Page MenuHomePhabricator
Create Task
Maniphest T254310

Package XHGui as .deb
Closed, ResolvedPublic
Actions

Description

Right now, we deploy XHGui by cloning a Git repository (https://gerrit.wikimedia.org/g/operations/software/xhgui/+/refs/heads/wmf_deploy) containing it and all of its dependencies (https://wikitech.wikimedia.org/wiki/Performance/Runbook/XHGui_service#Upgrade_XHGui). Some of the dependencies are significantly out of date.

The current setup makes it very difficult to identify the source of changes. The WMF patch on top of the original contains a mix of third-party code, machine-generated changes by composer, and manual local edits.

Most of XHGui's dependencies are available as Debian packages in Buster. As a step towards finishing up T180761, I spent some time today packaging the ones that aren't, and if packaging of XHGui itself goes well tomorrow, I will upload all of them to performance/debs in Gerrit. (The Debian tooling around PHP composer isn't great, so this ended up being a slightly larger effort than anticipated.)

The net result should be a source tree with "clean" local patches that are easily reviewed (notably, my work to remove the MongoDB dependency), and an upstream branch identical to the official sources on Github. Deployment will be via dpkg or apt, with the ability to independently upgrade dependencies in the event of security vulnerabilities in them.

Details

SubjectRepoBranchLines +/-
xhgui: Pin php-twig at version 1.*operations/puppetproduction+12 -0
Package php-slim 2.6.3performance/debs/php-slimmaster+86 -0
Package php-perftools-xhgui-collectorperformance/debs/php-perftools-xhgui-collectormaster+76 -0
Package php-psr-http-server-middlewareperformance/debs/php-psr-http-server-middlewaremaster+71 -0
Package php-psr-http-server-handlerperformance/debs/php-psr-http-server-handlermaster+71 -0
Package php-slim-viewsperformance/debs/php-slim-viewsmaster+69 -0
Package php-pimpleperformance/debs/php-pimplemaster+77 -0
Package XHGuiperformance/debs/xhguimaster+153 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

dpifke created this task.Jun 3 2020, 1:15 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJun 3 2020, 1:15 AM
dpifke moved this task from Inbox, needs triage to Doing (old) on the Performance-Team board.Jun 3 2020, 1:17 AM
Krinkle subscribed.Jun 3 2020, 9:15 PM

When doing the WMF update patches, I start fresh each time. There is no inherited committed results from previous times (not intentionally at least).

Afaik what is comitted currently is the result of cloning upstream, ensuring no untracked files exist (incl old vendor), pinning platform deps to PHP 5.6 etc, and then letting Composer fetch the dependencies as best it can. I suspect the platform pinning for tungsten's PHP 5.6 is the main reason Composer ends up settling on fairly old package versions.

gerritbot added a comment.Jun 4 2020, 2:31 AM

Change 602203 had a related patch set uploaded (by Dave Pifke; owner: Dave Pifke):
[performance/debs/xhgui@master] [WIP] Package XHGui

https://gerrit.wikimedia.org/r/602203

gerritbot added a project: Patch-For-Review.Jun 4 2020, 2:31 AM
gerritbot added a comment.Jun 4 2020, 2:34 AM

Change 602205 had a related patch set uploaded (by Dave Pifke; owner: Dave Pifke):
[performance/debs/php-slim@master] [WIP] Package php-slim

https://gerrit.wikimedia.org/r/602205

gerritbot added a comment.Jun 4 2020, 2:37 AM

Change 602206 had a related patch set uploaded (by Dave Pifke; owner: Dave Pifke):
[performance/debs/php-psr-http-server-middleware@master] [WIP] Package php-psr-http-server-middleware

https://gerrit.wikimedia.org/r/602206

gerritbot added a comment.Jun 4 2020, 2:39 AM

Change 602207 had a related patch set uploaded (by Dave Pifke; owner: Dave Pifke):
[performance/debs/php-psr-http-server-handler@master] [WIP] Package php-psr-http-server-handler

https://gerrit.wikimedia.org/r/602207

gerritbot added a comment.Jun 4 2020, 10:16 PM

Change 602514 had a related patch set uploaded (by Dave Pifke; owner: Dave Pifke):
[performance/debs/php-slim-views@master] [WIP] Package php-slim-views

https://gerrit.wikimedia.org/r/602514

gerritbot added a comment.Jun 4 2020, 10:18 PM

Change 602516 had a related patch set uploaded (by Dave Pifke; owner: Dave Pifke):
[performance/debs/php-perftools-xhgui-collector@master] [WIP] Package php-perftools-xhgui-collector

https://gerrit.wikimedia.org/r/602516

dpifke added a comment.Jun 6 2020, 1:11 AM

The ancient versions are pinned in composer.json because the API has changed between versions. I spent some time today trying to update the code to support the latest version of each dependency, but this became a bit of a yak-shaving exercise, so I abandoned it in favor of pointing the packaging at the old releases. I'll revisit this once my other Xhgui changes (to fully support non-MongoDB backends) are merged.

