In event of error, check equality (#2415)

8W9aG · web-flow · commit 0e0a0a582698 · 2025-06-17T16:59:16.000-04:00
* In event of error, checking equality

* When checking if 2 version strings are greater
or equal, if an error occurs parsing the version
fall back to string equality instead of panicking

* Use pep-440 for version comparison

* Use go-pep440 to evaluate the project version specifier
diff --git a/go.mod b/go.mod
@@ -69,6 +69,8 @@ require (
 	github.com/alexkohler/prealloc v1.0.0 // indirect
 	github.com/alingse/asasalint v0.0.11 // indirect
 	github.com/alingse/nilnesserr v0.1.2 // indirect
+	github.com/aquasecurity/go-pep440-version v0.0.1 // indirect
+	github.com/aquasecurity/go-version v0.0.1 // indirect
 	github.com/ashanbrown/forbidigo v1.6.0 // indirect
 	github.com/ashanbrown/makezero v1.2.0 // indirect
 	github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.6.10 // indirect
@@ -304,6 +306,7 @@ require (
 	golang.org/x/text v0.25.0 // indirect
 	golang.org/x/time v0.11.0 // indirect
 	golang.org/x/tools v0.33.0 // indirect
+	golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028 // indirect
 	google.golang.org/genproto/googleapis/api v0.0.0-20250218202821-56aae31c358a // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20250219182151-9fdb1cabc7b2 // indirect
 	google.golang.org/protobuf v1.36.6 // indirect
diff --git a/go.sum b/go.sum
@@ -58,6 +58,10 @@ github.com/anaskhan96/soup v1.2.5 h1:V/FHiusdTrPrdF4iA1YkVxsOpdNcgvqT1hG+YtcZ5hM
 github.com/anaskhan96/soup v1.2.5/go.mod h1:6YnEp9A2yywlYdM4EgDz9NEHclocMepEtku7wg6Cq3s=
 github.com/anchore/go-struct-converter v0.0.0-20221118182256-c68fdcfa2092 h1:aM1rlcoLz8y5B2r4tTLMiVTrMtpfY0O8EScKJxaSaEc=
 github.com/anchore/go-struct-converter v0.0.0-20221118182256-c68fdcfa2092/go.mod h1:rYqSE9HbjzpHTI74vwPvae4ZVYZd1lue2ta6xHPdblA=
+github.com/aquasecurity/go-pep440-version v0.0.1 h1:8VKKQtH2aV61+0hovZS3T//rUF+6GDn18paFTVS0h0M=
+github.com/aquasecurity/go-pep440-version v0.0.1/go.mod h1:3naPe+Bp6wi3n4l5iBFCZgS0JG8vY6FT0H4NGhFJ+i4=
+github.com/aquasecurity/go-version v0.0.1 h1:4cNl516agK0TCn5F7mmYN+xVs1E3S45LkgZk3cbaW2E=
+github.com/aquasecurity/go-version v0.0.1/go.mod h1:s1UU6/v2hctXcOa3OLwfj5d9yoXHa3ahf+ipSwEvGT0=
 github.com/ashanbrown/forbidigo v1.6.0 h1:D3aewfM37Yb3pxHujIPSpTf6oQk9sc9WZi8gerOIVIY=
 github.com/ashanbrown/forbidigo v1.6.0/go.mod h1:Y8j9jy9ZYAEHXdu723cUlraTqbzjKF1MUyfOKL+AjcU=
 github.com/ashanbrown/makezero v1.2.0 h1:/2Lp1bypdmK9wDIq7uWBlDF1iMUpIIS4A+pF6C9IEUU=
@@ -829,6 +833,8 @@ golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028 h1:+cNy6SZtPcJQH3LJVLOSmiC7MMxXNOb3PU/VUEz+EhU=
+golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
 google.golang.org/genproto/googleapis/api v0.0.0-20250218202821-56aae31c358a h1:nwKuGPlUAt+aR+pcrkfFRrTU1BVrSmYyYMxYbUIVHr0=
 google.golang.org/genproto/googleapis/api v0.0.0-20250218202821-56aae31c358a/go.mod h1:3kWAYMk1I75K4vykHtKt2ycnOgpA6974V7bREqbsenU=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20250219182151-9fdb1cabc7b2 h1:DMTIbak9GhdaSxEjvVzAeNZvyc03I61duqNbnm3SU0M=
diff --git a/pkg/config/config.go b/pkg/config/config.go
@@ -347,10 +347,7 @@ func (c *Config) PythonRequirementsForArch(goos string, goarch string, includePa
 
