projects / arvados.git / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
8567: Refactor code that queries migration links into get_compatible_images.
[arvados.git] / services / api / app / models / job.rb
1 require 'safe_json'
2
3 class Job < ArvadosModel
4   include HasUuid
5   include KindAndEtag
6   include CommonApiTemplate
7   extend CurrentApiClient
8   serialize :components, Hash
9   attr_protected :arvados_sdk_version, :docker_image_locator
10   serialize :script_parameters, Hash
11   serialize :runtime_constraints, Hash
12   serialize :tasks_summary, Hash
13   before_create :ensure_unique_submit_id
14   after_commit :trigger_crunch_dispatch_if_cancelled, :on => :update
15   before_validation :set_priority
16   before_validation :update_state_from_old_state_attrs
17   before_validation :update_script_parameters_digest
18   validate :ensure_script_version_is_commit
19   validate :find_docker_image_locator
20   validate :find_arvados_sdk_version
21   validate :validate_status
22   validate :validate_state_change
23   validate :ensure_no_collection_uuids_in_script_params
24   before_save :tag_version_in_internal_repository
25   before_save :update_timestamps_when_state_changes
26
27   has_many :commit_ancestors, :foreign_key => :descendant, :primary_key => :script_version
28   has_many(:nodes, foreign_key: :job_uuid, primary_key: :uuid)
29
30   class SubmitIdReused < StandardError
31   end
32
33   api_accessible :user, extend: :common do |t|
34     t.add :submit_id
35     t.add :priority
36     t.add :script
37     t.add :script_parameters
38     t.add :script_version
39     t.add :cancelled_at
40     t.add :cancelled_by_client_uuid
41     t.add :cancelled_by_user_uuid
42     t.add :started_at
43     t.add :finished_at
44     t.add :output
45     t.add :success
46     t.add :running
47     t.add :state
48     t.add :is_locked_by_uuid
49     t.add :log
50     t.add :runtime_constraints
51     t.add :tasks_summary
52     t.add :nondeterministic
53     t.add :repository
54     t.add :supplied_script_version
55     t.add :arvados_sdk_version
56     t.add :docker_image_locator
57     t.add :queue_position
58     t.add :node_uuids
59     t.add :description
60     t.add :components
61   end
62
63   # Supported states for a job
64   States = [
65             (Queued = 'Queued'),
66             (Running = 'Running'),
67             (Cancelled = 'Cancelled'),
68             (Failed = 'Failed'),
69             (Complete = 'Complete'),
70            ]
71
72   after_initialize do
73     @need_crunch_dispatch_trigger = false
74   end
75
76   def assert_finished
77     update_attributes(finished_at: finished_at || db_current_time,
78                       success: success.nil? ? false : success,
79                       running: false)
80   end
81
82   def node_uuids
83     nodes.map(&:uuid)
84   end
85
86   def self.queue
87     self.where('state = ?', Queued).order('priority desc, created_at')
88   end
89
90   def queue_position
91     # We used to report this accurately, but the implementation made queue
92     # API requests O(n**2) for the size of the queue.  See #8800.
93     # We've soft-disabled it because it's not clear we even want this
94     # functionality: now that we have Node Manager with support for multiple
95     # node sizes, "queue position" tells you very little about when a job will
96     # run.
97     state == Queued ? 0 : nil
98   end
99
100   def self.running
101     self.where('running = ?', true).
102       order('priority desc, created_at')
103   end
104
105   def lock locked_by_uuid
106     with_lock do
107       unless self.state == Queued and self.is_locked_by_uuid.nil?
108         raise AlreadyLockedError
109       end
110       self.state = Running
111       self.is_locked_by_uuid = locked_by_uuid
112       self.save!
113     end
114   end
115
116   def update_script_parameters_digest
117     self.script_parameters_digest = self.class.sorted_hash_digest(script_parameters)
118   end
119
120   def self.searchable_columns operator
121     super - ["script_parameters_digest"]
122   end
123
124   def self.full_text_searchable_columns
125     super - ["script_parameters_digest"]
126   end
127
128   def self.load_job_specific_filters attrs, orig_filters, read_users
129     # Convert Job-specific @filters entries into general SQL filters.
