_KEY=//' > /var/lib/mastodon/secrets/active-record-encryption-deterministic-key
+        fi
+
+        if ! test -f /var/lib/mastodon/secrets/active-record-encryption-key-derivation-salt; then
+          mkdir -p /var/lib/mastodon/secrets
+          bin/rails db:encryption:init | grep --only-matching "ACTIVE_RECORD_ENCRYPTION_KEY_DERIVATION_SALT=[^ ]\+" | sed 's/^ACTIVE_RECORD_ENCRYPTION_KEY_DERIVATION_SALT=//' > /var/lib/mastodon/secrets/active-record-encryption-key-derivation-salt
+        fi
+
+        if ! test -f /var/lib/mastodon/secrets/active-record-encryption-primary-key; then
+          mkdir -p /var/lib/mastodon/secrets
+          bin/rails db:encryption:init | grep --only-matching "ACTIVE_RECORD_ENCRYPTION_PRIMARY_KEY=[^ ]\+" | sed 's/^ACTIVE_RECORD_ENCRYPTION_PRIMARY_KEY=//' > /var/lib/mastodon/secrets/active-record-encryption-deterministic-key


Is it safe to run this as three separate invocations?

Yeah, the keys are independent of each other.
I haven't finished this piece of code yet.

Izorkin · 2024-08-27T08:45:44Z

The precompiled bootsnap code requires write access, me need to do it differently:

strace[2341]: openat(AT_FDCWD, "/nix/store/36hx44ri59l0cz2p9mwz76fnjm24cnxg-mastodon-4.3.0-beta.1/.precompile/bootsnap/compile-cache-iseq/2c/e8c63056794755.tmp.4RYrhX", O_RDWR|O_CREAT|O_EXCL, 0600) = -1 EROFS (Read-only file system)
strace[2341]: mkdir("/nix", 0775)                     = -1 EEXIST (File exists)
strace[2341]: mkdir("/nix/store", 0775)               = -1 EEXIST (File exists)
strace[2341]: mkdir("/nix/store/36hx44ri59l0cz2p9mwz76fnjm24cnxg-mastodon-4.3.0-beta.1", 0775) = -1 EEXIST (File exists)
strace[2341]: mkdir("/nix/store/36hx44ri59l0cz2p9mwz76fnjm24cnxg-mastodon-4.3.0-beta.1/.precompile", 0775) = -1 EEXIST (File exists)
strace[2341]: mkdir("/nix/store/36hx44ri59l0cz2p9mwz76fnjm24cnxg-mastodon-4.3.0-beta.1/.precompile/bootsnap", 0775) = -1 EEXIST (File exists)
strace[2341]: mkdir("/nix/store/36hx44ri59l0cz2p9mwz76fnjm24cnxg-mastodon-4.3.0-beta.1/.precompile/bootsnap/compile-cache-iseq", 0775) = -1 EEXIST (File exists)
strace[2341]: mkdir("/nix/store/36hx44ri59l0cz2p9mwz76fnjm24cnxg-mastodon-4.3.0-beta.1/.precompile/bootsnap/compile-cache-iseq/2c", 0775) = -1 EEXIST (File exists)
strace[2341]: clock_gettime(CLOCK_MONOTONIC, {tv_sec=478, tv_nsec=979962067}) = 0
strace[2341]: openat(AT_FDCWD, "/nix/store/36hx44ri59l0cz2p9mwz76fnjm24cnxg-mastodon-4.3.0-beta.1/.precompile/bootsnap/compile-cache-iseq/2c/e8c63056794755.tmp.0rUwZL", O_RDWR|O_CREAT|O_EXCL, 0600) = -1 EROFS (Read-only file system)
strace[2341]: clock_gettime(CLOCK_MONOTONIC, {tv_sec=478, tv_nsec=980354575}) = 0
strace[2341]: openat(AT_FDCWD, "/nix/store/36hx44ri59l0cz2p9mwz76fnjm24cnxg-mastodon-4.3.0-beta.1/.precompile/bootsnap/compile-cache-iseq/2c/e8c63056794755.tmp.ouEjmu", O_RDWR|O_CREAT|O_EXCL, 0600) = -1 EROFS (Read-only file system)
strace[2341]: close(5)                                = 0
strace[2341]: openat(AT_FDCWD, "/nix/store/frq2xac60pwdcyy7av1qlvllpcn271j6-ruby3.2-propshaft-0.9.1/lib/ruby/gems/3.2.0/gems/propshaft-0.9.1/lib/propshaft/compilers.rb", O_RDONLY|O_NONBLOCK|O_CLOEXEC) = 5
strace[2341]: fstat(5, {st_mode=S_IFREG|0444, st_size=1010, ...}) = 0
strace[2341]: close(5)

erictapen · 2024-08-27T09:51:13Z

How about we set BOOTSNAP_READONLY then? Or just disable bootsnap alltogether using BOOTSNAP_DISABLE.

