Google Git
Sign in
chromium / infra / goma / server / v0.0.26 / . / remoteexec / adapter.go
blob: b8a64f72280b90c9db857bae3b7053938056ce37 [file] [log] [blame]
// Copyright 2018 The Goma Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
// Package remoteexec provides proxy to remoteexec server.
//
// TODO: goma client should use credential described in
// https://cloud.google.com/remote-build-execution/docs/getting-started
package remoteexec
import (
"context"
"fmt"
"path"
"strings"
"sync"
"time"
rpb "github.com/bazelbuild/remote-apis/build/bazel/remote/execution/v2"
"go.opencensus.io/stats"
"go.opencensus.io/trace"
"google.golang.org/grpc"
"google.golang.org/grpc/credentials/oauth"
"google.golang.org/grpc/metadata"
"google.golang.org/protobuf/proto"
"google.golang.org/protobuf/types/known/durationpb"
"go.chromium.org/goma/server/auth/enduser"
"go.chromium.org/goma/server/exec"
"go.chromium.org/goma/server/log"
gomapb "go.chromium.org/goma/server/proto/api"
execpb "go.chromium.org/goma/server/proto/exec"
fpb "go.chromium.org/goma/server/proto/file"
"go.chromium.org/goma/server/remoteexec/cas"
"go.chromium.org/goma/server/remoteexec/digest"
"go.chromium.org/goma/server/server"
)
// DigetCache caches digest for goma file hash.
type DigestCache interface {
Get(context.Context, string, digest.Source) (digest.Data, error)
}
// SpanTimeout specifies Timeout for exec span.
// 0 is no time out.
type SpanTimeout struct {
Inventory time.Duration
InputTree time.Duration
Setup time.Duration
CheckCache time.Duration
CheckMissing time.Duration
UploadBlobs time.Duration
Execute time.Duration
Response time.Duration
}
// DefaultSpanTimeout is default timeout.
var DefaultSpanTimeout = SpanTimeout{
Inventory: 1 * time.Second,
InputTree: 60 * time.Second,
Setup: 1 * time.Second,
CheckCache: 3 * time.Second,
CheckMissing: 10 * time.Second,
UploadBlobs: 60 * time.Second,
Execute: 0,
Response: 30 * time.Second,
}
// Adapter is an adapter from goma API to remoteexec API.
type Adapter struct {
execpb.UnimplementedExecServiceServer
// InstancePrefix is the prefix (dirname) of the full RBE instance name.
// e.g. If instance name == "projects/$PROJECT/instances/default_instance",
// then InstancePrefix is "projects/$PROJECT/instances"
InstancePrefix string
// InstanceBaseName is the name (basename) of the full RBE instance name.
// If emtpy, use "default_instance".
InstanceBaseName string
Inventory exec.Inventory
// ExecTimeout is timeout of Action in RBE.
ExecTimeout time.Duration
// SpanTimeout is timeout of each span in a Goma Exec request.
SpanTimeout SpanTimeout
// Client is remoteexec API client.
Client Client
InsecureClient bool
// GomaFile handles output files from remoteexec's cas to goma's FileBlob.
GomaFile fpb.FileServiceClient
// key: goma file hash.
DigestCache DigestCache
// CmdStorage is a storage for command files.
CmdStorage CmdStorage
// Tool details put in request metadata.
ToolDetails *rpb.ToolDetails
// FileLookupSema specifies concurrency to look up file
// contents from file-cache-server to be converted to CAS.
FileLookupSema chan struct{}
// CASBlobLookupSema specifies concurrency to look up file blobs in in cas.lookupBlobsInStore(),
// which calls Store.Get().
CASBlobLookupSema chan struct{}
// OutputFileSema specifies concurrency to download files from CAS and store in
// file server in gomaOutput.toFileBlob().
OutputFileSema chan struct{}
// Ratio to enable hardening.
HardeningRatio float64
// Ratio to use nsjail for hardening.
NsjailRatio float64
// sha256 file hash to disable hardening.
