Jan Holbo Kaddu Rasmussen's picture
Jan Holbo Kaddu Rasmussen - Tue, 2024/12/03 - 05:46

Hi all!

I am currently using the TurnKey NextCloud LXC container and has done so for some time now. I have upgraded NextCloud through its webbased upgrade system, I am currently running NextCloud Hub 9/30.0.2. turnkey-version gives "turnkey-nextcloud-17.2-bullseye-amd64"

This gives me warnings that both MariaDB and PHP are now deprecated.

From time to time, I have logged into the container and also done a apt update/upgrade - this may possibly be counterproductive?

I saw somewhere that there is a turnkey 18 somewhere - how do I upgrade to that version? And will it upgrade MariaDB to 10.6<11.6? and PHP to 8.2/8.3?

Also I am wondering if it would help performance to split the install between solidstate for the OS+Appliance and spinning rust for the data files (the "dropbox" part of NC)?

Oh and then I would like to have my account verified :-)

Forum: 
Support
Tags: 
nextcloud
migrate data
upgrade turnkey
Jeremy Davis's picture

Jeremy Davis - Tue, 2024/12/03 - 08:00

First up, great to have you onboard and I'm really glad to hear that TurnKey has been useful to you so far. Thanks too for providing all the info you have, makes it easier for all of us. :)

This gives me warnings that both MariaDB and PHP are now deprecated.

FWIW both the MariaDB and PHP versions in v17.x will continue to recevie security updates and generally be supported by Debian (the base of TurnKey) for quite some time.

Having said that, Nextcloud tends to move fairly quickly and often stops supporting older versions of dependencies - PHP in particular. So I'm assuming that when you say that they are "deprecated" that is in the context of Nextcloud specifically.

From time to time, I have logged into the container and also done a apt update/upgrade - this may possibly be counterproductive?

You don't really need to do it as TurnKey auto installs security updates every 24 hours. OTOH it certainly won't (at least shouldn't) do any harm.

But as you've noticed, it doesn't actually give you a newer version of the specific software. It simply pulls in the latest patched release (i.e. bugfixed) of the same version.

I saw somewhere that there is a turnkey 18 somewhere - how do I upgrade to that version? And will it upgrade MariaDB to 10.6

Yes, there is an updated appliance - currently v18.1.

You have a number of options to update/upgrade to the new version. The appliance upgrade doc page has some relatively general info which might hopefully be of some use?! FWIW it also gives some more context to the apt package versioning.

To summarize the 2 main options covered in the docs; and add one more:

  1. Launch a new v18.1 server and migrate your data using TKLBAM.
  2. Leave your current server as is and do an "in place" Debian upgrade (i.e. upgrade the base distro to 12/Bookworm).
  3. And the other Nextcloud specific option - manually migrate your files and database from your old server to a new v18.1 server.

1. TKLBAM

As noted on the TKLBAM page, there may be some manual post restore tweaks required. But hopefully not too many (if any) as you're going from one major version to the next one.

The beauty of migrating your data to a new server means that you can keep your current server running until you are happy with your new server. Even once you move to your new server, you could just stop the old one and leave it there for a week or 2; just in case...

It does require registering for a TurnKey Hub account, which in turn requires and AWS account. Also by default, it will backup all your files and upload them to AWS. Depending on how many files you have and the bandwidth of your internet connection, that might take a while. And then you will need to wait for it to all download again to restore your data to the new server...

OTOH, you will then have an offsite backup of all your data, ensuring that it stays safe and sound, even if things go really pear shaped. AWS storage fees are relatively cheap (IIRC ~$0.023/GB/mth) so unless you have TBs of files, might actually be something that you want but haven't considered or got around to before?

The need to wait for the upload and avoid the immediate download altogether (until you actually need it) can be resolved pretty easily. TKLBAM can also just create a local backup, which can be directly copied to the new server and restored it again with TKLBAM.

2. "in place" Debian upgrade

I don't have much to add in addition to the doc page linked to above. I wouldn't expect it to be particularly problematic or painful. But if it does go pear-shaped, it will likely trash your server. As noted on the doc page, while we don't officially support that method, we will still try to help you out if you have problems.

3. Manually migrate Nextcloud files and database

While I don't have much specific info regarding this path for you, with some basic Linux skills and a bit of "google fu" this approach shouldn't be too hard. Again it's not a "supported" path, if you hit issues, I can try to help out as best I can...

am wondering if it would help performance to split the install between solidstate for the OS+Appliance and spinning rust for the data files (the "dropbox" part of NC)?