130     script_info = {"repository" => nil, "script" => nil}
131     git_filters = Hash.new do |hash, key|
132       hash[key] = {"max_version" => "HEAD", "exclude_versions" => []}
133     end
134     filters = []
135     orig_filters.each do |attr, operator, operand|
136       if (script_info.has_key? attr) and (operator == "=")
137         if script_info[attr].nil?
138           script_info[attr] = operand
139         elsif script_info[attr] != operand
140           raise ArgumentError.new("incompatible #{attr} filters")
141         end
142       end
143       case operator
144       when "in git"
145         git_filters[attr]["min_version"] = operand
146       when "not in git"
147         git_filters[attr]["exclude_versions"] += Array.wrap(operand)
148       when "in docker", "not in docker"
149         image_hashes = Array.wrap(operand).flat_map do |search_term|
150           image_search, image_tag = search_term.split(':', 2)
151           Collection.
152             find_all_for_docker_image(image_search, image_tag, read_users, filter_compatible_format: false).
153             map(&:portable_data_hash)
154         end
155         filters << [attr, operator.sub(/ docker$/, ""), image_hashes]
156       else
157         filters << [attr, operator, operand]
158       end
159     end
160
161     # Build a real script_version filter from any "not? in git" filters.
162     git_filters.each_pair do |attr, filter|
163       case attr
164       when "script_version"
165         script_info.each_pair do |key, value|
166           if value.nil?
167             raise ArgumentError.new("script_version filter needs #{key} filter")
168           end
169         end
170         filter["repository"] = script_info["repository"]
171         if attrs[:script_version]
172           filter["max_version"] = attrs[:script_version]
173         else
174           # Using HEAD, set earlier by the hash default, is fine.
175         end
176       when "arvados_sdk_version"
177         filter["repository"] = "arvados"
178       else
179         raise ArgumentError.new("unknown attribute for git filter: #{attr}")
180       end
181       revisions = Commit.find_commit_range(filter["repository"],
182                                            filter["min_version"],
183                                            filter["max_version"],
184                                            filter["exclude_versions"])
185       if revisions.empty?
186         raise ArgumentError.
187           new("error searching #{filter['repository']} from " +
188               "'#{filter['min_version']}' to '#{filter['max_version']}', " +
189               "excluding #{filter['exclude_versions']}")
190       end
191       filters.append([attr, "in", revisions])
192     end
193
194     filters
195   end
196
197   def self.find_reusable attrs, params, filters, read_users
198     if filters.empty?  # Translate older creation parameters into filters.
199       filters =
200         [["repository", "=", attrs[:repository]],
201          ["script", "=", attrs[:script]],
202          ["script_version", "not in git", params[:exclude_script_versions]],
203         ].reject { |filter| filter.last.nil? or filter.last.empty? }
204       if !params[:minimum_script_version].blank?
205         filters << ["script_version", "in git",
206                      params[:minimum_script_version]]
207       else
208         filters += default_git_filters("script_version", attrs[:repository],
209                                        attrs[:script_version])
210       end
211       if image_search = attrs[:runtime_constraints].andand["docker_image"]
212         if image_tag = attrs[:runtime_constraints]["docker_image_tag"]
213           image_search += ":#{image_tag}"
214         end
215         image_locator = Collection.
216           for_latest_docker_image(image_search).andand.portable_data_hash
217       else
218         image_locator = nil
219       end
220       filters << ["docker_image_locator", "=", image_locator]
221       if sdk_version = attrs[:runtime_constraints].andand["arvados_sdk_version"]
222         filters += default_git_filters("arvados_sdk_version", "arvados", sdk_version)
223       end
224       filters = load_job_specific_filters(attrs, filters, read_users)
225     end
226
227     # Check specified filters for some reasonableness.
228     filter_names = filters.map { |f| f.first }.uniq
229     ["repository", "script"].each do |req_filter|
230       if not filter_names.include?(req_filter)
231         return send_error("#{req_filter} filter required")
232       end
233     end
234
235     # Search for a reusable Job, and return it if found.
236     candidates = Job.
237       readable_by(current_user).