Dzahn subscribed.Jul 1 2020, 5:47 PM
gerritbot added a comment.Jul 8 2020, 11:49 PM

Change 610426 had a related patch set uploaded (by Dave Pifke; owner: Dave Pifke):
[performance/debs/php-pimple@master] Package php-pimple

https://gerrit.wikimedia.org/r/610426

dpifke added a comment.Jul 9 2020, 12:44 AM

The seven Gerrit changes linked to this ticket have been verified to build correctly with pbuilder, and are ready for +2 and upload. All of the significant Lintian warnings have been fixed.

Following these instructions, I created a host (deployment-boron01.deployment-prep.eqiad.wmflabs) with role::package::builder. I then configured ~/.gbp.conf to use pbuilder, checked out each proposed package from Gerrit, and ran gbp buildpackage -uc -us.

There is one additional package from stretch, php-twig which needs to be backported. I did:

$ dget -x http://deb.debian.org/debian/pool/main/t/twig/twig_1.24.0-2+deb9u1.dsc
$ cd twig-1.24.0
$ DEB_BUILD_OPTIONS=nocheck pdebuild

nocheck was needed because buster's phpunit failed due to API changes since stretch. I can do a proper backport (forwardport?) if this is a show-stopper, but the package works just fine as-is. (Longer-term, we want to submit upstream changes to accommodate more modern versions of XHGui's dependencies.)

I then did:

# cd /var/cache/pbuilder/result/buster-amd64
# dpkg-scanpackages . | gzip -c > Packages.gz

...and copied the resulting directory to a fresh host (deployment-xhgui03.deployment-prep.eqiad.wmflabs). To simulate everything being in reprepro, I did:

# echo "deb [trusted=yes] file:///home/dpifke/result/buster-amd64 ./" >>/etc/apt/sources.list
# apt-get update
# apt-get install xhgui php-twig=1.24.0-2+deb9u1

A puppet patch to pin php-twig is forthcoming.

XHGui was confirmed to work with the freshly-built packages.

gerritbot added a comment.Jul 9 2020, 12:57 AM

Change 610446 had a related patch set uploaded (by Dave Pifke; owner: Dave Pifke):
[operations/puppet@production] xhgui: Pin php-twig at version 1.*

https://gerrit.wikimedia.org/r/610446

dpifke reassigned this task from dpifke to Dzahn.Jul 9 2020, 1:00 AM

(If you're not the best person to do the upload, can you please reassign to the appropriate SRE? Thanks!)

dpifke added a comment.Jul 14 2020, 1:14 AM

Would SRE have any objection to us (Performance) setting up our own reprepro instance, with upload rights for members of performance-team? (It would be added to apt only on hosts where we have root.)

gerritbot added a comment.Jul 14 2020, 2:38 AM

Change 610446 merged by Dzahn:
[operations/puppet@production] xhgui: Pin php-twig at version 1.*

https://gerrit.wikimedia.org/r/610446

Dzahn added a subscriber: Muehlenhoff.Jul 14 2020, 2:52 AM
In T254310#6291975, @dpifke wrote:

(If you're not the best person to do the upload, can you please reassign to the appropriate SRE? Thanks!)

While I can upload packages to apt.wikimedia.org and import them with reprepro, I do not have the +2 in Gerrit to merge those pending changes.

Regarding the php packages it would be best to talk to @Muehlenhoff

Dzahn added a comment.Jul 14 2020, 2:54 AM
In T254310#6303117, @dpifke wrote:

Would SRE have any objection to us (Performance) setting up our own reprepro instance, with upload rights for members of performance-team? (It would be added to apt only on hosts where we have root.)

It would be best to bring this up on the ops mailing list or a separate ticket.

Krinkle added a comment.Jul 14 2020, 4:09 PM
In T254310#6303189, @Dzahn wrote:

While I can upload packages to apt.wikimedia.org and import them with reprepro, I do not have the +2 in Gerrit to merge those pending changes.

I've added wmf-sre-serviceops to performance/debs/* on Gerrit.

gerritbot added a comment.Jul 15 2020, 6:53 PM

Change 602203 merged by Dzahn:
[performance/debs/xhgui@master] Package XHGui

https://gerrit.wikimedia.org/r/602203

Krinkle triaged this task as Medium priority.Jul 17 2020, 12:28 AM
gerritbot added a comment.Jul 22 2020, 4:22 PM

Change 602514 merged by Dzahn:
[performance/debs/php-slim-views@master] Package php-slim-views

https://gerrit.wikimedia.org/r/602514

gerritbot added a comment.Jul 22 2020, 4:23 PM

Change 602207 merged by Dzahn:
[performance/debs/php-psr-http-server-handler@master] Package php-psr-http-server-handler

https://gerrit.wikimedia.org/r/602207

gerritbot added a comment.Jul 22 2020, 4:25 PM

Change 602206 merged by Dzahn:
[performance/debs/php-psr-http-server-middleware@master] Package php-psr-http-server-middleware

https://gerrit.wikimedia.org/r/602206

gerritbot added a comment.Jul 22 2020, 4:28 PM

Change 610426 merged by Dzahn:
[performance/debs/php-pimple@master] Package php-pimple

https://gerrit.wikimedia.org/r/610426

gerritbot added a comment.Jul 22 2020, 6:56 PM

Change 602516 merged by Dzahn:
[performance/debs/php-perftools-xhgui-collector@master] Package php-perftools-xhgui-collector

https://gerrit.wikimedia.org/r/602516

gerritbot added a comment.Jul 22 2020, 6:57 PM

Change 602205 merged by Dzahn:
[performance/debs/php-slim@master] Package php-slim 2.6.3

https://gerrit.wikimedia.org/r/602205

Krinkle added a parent task: T180761: Move XHGui from tungsten to xhgui-001.Jul 29 2020, 2:15 AM
Dzahn added a comment.Jul 30 2020, 12:55 AM

I built the following packages on deneb.codfw.wmnet using DIST=buster pdebuild.

I got the upstream tarballs from the cloud instance used by Dave.

example:

scp deployment-boron01.deployment-prep:/home/dpifke/php-*.tar.gz .
scp php-*.tar.gz deneb.codfw.wmnet:~

[deneb:~] $ git clone "https://gerrit.wikimedia.org/r/performance/debs/php-slim"

[deneb:~/php-slim] $ DIST=buster pdebuild

..
[apt1001:~] $ rsync -av rsync://deneb.codfw.wmnet/pbuilder-result/buster-amd64/php-slim* .

..
[apt1001:~] $ sudo -E reprepro -C main include buster-wikimedia php-slim_2.6.3-wmf1_amd64.changes

From a random buster host i can now simulate to install, f.e. php-slim:

[planet1002:~] $ sudo apt-get -s install php-slim

Use 'sudo apt autoremove' to remove it.
The following additional packages will be installed:
  php-common
Suggested packages:
  php-mcrypt php-phpseclib-mcrypt-compat
The following NEW packages will be installed:
  php-common php-slim

The xhgui* hosts are on stretch though because in the previous version using MongoDB buster was an issue.

Now we want buster of course to install these packages, so we need to reimage the xhgui hosts for which i made T259206.

Dzahn added a comment.Jul 30 2020, 1:12 AM

xhgui also done!

[apt1001:~] $ for package in php-slim-views php-psr-http-server-handler php-psr-http-server-middleware php-pimple php-perftools-xhgui-collector php-slim xhgui; do sudo -E reprepro ls $package; done

php-slim-views | 0.1.3-wmf1 | buster-wikimedia | amd64, i386, source
php-psr-http-server-handler | 1.0.1-wmf1 | buster-wikimedia | amd64, i386, source
php-psr-http-server-middleware | 1.0.1-wmf1 | buster-wikimedia | amd64, i386, source
php-pimple | 1.0.2-wmf1 | buster-wikimedia | amd64, i386, source
php-perftools-xhgui-collector | 1.8.0-1-wmf1 | buster-wikimedia | amd64, i386, source
php-slim | 2.6.3-wmf1 | buster-wikimedia | amd64, i386, source
xhgui | 0.9.0-1-wmf1 | buster-wikimedia | amd64, i386, source
[apt1001:~] $ apt-cache show xhgui
Package: xhgui
Version: 0.9.0-1-wmf1
Architecture: all
Maintainer: Dave Pifke <dpifke@wikimedia.org>
Installed-Size: 1055
Depends: apache2 | httpd, php-common, php-slim (>= 2.6.3), php-slim (<< 3~~), php-slim-views (>= 0.1.0), php-slim-views (<< 0.2~~), php-twig (>= 1.17), php-twig (<< 2~~), php-pimple (>= 1.0.2), php-pimple (<< 2~~), php-perftools-xhgui-collector (>= 1.7.0), php-perftools-xhgui-collector (<< 2~~), libjs-bootstrap, libjs-jquery, libjs-jquery-tablesorter
Recommends: apache2 (>= 2.4.6-4~) | httpd
Suggests: php-xhprof, php-uprofiler, php-mongo, php-mongodb, php-alcaeus-mongo-php-adapter
Priority: optional
Section: php
Filename: pool/main/x/xhgui/xhgui_0.9.0-1-wmf1_all.deb
Size: 216740
SHA256: acfb2f1b4f728c9047168218287fc6969440d113f914bf0ded908c3efd32ce7b
SHA1: 465f34a4cfc8f5966958740776d891de5e9e28fc
MD5sum: 1abcbec95d203ed6e78135aaada1391e
Description: A web based interface for viewing profile data collected by XHProf
 XHGui takes profiling information from XHProf and provides a
 convenient GUI for working with it.
Description-md5: 5231b8d3ec82acb186e87569cf9fd198