DisableHardenings []string
// MissingInputLimit is the maximum number of missing inputs to list in
// a response. If there are more, the server randomly picks this many
// inputs to respond with. 0 indicates no limit.
MissingInputLimit int
capMu sync.Mutex
capabilities *rpb.ServerCapabilities
}
func (f *Adapter) withRequestMetadata(ctx context.Context, reqInfo *gomapb.RequesterInfo) (context.Context, error) {
rmd := &rpb.RequestMetadata{
ToolDetails: f.ToolDetails,
ActionId: reqInfo.GetCompilerProxyId(),
ToolInvocationId: reqInfo.GetBuildId(),
// TODO: b/77176746
// CorrelatedInvocationsId:
}
// TODO: remove the following workaround.
// when autoninja is used for the build,
// and client is rolled, we do not need
// the following workaround.
//
// workaround b/77176764
// set compiler_proxy_id prefix to ToolInvocationId if chrome-bot@
// chrome-bot@ (aka buildbot) start/stop compiler_proxy per each
// compile step, so compiler_proxy_id prefix would be good fit
// for ToolInvocationId.
// Typical user keeps running compiler_proxy, so same
// compiler_proxy_id prefix will be used for several ninja invocation.
// We cannot use that for human users.
id := reqInfo.GetCompilerProxyId()
if rmd.ToolInvocationId == "" && strings.HasPrefix(id, "chrome-bot@") {
i := strings.LastIndexByte(id, '/')
if i > 0 {
rmd.ToolInvocationId = id[:i]
}
}
logger := log.FromContext(ctx)
logger.Infof("request metadata: %s", rmd)
b, err := proto.Marshal(rmd)
if err != nil {
return nil, err
}
// https://github.com/bazelbuild/remote-apis/blob/a5c577357528b33a4adff88c0c7911dd086c6923/build/bazel/remote/execution/v2/remote_execution.proto#L1460
// https://github.com/grpc/grpc-go/blob/a094a1095c07d37362f7ab37b92a6aa46c2d8b07/Documentation/grpc-metadata.md#storing-binary-data-in-metadata
return metadata.AppendToOutgoingContext(ctx,
"build.bazel.remote.execution.v2.requestmetadata-bin",
string(b)), nil
}
type contextKey int
var requesterInfoKey contextKey
func (f *Adapter) outgoingContext(ctx context.Context, reqInfo *gomapb.RequesterInfo) context.Context {
logger := log.FromContext(ctx)
ctx, err := f.withRequestMetadata(ctx, reqInfo)
if err != nil {
logger.Errorf("request metadata(%v)=_, %v", reqInfo, err)
return ctx
}
if reqInfo != nil {
reqInfo = proto.Clone(reqInfo).(*gomapb.RequesterInfo)
} else {
reqInfo = &gomapb.RequesterInfo{}
}
reqInfo.Addr = proto.String(server.HostName(ctx))
return context.WithValue(ctx, requesterInfoKey, reqInfo)
}
func requesterInfo(ctx context.Context) *gomapb.RequesterInfo {
r, _ := ctx.Value(requesterInfoKey).(*gomapb.RequesterInfo)
return r
}
func (f *Adapter) client(ctx context.Context) Client {
// grpc rejects call on insecure connection if credential is set.
