Open ibraheemdev opened 3 months ago
notatallshaw
commented
3 months ago Given that a small change in dependencies could lead to exploring a large part of the resolution graph that doesn't lead to a direct solution, is there a reason you would expect benchmarks to remain stable across dates?
ibraheemdev
commented
3 months ago We don't necessarily expect it to remain stable, but it's worth investigating if we can do better. As a hint, Poetry actually outperforms us on this benchmark now.
zanieb
commented
3 months ago No, but we want to investigate the cause to see if we can do anything for it.
notatallshaw
commented
3 months ago Well, in that case, I see the min time between 2024-07-19 and 2024-07-20 jump by 35%.
And the output diff is quite small:
$ diff old.txt new.txt
2c2
< # uv pip compile airflow.in --exclude-newer 2024-07-19 --output-file old.txt
---
> # uv pip compile airflow.in --exclude-newer 2024-07-20 --output-file new.txt
1375c1375
< openai==1.36.0
---
> openai==1.36.1
1714c1714
< pyopenssl==24.1.0
---
> pyopenssl==24.2.1The metadata in the openai wheel is almost identical, but the metadata in the pyOpenSSL has a change in an upper bound, which in my experience upper bounds are hard for resolvers and uv's main weakness in resolution.
$ diff pyOpenSSL-24.1.0-py3-none-any.whl.metadata pyOpenSSL-24.2.1-py3-none-any.whl.metadata
3c3
< Version: 24.1.0
---
> Version: 24.2.1
30c30
< Requires-Dist: cryptography <43,>=41.0.5
---
> Requires-Dist: cryptography <44,>=41.0.5
88a89,122
<<< A bunch of changelog notes >>>In both versions of resolution cryptography gets resolved to 42.0.8 but on PyPi it is at 43.0.0: https://pypi.org/project/cryptography, so since pyOpenSSL-24.2.1 it appears uv is spending a bunch of time exploring a solution with cryptography 43.0.0 and it eventually leads to a backtrack.
Hope that helps.
notatallshaw
commented
3 months ago I investigated this a little further by pinning apache-airflow (which is far more realistic of its use) and cryptography:
apache-airflow[all]==2.9.3
apache-airflow-providers-apache-beam>3.0.0
cryptography==43.0.0It resolves as impossible, and ends with:
And because apache-airflow[all]==2.9.3 depends on apache-airflow-providers-snowflake, we can conclude that apache-airflow[all]==2.9.3 depends on cryptography>=2.5.0,<43.0.0.
And because you require apache-airflow[all]==2.9.3 and cryptography==43.0.0, we can conclude that the requirements are unsatisfiable.I suspect what you will find is that while uv pins cryptography==43.0.0 it tries to exhaust all versions of apache-airflow-providers-snowflake because of apache-airflow-providers-snowflakes upper bound on cryptography.
I will again stand by my idea that when resolution hits an upper bound that is below the current pinned version of that upper bound, it is worth going back to an earlier state in the resolution and prioritise the package that is applying the upper bound over the package constrained by the upper bound (rather than exhausting the package that applying the upper bound): https://github.com/astral-sh/uv/issues/1398#issuecomment-2013504447 (although a lot of details need to be worked out, I haven’t had a chance recently to work on this).
There may be low hanging heuristics here though that uv could apply before something so complex.
There's a similar regression with
--universal. Spotted in https://github.com/astral-sh/uv/issues/5962.