[py3] pki: add missing depedency pki-base[-python3] #336
Conversation
|
BuildRequires has no python3 dependency and a different minimal version. |
|
It has Py3 Build dependency |
|
What I meant with different minimal version, FreeIPA requires pki-ca and kra 10.3.5 and newer. Is there a reason why the minimal version for the pki-base package is smaller? All Dogtag PKI packages pull in other PKI packages with exactly the same version (e.g. Lastly pki-base just happens to provide Python 2 packages for now. In 10.4 or 10.5 we may switch over the Python 3. If you need |
|
Ah my previous patch was right then. BuildRequires version is lower because build works with lower version. I can raise that version just to be sure that pylint is checking the right packages |
|
@mbasti-rh, please don't bump BuildRequires unless it is actually necessary for the build to not fail. Raising the version does not guarantee that the package version used during build and checked by pylint will be the same as the version used during run time anyway, so the change achieves nothing. |
|
What's the hold up here? Martin and I discussed the necessity to raise the version requirements. Python 3 packages for PKI simply do not exist until 10.3. I don't want to depend on a non-existing package. In case there are some issues with our CI and proper updates of build requirements, then the issue should be handled by a separate ticket. |
|
@tiran, the dependency says |
|
|
|
That is of no concern to us. |
|
I can't see a valid argument in your response. As a co-maintainer of PKI's Python packages I'm strictly against claiming compatibility with a non-existing package version range. The PR is fine as it stands and I'm going to ACK it tomorrow. If you still like to veto against my ACK, please start a motion on the developer list and ask the rest of the team for their opinion. You also mentioned that CI might not pick up build requirements correctly. I agree that this is a problem and must be fixed ASAP. We must be able to rely on CI tests. Please open a separate ticket. |
|
I agree with @tiran here. Even though |
|
@tiran, I'm sorry to have to point this out, but the decision whether this PR is accepted or not is not yours to make, you are not a member of the core team and this is in no way related to your integration work. As a maintainer of IPA packages in RHEL I obviously prefer it my way. What you prefer when you co-maintain PKI Python packages is your bussiness and is not relevant here. A compromise I would be willing to accept is that the @tomaskrizek, why do you think it's a bad practice? The condition merely limits the set of package versions that satisfy the dependency, but the set is still infinite and an infinite number of non-existents packages always fall in the set. Strictly speaking, |
|
You would still depend on potentially non-existing package. |
|
I see, didn't notice that. In this case, IMO either the current |
|
@HonzaCholasta Perhaps it's more of a personal preference, but I'd rather see an existing version of a certain package. Since the spec file is processed automatically, I guess it doesn't make a difference. But it could confuse someone who reads the file and looks for a certain version of the mentioned package. |
FreeIPA server modules requires pki module https://fedorahosted.org/freeipa/ticket/4985
pki-base provides pki-base-python2, but we should depend directly on pki-base-python2 because in future pki-base may provide pki-base-python3 instead. Source: cheimes@redhat.com https://fedorahosted.org/freeipa/ticket/4985
|
bump for review |
|
LGTM |
FreeIPA server modules requires pki module
https://fedorahosted.org/freeipa/ticket/4985