jessenoller.com

Just curi­ous: do you think you’re at the point where you could sit down and write out a descrip­tion of how pack­ag­ing in python would work if it was “per­fect” — or do you think the improve­ments are going to con­tinue incrementally?

Hi Jesse,

Good post — very timely. I am also respon­si­ble for pack­ag­ing up script­ing lan­guages for my com­pany (EDA space) and while I agree with you on most cases I don’t on oth­ers. I will point out some of the chal­lenges I see with your post. The point of view I come from is ensur­ing that all users have a con­sis­tent (site) envi­ron­ment. I don’t focus too much on the “user-space” because I want them to do that for themselves.

In gen­eral I think that if you can use the sys­tem defined (/usr/bin/python) and it’s default installed pack­ages you should. As you and I both know the temp­ta­tion to use exter­nal python mod­ules is too great and there­fore the only real way of using them it to muck up the default installed python, which in gen­eral I agree with you is a bad thing **. Also I am com­pletely sen­si­tive to the needs of devel­op­ers who like the lat­est ver­sion of python and so I am com­pletely cool with using –pre­fix and pack­ag­ing up a base python (rpm) in a spe­cific loca­tion for them to use.

While I agree that “mucking-up” the default install tree is bad, I am ok with using a sin­gle *.pth file inside of the default site-packages loca­tion to allow the abil­ity to hook into exter­nal “site” direc­to­ries as needed. The ben­e­fits of doing this are as fol­lows:
— I use a sin­gle envi­ron­ment vari­able which is defined in the /etc/profile (/etc/csh.cshrc) which spec­i­fies the “site” pack­age direc­tory to look in.
— Allows me to ver­sion con­trol this site tree (we use per­force but any repos­i­tory could work).
— Allows me to shift on the fly from a dev branch to a head release branch of installed mod­ules, or those in test.
— I haven’t touched PYTHONPATH and reserved that for the user.
— Mod­ule ver­sions and depen­dan­cies are han­dled via the ver­sion con­trol sys­tem which houses mod­ules. We use per­force so I can get back to a point in time using back-in-time brows­ing if I need to.
— vir­tualenv is great for devel­op­ers but when real users have to use it — they are too eas­ily con­fused.. Sorry ;)

So how does this work. Assump­tion: A generic instal­la­tion of python 2.x in a cus­tom (/usr/local/bin) space.
— Add a site.pth file. The con­tents look like this..
import os, site; smsc = os.environ.get(“SMSCTECHROOT”, “/smsc/tech”);
smsc = smsc if os.path.isdir(os.path.join(smsc, “tools/python/Linux/x86_64/lib/python2.5/site-packages”))
else “/smsc/tech”; site.addsitedir(os.path.join(smsc, “tools/python/Linux/x86_64/lib/python2.5/site-packages”))

Because of the lim­i­ta­tions on *.pth this looks much more con­vo­luted than it needs to.. but I digress.
— So when a user fires up python the tree is resolved and he is look­ing into the repos­i­tory (or depot) for python mod­ules. If a devel­oper is test­ing some­thing prior to com­mit­ting (or sub­mit) he sim­ply refers to his local area as SMSCTECHROOT. Remem­ber SMSCTECHROOT is defined in /etc/profile so it’s a guarantee.

The prob­lems with this approach:
- I agree that touch­ing a global direc­tory (“/usr”) is a bad idea but I just don’t see any­way around it.
- I don’t like touch /etc/profile or /etc/csh.cshrc

Over­all though I think your “user” spe­cific empha­sis is good. I also think that PEP370 is very well han­dled. I don’t nec­es­sar­ily agree with you that vir­tualenv is the best thing since sliced bread for the rea­son I pointed out. I would say if I was a appli­ca­tion devel­oper who wanted to pack­age his own appli­ca­tion I would use the mac .app approach and roll my own mini-python inside the .app tree.

Thanks you made me think on a Mon­day — Keep up the good work!!

Isn’t “.local” a rather generic name for some­thing that’s going to be mys­te­ri­ously appear­ing in users’ home directories?

You can change the name of the direc­tory with the PYTHONUSERBASE envi­ron­ment vari­able; but I def­i­nitely agree with you

“we play in a setuptools-based world, which is unfor­tu­nate in a lot of respects”

This is only unfor­tu­nate in so much as setup­tools hasn’t seen a lot of main­te­nance of late, and that setup­tools does way too much stuff. Typ­i­cally its behavoiur such as how scripts are gen­er­ated by easy_install which irks peo­ple, or how pack­ages are down­loaded which bother oth­ers, or how pack­age meta­data is dif­fer­ent between setup­tools and dis­tu­tils. But there is noth­ing in the python pack­ag­ing ecosys­tem which says you need to con­sume or use the ugly bits of setup­tools — none of the ugly bits have been immor­tal­ized in a PEP! And the ugly bits of Dis­tu­tils that have been PEP-immortalized will hope­fully be kicked to the curb (PEP 314’s Requires and Pro­vides fields) with­out too much fuss.