 	includePackageNames := []string{}
 	for _, pkg := range includePackages {
-		packageName, err := requirements.PackageName(pkg)
-		if err != nil {
-			return "", err
-		}
+		packageName := requirements.PackageName(pkg)
 		includePackageNames = append(includePackageNames, packageName)
 	}
 
@@ -372,7 +369,7 @@ func (c *Config) PythonRequirementsForArch(goos string, goarch string, includePa
 			}
 		}
 
-		packageName, _ := requirements.PackageName(archPkg)
+		packageName := requirements.PackageName(archPkg)
 		if packageName != "" {
 			foundIdx := -1
 			for i, includePkg := range includePackageNames {
diff --git a/pkg/docker/pipeline_push.go b/pkg/docker/pipeline_push.go
@@ -13,6 +13,8 @@ import (
 	"strconv"
 	"strings"
 
+	version "github.com/aquasecurity/go-pep440-version"
+
 	"github.com/replicate/cog/pkg/api"
 	"github.com/replicate/cog/pkg/config"
 	"github.com/replicate/cog/pkg/dockercontext"
@@ -22,7 +24,6 @@ import (
 	"github.com/replicate/cog/pkg/util"
 	"github.com/replicate/cog/pkg/util/console"
 	"github.com/replicate/cog/pkg/util/files"
-	"github.com/replicate/cog/pkg/util/version"
 )
 
 const EtagHeader = "etag"
@@ -199,18 +200,39 @@ func validateRequirements(projectDir string, client *http.Client, cfg *config.Co
 	}
 
