lib/dispatchcloud/dispatcher_test.go

   1 // Copyright (C) The Arvados Authors. All rights reserved.
   2 //
   3 // SPDX-License-Identifier: AGPL-3.0
   4
   5 package dispatchcloud
   6
   7 import (
   8         "context"
   9         "crypto/tls"
  10         "encoding/json"
  11         "io/ioutil"
  12         "math/rand"
  13         "net/http"
  14         "net/http/httptest"
  15         "net/url"
  16         "os"
  17         "sync"
  18         "time"
  19
  20         "git.arvados.org/arvados.git/lib/config"
  21         "git.arvados.org/arvados.git/lib/dispatchcloud/test"
  22         "git.arvados.org/arvados.git/sdk/go/arvados"
  23         "git.arvados.org/arvados.git/sdk/go/arvadostest"
  24         "git.arvados.org/arvados.git/sdk/go/ctxlog"
  25         "github.com/prometheus/client_golang/prometheus"
  26         "golang.org/x/crypto/ssh"
  27         check "gopkg.in/check.v1"
  28 )
  29
  30 var _ = check.Suite(&DispatcherSuite{})
  31
  32 type DispatcherSuite struct {
  33         ctx            context.Context
  34         cancel         context.CancelFunc
  35         cluster        *arvados.Cluster
  36         stubDriver     *test.StubDriver
  37         disp           *dispatcher
  38         error503Server *httptest.Server
  39 }
  40
  41 func (s *DispatcherSuite) SetUpTest(c *check.C) {
  42         s.ctx, s.cancel = context.WithCancel(context.Background())
  43         s.ctx = ctxlog.Context(s.ctx, ctxlog.TestLogger(c))
  44         dispatchpub, _ := test.LoadTestKey(c, "test/sshkey_dispatch")
  45         dispatchprivraw, err := ioutil.ReadFile("test/sshkey_dispatch")
  46         c.Assert(err, check.IsNil)
  47
  48         _, hostpriv := test.LoadTestKey(c, "test/sshkey_vm")
  49         s.stubDriver = &test.StubDriver{
  50                 HostKey:                   hostpriv,
  51                 AuthorizedKeys:            []ssh.PublicKey{dispatchpub},
  52                 ErrorRateCreate:           0.1,
  53                 ErrorRateDestroy:          0.1,
  54                 MinTimeBetweenCreateCalls: time.Millisecond,
  55                 QuotaMaxInstances:         10,
  56         }
  57
  58         // We need the postgresql connection info from the integration
  59         // test config.
  60         cfg, err := config.NewLoader(nil, ctxlog.FromContext(s.ctx)).Load()
  61         c.Assert(err, check.IsNil)
  62         testcluster, err := cfg.GetCluster("")
  63         c.Assert(err, check.IsNil)
  64
  65         s.cluster = &arvados.Cluster{
  66                 ManagementToken: "test-management-token",
  67                 PostgreSQL:      testcluster.PostgreSQL,
  68                 Containers: arvados.ContainersConfig{
  69                         CrunchRunCommand:       "crunch-run",
  70                         CrunchRunArgumentsList: []string{"--foo", "--extra='args'"},
  71                         DispatchPrivateKey:     string(dispatchprivraw),
  72                         StaleLockTimeout:       arvados.Duration(5 * time.Millisecond),
  73                         RuntimeEngine:          "stub",
  74                         MaxDispatchAttempts:    10,
  75                         CloudVMs: arvados.CloudVMsConfig{
  76                                 Driver:               "test",
  77                                 SyncInterval:         arvados.Duration(10 * time.Millisecond),
  78                                 TimeoutIdle:          arvados.Duration(150 * time.Millisecond),
  79                                 TimeoutBooting:       arvados.Duration(150 * time.Millisecond),
  80                                 TimeoutProbe:         arvados.Duration(15 * time.Millisecond),
  81                                 TimeoutShutdown:      arvados.Duration(5 * time.Millisecond),
  82                                 MaxCloudOpsPerSecond: 500,
  83                                 InitialQuotaEstimate: 8,
