Some Python requirements are not hosted on PyPI
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Glance |
Fix Released
|
Undecided
|
Unassigned | ||
OpenStack Compute (nova) |
Fix Released
|
High
|
Jeremy Stanley | ||
OpenStack Dashboard (Horizon) |
Fix Released
|
High
|
Zhenguo Niu | ||
OpenStack Identity (keystone) |
Fix Released
|
High
|
Brant Knudson | ||
Havana |
Fix Released
|
High
|
Morgan Fainberg | ||
OpenStack Object Storage (swift) |
Fix Released
|
High
|
Jeremy Stanley | ||
neutron |
Fix Released
|
High
|
Zhenguo Niu | ||
python-keystoneclient |
Fix Released
|
High
|
Brant Knudson | ||
tripleo |
Fix Released
|
High
|
Clint Byrum |
Bug Description
Pip 1.5 (released January 2nd, 2014) will by default refuse to download packages which are linked from PyPI but not hosted on pypi.python.org. The workaround is to whitelist these package names individually with both the --allow-external and --allow-insecure options.
These options are new in pip 1.4, so encoding them will break for people trying to use pip 1.3.x or earlier. Those earlier versions of pip are not secure anyway since they don't connect via HTTPS with host certificate validation, so we should be encouraging people to use 1.4 and later anyway.
The --allow-insecure option is transitioning to a clearer --allow-unverified option name starting with 1.5, but the new form does not work with pip before 1.5 so we should use the old version for now to allow people to transition gracefully. The --allow-insecure form won't be removed until at least pip 1.7 according to comments in the source code.
Virtualenv 1.11 (released the same day) bundles pip 1.5 by default, and so requires these workarounds when using requirements external to PyPI. Be aware that 1.11 is broken for projects using sitepackages=True in their tox.ini. The fix is https:/
This bug will also be invisible in our test infrastructure for projects listed as having the PyPI mirror enforced in openstack/
We'll use this bug to track necessary whitelist updates to tox.ini and test scripts.
tags: | added: havana-backport-potential |
tags: | added: grizzly-backport-potential |
Changed in python-keystoneclient: | |
assignee: | nobody → Brant Knudson (blk-u) |
Changed in tripleo: | |
status: | New → Confirmed |
assignee: | nobody → Clint Byrum (clint-fewbar) |
importance: | Undecided → Critical |
Changed in horizon: | |
assignee: | nobody → Zhenguo Niu (niu-zglinux) |
status: | New → Confirmed |
Changed in neutron: | |
assignee: | nobody → Zhenguo Niu (niu-zglinux) |
Changed in horizon: | |
importance: | Undecided → High |
Changed in swift: | |
importance: | Undecided → High |
Changed in python-keystoneclient: | |
importance: | Undecided → High |
milestone: | none → 0.4.2 |
Changed in keystone: | |
status: | New → Fix Committed |
Changed in nova: | |
importance: | Undecided → High |
Changed in keystone: | |
importance: | Undecided → High |
assignee: | nobody → Brant Knudson (blk-u) |
Changed in keystone: | |
milestone: | none → icehouse-2 |
status: | Fix Committed → Fix Released |
Changed in python-keystoneclient: | |
status: | Fix Committed → Fix Released |
Changed in horizon: | |
assignee: | Zhenguo Niu (niu-zglinux) → nobody |
Changed in neutron: | |
importance: | Undecided → High |
milestone: | none → icehouse-3 |
Changed in neutron: | |
status: | Fix Committed → Fix Released |
Changed in horizon: | |
status: | In Progress → Fix Committed |
Changed in horizon: | |
assignee: | nobody → Zhenguo Niu (niu-zglinux) |
milestone: | none → icehouse-rc1 |
tags: | removed: grizzly-backport-potential |
Changed in horizon: | |
status: | Fix Committed → Fix Released |
Changed in keystone: | |
milestone: | icehouse-2 → 2014.1 |
Changed in horizon: | |
milestone: | icehouse-rc1 → 2014.1 |
Changed in neutron: | |
milestone: | icehouse-3 → 2014.1 |
Changed in nova: | |
status: | In Progress → Fix Committed |
Changed in nova: | |
milestone: | none → juno-2 |
Changed in nova: | |
status: | Fix Committed → Fix Released |
no longer affects: | openstack-ci |
Changed in nova: | |
milestone: | juno-2 → 2014.2 |
Changed in swift: | |
status: | In Progress → Fix Released |
We're tracking general work for this under item #3 in https:/ /etherpad. openstack. org/p/pip1. 5Upgrade but the current changes in flight so far are...
openstack/nova (netaddr): /review. openstack. org/65019 (master) /review. openstack. org/65020 (stable/havana) /review. openstack. org/65021 (stable/grizzly)
https:/
https:/
https:/
openstack/swift (netifaces): /review. openstack. org/65023 (master) /review. openstack. org/65024 (stable/havana) /review. openstack. org/65025 (stable/grizzly)
https:/
https:/
https:/
openstack- infra/reviewday (lazr.authentic ation): https:/ /review. openstack. org/65026
openstack- infra/elastic- recheck (lazr.authentic ation): https:/ /review. openstack. org/64898