 	for _, projectRequirement := range projectRequirements {
-		projectPackage, projectVersion, _, _, err := requirements.SplitPinnedPythonRequirement(projectRequirement)
-		if err != nil {
-			return err
+		projectPackage := requirements.PackageName(projectRequirement)
+		projectVersionSpecifier := requirements.VersionSpecifier(projectRequirement)
+		// Continue in case the project does not specify a specific version
+		if projectVersionSpecifier == "" {
+			continue
 		}
 		found := false
 		for _, pipelineRequirement := range pipelineRequirements {
+			if pipelineRequirement == projectRequirement {
+				found = true
+				break
+			}
 			pipelinePackage, pipelineVersion, _, _, err := requirements.SplitPinnedPythonRequirement(pipelineRequirement)
 			if err != nil {
 				return err
 			}
 			if pipelinePackage == projectPackage {
-				found = pipelineVersion == "" || version.GreaterOrEqual(projectVersion, pipelineVersion)
+				if pipelineVersion == "" {
+					found = true
+				} else {
+					pipelineVersion, err := version.Parse(pipelineVersion)
+					if err != nil {
+						return err
+					}
+					specifier, err := version.NewSpecifiers(projectVersionSpecifier)
+					if err != nil {
+						return err
+					}
+					if specifier.Check(pipelineVersion) {
+						found = true
+						break
+					}
+				}
 				break
 			}
 		}
diff --git a/pkg/docker/pipeline_push_test.go b/pkg/docker/pipeline_push_test.go
@@ -164,3 +164,191 @@ func TestPipelinePushFailWithExtraRequirements(t *testing.T) {
 	err = PipelinePush(t.Context(), "r8.im/user/test", dir, apiClient, client, cfg)
 	require.Error(t, err)
 }
+
+func TestPipelinePushSuccessWithBetaPatch(t *testing.T) {
+	// Setup mock web server for cog.replicate.com (token exchange)
+	webServer := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		switch r.URL.Path {
+		case "/api/token/user":
+			// Mock token exchange response
+			//nolint:gosec
+			tokenResponse := `{
+				"keys": {
+					"cog": {
+						"key": "test-api-token",
+						"expires_at": "2024-12-31T23:59:59Z"
+					}
+				}
+			}`
+			w.WriteHeader(http.StatusOK)
+			w.Write([]byte(tokenResponse))
+		default:
+			w.WriteHeader(http.StatusNotFound)
+		}
+	}))
+	defer webServer.Close()
+
+	// Setup mock API server for api.replicate.com (version and release endpoints)
+	apiServer := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		switch r.URL.Path {
+		case "/v1/models/user/test/versions":
+			// Mock version creation response
+			versionResponse := `{"id": "test-version-id"}`
+			w.WriteHeader(http.StatusCreated)
+			w.Write([]byte(versionResponse))
+		case "/v1/models/user/test/releases":
+			// Mock release creation response - empty body with 204 status
+			w.WriteHeader(http.StatusNoContent)
+		default:
+			w.WriteHeader(http.StatusNotFound)
+		}
+	}))
+	defer apiServer.Close()
+
+	cdnServer := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		switch r.URL.Path {
+		case "/requirements.txt":
+			// Mock requirements.txt response
+			requirementsResponse := "mycustompackage==1.1.0b2"
+			w.Header().Add(EtagHeader, "a")
+			w.WriteHeader(http.StatusOK)
+			w.Write([]byte(requirementsResponse))
+		default:
+			w.WriteHeader(http.StatusNotFound)
+		}
+	}))
+	defer cdnServer.Close()
+
+	webURL, err := url.Parse(webServer.URL)
+	require.NoError(t, err)
+	apiURL, err := url.Parse(apiServer.URL)
+	require.NoError(t, err)
+	cdnURL, err := url.Parse(cdnServer.URL)
+	require.NoError(t, err)
+
+	t.Setenv(env.SchemeEnvVarName, webURL.Scheme)
+	t.Setenv(env.WebHostEnvVarName, webURL.Host)
+	t.Setenv(env.APIHostEnvVarName, apiURL.Host)
+	t.Setenv(env.PipelinesRuntimeHostEnvVarName, cdnURL.Host)
+
+	dir := t.TempDir()
+
+	// Create mock predict
+	predictPyPath := filepath.Join(dir, "predict.py")
+	handle, err := os.Create(predictPyPath)
+	require.NoError(t, err)
+	handle.WriteString("import cog")
+	handle.Close()
+	dockertest.MockCogConfig = "{\"build\":{\"python_version\":\"3.12\",\"python_packages\":[\"torch==2.5.0\",\"mycustompackage==1.1.0b2\"],\"system_packages\":[\"git\"]},\"image\":\"test\",\"predict\":\"" + predictPyPath + ":Predictor\"}"
+
+	// Setup mock command
+	command := dockertest.NewMockCommand()
+	client, err := cogHttp.ProvideHTTPClient(t.Context(), command)
+	require.NoError(t, err)
+	webClient := web.NewClient(command, client)
+	apiClient := api.NewClient(command, client, webClient)
+
+	cfg := config.DefaultConfig()
+	requirementsPath := filepath.Join(dir, "requirements.txt")
+	handle, err = os.Create(requirementsPath)
+	require.NoError(t, err)
+	handle.WriteString("mycustompackage==1.1.0b2")
+	handle.Close()
+	cfg.Build.PythonRequirements = filepath.Base(requirementsPath)
+	err = PipelinePush(t.Context(), "r8.im/user/test", dir, apiClient, client, cfg)
+	require.NoError(t, err)
+}
+
+func TestPipelinePushSuccessWithAlphaPatch(t *testing.T) {
+	// Setup mock web server for cog.replicate.com (token exchange)
+	webServer := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		switch r.URL.Path {
+		case "/api/token/user":
+			// Mock token exchange response
+			//nolint:gosec
+			tokenResponse := `{
+				"keys": {
+					"cog": {
+						"key": "test-api-token",
+						"expires_at": "2024-12-31T23:59:59Z"
+					}
+				}
+			}`
+			w.WriteHeader(http.StatusOK)
+			w.Write([]byte(tokenResponse))
+		default:
+			w.WriteHeader(http.StatusNotFound)
+		}
+	}))
+	defer webServer.Close()
+
+	// Setup mock API server for api.replicate.com (version and release endpoints)
+	apiServer := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		switch r.URL.Path {
+		case "/v1/models/user/test/versions":
+			// Mock version creation response
+			versionResponse := `{"id": "test-version-id"}`
+			w.WriteHeader(http.StatusCreated)
+			w.Write([]byte(versionResponse))
+		case "/v1/models/user/test/releases":
+			// Mock release creation response - empty body with 204 status
+			w.WriteHeader(http.StatusNoContent)
+		default:
+			w.WriteHeader(http.StatusNotFound)
+		}
+	}))
+	defer apiServer.Close()
+
+	cdnServer := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		switch r.URL.Path {
+		case "/requirements.txt":
+			// Mock requirements.txt response
+			requirementsResponse := "mycustompackage==1.1.0b2"
+			w.Header().Add(EtagHeader, "a")
+			w.WriteHeader(http.StatusOK)
+			w.Write([]byte(requirementsResponse))
+		default:
+			w.WriteHeader(http.StatusNotFound)
+		}
+	}))
+	defer cdnServer.Close()
+
+	webURL, err := url.Parse(webServer.URL)
+	require.NoError(t, err)
+	apiURL, err := url.Parse(apiServer.URL)
+	require.NoError(t, err)
+	cdnURL, err := url.Parse(cdnServer.URL)
+	require.NoError(t, err)
+
+	t.Setenv(env.SchemeEnvVarName, webURL.Scheme)
+	t.Setenv(env.WebHostEnvVarName, webURL.Host)
+	t.Setenv(env.APIHostEnvVarName, apiURL.Host)
+	t.Setenv(env.PipelinesRuntimeHostEnvVarName, cdnURL.Host)
+
+	dir := t.TempDir()
+
+	// Create mock predict
+	predictPyPath := filepath.Join(dir, "predict.py")
+	handle, err := os.Create(predictPyPath)
+	require.NoError(t, err)
+	handle.WriteString("import cog")
+	handle.Close()
+	dockertest.MockCogConfig = "{\"build\":{\"python_version\":\"3.12\",\"python_packages\":[\"torch==2.5.0\",\"mycustompackage>=1.0\"],\"system_packages\":[\"git\"]},\"image\":\"test\",\"predict\":\"" + predictPyPath + ":Predictor\"}"
+
+	// Setup mock command
+	command := dockertest.NewMockCommand()
+	client, err := cogHttp.ProvideHTTPClient(t.Context(), command)
+	require.NoError(t, err)
+	webClient := web.NewClient(command, client)
+	apiClient := api.NewClient(command, client, webClient)
+
+	cfg := config.DefaultConfig()
+	requirementsPath := filepath.Join(dir, "requirements.txt")
+	handle, err = os.Create(requirementsPath)
+	require.NoError(t, err)
+	handle.WriteString("mycustompackage>=1.0")
+	handle.Close()
+	cfg.Build.PythonRequirements = filepath.Base(requirementsPath)
+	err = PipelinePush(t.Context(), "r8.im/user/test", dir, apiClient, client, cfg)
+	require.NoError(t, err)
+}
diff --git a/pkg/requirements/requirements.go b/pkg/requirements/requirements.go
@@ -176,7 +176,21 @@ func SplitPinnedPythonRequirement(requirement string) (name string, version stri
 	return name, version, findLinks, extraIndexURLs, nil
 }
 