Hope­fully the ‘Dis­trib­ute’ fork can fur­ther clar­ify what peo­ple want to keep and what to seper­ate out from setup­tools. Heck, if some­one came up today with yet-another setup­tools fork, aside from an out­cry of “code dupli­ca­tion”, I think this could be a good thing! It would fur­ther clar­ify for folks what parts of pack­ag­ing are ‘stan­dards’ and ‘inter­changle for­mats’ and what parts are just instances of behav­iour of a given tool and can eas­ily be changed (by switch­ing tools) and only affect user’s of that given tool.

I also think any truly sat­is­fy­ing solu­tion to library man­age­ment for a devel­oper with rea­son­ably com­plex require­ments won’t involve any site-packages. Obvi­ously site-packages isn’t going away any time soon, it caters really well for the “scripters” use-case where they just want to con­sume 3rd party libs in a more one-off script­ing nature. But PEP 370 and Vir­tualEnv work within the assump­tion and the con­straints of “we already have a Python instal­la­tion with a shared ‘bin’ loca­tion and shared ‘library’ loca­tion” and then place installed files inside those loca­tions. Vir­tualEnv is a total hack — but a beau­ti­ful one! It’s good how vir­tualenv is back­wards com­pat­i­ble with all of the exist­ing stuff — but by it’s nature it doesn’t try and re-think or re-work how the prob­lem is solved. With any shared loca­tion, be it a root-only site-packages, a .local site-packages, or a virtualenv-cloned site-packages, any shared loca­tion is an all-or-nothing loca­tion. With any all-or-nothing shared loca­tion you will always have the poten­tial for con­flicts: installing or updat­ing depen­den­cies for one app may break another already installed app. When attempt­ing to sort out version/dependency issues you can’t choose just some libs from a shared loca­tion, but eas­ily ignore other libs of the wrong ver­sion in that location.

If you start with­out any notion of using a site-packages, then instead you can do some­thing such as the Build­out approach:

~/projects
/app1
/buildout.cfg
/bin
/yolk
/app2
/buildout.cfg
/bin
/yolk
~/pythonlibs
/yolk-0.4.1-py2.6.egg
/yolk-0.4.1-py2.4.egg

This approach has the ben­e­fits of:

* Don’t need to have dupli­cate instal­la­tions of the same ver­sion of the same library. Each ver­sion of each library only has to be installed once.

* Scripts are installed in a project-specific loca­tion, not in a shared space.

This does mean that if yolk-0.4.1 is used by two dif­fer­ent projects, then Build­out will gen­er­ate two ./[someproj]/bin/yolk script entries. But that’s a case where dupli­ca­tion is a good thing! While you may hap­pen to be work­ing on both projects today, and both projects are using the same libraries and python ver­sion, tomor­row could be a dif­fer­ent story. You might want to update one project up to a cutting-edge dev ver­sion of a library but don’t want to do that right now for the other project. Or maybe one project is being migrated from Python 2.5 to 2.6, but you want to hold the other project back to 2.5. You might want to have a yolk-0.4.1 and yolk-0.5dev installed side-by-side for one project, where ./bin/yolk-stable and ./bin/yolk-dev are expressed. heck, you might even want two scripts that call into yolk-0.4.1, but one ver­sion of the script needs to con­tain an extra line or two of hard-coded python to han­dle a spe­cific use case (./bin/yolk and ./bin/yolk-extra-easy). Scripts are always installed to sup­port a spe­cific appli­ca­tion or project, so always putting the scripts into a project-specific loca­tion makes things a lot sim­pler and I think is the way to go.

Using a boot­strap in con­junc­tion with Vir­tualEnv to bring a suite of dev tools into any new project is a good idea (e.g. pylint, nose, zest.releaser). But why state, “These are the dev tools I use and want to carry around with me”, when instead you can state, “This project uses these dev tools for sup­port” and “That project uses those dev tools for sup­port”. Each project states it’s own requirement’s and pref­er­ences for what tools (and pos­si­bly ver­sions) it needs. In this way two developer’s who nor­mally pre­fer dif­fer­ent dev tools can eas­ily col­lab­o­rate on a project together. They don’t need to argue over what the “stan­dard dev tool” suite should to be, instead they can say, “we should switch from Tool X to Tool Y for Project A because if gives use Ben­e­fit C”. Each project expresses it’s pref­er­ences of what scripts are pow­ered by which ver­sion of which libs and which python inter­preter (whew!). Then the only thing remain­ing is for instal­la­tion tool to care of the ugly work of express­ing those pref­er­ences by out­putting the gory details of the hard-coded bits of a script into a project’s /bin/ directory.

Many lan­guage camps have toyed with the approach of writ­ing out hard-coded scripts that declare library loca­tions up-front, and typ­i­cally they back away from it because this approach is deemed to be “clunky”. But it’s only clunky if you have to deal with the hard-coding man­u­ally! As soon as you check-in hard-coded scripts into ver­sion con­trol, the other devel­op­ers would right­fully berate you (and so instead you put “#!/usr/bin/env python” as a script header, but then you are only push­ing the need to hard-code what python and what libs will be used into a hard-coded shell file …) But instead if you sim­ply express the require­ments of each script (which inter­preter, which libraries, where to call into for the main func­tion), then it becomes pos­si­ble to allow a tool to auto­mate expres­sion of all of the clunky bits and from the developer’s per­spec­tive “clunky” becomes “effort­less”. Fur­ther­more if your def­i­n­i­tion of “clunky” is guided by actual per­for­mance bench­marks in a given deploy­ment, then you can use dif­fer­ent recipes to express script and pack­age lay­out (flat install, egg-install, zipped-only install) until you reach a file lay­out that is opti­mized for a given deployment.

