Build has a circular dependency on tomli. #430
Comments
|
And how do you build pep517 without build? |
Well at the moment the latest pep517 release does have a distutils based |
|
There are several ways we (or you) could approach this, including:
Happy to hear other ideas. |
Might be the best option.
That approach is problematic since the submodule deps don't seem to be namespace vendored so they would potentially conflict with the normal versions of those packages.
That's duplicating the entry points, we really shouldn't need to use 2 different pep517 frontends here IMO.
What's the issue with the setuptools shim? That's exactly what |
You will not be deploying the submodule deps - they're only there for bootstrapping.
The issue is that |
Eh? It seems to be installing the submodule deps into the current site-packages is it not? We don't want to be installing host toolchain packages like
Seems like an issue that could be fixed by keeping it around for bootstrapping purposes, at least until someone finds a better solution. |
Right, that's why I said meta-package - you would not have a separate package for build or the build package would be a no-op and depend on the meta-package. |
So if we would do that we would end up with an unwieldy meta-package that would prevent us from managing/installing any of the bundled meta-package dependencies(which are really fully separate python packages/not properly vendored) separately. It doesn't sound like a great option to me. |
The idea is that you build bootstrapping versions of these packages and then use them to build the proper versions you want to distribute. You surely need to do the same with GCC for eg., this is a perfectly standard bootstrapping procedure. It would be great to be able to avoid it, but we are stuck with this for now. |
We're a source based distro, this means the version used for bootstrapping is inherently the version we distribute(we distribute only source code effectively, no prebuilt
We have infrastructure that builds a complete host toolchain from source using minimal host dependencies, it is somewhat complex though(multi-stage gcc build). I think gentoo does something similar.
I mean, there are obviously ways it can be avoided(like using existing setuptools tooling for bootstrapping), so we're not stuck with this bootstrapping problem for technical reasons so much as policy it seems. |
This would imply that:
|
|
I think it's sensible that all bootstrapping dependencies should use the same backend; all of them do currently reside in the PyPA (correction: tomli is separate) so they are under our (collective) control. I would hope that it's not too difficult to establish consensus on a boostrapping backend. To clarify, I'm not suggesting we should revert to |
That seems like a limitation from your part, and you should have ways around this if you package other software that needs bootstrapping. I have designed https://github.com/FFY00/python-bootstrap to be compatible with standard bootstrapping procedures, namely, it should at the very least be able to be used in the same way as the GCC bootstrapping procedure, which itself should basically be compatible with everyone because essentially everyone needs to do it anyway. This will result in a more complex bootstrapping procedure than you are used to for Python, which is undesirable, but it should be compatible at least.
You can do something similar here, what I am proposing is essentially a multi-stage build process, which you may split or not into different steps via your tooling.
No, they aren't, at least long term. This is not a policy issue, direct |
To be clear here, PyPA doesn't have the power to dictate what individual projects do, although we can clearly advise/encourage. |
|
The immediate next sentence says "consensus". |
Which would be a good idea initially during the migration period...I'm not saying it would be forever, just that it provides the cleanest migration path at the moment. Aren't basically all
I mean, providing a
Yeah, that would be helpful, if
It's somewhat language specific. Most toolchains don't have circular dependency issues this bad though.
It's very different from how we do GCC bootstrapping from what I can tell, which is an extremely complex multi-stage process and it's also very GCC specific.
Which is a huge pain(also potentially slows down builds a lot) and totally unnecessary from a technical point of view here.
I'm talking about for the short term...for migration specifically. I guess for long term if everything uses |
Ok, so now that I think I have a better understanding of the situation I think this is probably the best approach as it seems like it can potentially avoid the circular dependency issues. I think it would be helpful here for there to be a |
I guess your mileage might vary, but I maintain 6 GCC toolchains in Arch Linux, so I do have some experience there, and I would describe this process as following the same model overall. Similarly to GCC, we are building a bootstrapping version of the required tooling and then using that to build the actual tooling we want to distribute. GCC is even more complex as it requires building a libc with the bootstrapping version and then rebuilding itself against the libc that was built.
