-
Notifications
You must be signed in to change notification settings - Fork 3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[24.2] installs fail on macOS 10.12 and older due to bundled truststore
issue
#12901
Comments
To get a rough idea of numbers, here's the pip installs on macOS of pip itself from PyPI, for the last 28 days:
(via This shows 99.96% is macOS 10.13 or newer. |
Would it be a good idea to simply fall back to certifi on macOS 12? cc @sethmlarson |
That's macOS 10.12, not macOS 12. We already depend on |
Oh, the ancient 10.12. Got it. What should pip do to improve this then? |
See pypa/pip#12901 for more information.
Talking with @sethmlarson, I think the best thing to do is to fix the issue in |
See pypa/pip#12901 for more information.
…2. (#122774) Workaround bundled pip 24.2 failures on macOS 10.9 to 10.12 installers. See pypa/pip#12901 for more information.
Agreed with @ned-deily, thanks for the offer to help test Ned! We have an issue already created on the Truststore project if you'd like to follow along there: sethmlarson/truststore#119 |
truststore
issuetruststore
issue
I have macOS 10.12 and can confirm I have the same issue here. |
Well, I guess @ned-deily fixed this and merged a PR, so maybe this is supposed to be closed? |
The only thing I did was to provide a quick workaround for the Python 3.12.5 python.org Python for macOS installer which still supports macOS 10.9 through 10.12. The workaround is to "downgrade" pip by downloading 24.1.2 during the initial installation on those systems. The issue still exists for anyone else trying to use or upgrade to pip 24.2 with any version or distribution of Python on those macOS releases. |
I am also having this issue in my macOS 10.12 platform testing VM. pip 24.1 works, so this is a regression. |
I started a patch a couple of weeks ago. sethmlarson/truststore#119 (comment) Anyone feel like trying it out/reviewing it? |
Would be cool if this could get fixed soon. It broke the I left a comment at the issue / PR linked from above. It needs a small fix, but otherwise it worked. |
PSA: the broken pip is included in Python 3.12.6, so even
|
Direct link to the current truststore PR fixing this issue: sethmlarson/truststore#157 |
How do I tell pip to pass the
and it's failing:
This is in a venv and after |
@andlabs Interesting. It seems |
sethmlarson/truststore#119 has been fixed and merged. Waiting for a release now. |
Truststore 0.10.0 is available on PyPI and I've created a PR upgrading pip's vendored copy: #13041. Thanks to @ThomasWaldmann for testing on their machine to confirm the fix worked. |
@sethmlarson will that be enough so that with future CPython releases a |
Once there's a new pip release then |
OK, can confirm that the new pip 24.3 fixes the issue in the pip pypi package. But I use |
Description
When attempting to use
pip 24.2
to install packages on macOS 10.12 or older, pip's vendored version oftruststore
fails with:This is due to a known open issue in
truststore
.Pip users can work around the issue by adding
--use-deprecated=legacy-certs
to the install command, as in:python3 -m pip install --use-deprecated=legacy-certs <package>
The problem was noted during the release process for Python 3.12.5 for which the
ensurepip
bundled pip version is now 24.2; unfortunately, the python.org Python for macOS installers produced for Python 3.12.x still support back to macOS 10.9. To workaround the issue for 3.12.5, the Python release team has agreed to provide a workaround in theInstall Certificates.command
included with the installer which is used to install the latestcertifi
bundle of certificates. For 3.12.5, when runningInstall Certificates
on macOS 10.9.x through 10.12.x, the command will attempt to revert to pip 24.1.2. (Moving forward, we expect to update the minimum supported version of future 3.12.x installers to at least macOS 10.13, as we are already doing for pre-releases of Python 3.13.)Expected behavior
No response
pip version
24.2
Python version
all
OS
macOS
How to Reproduce
Output
No response
Code of Conduct
The text was updated successfully, but these errors were encountered: