tahoe-lafs/src/allmydata/_auto_deps.py

186 lines
7.4 KiB
Python
Raw Normal View History

# Note: please minimize imports in this file. In particular, do not import
# any module from Tahoe-LAFS or its dependencies, and do not import any
# modules at all at global level. That includes setuptools and pkg_resources.
# It is ok to import modules from the Python Standard Library if they are
# always available, or the import is protected by try...except ImportError.
install_requires = [
# we require newer versions of setuptools (actually
# zetuptoolz) to build, but can handle older versions to run
"setuptools >= 0.6c6",
"zfec >= 1.1.0",
# Feisty has simplejson 1.4
"simplejson >= 1.4",
# zope.interface >= 3.6.0 is required for Twisted >= 12.1.0.
# zope.interface 3.6.3 and 3.6.4 are incompatible with Nevow (#1435).
"zope.interface == 3.6.0, == 3.6.1, == 3.6.2, >= 3.6.5",
# * foolscap < 0.5.1 had a performance bug which spent O(N**2) CPU for
# transferring large mutable files of size N.
# * foolscap < 0.6 is incompatible with Twisted 10.2.0.
# * foolscap 0.6.1 quiets a DeprecationWarning.
# * foolscap < 0.6.3 is incompatible with Twisted-11.1.0 and newer. Since
# current Twisted is 12.0, any build which needs twisted will grab a
# version that requires foolscap>=0.6.3
# * pyOpenSSL is required by foolscap for it (foolscap) to provide secure
# connections. Foolscap doesn't reliably declare this dependency in a
# machine-readable way, so we need to declare a dependency on pyOpenSSL
# ourselves. Tahoe-LAFS doesn't *really* depend directly on pyOpenSSL,
# so if something changes in the relationship between foolscap and
# pyOpenSSL, such as foolscap requiring a specific version of
# pyOpenSSL, or foolscap switching from pyOpenSSL to a different crypto
# library, we need to update this declaration here.
#
"foolscap >= 0.6.3",
"pyOpenSSL",
# Needed for SFTP. pyasn1 is needed by twisted.conch in Twisted >= 9.0.
# pycrypto 2.2 doesn't work due to https://bugs.launchpad.net/pycrypto/+bug/620253
2011-11-05 02:24:57 +00:00
# pycrypto 2.4 doesn't work due to https://bugs.launchpad.net/pycrypto/+bug/881130
"pycrypto == 2.1.0, == 2.3, >= 2.4.1",
# http://www.voidspace.org.uk/python/mock/ , 0.8.0 provides "call"
"mock >= 0.8.0",
# pycryptopp-0.6.0 includes ed25519
"pycryptopp >= 0.6.0",
# Will be needed to test web apps, but not yet. See #1001.
#"windmill >= 1.3",
]
# Includes some indirect dependencies, but does not include allmydata.
# These are in the order they should be listed by --version, etc.
package_imports = [
# package name module name
('foolscap', 'foolscap'),
('pycryptopp', 'pycryptopp'),
('zfec', 'zfec'),
('Twisted', 'twisted'),
('Nevow', 'nevow'),
('zope.interface', 'zope.interface'),
('python', None),
('platform', None),
('pyOpenSSL', 'OpenSSL'),
('simplejson', 'simplejson'),
('pycrypto', 'Crypto'),
('pyasn1', 'pyasn1'),
('mock', 'mock'),
]
# Dependencies for which we don't know how to get a version number at run-time.
not_import_versionable = [
'zope.interface',
'mock',
'pyasn1',
'pyasn1-modules',
]
# Dependencies reported by pkg_resources that we can safely ignore.
ignorable = [
'argparse',
'pyutil',
'zbase32',
'distribute',
'twisted-web',
'twisted-core',
'twisted-conch',
]
import sys
# Don't try to get the version number of setuptools in frozen builds, because
# that triggers 'site' processing that causes failures. Note that frozen
# builds still (unfortunately) import pkg_resources in .tac files, so the
# entry for setuptools in install_requires above isn't conditional.
if not hasattr(sys, 'frozen'):
package_imports.append(('setuptools', 'setuptools'))
if sys.platform == "win32":
install_requires += [
# * On Windows we need at least Twisted 9.0 to avoid an indirect
# dependency on pywin32.
# * We also need Twisted 10.1 for the FTP frontend in order for
# Twisted's FTP server to support asynchronous close.
# * When the cloud backend lands, it will depend on Twisted 10.2.0
# which includes the fix to <https://twistedmatrix.com/trac/ticket/411>.
# * The SFTP frontend depends on Twisted 11.0.0 to fix the SSH server
# rekeying bug <https://twistedmatrix.com/trac/ticket/4395>
# * We don't want Twisted >= 13.0 to avoid a dependency of its endpoints
# code on pywin32. <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/2028>
#
"Twisted == 11.0.0, == 11.1.0, == 12.0.0, == 12.1.0, == 12.2.0",
# * We need Nevow >= 0.9.33 to avoid a bug in Nevow's setup.py
# which imported twisted at setup time.
# * We don't want Nevow 0.11 because that requires Twisted >= 13.0
# which conflicts with the Twisted requirement above.
# <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/2291>
#
"Nevow == 0.9.33, == 0.10",
# pyasn1 is needed by twisted.conch in Twisted >= 9.0.
"pyasn1 >= 0.0.8a",
]
else:
install_requires += [
# * On Linux we need at least Twisted 10.1.0 for inotify support
# used by the drop-upload frontend.
# * Nevow 0.11.1 requires Twisted >= 13.0.0 so we might as well
# require it directly; this helps to work around
# <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/2286>.
# This also satisfies the requirements for the FTP and SFTP
# frontends and cloud backend mentioned in the Windows section
# above.
#
"Twisted >= 13.0.0",
# Nevow >= 0.11.1 can be installed using pip.
"Nevow >= 0.11.1",
"service-identity", # this is needed to suppress complaints about being unable to verify certs
"characteristic >= 14.0.0", # latest service-identity depends on this version
"pyasn1 >= 0.1.4", # latest pyasn1-modules depends on this version
"pyasn1-modules", # service-identity depends on this
]
package_imports += [
('service-identity', 'service_identity'),
('characteristic', 'characteristic'),
('pyasn1-modules', 'pyasn1_modules'),
]
# These are suppressed globally:
global_deprecation_messages = [
"BaseException.message has been deprecated as of Python 2.6",
"twisted.internet.interfaces.IFinishableConsumer was deprecated in Twisted 11.1.0: Please use IConsumer (and IConsumer.unregisterProducer) instead.",
"twisted.internet.interfaces.IStreamClientEndpointStringParser was deprecated in Twisted 14.0.0: This interface has been superseded by IStreamClientEndpointStringParserWithReactor.",
]
# These are suppressed while importing dependencies:
deprecation_messages = [
"the sha module is deprecated; use the hashlib module instead",
"object.__new__\(\) takes no parameters",
"The popen2 module is deprecated. Use the subprocess module.",
"the md5 module is deprecated; use hashlib instead",
"twisted.web.error.NoResource is deprecated since Twisted 9.0. See twisted.web.resource.NoResource.",
"the sets module is deprecated",
]
runtime_warning_messages = [
"Not using mpz_powm_sec. You should rebuild using libgmp >= 5 to avoid timing attack vulnerability.",
]
warning_imports = [
'nevow',
'twisted.persisted.sob',
'twisted.python.filepath',
'Crypto.Hash.SHA',
]