I imagine that might help. Assuming you are running on Proxmox, probably the easiest way to do that would be to launch a new TurnKey server with a root volume located on an SSD. Then add an additional volume located on a spinney disk and mount it somewhere - I tend to create new appropriately named directories in /media - IIRC that needs to be done on the host too? Them move your files to the new volume - I recommend stopping services such as Apache and MariaDB while you do that. Then finally bind mount the new directory to the default location that Nextcloud expects them to be - and restart services.

Good luck and please post back regardless how you go. If you go well it'd be great to hear and anything you can share from your experience will be helpful for others I'm sure. If things don't go as planned, hopefully I'll be able to help out.

Jan Holbo Kaddu Rasmussen's picture

Jan Holbo Kaddu Rasmussen - Wed, 2024/12/04 - 19:04

Sorry for the time passed - life has been a bit busy the last few days. And thank You for letting me in :-)

Yes the deprecation of older PHP and MariaDB versions is from the NextCloud Project.

I tried to install a newer version of PHP through webmin (libapache2-mod-php8.3 and then libapache2-mod-php8.2) but I am getting:

Reading package lists...  
Building dependency tree...  
Reading state information...  
The following additional packages will be installed:  
  php8.3-cli php8.3-common php8.3-opcache php8.3-readline  
The following NEW packages will be installed:  
  libapache2-mod-php8.3 php8.3-cli php8.3-common php8.3-opcache  
  php8.3-readline
0 upgraded, 5 newly installed, 0 to remove and 0 not upgraded.
Need to get 4489 kB of archives.
After this operation, 22.2 MB of additional disk space will be used.
Err:1 https://packages.sury.org/php bullseye/main amd64 php8.3-common amd64 8.3.2-1+0~20240120.16+debian11~1.gbpb43448
  404  Not Found [IP: 195.181.166.158 443]
Err:2 https://packages.sury.org/php bullseye/main amd64 php8.3-opcache amd64 8.3.2-1+0~20240120.16+debian11~1.gbpb43448
  404  Not Found [IP: 195.181.166.158 443]
Err:3 https://packages.sury.org/php bullseye/main amd64 php8.3-readline amd64 8.3.2-1+0~20240120.16+debian11~1.gbpb43448
  404  Not Found [IP: 195.181.166.158 443]
Err:4 https://packages.sury.org/php bullseye/main amd64 php8.3-cli amd64 8.3.2-1+0~20240120.16+debian11~1.gbpb43448
  404  Not Found [IP: 195.181.166.158 443]
Err:5 https://packages.sury.org/php bullseye/main amd64 libapache2-mod-php8.3 amd64 8.3.2-1+0~20240120.16+debian11~1.gbpb43448
  404  Not Found [IP: 195.181.166.158 443]
E: Failed to fetch https://packages.sury.org/php/pool/main/p/php8.3/php8.3-common_8.3.2-1%2b0%7e20240120.16%2bdebian11%7e1.gbpb43448_amd64.deb  404  Not Found [IP: 195.181.166.158 443]
E: Failed to fetch https://packages.sury.org/php/pool/main/p/php8.3/php8.3-opcache_8.3.2-1%2b0%7e20240120.16%2bdebian11%7e1.gbpb43448_amd64.deb  404  Not Found [IP: 195.181.166.158 443]
E: Failed to fetch https://packages.sury.org/php/pool/main/p/php8.3/php8.3-readline_8.3.2-1%2b0%7e20240120.16%2bdebian11%7e1.gbpb43448_amd64.deb  404  Not Found [IP: 195.181.166.158 443]
E: Failed to fetch https://packages.sury.org/php/pool/main/p/php8.3/php8.3-cli_8.3.2-1%2b0%7e20240120.16%2bdebian11%7e1.gbpb43448_amd64.deb  404  Not Found [IP: 195.181.166.158 443]
E: Failed to fetch https://packages.sury.org/php/pool/main/p/php8.3/libapache2-mod-php8.3_8.3.2-1%2b0%7e20240120.16%2bdebian11%7e1.gbpb43448_amd64.deb  404  Not Found [IP: 195.181.166.158 443]
E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?

The above with php8.3 - same result, different numbers for 8.2.

It seems that apt can stat the packages (and thus estimate the download and disk usage), but cannot locate the packages themselves on the mirror - which is not a standard mirror, as far as I can tell? I have not changed this knowingly.

I might go with the local TLKBAM backup into a new server. When looking at this, I had started to think of alternatives and maybe moving into a VM with split disk solution - SSD-based for the OS and application and HDD-based for the files. I might do this with a new TurnKey LXC container instead of setting up a VM from scratch.

Thank You all for your hard work!

Jeremy Davis's picture

Jeremy Davis - Fri, 2024/12/06 - 03:20

Thanks for the extra info Jan. BTW I took the liberty of reformatting your post for better readability. Unfortunately we had to disable the WYSIWYG (what you see is what you get) editor we had integrated into the website...

Before I get to what I hope is the solution to your issue, some more context and background re the newer PHP packages. You are correct that they do not come from a "standard mirror". They come from sury.org - rather than the default and primary debian and turnkey apt repos. While being a third party repo, it is a trustworthy source. The deb.sury.org repo is provided and maintained by Ondřej Surý. As he notes on the sury.org website (linked to above):

Who am I?
I am a Debian Developer since year 2000, and I have been packaging PHP for Debian since PHP 5. That means the official packages in Debian and Ubuntu are either my work or they are based on my work. The PHP packages in my Ubuntu PPA and Debian DPA matches the official packages in Debian. Basically I am saying that you can’t get any closer than that.

To your issue: You are definitely on the right track to install a newer PHP version. So good work! :)

And I think the error will be easy to fix. FWIW I think that the resolution is actually hinted in the output you shared - see the last line:

E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?

So try running "apt update" (essentially an alias for "apt-get update") before retrying the php8.3 install and it should "just work".

If not, please post back with the "apt update" output.

Actually, if that doesn't fail and the automated security updates haven't been intentionally disabled, that package info should already be updated daily!? If "apt update" works, not installing the secupdates might indicate some other issue? So could you please run "turnkey-install-security-updates" and post the output back here.

FYI, it's probably not important to you (especially if that works) - but here's an outline of the steps I took to confirm the likelihood of that being the issue:

First I tried pinging the domain - which worked, although the IP was different. That's not a surprise because it's provided via a CDN. But pinging the IP from your output (195.181.166.158) was also successful.

I then tried downloading one of the files from your output and confirmed that it did not exist (hence the 404).

Finally I checked the php8.3 directory on sury.org. The current PHP8.3 package versions (hence the filename) for "php8.3-common" is 8.3.14. I.e. "php8.3-common_8.3.14...". The versions that apt ins trying to install for you 8.3.2. Which suggests that your server has outdated package info.

Anyway good luck and hopefully that works.

As I noted above, regardless of whether it works or not, please provided the output of:

turnkey-install-security-updates
Jan Holbo Kaddu Rasmussen's picture

Jan Holbo Kaddu Rasmussen - Mon, 2024/12/09 - 12:29
Thank You very much for formatting my output - I had enclosed it into a segment, but it apparently was not enough, and I did not have time to investigate further - please share what you did! (Post preview: I cheated and checked the HTML - so used pre tag instead of the code tag I used for the first post :-) I should have shared more, I guess. I have been using debian based distributions for ages, so I had already done an apt upgrade - which I should have included: 
Hit:1 http://deb.debian.org/debian bullseye InRelease
Hit:2 http://security.debian.org bullseye-security InRelease                                                                       
Get:3 https://packages.sury.org/php bullseye InRelease [7551 B]                                                                    
Ign:4 http://archive.turnkeylinux.org/debian bullseye-security InRelease                                     
Err:3 https://packages.sury.org/php bullseye InRelease
  The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
Ign:5 http://archive.turnkeylinux.org/debian bullseye InRelease
Hit:6 http://archive.turnkeylinux.org/debian bullseye-security Release
Hit:8 http://archive.turnkeylinux.org/debian bullseye Release
Reading package lists... Done                             
Building dependency tree... Done
Reading state information... Done
All packages are up to date.
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: https://packages.sury.org/php bullseye InRelease: The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
W: Failed to fetch https://packages.sury.org/php/dists/bullseye/InRelease  The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
W: Some index files failed to download. They have been ignored, or old ones used instead.
As you requested the output of 
# turnkey-install-security-updates
+ SEC_UPDATES=FORCE
+ /usr/lib/inithooks/firstboot.d/95secupdates
Hit:1 http://deb.debian.org/debian bullseye InRelease
Hit:2 http://security.debian.org bullseye-security InRelease
Get:3 https://packages.sury.org/php bullseye InRelease [7551 B]
Ign:4 http://archive.turnkeylinux.org/debian bullseye-security InRelease
Err:3 https://packages.sury.org/php bullseye InRelease
  The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
Ign:5 http://archive.turnkeylinux.org/debian bullseye InRelease
Hit:6 http://archive.turnkeylinux.org/debian bullseye-security Release
Hit:8 http://archive.turnkeylinux.org/debian bullseye Release
Fetched 7551 B in 1s (10.4 kB/s)
Reading package lists...
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: https://packages.sury.org/php bullseye InRelease: The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
W: Failed to fetch https://packages.sury.org/php/dists/bullseye/InRelease  The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
W: Some index files failed to download. They have been ignored, or old ones used instead.
Reading package lists...
Building dependency tree...
Reading state information...
Reading package lists...
Building dependency tree...
Reading state information...
Calculating upgrade...
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Same issue ...
Jeremy Davis's picture