-func PackageName(pipRequirement string) (string, error) {
-	name, _, _, _, err := SplitPinnedPythonRequirement(pipRequirement)
-	return name, err
+func PackageName(pipRequirement string) string {
+	re := regexp.MustCompile(`^([a-zA-Z0-9_\-\.]+(?:\[[^\]]+\])?)`)
+	match := re.FindStringSubmatch(pipRequirement)
+	if len(match) > 1 {
+		return match[1]
+	}
+	return ""
+}
+
+func VersionSpecifier(pipRequirement string) string {
+	re := regexp.MustCompile(`^[a-zA-Z0-9_\-\.]+(?:\[[^\]]+\])?\s*([<>=!~]=?\s*[^;,#\s]+(?:\s*,\s*[<>=!~]=?\s*[^;,#\s]+)*(?:\s*\|\|\s*[<>=!~]=?\s*[^;,#\s]+(?:\s*,\s*[<>=!~]=?\s*[^;,#\s]+)*)*)?`)
+	match := re.FindStringSubmatch(pipRequirement)
+	if len(match) > 1 {
+		// Optional: strip spaces for uniform output
+		return strings.ReplaceAll(match[1], " ", "")
+	}
+	return ""
 }
diff --git a/pkg/requirements/requirements_test.go b/pkg/requirements/requirements_test.go
@@ -434,6 +434,16 @@ func TestReadRequirementsWithEditable(t *testing.T) {
 	require.Equal(t, []string{"torch==2.5.1"}, requirements)
 }
 
