How is Python `pip install` cache file's ID string calculated?
When I use pip install pillow==10.2.0 to install a Pillow on my machine, the original filename from server is pillow-10.2.0-cp312-cp312-win_amd64.whl .
After the download, it is cached in my local disk:
C:\Users\chj\AppData\Local\pip\cache\http-v2\5\d\a\8\5\5da855ed79847734593562113083d79c2634b1696f0d635c02984eb4.body
I'd like to know, how is that ID string(as cache filename) 5da855ed79847734593562113083d79c2634b1696f0d635c02984eb4 calculated?
It is not the SHA224 or SHA256 of the .body file.
sha224(5da855ed79847734593562113083d79c2634b1696f0d635c02984eb4.body)=98dede132d9782d07fd42cf70d1734984f8bfd5c60c6018903053d68
sha256(5da855ed79847734593562113083d79c2634b1696f0d635c02984eb4.body)=154e939c5f0053a383de4fd3d3da48d9427a7e985f58af8e94d0b3c9fcfcf4f9
Then what is it?
The ID string is the sha224 hash of the url in hex:
$ echo -n 'https://files.pythonhosted.org/packages/51/07/7e9266a59bb267b56c1f432f6416653b9a78dda771c57740d064a8aa2a44/pillow-10.2.0-cp312-cp312-win_amd64.whl' | openssl sha224 -hex
SHA2-224(stdin)= 5da855ed79847734593562113083d79c2634b1696f0d635c02984eb4
You didn't specify the version of pip you are looking at so I checked out the latest version from https://github.com/pypa/pip and searched for '.body' and found two references. The most promising appears to be file_cache.py:
def get_body(self, key: str) -> IO[bytes] | None:
name = self._fn(key) + ".body"
try:
return open(name, "rb")
except FileNotFoundError:
return None
and then you just follow _fn() to encode() and finally the call to get_body(cache_url):
def encode(x: str) -> str:
return hashlib.sha224(x.encode()).hexdigest()
def _fn(self, name: str) -> str:
# NOTE: This method should not change as some may depend on it.
# See: https://github.com/ionrock/cachecontrol/issues/63
hashed = self.encode(name)
parts = list(hashed[:5]) + [hashed]
return os.path.join(self.directory, *parts)
body_file = self.cache.get_body(cache_url)
- Error attempting to deploy my Django app on Vercel
- install omniorb python in a virtualenv
- Problem with pip install mariadb - mariadb_config not found
- Ansible not able to find requirements.txt
- how can i use pip search with my own nexus pypi repo?
- Local Package Development with Poetry on Ubuntu 24.04?
- Cannot import statsmodel module because it doesn't show it's installed
- ImportError: No module named 'Cython'
- The WRF-Python installation error in win10, python 3
- ERROR: Could not build wheels for pymssql which use PEP 517 and cannot be installed directly
- Failed building wheel for spacy
- OpenAI API error: "You tried to access openai.ChatCompletion, but this is no longer supported in openai>=1.0.0"
- How to install Python packages over SSH Port Forwarding?
- How to prevent `pip install` resulting in duplicate code?
- pip unable to install rrdtool
- Installing Python packages from local file system folder to virtualenv with pip
- Why is python saying I have "no module named venv"?
- Installing Coral Edge TPU software gives me "ModuleNotFoundError: No module named 'pycoral.adapters'" error
- Derivative error occured when installing PyQt6-tools
- Python pip broken after OS X 10.8 upgrade
- Python - PIP : Is it possible to specify architecture?
- How to freeze a dev requirements and generate to dev.txt with pipenv? (Only Dev packages/dependencies)
- How to install torch without nvidia?
- ModuleNotFoundError: No module named 'face_recognition'
- AttributeError: module 'pkgutil' has no attribute 'ImpImporter'. Did you mean: 'zipimporter'?
- Could not install packages due to an EnvironmentError: [Errno 13]
- search pypi packages programatically (ideally sorted by relevance)
- Issues installing frida with pip
- A module that was compiled using NumPy 1.x cannot be run in NumPy 2.0.0
- PIP3 ModuleNotFoundError: No module named 'pip._internal.cli.main' on Mac OS