Jeremy Davis - Tue, 2024/12/10 - 08:27

No problem at all. Yep "pre" tags are the ones. :)

Sorry I didn't realize that you already had some base Debian(ish) knowledge. I hope I didn't over explain, although I'd rather be more verbose than required, than less. It's hard to judge people's experience and even if it was unrequired info for you, someone else will come across this thread and it might help them...

From the output you've shared it looks like the sury.org key has expired (EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG). As you may have guessed, that's why the apt package list hadn't updated properly and apt install was trying to install outdated packages. It also means that all's good on the auto security updates which is nice.

Hopefully all you should need now is the current key and you'll be good to go. Get the current key like this:

curl -sSLo /tmp/debsuryorg-archive-keyring.deb https://packages.sury.org/debsuryorg-archive-keyring.deb
dpkg -i /tmp/debsuryorg-archive-keyring.deb

You can just cross your fingers and try again if you want, but one thing worth checking is that the correct sury.org key location is in the relevant apt sources file/line. If my memory serves me correctly, we pre-configured the PHP sury.org apt list - with the required line and correct key path in the file /etc/apt/sources.list.d/php.list. But just in case I'm wrong (maybe we only did that in v18.x?) and it wasn't pre-configured by us and/or the key path doesn't match (and/or something else), have a quick grep:

grep -r packages.sury.org /etc/apt/sources.list*

The result will be "path/to/filename:matching-line". Assuming a PHP apt sources file of /etc/apt/sources.list.d/php.list, the desired result will be:

/etc/apt/sources.list.d/php.list:deb [signed-by=/usr/share/keyrings/deb.sury.org-php.gpg] https://packages.sury.org/php/ bullseye main

So long as the file has a '.list' file extension then the filename itself is irrelevant. The important bit is the '[signed-by=/usr/share/keyrings/deb.sury.org-php.gpg]'. I.e. a declaration of the specific key and the correct key path. If it's not there or the path is wrong, edit the relevant file and ensure it's exactly the same as above. (For anyone reading who is not on v17.x/Debian Bullseye - also replace "bullseye" with the relevant Debian codename). If you didn't configure that yourself (i.e. it was us) please let me know if it's not right so I can cross check with our buildcode and fix it if need be.

Once you've confirmed that's right - or you've updated it - you should be good to go. Just re-run the apt commands you already have and things should be golden and everything should "just work".

Assuming that the installation of the newer PHP version succeeds, the installation should automatically update your system to use the new PHP version as the default for both CLI and Apache, but to double check:

# cli
php -v
# apache
a2query -m | grep php

If for some reason that doesn't give expected results, assuming php8.3 (adjust if different version) you can try these commands:

# cli
update-alternatives --set php /usr/bin/php8.3
# apache
a2dismod php*
a2enmod php8.3
systemctl restart apache2

Also; just in case you aren't aware, the php config (php.ini) files are version and context specific. The new version will just be the php package defaults. So you may want/need to adjust some values there. For php8.3 the new config files will be:

# cli
/etc/php/8.2/cli/php.ini
# apache
/etc/php/8.2/apache2/php.ini

If you are unsure of which values to change, a diff between the old and new config files might help. E.g assuming 7.4 -> 8.3):

diff -u --color 


Some may be changed defaults, but hopefully you should be able to work out what might be good to update. Feel free to post back with the output if you'd like some guidance.