Izorkin · 2024-08-27T10:02:57Z

How about we set BOOTSNAP_READONLY then? Or just disable bootsnap alltogether using BOOTSNAP_DISABLE.

Moved to /var/cache/mastodon/precompile

Izorkin · 2024-08-30T18:05:34Z

Everything seems to be working :)

Izorkin · 2024-09-30T16:39:57Z

Update to 4.3.0-rc.1.

SuperSandro2000

Probably a bigger topic for another PR but can't we put all the secrets into one file read by EnviromentFile?

pkgs/servers/mastodon/default.nix

Izorkin · 2024-10-08T20:38:54Z

Probably a bigger topic for another PR but can't we put all the secrets into one file read by EnviromentFile?

I think the current option is easier to handle with scripts.

pkgs/servers/mastodon/update.sh

nixos/modules/services/web-apps/mastodon.nix

pkgs/servers/mastodon/yarn.nix

SuperSandro2000 · 2024-10-08T23:04:01Z

pkgs/servers/mastodon/yarn.nix

+  hash,
+}:
+stdenvNoCC.mkDerivation {
+  name = "yarn-deps";


Suggested change

name = "yarn-deps";

pname = "yarn-deps";

inherit version;

error:

… while calling the 'derivationStrict' builtin at <nix/derivation-internal.nix>:34:12: 33| 34| strict = derivationStrict drvAttrs; | ^ 35| … while evaluating derivation 'mastodon-4.3.0' whose name attribute is located at /home/lafiel/works/src-nix/nixpkgs/pkgs/stdenv/generic/make-derivation.nix:336:7 … while evaluating attribute 'mastodonModules' of derivation 'mastodon-4.3.0' at /home/user/works/src-nix/nixpkgs/pkgs/servers/mastodon/default.nix:26:3: 25| 26| mastodonModules = stdenv.mkDerivation { | ^ 27| pname = "${pname}-modules"; (stack trace truncated; use '--show-trace' to show the full, detailed trace) error: undefined variable 'version' at /home/user/works/src-nix/nixpkgs/pkgs/servers/mastodon/yarn.nix:10:11: 9| pname = "yarn-deps"; 10| inherit version; | ^ 11| nativeBuildInputs = [

We also need to add it to the inputs here and inherit it.

SuperSandro2000

Otherwise I deployed this to my instance without any problems other than the yarn-berry issue mentioned above.

Changelog: https://github.com/mastodon/mastodon/releases/tag/v4.3.0

roberth · 2024-10-12T14:50:57Z

Tested by 2 maintainers and CI.
Any reason not to merge?

github-actions bot added 6.topic: nixos Issues or PRs affecting NixOS modules, or package usability issues specific to NixOS 8.has: module (update) This PR changes an existing module in `nixos/` labels Aug 26, 2024

Izorkin requested a review from erictapen August 26, 2024 20:13

Izorkin force-pushed the update-mastodon branch 2 times, most recently from 3ac888c to b227da2 Compare August 26, 2024 20:37

erictapen reviewed Aug 26, 2024

View reviewed changes

pkgs/top-level/all-packages.nix Outdated Show resolved Hide resolved

pkgs/servers/mastodon/update.sh Outdated Show resolved Hide resolved

ofborg bot requested review from erictapen and ghuntley August 26, 2024 20:53

ofborg bot added 11.by: package-maintainer This PR was created by the maintainer of the package it changes 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild 10.rebuild-linux: 1-10 labels Aug 26, 2024

Izorkin force-pushed the update-mastodon branch from b227da2 to 1e1b0e9 Compare August 26, 2024 21:00

leo60228 reviewed Aug 27, 2024

View reviewed changes

Izorkin force-pushed the update-mastodon branch 2 times, most recently from ccf4b4e to 240d739 Compare August 30, 2024 17:20

Izorkin force-pushed the update-mastodon branch from 240d739 to 1ecbd26 Compare September 19, 2024 12:05

Izorkin force-pushed the update-mastodon branch from b852c65 to 237b0f8 Compare September 30, 2024 16:39

Izorkin changed the title ~~mastodon: 4.2.12 -> 4.3.0~~ mastodon: 4.2.13 -> 4.3.0 Sep 30, 2024

Izorkin force-pushed the update-mastodon branch from 237b0f8 to 17e2ccb Compare October 7, 2024 09:45