[WIP] Manylinux2010 #279
Merged
[WIP] Manylinux2010 #279
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…ster
- The dockerfiles build successfully.
- Compared to current master, there's a new intermediate image for
glibc. As the x86_64 build depends on it, this must have a predefined
name. In the PR the "naming prefix" is 'markrwilliams/manylinux2',
therefore it's assumed for all images.
- There's a problem with libcurl which has been (temporarily) resolved
with script which redirects yum. See docker/build_scripts/build.sh for
details.
The following script is proven to work:
pushd docker/glibc/
docker build -t markrwilliams/manylinux2:centos-6.9-no-vsyscall
popd
docker/build_scripts/prefetch.sh curl openssl
docker build -t markrwilliams/manylinux2:x86_64 \
-f docker/Dockerfile-x86_64 docker/
docker build -t markrwilliams/manylinux2:i686 \
-f docker/Dockerfile-i686 docker/
- docker/build_scripts/build.sh: - removed libncurses.devel; not part of PEP 571 - removed gpg as dependency, because yum already requires it - removed some /dev/null redirections, because they hinder debugging - docker/build_scripts/manylinux1-check.py - renamed to manylinux-check.py - changed names/comments to new version - the check now targets glibc 2.12 instead of 2.5 - .travis.yml - only changed the image name - TODO: x86_64 still needs a script for the no-vsyscall image dependency - docker/deploy.sh - changed image name - note: .rst files have not been touched
- The freshly released version of pip breaks build_utils.sh which tries to get the latest and greatest. Added a condition to instead use the latest version below v10.
- Incorporated the lastest changes from the official repository.
- That cleanup removed two packages from 'yum erase ...' which looks
like an oversight. Readded.
- Removed the hack which fixed the broken build when the new pip was
released. This has been fixed upstream, see here:
pypa/get-pip#19
- Add platform-dependent clause - Assign the same prefix to the the no-vsyscall image (quay.io/pypa/...) - The dependent docker/Dockerfile-x86_64 needs this prefix in FROM ...
- Increase in `travis_wait` time - Shunting build output off into a log file which can be inspected on failure.
is merge is necessary,
- Similar to gpg the libffi-devel package can't be removed after the build, but it looks like this is because it was improperly packaged. - Moved libffi to the "Development tools and libraries" section.
Like with CentOS 5 there's a CentOS 6 Docker image which is more up to date (tag :6) than the latest release (tag :6.9). See: pypa#206
Previously, vault.centos.org was missing some repository information, which prevented moving to 6.10. This is now available on CentOS 6.10 and it includes a glibc v1.212 (up from 1.209). All changes made are only to bump this version number.
14 tasks
illume
reviewed
Mar 24, 2019
illume
reviewed
Mar 24, 2019
illume
reviewed
Mar 24, 2019
illume
reviewed
Mar 24, 2019
| @@ -0,0 +1,401 @@ | |||
| diff --git a/BUILD/glibc-2.12-2-gc4ccff1/nptl/sysdeps/unix/sysv/linux/x86_64/lowlevellock.S b/BUILD/glibc-2.12-2-gc4ccff1/nptl/sysdeps/unix/sysv/linux/x86_64/lowlevellock.S | |||
There was a problem hiding this comment.
Who wrote this patch?
I found this commit... is it from here? markrwilliams@e9493d5#diff-3eda4130bdba562657f3ec7c1b3f5720
I'm not sure who wrote it, if they need credit, or if it needs review.
There was a problem hiding this comment.
I guess @markrwilliams wrote it ? in #152
There was a problem hiding this comment.