Also, if you are a Webmin user, you'll also want to update the php.ini paths there too. Go to the PHP config page (System >> PHP Configuration) and look for the little cog icon directly above the php.ini paths noted in the table and adjust as relevant.



Good luck and hopefully you should be all good. If not, please post back with any errors and we'll try some more... :)
Jan Holbo Kaddu Rasmussen's picture

Jan Holbo Kaddu Rasmussen - Wed, 2024/12/18 - 18:45
I am still battling this: 
apt update
Hit:1 http://deb.debian.org/debian bullseye InRelease
Hit:2 http://security.debian.org bullseye-security InRelease                                          
Get:3 https://packages.sury.org/php bullseye InRelease [7551 B]                                       
Ign:4 http://archive.turnkeylinux.org/debian bullseye-security InRelease                   
Err:3 https://packages.sury.org/php bullseye InRelease
  The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
Ign:5 http://archive.turnkeylinux.org/debian bullseye InRelease
Hit:6 http://archive.turnkeylinux.org/debian bullseye-security Release
Hit:8 http://archive.turnkeylinux.org/debian bullseye Release
Reading package lists... Done                             
Building dependency tree... Done
Reading state information... Done
All packages are up to date.
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: https://packages.sury.org/php bullseye InRelease: The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
W: Failed to fetch https://packages.sury.org/php/dists/bullseye/InRelease  The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key 
W: Some index files failed to download. They have been ignored, or old ones used instead.
signatures: 
grep -r packages.sury.org /etc/apt/sources.list*
/etc/apt/sources.list.d/php.list:deb [signed-by=/usr/share/keyrings/php-sury.org.gpg] https://packages.sury.org/php/ bullseye main
So something is still wrong with the package list signatures. The difference I notice between your result and mine is the placement of php in the signed-by part: 
/etc/apt/sources.list.d/php.list:deb [signed-by=/usr/share/keyrings/deb.sury.org-php.gpg] https://packages.sury.org/php/ bullseye main
vs 
/etc/apt/sources.list.d/php.list:deb [signed-by=/usr/share/keyrings/php-sury.org.gpg] https://packages.sury.org/php/ bullseye main
I am interested in the choice of using the sury "mirror". What makes that better than the official mirror? Using a non-official/non-standard mirror always introduces risks. If the mirror is maintained by a single person, it is no longer really a mirror, but a repository. If the packages in this repository "are either [his] work or they are based on [his] work" what are the benefits - why not use the original repository? There has to be a benefit that outways thoses risks, in my opinion.
Jeremy Davis's picture

Jeremy Davis - Thu, 2024/12/19 - 01:59

I'm 99% that the signed by keyfile name/path in your sources list is the issue.

The "signed-by" path in /etc/apt/sources.list.d/php.list needs to match the file path of the updated key. IIRC I downloaded the debsuryorg-archive-keyring.deb key package and checked the new key name and that is what I shared above. So I'm fairly confident that the difference between your sources.list entry and mine is the issue. Another possibility is that the key file name name changed (or I got it wrong).

Double check that the path I gave before is correct:

ls /usr/share/keyrings/deb.sury.org-php.gpg

It should just return that path. I.e.:

/usr/share/keyrings/deb.sury.org-php.gpg

If so, then edit the "signed by" in your sources file to match. I.e.:

/etc/apt/sources.list.d/php.list:deb [signed-by=/usr/share/keyrings/deb.sury.org-php.gpg] https://packages.sury.org/php/ bullseye main

If the 'ls' command returns a "No such file or directory" instead, then have a look in the /usr/share/keyrings/ directory:

ls -lt /usr/share/keyrings/

That will list all the files in the directory, along with their respective details such as their permissions, size and last modified times. The most recent will be at the top. If there is more than one php/sury.org key it should be the higher one. Adjust the "signed-by" path in /etc/apt/sources.list.d/php.list to match and rerun apt update - that should fix it.

