Elixir: Mix complains about a false dependency conflict after upgrading to 1.2
Basically top-level project says it doesn't care about a version (dependency is specified there only for dialyxir's sake) while a library have a stricter constraint. Furthermore this happens during deps.get with existing mix.lock — in general I didn't expect any checks to be performed at this stage.
Dependencies have diverged:
* plug (Hex package)
the dependency plug
> In mix.exs:
{:plug, ">= 0.0.0", [hex: :plug, manager: :mix]}
does not match the requirement specified
> In deps/oauth2/mix.exs:
{:plug, "~> 1.0", [optional: false, hex: :plug]}
Ensure they match or specify one of the above in your deps and set "override: true"
** (Mix) Can't continue due to errors on dependencies
sumerman
All 13 comments
@sumerman good catch. Can you provide a simple mix.exs file that reproduces the error? Thank you. :)
josevalim
on 12 Jan 2016
@ericmj / @lexmag let's solve this before shipping 1.2.1.
josevalim
on 12 Jan 2016
@josevalim It's surprisingly hard to reproduce: on a different machine with the same repo it gives me a different set of conflicting deps, and "minimal example" I'm trying to come up with just works. Could you point me to the part of Mix code where resolution happens, so I will have a better idea what's going on.
sumerman
on 13 Jan 2016
@sumerman if it works on another machine it can be two reasons:
- it has different elixir/hex versions
- this bug only shows up when upgrading code. so if you have recently upgraded oauth2 or plug, maybe having the old lock with the mix.exs file is enough to reproduce it
josevalim
on 13 Jan 2016
@josevalim not quite: the repo with the problem just gives me a different conflicts set. But a brand-new repo works.
- Versions are the same
- I'm deleting
depsfolders before runningdeps.get
Removing _build folder helped, though. I will check with another machine tonight.
sumerman
on 13 Jan 2016
Ok, perfect. I will hold the release until then, if we still can't reproduce it, no issues. It can always be fixed later on.
josevalim
on 13 Jan 2016
Make sure you have the same mix.lock file when reproducing. This error happens when you have a fetched and compiled dependency A and add a new dep B that depends on A but the version requirement B set on A does not match the version you have of A.
Example:
You have dep A with version 1.0.0. You and dep B that depends on A with the requirement "~> 2.0", the new requirement does not match on 1.0.0 and you get this error.
You could get this error due to a bug in Mix but regardless the error message needs to be improved.
ericmj
on 13 Jan 2016
I've been preserving the lock file all the time and of course will preserve
it for further edperiments.
On Wednesday, 13 January 2016, Eric Meadows-Jönsson <
[email protected]> wrote:
Make sure you have the same mix.lock file when reproducing. This error
happens when you have a fetched and compiled dependency A and add a new dep
B that depends on A but the version requirement B set on A does not match
the version you have of A.Example:
You have dep A with version 1.0.0. You and dep B that depends on A with
the requirement "~> 2.0", the new requirement does not match on 1.0.0 and
you get this error.You could get this error due to a bug in Mix but regardless the error
message needs to be improved.—
Reply to this email directly or view it on GitHub
https://github.com/elixir-lang/elixir/issues/4191#issuecomment-171337296
.
Sincerely,
(Mr.) Valery Meleshkin
sumerman
on 13 Jan 2016
_build folder removal helped on the other machine as well. So probably just a note will be enough.
sumerman
on 13 Jan 2016
Perfect. We will improve the error message for upcoming releases anyway. Thank you!
josevalim
on 13 Jan 2016
This is related to #4162 btw.
josevalim
on 14 Jan 2016
Closing as part of #4162.
josevalim
on 22 May 2016
can confirm deleting /build and then running mix deps.get solved the issue for me
amituuush
on 8 Nov 2018
Related issues
pragdave
·
28Comments
pragdave
·
61Comments
devonestes
·
33Comments
josevalim
·
27Comments
p-adams
·
36Comments