  84                                 PollInterval:         arvados.Duration(5 * time.Millisecond),
  85                                 ProbeInterval:        arvados.Duration(5 * time.Millisecond),
  86                                 MaxProbesPerSecond:   1000,
  87                                 TimeoutSignal:        arvados.Duration(3 * time.Millisecond),
  88                                 TimeoutStaleRunLock:  arvados.Duration(3 * time.Millisecond),
  89                                 TimeoutTERM:          arvados.Duration(20 * time.Millisecond),
  90                                 ResourceTags:         map[string]string{"testtag": "test value"},
  91                                 TagKeyPrefix:         "test:",
  92                         },
  93                 },
  94                 InstanceTypes: arvados.InstanceTypeMap{
  95                         test.InstanceType(1).Name:  test.InstanceType(1),
  96                         test.InstanceType(2).Name:  test.InstanceType(2),
  97                         test.InstanceType(3).Name:  test.InstanceType(3),
  98                         test.InstanceType(4).Name:  test.InstanceType(4),
  99                         test.InstanceType(6).Name:  test.InstanceType(6),
 100                         test.InstanceType(8).Name:  test.InstanceType(8),
 101                         test.InstanceType(16).Name: test.InstanceType(16),
 102                 },
 103         }
 104         arvadostest.SetServiceURL(&s.cluster.Services.DispatchCloud, "http://localhost:/")
 105         arvadostest.SetServiceURL(&s.cluster.Services.Controller, "https://"+os.Getenv("ARVADOS_API_HOST")+"/")
 106
 107         arvClient, err := arvados.NewClientFromConfig(s.cluster)
 108         c.Assert(err, check.IsNil)
 109         // Disable auto-retry
 110         arvClient.Timeout = 0
 111
 112         s.error503Server = httptest.NewTLSServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 113                 c.Logf("503 stub: returning 503")
 114                 w.WriteHeader(http.StatusServiceUnavailable)
 115         }))
 116         arvClient.Client = &http.Client{
 117                 Transport: &http.Transport{
 118                         Proxy: s.arvClientProxy(c),
 119                         TLSClientConfig: &tls.Config{
 120                                 InsecureSkipVerify: true}}}
 121
 122         s.disp = &dispatcher{
 123                 Cluster:   s.cluster,
 124                 Context:   s.ctx,
 125                 ArvClient: arvClient,
 126                 AuthToken: arvadostest.AdminToken,
 127                 Registry:  prometheus.NewRegistry(),
 128         }
 129         // Test cases can modify s.cluster before calling
 130         // initialize(), and then modify private state before calling
 131         // go run().
 132 }
 133
 134 func (s *DispatcherSuite) TearDownTest(c *check.C) {
 135         s.cancel()
 136         s.disp.Close()
 137         s.error503Server.Close()
 138 }
 139
 140 // Intercept outgoing API requests for "/503" and respond HTTP
 141 // 503. This lets us force (*arvados.Client)Last503() to return
 142 // something.
 143 func (s *DispatcherSuite) arvClientProxy(c *check.C) func(*http.Request) (*url.URL, error) {
 144         return func(req *http.Request) (*url.URL, error) {
 145                 if req.URL.Path == "/503" {
 146                         c.Logf("arvClientProxy: proxying to 503 stub")
 147                         return url.Parse(s.error503Server.URL)
 148                 } else {
 149                         return nil, nil
 150                 }
 151         }
 152 }
 153
 154 // DispatchToStubDriver checks that the dispatcher wires everything
 155 // together effectively. It uses a real scheduler and worker pool with
 156 // a fake queue and cloud driver. The fake cloud driver injects
 157 // artificial errors in order to exercise a variety of code paths.
