Experimental vendoring provider #2689
Conversation
The new experimental vendoring provider works by doing the following:
- Detecting whether the app is an umbrella application (only works on
them)
- Fetching all dependencies for the project
- Moving all dependencies to the top-level vendor/ directory
- Telling the user to configure `{project_app_directories, ...}` to
include the vendored path
- Telling the user to move all `{deps, ...}` entries away from the
top-level `rebar.config` file and into sub-applications' files
This then works by changing all non-checkout dependencies into top-level
apps stored elsewhere than the user-supplied ones.
This should also implicitly empty the lock file on the next compilation.
When called again, the provider:
- Makes itself ignore the previous `{project_app_directories, ...}`
values
- Moves whatever the content of `vendor/` was into `_vendor/` (which is
pre-emptively emptied) to capture errors of any kind.
- Re-fetches the dependencies (the ebin/ directories aren't cleared in
case the dependency ships pre-built beam files)
- Since the dependencies were unlikely to be locked, they are
upgraded
- Tells the user to re-update their vendoring configuration
|
CC @tsloughter @zuiderkwast @KennethL -- this is following the last B&P discussion about this being a possible step to deal with vendoring and accepting a later offline mode to rebar3. |
@ferd Nice to see progress! However, the "fetch" steps will most likely prevent us from using the feature. I suppose we will have to organize everything manually. |
Those should only be called whenever you feel like vendoring the first time or for upgrading. I’m not sure why they’re a blocker, though I could imagine that if you maintain a patch set it works clobber some (hence the _vendor backup) |
|
@ferd I don't think the fetch functionality here is a blocker but I don't think it will be used in our scenario. Having rebar3 to tell us what dependencies we need to fetch and put in place would be helpful. I think it sort of already can do that, but maybe not without accessing the network. Of course it would miss nested dependencies then but that should work better next attempt when we have put the first level of deps in place. Of course finding out and fetching of deps can also be done by manually reading the rebar.conf |
@ferd Then I misunderstood you. As long as it works without those online steps (fetching & upgrading) then I guess it's all good, as Kenneth explained. |
|
The failing shelltest is due to github deprecating the |
|
Yeah, I'll merge it. It's tagged as experimental and can be removed/changed at any point in time. Namely to rework will include:
There is also an assumption that:
|
New features: - [Add --offline option and REBAR_OFFLINE environment variable](#2643) - [Add support for project-local plugins](#2697) - [Add eunit --test flag](#2684) Experimental features for which we promise no backwards compatibility in the near future: - [Experimental vendoring provider](#2689) - [Support plugins in experimental vendor provider](#2702) Other changes: - [Support OTP 23..25 inclusively](#2706) - [Bump Relx to 4.7.0](#2718) - [Use `erlexec` directly in relx helper functions](erlware/relx#902) - [Make rlx_util:parse_vsn parse integer versions](erlware/relx#913) - [fix awk script check_name() in extended_bin](erlware/relx#915) - [avoid crash when overlay is malformed](erlware/relx#916) - [keep attributes when stripping beams](erlware/relx#906) - [Fix {include_erts,true} in Windows releases](erlware/relx#914) - [ensure the erl file is writable before copying dyn_erl to it](erlware/relx#903) - Various tests added - [Properly carry overlay_vars settings for files in relx](#2711) - [Track mib compilation artifacts](#2709) - [Attempt to find apps in git subdirs (sparse checkouts)](#2687) - [Do not discard parameters --system_libs and --include-erts when duplicate values exist](#2695) - [Use default `depth` parameter for SSL](#2690) - [Fix global cache config overriding](#2683) - [Error out on unknown templates in 'new' command](#2676) - [Fix a typo](#2674) - [Bump certifi to 2.9.0](#2673) - [add a debug message in internal dependency fetching code](#2672) - [Use SPDX id for license in template and test](#2668) - [Use default branch for git and git_subdir resources with no revision](#2663) Signed-off-by: Fred Hebert <[email protected]>
Hi Fred! As we've talked about before, an umbrella project can override deps and deps-of-deps by placing them in lib/ or apps/. An app included in an umbrella will take precedence over any dep with the same name. (I still haven't found this in the docs but I hope my understanding is right.) Is something similar possible with plugins? Let's say |
|
I believe this is already supported yes. If it isn't, there may be a bug in plugin handling code, following these two PRs: |
|
Thanks! So for the record, the place to put them is |
|
yep. |
The new experimental vendoring provider is called as
rebar3 experimental vendor,and works by doing the following:
them)
{project_app_directories, ...}toinclude the vendored path
{deps, ...}entries away from thetop-level
rebar.configfile and into sub-applications' filesThis then works by changing all non-checkout dependencies into top-level
apps stored elsewhere than the user-supplied ones.
This should also implicitly empty the lock file on the next compilation.
When called again, the provider:
{project_app_directories, ...}values
vendor/was into_vendor/(which ispre-emptively emptied) to capture errors of any kind.
case the dependency ships pre-built beam files)
upgraded
This is a proposed experimental value that would enshrine a suggested
vendoring mechanism for offline builds for Ericsson et al. The idea would be
that at some point, Rebar3 itself would be able to reuse that pattern (after
migrating to an umbrella project structure) in order to safely vendor deps and
allowing builds from official release tarballs on offline systems.
Currently not handled:
depsstay at the top-level)