I do not disagree that it's a huge pain. You can make whatever technical review of this that you want, but if your solution includes opening bugs in the upstreams asking for them to change to fit your model, then you need to accept that that might not happen. I understand that you have experience with packaging and bootstrapping, and respect that, but so do we, and unless we've failed to properly consider your specific use-case (which after our extensive discussion, I assure I did not), you need to respect that we are the ones maintaining the software and after considering all the use-cases we need to support, maintenance costs, and social costs, we have made our call. |
Just to reiterate:
The organization has no control over what any of those projects do. We as a collective can advise to some consensus; with what individual projects can disagree and disregard. Ultimately what each project in particular does is to their respective maintainer(s). You can try to force through a PEP that makes it standard that tools/libraries in the chain must not use another backend than setuptools/flit, but that's only useful to the point where you can say to them look you're not following the standard but still not force them to change. |
There are several issues with this proposal, mainly from maintenance and social costs, so I doubt it will happen. FWIW, I did come into Python packaging with the same background as you, trying to solve the same problem as you, and having learned from that experience, I underestimated a lot of things, mainly social costs, which worked against me. It seems to me that you are making the same mistake here, so I would recommend that you reconsider the weight you assign to other people's positions and try to work with them instead of trying to change their minds. This might be difficult at first, but after getting to know the other people in the community a little bit better, you will get a better understanding of their technical background and knowledge, which will help 😅 |
I don't really see this happening. The scope of flit_core is to be a backend in the sense of PEP 517, and to be more or less as minimal as practical. It's easy to add a very basic CLI interface To approach it another way, adding
|
Yeah, I think that would be what would make the most sense, since most of the logic there would be needed for the
Yeah, the idea would be that we would only use
Just enough install functionality to get the full PEP-517 build+install toolchain brought up would be sufficient, it's at least reasonably straight forward to implement an integration then from what I can tell. |
We are a source based distro so we distribute source to do the multi-stage build, basically we distribute the bootstrapping version in source form and the normal version in source form as well(integrated with tooling that makes it compile+install automatically).
Our tooling I think is probably a bit different from how you understand it, which is normal unless you've worked with our tooling directly as it's somewhat unique, I'm an expert with it and I still have to review the build system code a lot of the time to understand how things work exactly a lot.
For build system tooling I tend to think a more centralized approach(like that of mesonbuild) often works better as things integrate cleaner that way, that def explains at least why things are a bit messy here as cross-project coordination is often difficult.
Yeah, I know I'm coming more from a systems integration background rather than a language specific build tool development background and haven't followed the history all that closely here. Sorry if I'm coming off a bit hostile, my general approach is just to go back and forth questioning stuff to figure out why things are being done a certain way and what the viable solutions are. If I'm questioning an approach it generally just means I'm having trouble seeing a good way to implement it in the context of our integration requirements. |
build already installs a script ( |
Ah, yeah I think that would be workable.
So yeah as long as |
|
OK, thanks. Then I think we have a path forwards with two small additions to flit_core:
|
|
I don't see how any of this is better than doing what @FFY00 suggested with the 'shadow' package as demonstrated by https://github.com/FFY00/python-bootstrap. At the end of the day you're still gonna have to run some part of the stack from path, which currently appears to be flit and the installer. |
Yeah, and maybe make it so that this can be used by
It's easier this way due to fairly strict dependency ordering requirements on our side. The python-bootstrap project is inserting all We can path hack the current package being built+installed to use its own in tree source for that build+install but we can't path hack it in combination with another package that has yet to be built+installed.
We're only running installer from path during the installer build+install process though in this case( |
|
@layday I'm not sure that it is better, just a different option. The python-bootstrap route means downloading the source of several key pieces of packaging infrastructure at once, and (possibly, depending on how the downstream packaging works) putting them all in one big 'python packaging basics' downstream package. That's more convenient - just one thing to handle as a special case, and then everything else is normal. But it's somewhat messy, since you need to somehow get the source of several separate upstream projects together, outside your normal dependency mechanisms. The approach I'm talking about is more work for downstreams, because there are several packages that need to be built as somewhat special cases. But it means that each individual upstream project can be packaged one at a time, and translated 1:1 to downstream packages.
I think that's workable, yup. |
With how our infrastructure is set up the python-bootstrap route appears to be the most difficult to integrate option, mostly since it requires violating various assumptions regarding dependency ordering for us.
For us the
Yeah, and the reason for syncing the build+install stages with our infrastructure build+install stages like that is so that we trigger any potential wheel build errors before installation. It makes debugging issues easier if we can trigger errors as early as possible. |
|
It doesn't look like there's anything actionable for build here, please continue discussion over at flit. |
It seems we have a circular dependency issue with build preventing bootstrapping a
pep517toolchain if using the latest version oftomli.I'm seeing the following dependency cycles here preventing me from using the latest
tomliwithbuild:I think the solution is to probably have both
pep517andbuildvendortomli, although maybe onlypep517needs to vendor it.The text was updated successfully, but these errors were encountered: