Update Rust in builder to 1.69.0 #6832
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
7 tasks
Install Rust and rustup in slightly more straightforward directories and unconditionally add it to $PATH instead of weirdly in /root/.cargo. This setup is partially based on <rust-lang/rustup#1085 (comment)>, which is described as unsupported for multiple users but our containers are single-user. The plan is to copy this to the development container as well.
For the Sequoia work, we're planning to use 1.69.0 so we need to update the builder to match. This is being done separately since it already affects a production component (the cryptography wheel) and should be tested independently. This also lets us get rid of our index-warming hack since we can use the new fast sparse protocol instead (<https://blog.rust-lang.org/2023/03/09/Rust-1.68.0.html#cargos-sparse-protocol>). Refs #6817.
cfm
approved these changes
Jun 6, 2023
There was a problem hiding this comment.
Thanks for proactively making changes from #6828 (comment). :-)
- CI passes, including deb building and staging build
- Build new debs, deploy on a staging/prod instance:
- Create new journalist, log in as them.
(AFAIK that's the main place we use cryptography on the server)
I spot a few more places. But a full smoke-test of the Source and Journalist Interfaces checks out just fine!
legoktm
added a commit
to freedomofpress/securedrop-dev-docs
that referenced
this pull request
Aug 3, 2023
We're responsible for keeping the Rust toolchain up to date, so add some rough guidelines and instructions. The test plan is based off of <freedomofpress/securedrop#6832>. Fixes #79.
3 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Status
Ready for review
Description of Changes
First, adjust how Rust is installed in the builder container
Install Rust and rustup in slightly more straightforward directories and
unconditionally add it to $PATH instead of weirdly in /root/.cargo.
This setup is partially based on rust-lang/rustup#1085 (comment),
which is described as unsupported for multiple users but our containers
are single-user.
The plan is to copy this to the development container as well.
Second, and primarily, update Rust in builder to 1.69.0
For the Sequoia work, we're planning to use 1.69.0 so we need to update
the builder to match. This is being done separately since it already
affects a production component (the cryptography wheel) and should be
tested independently.
This also lets us get rid of our index-warming hack since we can use the
new fast sparse protocol instead
(https://blog.rust-lang.org/2023/03/09/Rust-1.68.0.html#cargos-sparse-protocol).
Refs #6817.
Testing
How should the reviewer test this PR?
(AFAIK that's the main place we use cryptography on the server)
Deployment
Any special considerations for deployment? No.
Checklist