Another rea­son for tak­ing the appraoach of hav­ing an install tool lay­out the gory details of set­ting up scripts and libs for a project is that you can acco­mo­date more than one lan­guage. Sure, python is far and away my favorite lan­guage, but I appre­ci­ate python the lan­guage just fine with­out appre­ci­ate how the files to sup­port a given imple­men­ta­tion of python are layed out. Imag­ine if you had “Vir­tu­al­RubyEnv” and “Vir­tu­alPer­lEnv” and you work­ing on some mon­grelly project that wanted to com­bine Python, Ruby and Perl into one place (and in an acedemic/bioinformatics set­ting, mon­grelly projects seem to be more com­mon than pure one lan­guage only projects). Which “Vir­tu­al­Lang” would be the mas­ter one? What if one lan­guages notion of where it puts stuff is incom­pat­i­ble with how another lan­guage lays out it’s files?

So we already have, in one incar­na­tion via Build­out and zc.recipe.egg, osten­si­bly reached some form of Python pack­ag­ing nir­vana, where libraries are con­sumed from a multi-version only-installed-once-each repos­i­tory and sub­tly dif­fer­ent scripts aren’t attempt­ing to over­write each other. You still have the valid crit­i­cisms of Build­out being more dif­fi­cult to approach and learn than it needs to be, and these prac­tices need to be more stan­dard­ized so that any install method is inter­change­able with any other one. And peo­ple need to sim­ply be aware where a prac­tice that is caus­ing them grief *is not* a set-in-stone stan­dard (or any stan­dard at all), but merely the behav­iour of a given tool.

For the Build­out prob­lem, this can be solved with either bet­ter docs, or sim­ply using a dif­fer­ent install tool but tak­ing the same approach to instal­la­tion (e.g. you could do all this with Paver). It would be be a sign of suc­cess if we could get to a place where a Ruby-centric devel­oper who wanted to use a lit­tle Python in their project could eas­ily man­age Python script gen­er­a­tion and library instal­la­tion from Ruby code.

For stan­dard­iz­ing things so that more and dif­fer­ent tools can play and inter­op­er­ate well (e.g. if Build­out could cherry-pick some, but not all, OS dis­tro installed libraries). This is what the bulk of most of Tarek’s PEP writ­ing has been push­ing python pack­ag­ing towards: adding install_requires and entry_points to the offi­cial meta­data, writ­ing out proper instal­la­tion meta­data so that you can query a loca­tion and it can tell you what pack­age and ver­sion are installed there, and the men­tioned but as-yet-un-pep’ed way to struc­ture and con­sume a multi-version location.

Thanks — my big prob­lem with build­out has been one of sim­plic­ity, and under­stand­ing which recipe does which thing and which one makes sense. Trolling pypi for the “build­out” term results in *cough* quite a few of them.

That being said, until Tarek can kick­ass and fix up dis­tu­tils to be “on par”-ish with setup­tools, and push out his fork of it, we play in a setuptools-based world, which is unfor­tu­nate in a lot of respects.

There are 143 at the moment, to be precise:

http://pypi.python.org/pypi?:action=browse&show…

But as a gen­eral pur­pose project setup and instal­la­tion tool, that’s kind of the point — dif­fer­ent recipes to install dif­fer­ent stuff. Although there are lots of recipes that are overly-specific and often a sin­gle more generic recipe is later devel­oped which can be used, and other recipes that are near-duplicates and a “canon­i­cal” one needs to be cho­sen: tem­plat­ing of con­fig files is a good exam­ple here.

But usu­ally when peo­ple talk about Build­out in the con­text of man­ag­ing Python libraries, they actu­ally mean the zc.recipe.egg recipe, which is the most com­monly used recipe used to install python pack­ages and scripts.

As for reach­ing under­stand­ing with Build­out, well, I think there is still lots of room for improve­ment in mak­ing a more user friendly “get­ting start­ing with Build­out” doc­u­ment. Learn­ing Build­out still does tend to require more head­bang­ing than should be needed.

Inter­est­ing thoughts — I’ve been pon­der­ing more and more “hooks” we could tar­get for tarek’s refac­ing of dis­tu­tils to make things like buildout/virtualenv “more of a first class citizen”.

I *do* like the recipe approach, although I admit that I’m not famil­iar enough with gen­er­at­ing them to “really be keen on them” — also, some part of me wishes all of the recipes were cen­tral­ized in some way to make them men­tally mesh a bit more.

And I have head­banged on build­out a bit, and bounced off — it’s rel­a­tively alien to my work­flow and per­son­ally I found the very sim­ple pip/virtualenv work­flow dead sim­ple to use (and rapid to learn). But that’s just me.