+func TestVersionSpecifier(t *testing.T) {
+	specifier := VersionSpecifier("mypackage>= 1.0, < 1.4 || > 2.0")
+	require.Equal(t, specifier, ">=1.0,<1.4||>2.0")
+}
+
+func TestPackageName(t *testing.T) {
+	name := PackageName("mypackage>= 1.0, < 1.4 || > 2.0")
+	require.Equal(t, name, "mypackage")
+}
+
 func checkRequirements(t *testing.T, expected []string, actual []string) {
 	t.Helper()
 	for n, expectLine := range expected {
diff --git a/pkg/util/version/version.go b/pkg/util/version/version.go
@@ -112,7 +112,15 @@ func Greater(v1 string, v2 string) bool {
 }
 
 func GreaterOrEqual(v1 string, v2 string) bool {
-	return MustVersion(v1).GreaterOrEqual(MustVersion(v2))
+	leftVersion, err := NewVersion(v1)
+	if err != nil {
+		return v1 == v2
+	}
+	rightVersion, err := NewVersion(v2)
+	if err != nil {
+		return v1 == v2
+	}
+	return leftVersion.GreaterOrEqual(rightVersion)
 }
 
 func (v *Version) Matches(other *Version) bool {
diff --git a/pkg/util/version/version_test.go b/pkg/util/version/version_test.go
@@ -79,3 +79,9 @@ func TestVersionMatchesModifier(t *testing.T) {
 	matchVersion := "2.3.2+cu118"
 	require.True(t, Matches(version, matchVersion))
 }
+
+func TestGreaterThanOrEqualToWithInvalidPatch(t *testing.T) {
+	leftVersion := "1.1.0b2"
+	rightVersion := "1.1.0b2"
+	require.True(t, GreaterOrEqual(leftVersion, rightVersion))
+}

Original file line number	Diff line number	Diff line change
`@@ -347,10 +347,7 @@ func (c *Config) PythonRequirementsForArch(goos string, goarch string, includePa`
`347`	`347`
`348`	`348`	`includePackageNames := []string{}`
`349`	`349`	`for _, pkg := range includePackages {`
`350`		`- packageName, err := requirements.PackageName(pkg)`
`351`		`- if err != nil {`
`352`		`- return "", err`
`353`		`- }`
	`350`	`+ packageName := requirements.PackageName(pkg)`
`354`	`351`	`includePackageNames = append(includePackageNames, packageName)`
`355`	`352`	`}`
`356`	`353`
`@@ -372,7 +369,7 @@ func (c *Config) PythonRequirementsForArch(goos string, goarch string, includePa`
`372`	`369`	`}`
`373`	`370`	`}`
`374`	`371`
`375`		`- packageName, _ := requirements.PackageName(archPkg)`
	`372`	`+ packageName := requirements.PackageName(archPkg)`
`376`	`373`	`if packageName != "" {`
`377`	`374`	`foundIdx := -1`
`378`	`375`	`for i, includePkg := range includePackageNames {`