Using Build Containers
We can revisit the getting-started example using containers in podman to manage build dependencies and tools in a repeatable way.
We will use pydantic-core and a Universal Base Image (UBI) for Red Hat Enterprise Linux 9 to demonstrate debugging and fixing a build failure.
Inputs
We start with the same requirements.txt file:
requirements.txt
# This older version of pydantic-core needs a version of rustc not available in
# our builder image.
pydantic-core==2.18.4
and an empty constraints.txt.
The build container includes Python, rust, and a virtualenv with fromager installed:
Containerfile
# Simple image definition demonstrating building with system dependencies in a
# repeatable way.
ARG RHEL_MINOR_VERSION=9.4
FROM registry.access.redhat.com/ubi9/ubi:${RHEL_MINOR_VERSION}
USER 0
# install patch for fromager
# install rust for building pydantic-core
RUN dnf install -y --nodocs \
patch rust cargo \
&& dnf clean all
# /opt/app-root structure (same as s2i-core and ubi9/python-312)
ENV APP_ROOT=/opt/app-root \
HOME=/opt/app-root/src \
PATH=/opt/app-root/src/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
# Python, pip, and virtual env settings
ARG PYTHON_VERSION=3.12
ENV PYTHON_VERSION=${PYTHON_VERSION} \
PYTHON=python${PYTHON_VERSION} \
PIP_NO_CACHE_DIR=off \
PIP_DISABLE_PIP_VERSION_CHECK=1 \
PYTHONIOENCODING=utf-8 \
PS1="(app-root) \w\$ "
RUN dnf install -y --nodocs \
${PYTHON} \
${PYTHON}-devel \
&& dnf clean all
# Set up a virtualenv to hold fromager
ENV VIRTUAL_ENV=${APP_ROOT}
RUN ${PYTHON} -m venv --upgrade-deps ${VIRTUAL_ENV} \
&& mkdir ${HOME}
ENV PATH=${VIRTUAL_ENV}/bin:$PATH
# Install the build tools
RUN ${PYTHON} -m pip install fromager
CMD /bin/bash
# Tell fromager what variant to build with this image
ENV FROMAGER_VARIANT=cpu-ubi9
WORKDIR /work
# Install the fromager settings to the work directory
COPY ./overrides /work/overrides
First try
Then we can use the bootstrap.sh script in the docs/example directory to
build and test the image:
bootstrap.sh
#!/bin/bash
# Script for manually testing the bootstrap process using a container
catch() {
if [ ! -f "$CONSTRAINTS" ] && [ -f "$CONSTRAINTS_FILE" ]; then
rm -f "$CONSTRAINTS_FILE"
fi
if [ ! -f "$REQUIREMENTS" ] && [ -f "$REQUIREMENTS_FILE" ]; then
rm -f "$REQUIREMENTS_FILE"
fi
}
trap 'catch' EXIT INT
usage() {
echo "Usage: [-f <fromager arguments> | -k <seconds>] CONTAINERFILE CONSTRAINTS REQUIREMENTS"
echo " -c: Execute different command in container (must be passed with double quotes)"
echo " -f: additional fromager arguments"
echo " -h: help (this message)"
echo " -k: set number of seconds to keep container running after execution"
}
COMMAND=""
FROMAGER_ARGS=""
KEEPALIVE=0
BASE_ARGS=()
while [[ $# -gt 0 ]]; do
case $1 in
-h)
usage
exit 0
;;
-c)
COMMAND="$2"
shift
shift
;;
-f)
FROMAGER_ARGS="$2"
shift
shift
;;
-k)
KEEPALIVE="$2"
re='^[0-9]+$'
if ! [[ "$KEEPALIVE" =~ $re ]]; then
echo "-k value must be a number of seconds to keep container running"
exit 1
fi
shift
shift
;;
*)
BASE_ARGS+=("$1")
shift
;;
esac
done
# reset the args with base arguments
set -- "${BASE_ARGS[@]}"
if [ "$#" -lt 3 ]; then
usage
exit 1
fi
set -x
set -e
set -o pipefail
CONTAINERFILE="$1"
CONSTRAINTS="$2"
REQUIREMENTS="$3"
if [ ! -f "$CONSTRAINTS" ]; then
CONSTRAINTS_FILE=$(mktemp)
echo "$CONSTRAINTS" | tr ',' '\n' > "$CONSTRAINTS_FILE"
else
CONSTRAINTS_FILE="./$CONSTRAINTS"
fi
if [ ! -f "$REQUIREMENTS" ]; then
REQUIREMENTS_FILE=$(mktemp)
echo "$REQUIREMENTS" | tr ',' '\n' > "$REQUIREMENTS_FILE"
else
REQUIREMENTS_FILE="./$REQUIREMENTS"
fi
IMAGE="wheels-builder"
# Strip the dev suffix, if any
VARIANT="cpu-ubi9"
# Create the output directory so we can mount it when we run the
# container.
OUTDIR=bootstrap-output
CCACHE_DIR=.bootstrap-ccache
mkdir -p "$OUTDIR" "$CCACHE_DIR"
# Build the builder image
podman build \
-f "$CONTAINERFILE" \
-t "$IMAGE" \
.
# set the default command
[ -z "$COMMAND" ] && COMMAND="fromager ${FROMAGER_ARGS} \
--constraints-file /bootstrap-inputs/constraints.txt \
--log-file=$OUTDIR/bootstrap.log \
--sdists-repo=$OUTDIR/sdists-repo \
--wheels-repo=$OUTDIR/wheels-repo \
--work-dir=$OUTDIR/work-dir \
bootstrap -r /bootstrap-inputs/requirements.txt"
# Run fromager in the image to bootstrap the requirements file.
podman run \
-it \
--rm \
--security-opt label=disable \
--volume "./$OUTDIR:/work/bootstrap-output:rw,exec" \
--volume "./$CCACHE_DIR:/var/cache/ccache:rw,exec" \
--volume "${CONSTRAINTS_FILE}:/bootstrap-inputs/constraints.txt" \
--volume "${REQUIREMENTS_FILE}:/bootstrap-inputs/requirements.txt" \
--ulimit host \
--pids-limit -1 \
"$IMAGE" \
sh -c "$COMMAND; sleep $KEEPALIVE"
The output below is redacted for brevity. Missing sections are replaced with ....
$ cd docs/example
$ ./bootstrap.sh Containerfile ./constraints.txt ./requirements.txt
...
podman run -it --rm --security-opt label=disable --volume ./bootstrap-output:/work/bootstrap-output:rw,exec --volume ./bootstrap-ccache:/var/cache/ccache:rw,exec --volume ././constraints.txt:/bootstrap-inputs/constraints.txt --volume ././requirements.txt:/bootstrap-inputs/requirements.txt wheels-builder fromager --constraints-file /bootstrap-inputs/constraints.txt --log-file=bootstrap-output/bootstrap.log --sdists-repo=bootstrap-output/sdists-repo --wheels-repo=bootstrap-output/wheels-repo --work-dir=bootstrap-output/work-dir bootstrap -r /bootstrap-inputs/requirements.txt
logging debug information to bootstrap-output/bootstrap.log
primary settings file: overrides/settings.yaml
per-package settings dir: overrides/settings
variant: cpu-fedora
patches dir: overrides/patches
maximum concurrent jobs: None
constraints file: /bootstrap-inputs/constraints.txt
wheel server url:
network isolation: True
loading constraints from /bootstrap-inputs/constraints.txt
bootstrapping 'cpu-fedora' variant of [<Requirement('pydantic-core==2.18.4')>]
no previous bootstrap data
resolving top-level dependencies before building
pydantic-core==2.18.4 resolves to 2.18.4
...
pydantic-core: building wheel for pydantic-core==2.18.4 in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4 writing to /work/bootstrap-output/wheels-repo/build
['/usr/bin/unshare', '--net', '--map-current-user', '/work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3', '-m', 'pip', '-vvv', '--disable-pip-version-check', 'wheel', '--no-build-isolation', '--only-binary', ':all:', '--wheel-dir', '/work/bootstrap-output/wheels-repo/build', '--no-deps', '--index-url', 'http://localhost:45837/simple/', '--log', '/work/bootstrap-output/work-dir/pydantic_core-2.18.4/build.log', '/work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4'] failed with Created temporary directory: /tmp/pip-build-tracker-q7oc2ftp
Initialized build tracking at /tmp/pip-build-tracker-q7oc2ftp
Created build tracker: /tmp/pip-build-tracker-q7oc2ftp
Entered build tracker: /tmp/pip-build-tracker-q7oc2ftp
Created temporary directory: /tmp/pip-wheel-_ol69xlg
Created temporary directory: /tmp/pip-ephem-wheel-cache-d13st1qz
Looking in indexes: <http://localhost:45837/simple/>
Processing /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
Added file:///work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4 to build tracker '/tmp/pip-build-tracker-q7oc2ftp'
Created temporary directory: /tmp/pip-modern-metadata-q7vigowe
Preparing metadata (pyproject.toml): started
Running command Preparing metadata (pyproject.toml)
📦 Including license file "/work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4/LICENSE"
🍹 Building a mixed python/rust project
🔗 Found pyo3 bindings
🐍 Found CPython 3.11 at /work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3
📡 Using build options features, bindings from pyproject.toml
pydantic_core-2.18.4.dist-info
Checking for Rust toolchain....
Running `maturin pep517 write-dist-info --metadata-directory /tmp/pip-modern-metadata-q7vigowe --interpreter /work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3`
Preparing metadata (pyproject.toml): finished with status 'done'
Source in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4 has version 2.18.4, which satisfies requirement pydantic_core==2.18.4 from file:///work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
Removed pydantic_core==2.18.4 from file:///work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4 from build tracker '/tmp/pip-build-tracker-q7oc2ftp'
Created temporary directory: /tmp/pip-unpack-ye9iobqx
Created temporary directory: /tmp/pip-unpack-j0zwnxci
Building wheels for collected packages: pydantic_core
Created temporary directory: /tmp/pip-wheel-3o238ckb
Destination directory: /tmp/pip-wheel-3o238ckb
Building wheel for pydantic_core (pyproject.toml): started
Running command Building wheel for pydantic_core (pyproject.toml)
Running `maturin pep517 build-wheel -i /work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3 --compatibility off`
📦 Including license file "/work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4/LICENSE"
🍹 Building a mixed python/rust project
🔗 Found pyo3 bindings
🐍 Found CPython 3.11 at /work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3
📡 Using build options features, bindings from pyproject.toml
error: package `pydantic-core v2.18.4 (/work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4)` cannot be built because it requires rustc 1.76 or newer, while the currently active rustc version is 1.75.0
💥 maturin failed
Caused by: Failed to build a native library through cargo
Caused by: Cargo build finished with "exit status: 101": `env -u CARGO PYO3_ENVIRONMENT_SIGNATURE="cpython-3.11-64bit" PYO3_PYTHON="/work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3" PYTHON_SYS_EXECUTABLE="/work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3" "cargo" "rustc" "--features" "pyo3/extension-module" "--message-format" "json-render-diagnostics" "--manifest-path" "/work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4/Cargo.toml" "--release" "--lib" "--crate-type" "cdylib"`
Error: command ['maturin', 'pep517', 'build-wheel', '-i', '/work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3', '--compatibility', 'off'] returned non-zero exit status 1
error: subprocess-exited-with-error
× Building wheel for pydantic_core (pyproject.toml) did not run successfully.
│ exit code: 1
╰─> See above for output.
note: This error originates from a subprocess, and is likely not a problem with pip.
full command: /work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/bin/python3 /work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7/lib/python3.11/site-packages/pip/_vendor/pyproject_hooks/_in_process/_in_process.py build_wheel /tmp/tmpamjy51ga
cwd: /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
Building wheel for pydantic_core (pyproject.toml): finished with status 'error'
ERROR: Failed building wheel for pydantic_core
Failed to build pydantic_core
ERROR: Failed to build one or more wheels
Using the pre_built flag
The important error embedded in that output is:
cannot be built because it requires rustc 1.76 or newer, while the currently active rustc version is 1.75.0
So, the version of the Rust compiler we have available in the builder image is
too old to use to build this version of pydantic-core. Let’s mark
pydantic-core as pre-built and see if any of its installation dependencies
present similar issues.
To mark the package as pre-built, create a settings file using fromager’s canonical form of the package name:
$ fromager canonicalize pydantic-core
pydantic_core
overrides/settings/pydantic_core.yaml
variants:
cpu-ubi9:
pre_built: true
Now when we re-run bootstrap.sh, we see that pydantic-core will be treated
as “pre-built”, the wheel is downloaded from pypi.org, and the process completes
successfully.
$ podman run -it --rm --security-opt label=disable --volume ./bootstrap-output:/work/bootstrap-output:rw,exec --volume ./bootstrap-ccache:/var/cache/ccache:rw,exec --volume ././constraints.txt:/bootstrap-inputs/constraints.txt --volume ././requirements.txt:/bootstrap-inputs/requirements.txt wheels-builder fromager --constraints-file /bootstrap-inputs/constraints.txt --log-file=bootstrap-output/bootstrap.log --sdists-repo=bootstrap-output/sdists-repo --wheels-repo=bootstrap-output/wheels-repo --work-dir=bootstrap-output/work-dir bootstrap -r /bootstrap-inputs/requirements.txt
logging debug information to bootstrap-output/bootstrap.log
primary settings file: overrides/settings.yaml
per-package settings dir: overrides/settings
variant: cpu-ubi9
patches dir: overrides/patches
maximum concurrent jobs: None
constraints file: /bootstrap-inputs/constraints.txt
wheel server url:
network isolation: True
loading constraints from /bootstrap-inputs/constraints.txt
bootstrapping 'cpu-ubi9' variant of [<Requirement('pydantic-core==2.18.4')>]
no previous bootstrap data
treating ['pydantic-core'] as pre-built wheels
...
100%|██████████████████████████████████████████████████████████████████████████████████████████| 3/3 [00:07<00:00, 2.35s/pkg]
removing prebuilt wheel pydantic_core-2.18.4-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl from download cache
writing installation dependencies to /work/bootstrap-output/work-dir/constraints.txt
Iteratively debugging the build
Since there are no other build issues, we can start working on making
pydantic-core build. The error caused by the rust version is actually an
error in the build settings of pydantic-core that was fixed in a later
release. Until that
upstream fix is released, we can have fromager apply a similar patch.
Start by removing the settings with the pre-built flag to have fromager try
to build from source. Then add this patch file to change the rust-version
setting:
overrides/patches/pydantic_core-2.18.4/0001-rust-version.patch
# Lower the required rust version for compiling. Version 1.75 works
# fine.
#
# Upstreamed in https://github.com/pydantic/pydantic-core/pull/1316
--- pydantic_core-2.18.4.orig/Cargo.toml 2024-06-05 09:36:48.515712519 -0400
+++ pydantic_core-2.18.4/Cargo.toml 2024-06-05 09:36:51.787684143 -0400
@@ -24,7 +24,7 @@
"!tests/.pytest_cache",
"!*.so",
]
-rust-version = "1.76"
+rust-version = "1.75"
[dependencies]
pyo3 = { version = "0.21.2", features = ["generate-import-lib", "num-bigint"] }
Then by running bootstrap.sh again, we can see the patch being applied
...
pydantic-core: * handling toplevel requirement pydantic-core==2.18.4 []
pydantic-core: new toplevel dependency pydantic-core==2.18.4 resolves to 2.18.4
pydantic-core: preparing source for pydantic-core==2.18.4 from /work/bootstrap-output/sdists-repo/downloads/pydantic_core-2.18.4.tar.gz
applying patch file overrides/patches/pydantic_core-2.18.4/0001-rust-version.patch to /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
pydantic-core: updating vendored rust dependencies in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
pydantic-core: prepared source for pydantic-core==2.18.4 at /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
pydantic-core: getting build system dependencies for pydantic-core==2.18.4 in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
followed by the wheel being built successfully.
pydantic-core: getting build backend dependencies for pydantic-core==2.18.4 in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
pydantic-core: getting build sdist dependencies for pydantic-core==2.18.4 in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
pydantic-core: adding ('pydantic-core', '2.18.4') to build order
pydantic-core: preparing to build wheel for version 2.18.4
created build environment in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7
installed dependencies into build environment in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/build-3.11.7
pydantic-core: building source distribution in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4
pydantic-core: built source distribution /work/bootstrap-output/sdists-repo/builds/pydantic_core-2.18.4.tar.gz
pydantic-core: building wheel for pydantic-core==2.18.4 in /work/bootstrap-output/work-dir/pydantic_core-2.18.4/pydantic_core-2.18.4 writing to /work/bootstrap-output/wheels-repo/build
pydantic-core: Requires libraries: libc.so.6, libgcc_s.so.1, libm.so.6
pydantic-core: added extra metadata and build tag (0, ''), wheel renamed from pydantic_core-2.18.4-cp311-cp311-linux_x86_64.whl to pydantic_core-2.18.4-0-cp311-cp311-linux_x86_64.whl
pydantic-core: built wheel '/work/bootstrap-output/wheels-repo/build/pydantic_core-2.18.4-0-cp311-cp311-linux_x86_64.whl' in 0:03:53
pydantic-core: built wheel for version 2.18.4: /work/bootstrap-output/wheels-repo/downloads/pydantic_core-2.18.4-0-cp311-cp311-linux_x86_64.whl
The customization section explains other techniques for changing the build inputs to ensure packages build properly. The collection of wheels you want to build may have different build-time issues, but you can use this iterative approach to work your way though them until they all build.