238       where('state = ? or (owner_uuid = ? and state in (?))',
239             Job::Complete, current_user.uuid, [Job::Queued, Job::Running]).
240       where('script_parameters_digest = ?', Job.sorted_hash_digest(attrs[:script_parameters])).
241       where('nondeterministic is distinct from ?', true).
242       order('state desc, created_at') # prefer Running jobs over Queued
243     candidates = apply_filters candidates, filters
244     chosen = nil
245     incomplete_job = nil
246     candidates.each do |j|
247       if j.state != Job::Complete
248         # We'll use this if we don't find a job that has completed
249         incomplete_job ||= j
250         next
251       end
252
253       if chosen == false
254         # We have already decided not to reuse any completed job
255         next
256       elsif chosen
257         if chosen.output != j.output
258           # If two matching jobs produced different outputs, run a new
259           # job (or use one that's already running/queued) instead of
260           # choosing one arbitrarily.
261           chosen = false
262         end
263         # ...and that's the only thing we need to do once we've chosen
264         # a job to reuse.
265       elsif !Collection.readable_by(current_user).find_by_portable_data_hash(j.output)
266         # As soon as the output we will end up returning (if any) is
267         # decided, check whether it will be visible to the user; if
268         # not, any further investigation of reusable jobs is futile.
269         chosen = false
270       else
271         chosen = j
272       end
273     end
274     chosen || incomplete_job
275   end
276
277   def self.default_git_filters(attr_name, repo_name, refspec)
278     # Add a filter to @filters for `attr_name` = the latest commit available
279     # in `repo_name` at `refspec`.  No filter is added if refspec can't be
280     # resolved.
281     commits = Commit.find_commit_range(repo_name, nil, refspec, nil)
282     if commit_hash = commits.first
283       [[attr_name, "=", commit_hash]]
284     else
285       []
286     end
287   end
288
289   def cancel(cascade: false, need_transaction: true)
290     if need_transaction
291       ActiveRecord::Base.transaction do
292         cancel(cascade: cascade, need_transaction: false)
293       end
294       return
295     end
296
297     if self.state.in?([Queued, Running])
298       self.state = Cancelled
299       self.save!
300     elsif self.state != Cancelled
301       raise InvalidStateTransitionError
302     end
303
304     return if !cascade
305
306     # cancel all children; they could be jobs or pipeline instances
307     children = self.components.andand.collect{|_, u| u}.compact
308
309     return if children.empty?
310
311     # cancel any child jobs
312     Job.where(uuid: children, state: [Queued, Running]).each do |job|
313       job.cancel(cascade: cascade, need_transaction: false)
314     end
315
316     # cancel any child pipelines
317     PipelineInstance.where(uuid: children, state: [PipelineInstance::RunningOnServer, PipelineInstance::RunningOnClient]).each do |pi|
318       pi.cancel(cascade: cascade, need_transaction: false)
319     end
320   end
321
322   protected
323
324   def self.sorted_hash_digest h
325     Digest::MD5.hexdigest(Oj.dump(deep_sort_hash(h)))
326   end
327
328   def foreign_key_attributes
329     super + %w(output log)
330   end
331
332   def skip_uuid_read_permission_check
333     super + %w(cancelled_by_client_uuid)
334   end
335
336   def skip_uuid_existence_check
337     super + %w(output log)
338   end
339
340   def set_priority
341     if self.priority.nil?
342       self.priority = 0
343     end
344     true
345   end
346
347   def ensure_script_version_is_commit
348     if state == Running
349       # Apparently client has already decided to go for it. This is
350       # needed to run a local job using a local working directory
351       # instead of a commit-ish.
352       return true
353     end
354     if new_record? or repository_changed? or script_version_changed?
355       sha1 = Commit.find_commit_range(repository,
356                                       nil, script_version, nil).first
357       if not sha1
358         errors.add :script_version, "#{script_version} does not resolve to a commit"
359         return false
360       end
361       if supplied_script_version.nil? or supplied_script_version.empty?
362         self.supplied_script_version = script_version
363       end
364       self.script_version = sha1
365     end
366     true
367   end
368
369   def tag_version_in_internal_repository
370     if state == Running
371       # No point now. See ensure_script_version_is_commit.
372       true
373     elsif errors.any?
374       # Won't be saved, and script_version might not even be valid.
375       true
376     elsif new_record? or repository_changed? or script_version_changed?
377       uuid_was = uuid
378       begin
379         assign_uuid
380         Commit.tag_in_internal_repository repository, script_version, uuid
381       rescue
382         self.uuid = uuid_was
383         raise
384       end
385     end
386   end
387
388   def ensure_unique_submit_id
389     if !submit_id.nil?
390       if Job.where('submit_id=?',self.submit_id).first
391         raise SubmitIdReused.new
392       end
393     end
394     true
395   end
396
397   def resolve_runtime_constraint(key, attr_sym)
398     if ((runtime_constraints.is_a? Hash) and
399         (search = runtime_constraints[key]))
400       ok, result = yield search
401     else
402       ok, result = true, nil
403     end
404     if ok
405       send("#{attr_sym}=".to_sym, result)
406     else
407       errors.add(attr_sym, result)
408     end
409     ok
410   end
411
412   def find_arvados_sdk_version
413     resolve_runtime_constraint("arvados_sdk_version",
414                                :arvados_sdk_version) do |git_search|
415       commits = Commit.find_commit_range("arvados",
416                                          nil, git_search, nil)
417       if commits.empty?
418         [false, "#{git_search} does not resolve to a commit"]
419       elsif not runtime_constraints["docker_image"]
420         [false, "cannot be specified without a Docker image constraint"]
421       else
422         [true, commits.first]
423       end
424     end
425   end
426
427   def find_docker_image_locator
428     if runtime_constraints.is_a? Hash
429       runtime_constraints['docker_image'] ||=
430         Rails.configuration.default_docker_image_for_jobs
431     end
432
433     resolve_runtime_constraint("docker_image",
434                                :docker_image_locator) do |image_search|
435       image_tag = runtime_constraints['docker_image_tag']
436       if coll = Collection.for_latest_docker_image(image_search, image_tag)
437         [true, coll.portable_data_hash]
438       else
439         [false, "not found for #{image_search}"]
440       end
441     end
442   end
443
444   def permission_to_update
445     if is_locked_by_uuid_was and !(current_user and
446                                    (current_user.uuid == is_locked_by_uuid_was or
447                                     current_user.uuid == system_user.uuid))
448       if script_changed? or
449           script_parameters_changed? or
450           script_version_changed? or
451           (!cancelled_at_was.nil? and
452            (cancelled_by_client_uuid_changed? or
453             cancelled_by_user_uuid_changed? or
454             cancelled_at_changed?)) or
455           started_at_changed? or
456           finished_at_changed? or
457           running_changed? or
458           success_changed? or
459           output_changed? or
460           log_changed? or
461           tasks_summary_changed? or
462           (state_changed? && state != Cancelled) or
463           components_changed?
464         logger.warn "User #{current_user.uuid if current_user} tried to change protected job attributes on locked #{self.class.to_s} #{uuid_was}"
465         return false
466       end
467     end
468     if !is_locked_by_uuid_changed?
469       super
470     else
471       if !current_user
472         logger.warn "Anonymous user tried to change lock on #{self.class.to_s} #{uuid_was}"
473         false
474       elsif is_locked_by_uuid_was and is_locked_by_uuid_was != current_user.uuid
475         logger.warn "User #{current_user.uuid} tried to steal lock on #{self.class.to_s} #{uuid_was} from #{is_locked_by_uuid_was}"
476         false
477       elsif !is_locked_by_uuid.nil? and is_locked_by_uuid != current_user.uuid
478         logger.warn "User #{current_user.uuid} tried to lock #{self.class.to_s} #{uuid_was} with uuid #{is_locked_by_uuid}"
479         false
480       else
481         super
482       end
483     end
484   end
485
486   def update_modified_by_fields
487     if self.cancelled_at_changed?
488       # Ensure cancelled_at cannot be set to arbitrary non-now times,
489       # or changed once it is set.