I did, largely backporting vsyscall-less code from newer glibcs.
takluyver
reviewed
Mar 26, 2019
manylinux2 -> manylinux2010
takluyver
reviewed
Apr 5, 2019
Prevent stdout timeout. The global travis timeout is the only one to apply now.
glibc patch is unlikely to change very often, use travis-ci cache mechanism in order not to rebuild it every time. also, use build stages so that when it does change, glibc build is run as a pre-step, it will probably help not reaching the time limit, or at least, glibc build will be cached for job restart.
|
I had to restart a timed-out job before, so I guess it was right on the cusp of the 50 minute timeout. If splitting it into two stages gives us 50 minutes for each stage, that should make it much more reliable. |
|
@mayeut what level of confidence would you have in images built by this branch as it stands? There don't seem to be a lot of people stepping up to do review. Would you be happy if it were merged, so the images are posted to quay.io and people start using them, and we try to fix problems as they come up? Or do you think we should keep it on hold for further review? |
|
I cannot review this, but I am building stuff with manylinux1 and I could definitely try with manylinux2010 and report issues. |
This was referenced Apr 12, 2019
Closed
Closed
grzanka
pushed a commit
to grzanka/manylinux
that referenced
this pull request
May 20, 2020
* Minimal usable merge of markrwilliams:manylinux2 into current pypa:master
- The dockerfiles build successfully.
- Compared to current master, there's a new intermediate image for
glibc. As the x86_64 build depends on it, this must have a predefined
name. In the PR the "naming prefix" is 'markrwilliams/manylinux2',
therefore it's assumed for all images.
- There's a problem with libcurl which has been (temporarily) resolved
with script which redirects yum. See docker/build_scripts/build.sh for
details.
The following script is proven to work:
pushd docker/glibc/
docker build -t markrwilliams/manylinux2:centos-6.9-no-vsyscall
popd
docker/build_scripts/prefetch.sh curl openssl
docker build -t markrwilliams/manylinux2:x86_64 \
-f docker/Dockerfile-x86_64 docker/
docker build -t markrwilliams/manylinux2:i686 \
-f docker/Dockerfile-i686 docker/
* Clean-up and adjustments for manylinux2010
- docker/build_scripts/build.sh:
- removed libncurses.devel; not part of PEP 571
- removed gpg as dependency, because yum already requires it
- removed some /dev/null redirections, because they hinder debugging
- docker/build_scripts/manylinux1-check.py
- renamed to manylinux-check.py
- changed names/comments to new version
- the check now targets glibc 2.12 instead of 2.5
- .travis.yml
- only changed the image name
- TODO: x86_64 still needs a script for the no-vsyscall image dependency
- docker/deploy.sh
- changed image name
- note: .rst files have not been touched
* Fix for new release of pip (v10.0.0) breaking the build script
- The freshly released version of pip breaks build_utils.sh which tries
to get the latest and greatest. Added a condition to instead use the
latest version below v10.
* Merge upstream changes (4a20e4b); remove get-pip hack
- Incorporated the lastest changes from the official repository.
- That cleanup removed two packages from 'yum erase ...' which looks
like an oversight. Readded.
- Removed the hack which fixed the broken build when the new pip was
released. This has been fixed upstream, see here:
pypa/get-pip#19
* Re-add the two /dev/null redirections in build.sh
* Merge upstream changes (6f3bc0b)
* Merge upstream changes (3dd4551)
* Merge upstream changes (4132165)
* Adapt build.sh for the x86_64 two-stage build
- Add platform-dependent clause
- Assign the same prefix to the the no-vsyscall image (quay.io/pypa/...)
- The dependent docker/Dockerfile-x86_64 needs this prefix in FROM ...
* Getting Travis to play along
- Increase in `travis_wait` time
- Shunting build output off into a log file which can be inspected
on failure.
* Drop 32-bit support and upgrade to devtoolset-7
* Update README.rst
manylinux2 -> manylinux2010
* Add comment regarding MANYLINUX2010_DEPS
* Add comment for Software collection & EPEL usage
* Move expat-devel to PYTHON_COMPILE_DEPS
* Use local gpgkey for RPM-GPG-KEY-CentOS-6
* Update to devtoolset-8
* Replace travis wait by custom command
Prevent stdout timeout. The global travis timeout is the only one to apply now.
* Use travis-ci build stages and cache glibc build
glibc patch is unlikely to change very often, use travis-ci cache mechanism in order not to rebuild it every time.
also, use build stages so that when it does change, glibc build is run as a pre-step, it will probably help not reaching the time limit, or at least, glibc build will be cached for job restart.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
A new Manylinux 2010 PR based on #182 with master merged c.f. #179 (comment)
Remaining items: