Adjust release workflow

Author: evertlammerts

.github/workflows/packaging_sdist.yml

@@ -0,0 +1,94 @@
+name: Sdist packaging
+on:
+  workflow_call:
+    inputs:
+      testsuite:
+        type: string
+        description: Testsuite to run (none, fast, all)
+        required: true
+        default: all
+      git-ref:
+        type: string
+        description: Git ref of the DuckDB python package
+        required: false
+      duckdb-git-ref:
+        type: string
+        description: Git ref of DuckDB
+        required: false
+      set-version:
+        description: Force version (vX.Y.Z-((rc|post)N))
+        required: false
+        type: string
+    outputs:
+      package-version:
+        description: The version of the DuckDB Python package
+        value: ${{ jobs.build_sdist.outputs.pkg_version }}
+      duckdb-version:
+        description: The version of DuckDB that was packaged
+        value: ${{ jobs.build_sdist.outputs.duckdb_version }}
+
+jobs:
+  build_sdist:
+    name: Build sdist
+    runs-on: ubuntu-24.04
+    outputs:
+      pkg_version: ${{ steps.versioning.outputs.pkg_version }}
+      duckdb_version: ${{ steps.versioning.outputs.duckdb_version }}
+    steps:
+
+      - name: Checkout DuckDB Python
+        uses: actions/checkout@v4
+        with:
+          ref: ${{ inputs.git-ref }}
+          fetch-depth: 0
+          submodules: true
+
+      - name: Checkout DuckDB
+        shell: bash
+        run: |
+          cd external/duckdb
+          git fetch origin
+          git checkout ${{ inputs.duckdb-git-ref }}
+
+      - name: Set OVERRIDE_GIT_DESCRIBE
+        if: ${{ inputs.set-version != '' }}
+        run: echo "OVERRIDE_GIT_DESCRIBE=${{ inputs.set-version }}" >> $GITHUB_ENV
+
+      - name: Install Astral UV
+        uses: astral-sh/setup-uv@v6
+        with:
+          version: "0.7.14"
+          python-version: 3.11
+
+      - name: Build sdist
+        run: uv build --sdist
+
+      - name: Install sdist
+        run: |
+          cd ${{ runner.temp }}
+          uv venv
+          uv pip install ${{ github.workspace }}/dist/duckdb-*.tar.gz
+
+      - name: Test sdist
+        if: ${{ inputs.testsuite != 'none' }}
+        run: |
+          # install the test requirements
+          uv export --only-group test --no-emit-project --output-file ${{ runner.temp }}/pylock.toml --quiet
+          cd ${{ runner.temp }}
+          uv pip install -r pylock.toml
+          # run tests
+          tests_root="${{ github.workspace }}/tests"
+          tests_dir="${tests_root}${{ inputs.testsuite == 'fast' && '/fast' || '/' }}"
+          uv run --verbose pytest $tests_dir --verbose --ignore=${tests_root}/stubs
+
+      - id: versioning
+        run: |
+          cd ${{ runner.temp }}
+          echo "pkg_version=$( .venv/bin/python -c 'import duckdb; print(duckdb.__version__)' )" >> $GITHUB_OUTPUT
+          echo "duckdb_version=$( .venv/bin/python -c 'import duckdb; print(duckdb.duckdb_version)' )" >> $GITHUB_OUTPUT
+
+      - uses: actions/upload-artifact@v4
+        with:
+          name: sdist
+          path: dist/*.tar.gz
+          compression-level: 0

.github/workflows/packaging_wheels.yml

@@ -0,0 +1,96 @@
+name: Wheels packaging
+on:
+  workflow_call:
+    inputs:
+      minimal:
+        type: boolean
+        description: Build a minimal set of wheels to do a sanity check
+        default: false
+      testsuite:
+        type: string
+        description: Testsuite to run (none, fast, all)
+        required: true
+        default: all
+      git-ref:
+        type: string
+        description: Git ref of the DuckDB python package
+        required: false
+      duckdb-git-ref:
+        type: string
+        description: Git ref of DuckDB
+        required: false
+      set-version:
+        description: Force version (vX.Y.Z-((rc|post)N))
+        required: false
+        type: string
+
+jobs:
+  build_wheels:
+    name: 'Wheel: ${{ matrix.python }}-${{ matrix.platform.cibw_system }}_${{ matrix.platform.arch }}'
+    strategy:
+      fail-fast: false
+      matrix:
+        python: [ cp39, cp310, cp311, cp312, cp313 ]
+        platform:
+          - { os: windows-2025,     arch: amd64,      cibw_system: win }
+          - { os: ubuntu-24.04,     arch: x86_64,     cibw_system: manylinux }
+          - { os: ubuntu-24.04-arm, arch: aarch64,    cibw_system: manylinux }
+          - { os: macos-15,         arch: arm64,      cibw_system: macosx }
+          - { os: macos-15,         arch: universal2, cibw_system: macosx }
+          - { os: macos-13,         arch: x86_64,     cibw_system: macosx }
+        minimal:
+          - ${{ inputs.minimal }}
+        exclude:
+          - { minimal: true, python: cp310 }
+          - { minimal: true, python: cp311 }
+          - { minimal: true, python: cp312 }
+          - { minimal: true, platform: { arch: universal2 } }
+    runs-on: ${{ matrix.platform.os }}
+    env:
+      CIBW_TEST_SKIP: ${{ inputs.testsuite == 'none' && '*' || '*-macosx_universal2' }}
+      CIBW_TEST_SOURCES: tests
+      CIBW_BEFORE_TEST: >
+        uv export --only-group test --no-emit-project --output-file pylock.toml --directory {project} &&
+        uv pip install -r pylock.toml
+      CIBW_TEST_COMMAND: >
+        uv run -v pytest ${{ inputs.testsuite == 'fast' && './tests/fast' || './tests' }} --verbose --ignore=./tests/stubs
+
+    steps:
+      - name: Checkout DuckDB Python
+        uses: actions/checkout@v4
+        with:
+          ref: ${{ inputs.git-ref }}
+          fetch-depth: 0
+          submodules: true
+
+      - name: Checkout DuckDB
+        shell: bash
+        run: |
+          cd external/duckdb
+          git fetch origin
+          git checkout ${{ inputs.duckdb-git-ref }}
+
+      # Make sure that OVERRIDE_GIT_DESCRIBE is propagated to cibuildwhel's env, also when it's running linux builds
+      - name: Set OVERRIDE_GIT_DESCRIBE
+        if: ${{ inputs.set-version != '' }}
+        run: echo "CIBW_ENVIRONMENT=OVERRIDE_GIT_DESCRIBE=${{ inputs.set-version }}" >> $GITHUB_ENV
+
+      # Install Astral UV, which will be used as build-frontend for cibuildwheel
+      - uses: astral-sh/setup-uv@v6
+        with:
+          version: "0.7.14"
+          enable-cache: false
+          cache-suffix: -${{ matrix.python }}-${{ matrix.platform.cibw_system }}_${{ matrix.platform.arch }}
+
+      - name: Build${{ inputs.testsuite != 'none' && ' and test ' || ' ' }}wheels
+        uses: pypa/[email protected]
+        env:
+          CIBW_ARCHS: ${{ matrix.platform.arch == 'amd64' && 'AMD64' || matrix.platform.arch }}
+          CIBW_BUILD: ${{ matrix.python }}-${{ matrix.platform.cibw_system }}_${{ matrix.platform.arch }}
+
+      - name: Upload wheel
+        uses: actions/upload-artifact@v4
+        with:
+          name: wheel-${{ matrix.python }}-${{ matrix.platform.cibw_system }}_${{ matrix.platform.arch }}
+          path: wheelhouse/*.whl
+          compression-level: 0