 158 func (s *DispatcherSuite) TestDispatchToStubDriver(c *check.C) {
 159         Drivers["test"] = s.stubDriver
 160         s.disp.setupOnce.Do(s.disp.initialize)
 161         queue := &test.Queue{
 162                 MaxDispatchAttempts: 5,
 163                 ChooseType: func(ctr *arvados.Container) (arvados.InstanceType, error) {
 164                         return ChooseInstanceType(s.cluster, ctr)
 165                 },
 166                 Logger: ctxlog.TestLogger(c),
 167         }
 168         for i := 0; i < 200; i++ {
 169                 queue.Containers = append(queue.Containers, arvados.Container{
 170                         UUID:     test.ContainerUUID(i + 1),
 171                         State:    arvados.ContainerStateQueued,
 172                         Priority: int64(i%20 + 1),
 173                         RuntimeConstraints: arvados.RuntimeConstraints{
 174                                 RAM:   int64(i%3+1) << 30,
 175                                 VCPUs: i%8 + 1,
 176                         },
 177                 })
 178         }
 179         s.disp.queue = queue
 180
 181         var mtx sync.Mutex
 182         done := make(chan struct{})
 183         waiting := map[string]struct{}{}
 184         for _, ctr := range queue.Containers {
 185                 waiting[ctr.UUID] = struct{}{}
 186         }
 187         finishContainer := func(ctr arvados.Container) {
 188                 mtx.Lock()
 189                 defer mtx.Unlock()
 190                 if _, ok := waiting[ctr.UUID]; !ok {
 191                         c.Errorf("container completed twice: %s", ctr.UUID)
 192                         return
 193                 }
 194                 delete(waiting, ctr.UUID)
 195                 if len(waiting) == 100 {
 196                         // trigger scheduler maxConcurrency limit
 197                         c.Logf("test: requesting 503 in order to trigger maxConcurrency limit")
 198                         s.disp.ArvClient.RequestAndDecode(nil, "GET", "503", nil, nil)
 199                 }
 200                 if len(waiting) == 0 {
 201                         close(done)
 202                 }
 203         }
 204         executeContainer := func(ctr arvados.Container) int {
 205                 finishContainer(ctr)
 206                 return int(rand.Uint32() & 0x3)
 207         }
 208         n := 0
 209         s.stubDriver.Queue = queue
 210         s.stubDriver.SetupVM = func(stubvm *test.StubVM) {
 211                 n++
 212                 stubvm.Boot = time.Now().Add(time.Duration(rand.Int63n(int64(5 * time.Millisecond))))
 213                 stubvm.CrunchRunDetachDelay = time.Duration(rand.Int63n(int64(10 * time.Millisecond)))
 214                 stubvm.ExecuteContainer = executeContainer
 215                 stubvm.CrashRunningContainer = finishContainer
 216                 stubvm.ExtraCrunchRunArgs = "'--runtime-engine=stub' '--foo' '--extra='\\''args'\\'''"
 217                 switch n % 7 {
 218                 case 0:
 219                         stubvm.Broken = time.Now().Add(time.Duration(rand.Int63n(90)) * time.Millisecond)
 220                 case 1:
 221                         stubvm.CrunchRunMissing = true
 222                 case 2:
 223                         stubvm.ReportBroken = time.Now().Add(time.Duration(rand.Int63n(200)) * time.Millisecond)
 224                 default:
 225                         stubvm.CrunchRunCrashRate = 0.1
 226                         stubvm.ArvMountDeadlockRate = 0.1
 227                 }
 228         }
 229         s.stubDriver.Bugf = c.Errorf
 230
 231         start := time.Now()
 232         go s.disp.run()
 233         err := s.disp.CheckHealth()
 234         c.Check(err, check.IsNil)
 235
 236         for len(waiting) > 0 {
 237                 waswaiting := len(waiting)
 238                 select {
 239                 case <-done:
 240                         // loop will end because len(waiting)==0
 241                 case <-time.After(5 * time.Second):
 242                         if len(waiting) >= waswaiting {
 243                                 c.Fatalf("timed out; no progress in 5 s while waiting for %d containers: %q", len(waiting), waiting)
 244                         }
 245                 }
 246         }
