Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Possible to create wheels for things like pyjq and sign them for distribution? #96

Open
simonw opened this issue Sep 10, 2021 · 3 comments
Open

Possible to create wheels for things like pyjq and sign them for distribution? #96

simonw opened this issue Sep 10, 2021 · 3 comments
Labels
help wanted Extra attention is needed packaging Anything involving making stuff installable research

Comments

@simonw
Copy link
Owner

simonw commented Sep 10, 2021

From #67 (comment) - installing the datasette-jq plugin is difficult because it depends on pyjq which needs to compile an extension.

@psychemedia suggests:

Or at a push maintain your own wheelhouse and add a path to also look to that to install packages?

Would this require signing things for distribution for macOS? The wheel generated by pip install pyjq includes a _pyjq.cpython-39-darwin.so file.
@simonw simonw added packaging Anything involving making stuff installable research labels Sep 10, 2021
@simonw
Copy link
Owner Author

simonw commented Sep 10, 2021

If I can figure this out I could get some GitHub Actions workflows going that know how to build wheels for various dependencies and sign them with my Apple Developer certificate - then I could publish those .whl files online somewhere and have the plugin directory from #74 know to install from that URL instead of regular PyPI for certain plugins.

@simonw simonw added the help wanted Extra attention is needed label Sep 10, 2021
This was referenced Sep 11, 2021
Open
Open
@psychemedia
Copy link

Creeping the features a bit, if you do have package build automation, then if you had a list of datasette plugin requirements / dependencies, you could check whether an appropriate wheel exists on pypi and if not, build it for your own wheelhouse?

As package maintainers add PyPi distributed wheels that meet datasette needs, they can then be reaped from the datasette wheelhouse. The ideal state would be an empty wheelhouse because it would mean PyPi meets all needs.

I'm not sure how PyPi currently copes with o/s specific builds targeted at Mac M1. Certainly, when I was building packages for use on Raspberry Pi , I could use piwheels.org for 32 bit arm builds, but I had to build my own arm64 wheels for some packages when using dietPi (64 bit o/s).

@simonw
Copy link
Owner Author

simonw commented Sep 11, 2021
edited

This may not require signing after all!

https://twitter.com/glyph/status/1436758984287928322

My understanding is shaky, but if you can validate plugins some other way, “The com.apple.security.cs.disable-library-validation entitlement is a boolean value that indicates whether an application can load arbitrary plug-ins or frameworks, without requiring code-signing.”

datasette-app/build/entitlements.mac.plist

Lines 7 to 8 in f83a929

<key>com.apple.security.cs.disable-library-validation</key>
<true/>

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted Extra attention is needed packaging Anything involving making stuff installable research
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@simonw @psychemedia