.github/workflows/release.yml

@@ -28,9 +28,41 @@ defaults:
     shell: bash
 
 jobs:
-  build_and_test:
+  build_sdist:
+    name: Build an sdist and determine versions
+    uses: ./.github/workflows/packaging_sdist.yml
+    with:
+      testsuite: all
+      git-ref: ${{ github.ref }}
+      duckdb-git-ref: ${{ inputs.duckdb-sha }}
+      set-version: ${{ inputs.stable-version }}
+
+  check_pypi:
+    name: Check whether this version was already released
+    needs: build_sdist
+    outputs:
+      can_upload: ${{ steps.index_check.outputs.can_upload }}
+    runs-on: ubuntu-latest
+    steps:
+      - id: index_check
+        run: |
+          # Check PyPI whether the release we're building is already present
+          pypi_hostname="${{ inputs.pypi-index == 'test' && 'test.' || '' }}pypi.org"
+          pkg_version=${{ needs.build_sdist.outputs.package-version }}
+          http_status=$( curl -s -o /dev/null -w "%{http_code}" https://${pypi_hostname}/pypi/duckdb/${pkg_version}/json )
+          if [ "$http_status" == "200" ]; then
+            echo "::warning::DuckDB ${pkg_version} is already present on ${pypi_hostname}, will not release"
+            echo "can_upload=true" >> $GITHUB_GITHUB_OUTPUT
+          else
+            echo "can_upload=false" >> $GITHUB_GITHUB_OUTPUT
+          fi
+          
+
+  build_wheels:
     name: Build and test releases
-    uses:  ./.github/workflows/packaging.yml
+    needs: check_pypi
+    if: ${{ needs.check_pypi.outputs.can_upload }}
+    uses: ./.github/workflows/packaging_wheels.yml
     with:
       minimal: false
       testsuite: all
@@ -41,8 +73,10 @@ jobs:
   upload_s3:
     name: Upload Artifacts to S3
     runs-on: ubuntu-latest
-    needs: [build_and_test]
+    needs: [build_sdist, build_wheels]
     if: ${{ github.repository_owner == 'duckdb' && ( inputs.pypi-index == 'prod' || inputs.store-s3 ) }}
+    outputs:
+      s3-upload-url: ${{ steps.input.outputs.s3_upload_url }}
     steps:
       - name: Fetch artifacts
         uses: actions/download-artifact@v4
@@ -56,11 +90,8 @@ jobs:
         run: |
           sha=${{ github.sha }}
           dsha=${{ inputs.duckdb-sha }}
-          version=$(basename artifacts/*.tar.gz | sed 's/duckdb-\(.*\).tar.gz/\1/g')
+          version=${{ needs.build_sdist.outputs.package-version }}
           url="s3://duckdb-staging/python/${version}/${sha:0:10}-duckdb-${dsha:0:10}/"
-          echo "short_sha=${sha:0:10}" >> $GITHUB_OUTPUT
-          echo "short_dsha=${dsha:0:10}" >> $GITHUB_OUTPUT
-          echo "version=${version}" >> $GITHUB_OUTPUT
           echo "s3_upload_url=${url}" >> $GITHUB_OUTPUT
 
       - name: Authenticate with AWS
@@ -74,18 +105,10 @@ jobs:
         run: |
           aws s3 cp artifacts ${{ steps.input.outputs.s3_upload_url }} --recursive
 
-      - name: S3 Upload Summary
-        run : |
-          echo "## S3 Upload Summary" >> $GITHUB_STEP_SUMMARY
-          echo "* Version: ${{ steps.input.outputs.version }}" >> $GITHUB_STEP_SUMMARY
-          echo "* SHA: ${{ steps.input.outputs.short_sha }}" >> $GITHUB_STEP_SUMMARY
-          echo "* DuckDB SHA: ${{ steps.input.outputs.short_dsha }}" >> $GITHUB_STEP_SUMMARY
-          echo "* S3 URL: ${{ steps.input.outputs.s3_upload_url }}" >> $GITHUB_STEP_SUMMARY
-
   determine_environment:
     name: Determine the Github Actions environment to use
     runs-on: ubuntu-latest
-    needs: build_and_test
+    needs: [build_sdist, build_wheels]
     outputs:
       env_name: ${{ steps.set-env.outputs.env_name }}
     steps:
@@ -105,7 +128,7 @@ jobs:
               fi
               ;;
             *)
-              echo "Error: invalid combination of inputs.pypi-index='${{ inputs.pypi-index }}' and inputs.stable-version='${{ inputs.stable-version }}'" >&2
+              echo "::error::invalid combination of inputs.pypi-index='${{ inputs.pypi-index }}' and inputs.stable-version='${{ inputs.stable-version }}'"
               exit 1
               ;;
           esac
@@ -139,17 +162,9 @@ jobs:
           packages-dir: packages
           verbose: 'true'
 
-      - name: PyPI Upload Summary
-        run : |
-          version=$(basename packages/*.tar.gz | sed 's/duckdb-\(.*\).tar.gz/\1/g')
-          echo "## PyPI Upload Summary" >> $GITHUB_STEP_SUMMARY
-          echo "* Version: ${version}" >> $GITHUB_STEP_SUMMARY
-          echo "* PyPI Host: ${{ vars.PYPI_HOST }}" >> $GITHUB_STEP_SUMMARY
-          echo "* CI Environment: ${{ needs.determine_environment.outputs.env_name }}" >> $GITHUB_STEP_SUMMARY
-
   cleanup_nightlies:
     name: Remove Nightlies from PyPI
-    needs: [determine_environment, publish_pypi]
+    needs: [ determine_environment, publish_pypi ]
     if: ${{ inputs.stable-version == '' }}
     uses: ./.github/workflows/cleanup_pypi.yml
     with:
@@ -158,3 +173,23 @@ jobs:
       # reusable workflows and secrets are not great: https://github.com/actions/runner/issues/3206
       PYPI_CLEANUP_OTP: ${{secrets.PYPI_CLEANUP_OTP}}
       PYPI_CLEANUP_PASSWORD: ${{secrets.PYPI_CLEANUP_PASSWORD}}
+
+  summary:
+    name: Release summary
+    runs-on: ubuntu-latest
+    needs: [build_sdist, check_pypi, upload_s3, determine_environment]
+    if: true
+    steps:
+      - run: |
+          sha=${{ github.sha }}
+          dsha=${{ inputs.duckdb-sha }}
+          echo "## Release Summary" >> $GITHUB_STEP_SUMMARY
+          echo "* Package Version: ${{ needs.build_sdist.outputs.package-version }} (${sha:0:10})" >> $GITHUB_STEP_SUMMARY
+          echo "* DuckDB Version: ${{ needs.build_sdist.outputs.duckdb-version }} (${dsha:0:10})" >> $GITHUB_STEP_SUMMARY
+          echo "* PyPI: ${{ vars.PYPI_HOST }}" >> $GITHUB_STEP_SUMMARY
+          if [ "${{ needs.check_pypi.outputs.can_upload }}" == "false" ]; then
+            echo "  * Package already exists on this PyPI, nothing was uploaded" >> $GITHUB_STEP_SUMMARY
+            exit 0
+          fi
+          echo "* CI Environment: ${{ needs.determine_environment.outputs.env_name }}" >> $GITHUB_STEP_SUMMARY
+          echo "* S3 URL: ${{ needs.upload_s3.outputs.s3_upload_url }}" >> $GITHUB_STEP_SUMMARY

duckdb_packaging/setuptools_scm_version.py

@@ -86,7 +86,7 @@ def forced_version_from_env():
 
     if override_value:
         print(f"[versioning] Found {OVERRIDE_GIT_DESCRIBE_ENV_VAR}={override_value}")
-        pep440_version = _git_describe_override_to_pep_440(override_value)
+        pep440_version = git_describe_output_to_pep_440(override_value)
         os.environ[SCM_PRETEND_ENV_VAR] = pep440_version
         print(f"[versioning] Injected {SCM_PRETEND_ENV_VAR}={pep440_version}")
     elif SCM_PRETEND_ENV_VAR in os.environ:
@@ -99,8 +99,8 @@ def forced_version_from_env():
     return pep440_version
 
 
-def _git_describe_override_to_pep_440(override_value: str) -> str:
-    """Process the OVERRIDE_GIT_DESCRIBE value."""
+def git_describe_output_to_pep_440(override_value: str) -> str:
+    """Process the git describe output."""
     describe_pattern = re.compile(
         r"""
         ^v(?P<tag>\d+\.\d+\.\d+(?:-post\d+|-rc\d+)?) # vX.Y.Z or vX.Y.Z-postN or vX.Y.Z-rcN