490       if self.cancelled_at and not self.cancelled_at_was
491         self.cancelled_at = db_current_time
492         self.cancelled_by_user_uuid = current_user.uuid
493         self.cancelled_by_client_uuid = current_api_client.andand.uuid
494         @need_crunch_dispatch_trigger = true
495       else
496         self.cancelled_at = self.cancelled_at_was
497         self.cancelled_by_user_uuid = self.cancelled_by_user_uuid_was
498         self.cancelled_by_client_uuid = self.cancelled_by_client_uuid_was
499       end
500     end
501     super
502   end
503
504   def trigger_crunch_dispatch_if_cancelled
505     if @need_crunch_dispatch_trigger
506       File.open(Rails.configuration.crunch_refresh_trigger, 'wb') do
507         # That's all, just create/touch a file for crunch-job to see.
508       end
509     end
510   end
511
512   def update_timestamps_when_state_changes
513     return if not (state_changed? or new_record?)
514
515     case state
516     when Running
517       self.started_at ||= db_current_time
518     when Failed, Complete
519       self.finished_at ||= db_current_time
520     when Cancelled
521       self.cancelled_at ||= db_current_time
522     end
523
524     # TODO: Remove the following case block when old "success" and
525     # "running" attrs go away. Until then, this ensures we still
526     # expose correct success/running flags to older clients, even if
527     # some new clients are writing only the new state attribute.
528     case state
529     when Queued
530       self.running = false
531       self.success = nil
532     when Running
533       self.running = true
534       self.success = nil
535     when Cancelled, Failed
536       self.running = false
537       self.success = false
538     when Complete
539       self.running = false
540       self.success = true
541     end
542     self.running ||= false # Default to false instead of nil.
543
544     @need_crunch_dispatch_trigger = true
545
546     true
547   end
548
549   def update_state_from_old_state_attrs
550     # If a client has touched the legacy state attrs, update the
551     # "state" attr to agree with the updated values of the legacy
552     # attrs.
553     #
554     # TODO: Remove this method when old "success" and "running" attrs
555     # go away.
556     if cancelled_at_changed? or
557         success_changed? or
558         running_changed? or
559         state.nil?
560       if cancelled_at
561         self.state = Cancelled
562       elsif success == false
563         self.state = Failed
564       elsif success == true
565         self.state = Complete
566       elsif running == true
567         self.state = Running
568       else
569         self.state = Queued
570       end
571     end
572     true
573   end
574
575   def validate_status
576     if self.state.in?(States)
577       true
578     else
579       errors.add :state, "#{state.inspect} must be one of: #{States.inspect}"
580       false
581     end
582   end
583
584   def validate_state_change
585     ok = true
586     if self.state_changed?
587       ok = case self.state_was
588            when nil
589              # state isn't set yet
590              true
591            when Queued
592              # Permit going from queued to any state
593              true
594            when Running
595              # From running, may only transition to a finished state
596              [Complete, Failed, Cancelled].include? self.state
597            when Complete, Failed, Cancelled
598              # Once in a finished state, don't permit any more state changes
599              false
600            else
601              # Any other state transition is also invalid
602              false
603            end
604       if not ok
605         errors.add :state, "invalid change from #{self.state_was} to #{self.state}"
606       end
607     end
608     ok
609   end
610
611   def ensure_no_collection_uuids_in_script_params
612     # Fail validation if any script_parameters field includes a string containing a
613     # collection uuid pattern.
614     if self.script_parameters_changed?
615       if recursive_hash_search(self.script_parameters, Collection.uuid_regex)
616         self.errors.add :script_parameters, "must use portable_data_hash instead of collection uuid"
617         return false
618       end
619     end
620     true
621   end
622
623   # recursive_hash_search searches recursively through hashes and
624   # arrays in 'thing' for string fields matching regular expression
625   # 'pattern'.  Returns true if pattern is found, false otherwise.
626   def recursive_hash_search thing, pattern
627     if thing.is_a? Hash
628       thing.each do |k, v|
629         return true if recursive_hash_search v, pattern
630       end
631     elsif thing.is_a? Array
632       thing.each do |k|
633         return true if recursive_hash_search k, pattern
634       end
635     elsif thing.is_a? String
636       return true if thing.match pattern
637     end
638     false
639   end
640 end