Jan Holbo Kaddu Rasmussen's picture

Jan Holbo Kaddu Rasmussen - Sun, 2024/12/22 - 23:41
Had a further look into this: 
# DEB.SURY.ORG repo for php

deb [signed-by=/usr/share/keyrings/php-sury.org.gpg] https://packages.sury.org/php/ bullseye main
So the reference was wrong. When doing and apt update all went without errors. When doing an apt upgrade there were then 21 packages ready for update - including my current libapache2-mod-php8.1. Most are newer versions of php8.1 related packages. As I had tuned some of the settings for NextCloud to function better (for me at least), the update triggered a warning about a difference in the config file(s) - I hope I managed to keep my edited files. Now I am wondering how and if I should proceed. I have not restarted the container yet. So far the warning is the same. I did not expect the warning about PHP to change/go away, as I know that I have to install a new libapach2-mod-phpx.x package. But I was kind of hoping, that it would have updated MariaDB. I see that there was no answer as to why using sury.org instead of normal upstream. My question was not meant to offend anyone, just explore the logic behind. I apologise, if I made that impression. I will not ask further into this issue. Thank You very much for your hard work!
Jan Holbo Kaddu Rasmussen's picture

Jan Holbo Kaddu Rasmussen - Mon, 2024/12/23 - 01:24

DISCLAIMER: Please read the full post - there is a plot twist ...

So I ended up installing PHP 8.4 and still NextCloud was complaining. I had forgotten to enable PHP 8.4 in 

/etc/apache2/mods-enabled
: 
cd /etc/apache2/mods-enabled
ln -s ../mods-available/php8.4.conf php8.4.conf
ln -s ../mods-available/php8.4.load php8.4.load

Reloaded my NextCloud WebUI - no change - still complaining about running PHP 8.1 - went into 

confconsole
and rebooted the application (through Advanced) - stille no change

Back into 

/etc/apache2/mods-enabled
: 
cd /etc/apache2/mods-enabled
ls -l
lrwxrwxrwx 1 root root 29 Mar 29  2023 php8.1.conf -> ../mods-available/php8.1.conf
lrwxrwxrwx 1 root root 29 Mar 29  2023 php8.1.load -> ../mods-available/php8.1.load
lrwxrwxrwx 1 root root 29 Dec 22 23:54 php8.4.conf -> ../mods-available/php8.4.conf
lrwxrwxrwx 1 root root 29 Dec 22 23:54 php8.4.load -> ../mods-available/php8.4.load

Aha - php8.1 is still enabled - removed the two symlinks for 8.1:

cd /etc/apache2/mods-enabled
rm php8.1.*

Rebooted the application through 

confconsole
again. Now Nextcloud WebUI does not even come up but just get a text response back: Nextcloud 30.0.4 does not support PHP >= 8.4

So I installed PHP 8.3 - BTW just installing 

libapache2-mod-php8.3
and likewise for 8.4 did not get me all the php-8.3/4 packages that were present as php-8.1 packages. I do not know if I need them all but decided to just install them all. Too see which php packages you have install do: 
apt list --installed|grep php

and then it was time to set PHP 8.3 to be loaded:

cd /etc/apache2/mods-enabled
ln -s ../mods-available/php8.3.conf php8.3.conf
ln -s ../mods-available/php8.3.load php8.3.load
rm php8.4.*

And then for the last time: reboot the application through 

confconsole
. For now I have left both PHP 8.1 and 8.4 on the system. To lower my attack-profile as well as shrink the container, I ought to remove both PHP 8.1 and PHP 8.4, but so far they are still present in the system.

MariaDB upgrade is next, but it is already late - time for bed - so that will have to be another day

Jan Holbo Kaddu Rasmussen's picture

Jan Holbo Kaddu Rasmussen - Mon, 2024/12/23 - 01:27
Aaaaand then I forgot about memory ... again, I am too tired - this will have to wait ...
Jan Holbo Kaddu Rasmussen's picture

Jan Holbo Kaddu Rasmussen - Mon, 2024/12/23 - 02:08

Well I could really not leave it there ...

Went into both /etc/php/8.3/cli/php.ini and /etc/php/8.3/apache2/php.ini and changed the line

memory_limit =-1
to 
memory_limit =1G

Again rebootet the application through confconsole and the error is now gone. But now I have another - Last background job ran more than an hour ago. I am hoping this is due to the memory limit. This time I AM going to bed :-)

Jan Holbo Kaddu Rasmussen's picture

Jan Holbo Kaddu Rasmussen - Mon, 2024/12/23 - 15:48
My cron jobs are not running so went back to PHP 8.1. It may not be optimal, but at least it will run the cron jobs. This might be related to the max runtime issue, so I will revisit the 8.1 config files vs the 8.3 same.

Add new comment