When simulating an install we still have this though:

The following packages have unmet dependencies:
 xhgui : Depends: php-twig (< 2~~) but 2.6.2-2 is to be installed
Dzahn raised the priority of this task from Medium to High.Jul 30 2020, 1:16 AM
Dzahn mentioned this in T180761: Move XHGui from tungsten to xhgui-001.Jul 30 2020, 1:20 AM
dpifke added a comment.Jul 30 2020, 1:31 AM

Re: php-twig, from an earlier comment:

In T254310#6291955, @dpifke wrote:

There is one additional package from stretch, php-twig which needs to be backported. I did:

$ dget -x http://deb.debian.org/debian/pool/main/t/twig/twig_1.24.0-2+deb9u1.dsc
$ cd twig-1.24.0
$ DEB_BUILD_OPTIONS=nocheck pdebuild

nocheck was needed because buster's phpunit failed due to API changes since stretch. I can do a proper backport (forwardport?) if this is a show-stopper, but the package works just fine as-is. (Longer-term, we want to submit upstream changes to accommodate more modern versions of XHGui's dependencies.)

(Presumably the output of the above can be uploaded as-is; worst-case you may have to update the target in debian/changelog.)

...

A puppet patch to pin php-twig is forthcoming.

(That patch was https://gerrit.wikimedia.org/r/c/operations/puppet/+/610446.)

Dzahn mentioned this in T259278: Puppet failing due to dependency cycle on deployment-xhgui03.Jul 30 2020, 4:51 PM
Dzahn added a subtask: T259278: Puppet failing due to dependency cycle on deployment-xhgui03.Jul 30 2020, 5:55 PM
Dzahn added a comment.EditedJul 30 2020, 7:17 PM

twig/php-twig has been imported to apt.wikimedia.org as well

[apt1001:~] $ sudo -E reprepro ls twig
twig | 1.24.0-2+deb9u1 | buster-wikimedia | source
[apt1001:~] $ sudo -E reprepro ls php-twig
php-twig | 1.24.0-2+deb9u1 | buster-wikimedia | amd64, i386

I used dget as suggested and could also confirm that DEB_BUILD_OPTIONS=nocheck was needed to make it work.

[deneb:~] $ dget -x http://deb.debian.org/debian/pool/main/t/twig/twig_1.24.0-2+deb9u1.dsc
..
[deneb:~/twig-1.24.0] $ DEB_BUILD_OPTIONS=nocheck DIST=buster pdebuild

Had to rsync both php-twig* and twig* files.

Then also manually scp the orig.tar.gz from my home dir on deneb to apt1001.

[apt1001:~] $ rsync -av rsync://deneb.codfw.wmnet/pbuilder-result/buster-amd64/php-twig* .
[apt1001:~] $ rsync -av rsync://deneb.codfw.wmnet/pbuilder-result/buster-amd64/twig* .

 scp twig_1.24.0* apt1001.wikimedia.org:~
scp deneb.codfw.wmnet:~/twig_* .

Finally tell reprepro to "ignore missingfile" which means it will look for the orig.tar.gz in the current working dir to get around Unable to find pool/main/t/twig/twig_1.24.0.orig.tar.gz needed by twig_1.24.0-2+deb9u1.dsc. Put the twig_1.24.0.orig.tar.gz in the current working dir and it finds it with:

[apt1001:~] $ sudo -E reprepro --ignore=missingfile -C main include buster-wikimedia twig_1.24.0-2+deb9u1_amd64.changes
Dzahn closed subtask T259278: Puppet failing due to dependency cycle on deployment-xhgui03 as Resolved.Jul 30 2020, 8:48 PM
Dzahn closed this task as Resolved.Jul 30 2020, 11:31 PM

xhgui2001 has been reinstalled with buster and switched to the new puppet role for xhgui.

puppet then succesfully installed xhgui, after fixing some dependency issue it also works on the first run after a reinstall

I am calling this resolved since xhgui and all its dependencies are on apt.wikimedia.org and can be installed.

Dzahn edited projects, added serviceops; removed Patch-For-Review.Jul 30 2020, 11:32 PM
MoritzMuehlenhoff mentioned this in T340713: Seeking Advice and Assistance: Upgrading Debian Buster XHGui Instances.Jun 29 2023, 10:25 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits