Skip to content


Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Fetching contributors…

Cannot retrieve contributors at this time

executable file 165 lines (132 sloc) 5.5 kb
#!/usr/bin/env python
import base64
import os
import sys
import zipfile
#!/usr/bin/env python
# Hi There!
# You may be wondering what this giant blob of binary data here is, you might
# even be worried that we're up to something nefarious (good for you for being
# paranoid!). This is a base64 encoding of a zip file, this zip file contains
# an entire copy of pip.
# Pip is a thing that installs packages, pip itself is a package that someone
# might want to install, especially if they're looking to run this
# script. Pip has a lot of code to deal with the security of installing
# packages, various edge cases on various platforms, and other such sort of
# "tribal knowledge" that has been encoded in it's code base. Because of this
# we basically include an entire copy of pip inside this blob. We do this
# because the alternatives are attempt to implement a "minipip" that probably
# doesn't do things correctly and has weird edge cases, or compress pip itself
# down into a single file.
# If you're wondering how this is created, the secret is
# "contrib/build-installer" from the pip repository.
ZIPFILE = b\"\"\"
import base64
import os.path
import pkgutil
import shutil
import sys
import tempfile
def bootstrap(tmpdir=None):
# Import pip so we can use it to install pip and maybe setuptools too
import pip
# We always want to install pip
packages = ["pip"]
# Check if the user has requested us not to install setuptools
if "--no-setuptools" in sys.argv or os.environ.get("PIP_NO_SETUPTOOLS"):
args = [x for x in sys.argv[1:] if x != "--no-setuptools"]
args = sys.argv[1:]
# We want to see if setuptools is available before attempting to
# install it
import setuptools
except ImportError:
packages += ["setuptools"]
delete_tmpdir = False
# Create a temporary directory to act as a working directory if we were
# not given one.
if tmpdir is None:
tmpdir = tempfile.mkdtemp()
delete_tmpdir = True
# We need to extract the SSL certificates from requests so that they
# can be passed to --cert
cert_path = os.path.join(tmpdir, "cacert.pem")
with open(cert_path, "wb") as cert:
cert.write(pkgutil.get_data("pip._vendor.requests", "cacert.pem"))
# Use an environment variable here so that users can still pass
# --cert via sys.argv
os.environ.setdefault("PIP_CERT", cert_path)
# Execute the included pip and use it to install the latest pip and
# setuptools from PyPI
sys.exit(pip.main(["install", "--upgrade"] + packages + args))
# Remove our temporary directory
if delete_tmpdir and tmpdir:
shutil.rmtree(tmpdir, ignore_errors=True)
def main():
tmpdir = None
# Create a temporary working directory
tmpdir = tempfile.mkdtemp()
# Unpack the zipfile into the temporary directory
pip_zip = os.path.join(tmpdir, "")
with open(pip_zip, "wb") as fp:
# Add the zipfile to sys.path so that we can import it
sys.path = [pip_zip] + sys.path
# Run the bootstrap
# Clean up our temporary working directory
if tmpdir:
shutil.rmtree(tmpdir, ignore_errors=True)
if __name__ == "__main__":
def getmodname(rootpath, path):
parts = path.split(os.sep)[len(rootpath.split(os.sep)):]
return '/'.join(parts)
def main():
sys.stdout.write("Creating pip bootstrapper...")
here = os.path.dirname(os.path.abspath(__file__))
toplevel = os.path.dirname(here)
get_pip = os.path.join(here, "")
# Get all of the files we want to add to the zip file
all_files = []
for root, dirs, files in os.walk(os.path.join(toplevel, "pip")):
for pyfile in files:
if os.path.splitext(pyfile)[1] in {".py", ".pem", ".cfg", ".exe"}:
getmodname(toplevel, os.path.join(root, pyfile))
with zipfile.ZipFile(get_pip, "w", compression=zipfile.ZIP_DEFLATED) as z:
# Write the pip files to the zip archive
for filename in all_files:
z.write(os.path.join(toplevel, filename), filename)
# Get the binary data that compromises our zip file
with open(get_pip, "rb") as fp:
data =
# Write out the wrapper script that will take the place of the zip script
# The reason we need to do this instead of just directly executing the
# zip script is that while Python will happily execute a zip script if
# passed it on the file system, it will not however allow this to work if
# passed it via stdin. This means that this wrapper script is required to
# make ``curl https://...../ | python`` continue to work.
with open(get_pip, "wb") as fp:
# Ensure the permissions on the newly created file
if hasattr(os, "chmod"):
oldmode = os.stat(get_pip).st_mode & 0o7777
newmode = (oldmode | 0o555) & 0o7777
os.chmod(get_pip, newmode)
if __name__ == "__main__":
Jump to Line
Something went wrong with that request. Please try again.