 247         c.Logf("containers finished (%s), waiting for instances to shutdown and queue to clear", time.Since(start))
 248
 249         deadline := time.Now().Add(5 * time.Second)
 250         for range time.NewTicker(10 * time.Millisecond).C {
 251                 insts, err := s.stubDriver.InstanceSets()[0].Instances(nil)
 252                 c.Check(err, check.IsNil)
 253                 queue.Update()
 254                 ents, _ := queue.Entries()
 255                 if len(ents) == 0 && len(insts) == 0 {
 256                         break
 257                 }
 258                 if time.Now().After(deadline) {
 259                         c.Fatalf("timed out with %d containers (%v), %d instances (%+v)", len(ents), ents, len(insts), insts)
 260                 }
 261         }
 262
 263         req := httptest.NewRequest("GET", "/metrics", nil)
 264         req.Header.Set("Authorization", "Bearer "+s.cluster.ManagementToken)
 265         resp := httptest.NewRecorder()
 266         s.disp.ServeHTTP(resp, req)
 267         c.Check(resp.Code, check.Equals, http.StatusOK)
 268         c.Check(resp.Body.String(), check.Matches, `(?ms).*driver_operations{error="0",operation="Create"} [^0].*`)
 269         c.Check(resp.Body.String(), check.Matches, `(?ms).*driver_operations{error="0",operation="List"} [^0].*`)
 270         c.Check(resp.Body.String(), check.Matches, `(?ms).*driver_operations{error="0",operation="Destroy"} [^0].*`)
 271         c.Check(resp.Body.String(), check.Matches, `(?ms).*driver_operations{error="1",operation="Create"} [^0].*`)
 272         c.Check(resp.Body.String(), check.Matches, `(?ms).*driver_operations{error="1",operation="List"} 0\n.*`)
 273         c.Check(resp.Body.String(), check.Matches, `(?ms).*boot_outcomes{outcome="aborted"} [0-9]+\n.*`)
 274         c.Check(resp.Body.String(), check.Matches, `(?ms).*boot_outcomes{outcome="disappeared"} [^0].*`)
 275         c.Check(resp.Body.String(), check.Matches, `(?ms).*boot_outcomes{outcome="failure"} [^0].*`)
 276         c.Check(resp.Body.String(), check.Matches, `(?ms).*boot_outcomes{outcome="success"} [^0].*`)
 277         c.Check(resp.Body.String(), check.Matches, `(?ms).*instances_disappeared{state="shutdown"} [^0].*`)
 278         c.Check(resp.Body.String(), check.Matches, `(?ms).*instances_disappeared{state="unknown"} 0\n.*`)
 279         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_to_ssh_seconds{quantile="0.95"} [0-9.]*`)
 280         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_to_ssh_seconds_count [0-9]*`)
 281         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_to_ssh_seconds_sum [0-9.]*`)
 282         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_to_ready_for_container_seconds{quantile="0.95"} [0-9.]*`)
 283         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_to_ready_for_container_seconds_count [0-9]*`)
 284         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_to_ready_for_container_seconds_sum [0-9.]*`)
 285         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_from_shutdown_request_to_disappearance_seconds_count [0-9]*`)
 286         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_from_shutdown_request_to_disappearance_seconds_sum [0-9.]*`)
 287         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_from_queue_to_crunch_run_seconds_count [0-9]*`)
 288         c.Check(resp.Body.String(), check.Matches, `(?ms).*time_from_queue_to_crunch_run_seconds_sum [0-9e+.]*`)
 289         c.Check(resp.Body.String(), check.Matches, `(?ms).*run_probe_duration_seconds_count{outcome="success"} [0-9]*`)
 290         c.Check(resp.Body.String(), check.Matches, `(?ms).*run_probe_duration_seconds_sum{outcome="success"} [0-9e+.]*`)
 291         c.Check(resp.Body.String(), check.Matches, `(?ms).*run_probe_duration_seconds_count{outcome="fail"} [0-9]*`)
 292         c.Check(resp.Body.String(), check.Matches, `(?ms).*run_probe_duration_seconds_sum{outcome="fail"} [0-9e+.]*`)
 293         c.Check(resp.Body.String(), check.Matches, `(?ms).*last_503_time [1-9][0-9e+.]*`)
 294         c.Check(resp.Body.String(), check.Matches, `(?ms).*max_concurrent_containers [1-9][0-9e+.]*`)
 295 }
 296
 297 func (s *DispatcherSuite) TestAPIPermissions(c *check.C) {
 298         s.cluster.ManagementToken = "abcdefgh"
 299         Drivers["test"] = s.stubDriver
 300         s.disp.setupOnce.Do(s.disp.initialize)
 301         s.disp.queue = &test.Queue{}
 302         go s.disp.run()
 303
 304         for _, token := range []string{"abc", ""} {
 305                 req := httptest.NewRequest("GET", "/arvados/v1/dispatch/instances", nil)
 306                 if token != "" {
 307                         req.Header.Set("Authorization", "Bearer "+token)
 308                 }
 309                 resp := httptest.NewRecorder()
 310                 s.disp.ServeHTTP(resp, req)
 311                 if token == "" {
 312                         c.Check(resp.Code, check.Equals, http.StatusUnauthorized)
 313                 } else {
 314                         c.Check(resp.Code, check.Equals, http.StatusForbidden)
 315                 }
 316         }
 317 }
 318
 319 func (s *DispatcherSuite) TestAPIDisabled(c *check.C) {
 320         s.cluster.ManagementToken = ""
 321         Drivers["test"] = s.stubDriver
 322         s.disp.setupOnce.Do(s.disp.initialize)
 323         s.disp.queue = &test.Queue{}
 324         go s.disp.run()
 325
 326         for _, token := range []string{"abc", ""} {
 327                 req := httptest.NewRequest("GET", "/arvados/v1/dispatch/instances", nil)
 328                 if token != "" {
 329                         req.Header.Set("Authorization", "Bearer "+token)
 330                 }
 331                 resp := httptest.NewRecorder()
 332                 s.disp.ServeHTTP(resp, req)
 333                 c.Check(resp.Code, check.Equals, http.StatusForbidden)
 334         }
 335 }
 336
 337 func (s *DispatcherSuite) TestInstancesAPI(c *check.C) {
 338         s.cluster.ManagementToken = "abcdefgh"
 339         s.cluster.Containers.CloudVMs.TimeoutBooting = arvados.Duration(time.Second)
 340         Drivers["test"] = s.stubDriver
 341         s.disp.setupOnce.Do(s.disp.initialize)
 342         s.disp.queue = &test.Queue{}
 343         go s.disp.run()
 344
 345         type instance struct {
 346                 Instance             string
 347                 WorkerState          string `json:"worker_state"`
 348                 Price                float64
 349                 LastContainerUUID    string `json:"last_container_uuid"`
 350                 ArvadosInstanceType  string `json:"arvados_instance_type"`
 351                 ProviderInstanceType string `json:"provider_instance_type"`
 352         }
 353         type instancesResponse struct {
 354                 Items []instance
 355         }
 356         getInstances := func() instancesResponse {
 357                 req := httptest.NewRequest("GET", "/arvados/v1/dispatch/instances", nil)
 358                 req.Header.Set("Authorization", "Bearer abcdefgh")
 359                 resp := httptest.NewRecorder()
 360                 s.disp.ServeHTTP(resp, req)
 361                 var sr instancesResponse
 362                 c.Check(resp.Code, check.Equals, http.StatusOK)
 363                 err := json.Unmarshal(resp.Body.Bytes(), &sr)
 364                 c.Check(err, check.IsNil)
 365                 return sr
 366         }
 367
 368         sr := getInstances()
 369         c.Check(len(sr.Items), check.Equals, 0)
 370
 371         s.stubDriver.ErrorRateCreate = 0
 372         ch := s.disp.pool.Subscribe()
 373         defer s.disp.pool.Unsubscribe(ch)
 374         ok := s.disp.pool.Create(test.InstanceType(1))
 375         c.Check(ok, check.Equals, true)
 376         <-ch
 377
 378         for deadline := time.Now().Add(time.Second); time.Now().Before(deadline); {
 379                 sr = getInstances()
 380                 if len(sr.Items) > 0 {
 381                         break
 382                 }
 383                 time.Sleep(time.Millisecond)
 384         }
 385         c.Assert(len(sr.Items), check.Equals, 1)
 386         c.Check(sr.Items[0].Instance, check.Matches, "inst.*")
 387         c.Check(sr.Items[0].WorkerState, check.Equals, "booting")
 388         c.Check(sr.Items[0].Price, check.Equals, 0.123)
 389         c.Check(sr.Items[0].LastContainerUUID, check.Equals, "")
 390         c.Check(sr.Items[0].ProviderInstanceType, check.Equals, test.InstanceType(1).ProviderType)
 391         c.Check(sr.Items[0].ArvadosInstanceType, check.Equals, test.InstanceType(1).Name)
 392 }