if f.InsecureClient {
return f.Client
}
user, _ := enduser.FromContext(ctx)
client := f.Client
token := user.Token()
if token.AccessToken == "" {
return client
}
client.CallOptions = append(client.CallOptions,
grpc.PerRPCCredentials(oauth.NewOauthAccess(token)))
maxBytes := int64(cas.DefaultBatchByteLimit)
if s := f.capabilities.GetCacheCapabilities().GetMaxBatchTotalSizeBytes(); s > maxBytes {
maxBytes = s
}
// TODO: set MaxCallRecvMsgSize if it uses BatchReadBlobs
client.CallOptions = append(client.CallOptions, grpc.MaxCallSendMsgSize(int(maxBytes)))
return client
}
func (f *Adapter) Instance() string {
name := f.InstanceBaseName
if name == "" {
name = "default_instance"
}
return path.Join(f.InstancePrefix, name)
}
func (f *Adapter) ensureCapabilities(ctx context.Context) {
f.capMu.Lock()
defer f.capMu.Unlock()
if f.capabilities != nil {
return
}
logger := log.FromContext(ctx)
var err error
f.capabilities, err = f.client(ctx).GetCapabilities(ctx, &rpb.GetCapabilitiesRequest{
InstanceName: f.Instance(),
})
if err != nil {
logger.Errorf("GetCapabilities: %v", err)
return
}
logger.Infof("serverCapabilities: %v", f.capabilities)
}
func (f *Adapter) newRequest(ctx context.Context, gomaReq *gomapb.ExecReq) *request {
logger := log.FromContext(ctx)
userGroup := "unknown-group"
endUser, ok := enduser.FromContext(ctx)
if ok {
userGroup = endUser.Group
}
gs := digest.NewStore()
timeout := f.ExecTimeout
if timeout == 0 {
timeout = 600 * time.Second
}
client := f.client(ctx)
r := &request{
f: f,
userGroup: userGroup,
client: client,
cas: &cas.CAS{
Client: client,
Store: gs,
CacheCapabilities: f.capabilities.GetCacheCapabilities(),
},
gomaReq: gomaReq,
gomaResp: &gomapb.ExecResp{
Result: &gomapb.ExecResult{
ExitStatus: proto.Int32(-1),
},
},
digestStore: gs,
input: &gomaInput{
gomaFile: f.GomaFile,
sema: f.FileLookupSema,
digestCache: f.DigestCache,
},
action: &rpb.Action{
Timeout: durationpb.New(timeout),
DoNotCache: doNotCache(gomaReq),
},
}
logger.Infof("%s: new request group:%q", r.ID(), userGroup)
return r
}
// Use this to collect all timestamps and then print on one line,
// regardless of where this function returns.
type execSpan struct {
t0 time.Time
req *request
timestamps []string
}
var spanMeasures = map[string]*stats.Float64Measure{
"inventory": execInventoryTime,
"input tree": execInputTreeTime,
"setup": execSetupTime,
"check cache": execCheckCacheTime,
"check missing": execCheckMissingTime,
"upload blobs": execUploadBlobsTime,
"execute": execExecuteTime,
"response": execResponseTime,
}
func (s *execSpan) Close(ctx context.Context) {
s.timestamps = append(s.timestamps, fmt.Sprintf("total: %s", time.Since(s.t0).Truncate(time.Millisecond)))
logger := log.FromContext(ctx)
logger.Infof("%s", strings.Join(s.timestamps, ", "))
}
func (s *execSpan) Do(ctx context.Context, desc string, d time.Duration, f func(ctx context.Context)) time.Duration {
t := time.Now()
if d != 0 {
var cancel context.CancelFunc
ctx, cancel = context.WithTimeout(ctx, d)
defer cancel()
}
f(ctx)
duration := time.Since(t)
if ctx.Err() != nil {
logger := log.FromContext(ctx)
logger.Errorf("exec %s %s: timed-out %s: %s: %v", s.req.ID(), desc, d, duration, ctx.Err())
}
s.timestamps = append(s.timestamps, fmt.Sprintf("%s: %s", desc, duration.Truncate(time.Millisecond)))
if m, ok := spanMeasures[desc]; ok {
stats.Record(ctx, m.M(float64(duration.Nanoseconds())/1e6))
}
return duration
}
// Exec handles goma Exec requests with remoteexec backend.
//
// 1. compute input tree and Action.
// 1.1. construct input tree from req.
// 1.2. construct Action message from req.
// 2. checks the ActionCache using GetActionResult. if hit, go to 7.
// 3. queries the ContentAddressableStorage using FindMissingBlobs
// 4. uploads any missing blobs to the ContentAddressableStorage
// using bytestream.Write and BatchUpdateBlobs.
// 5. executes the action using Execute.
// 6. awaits completion of the action using the longrunning.Operations.
// 7. looks a the ActionResult
// 8. If the action is successful, uses bytestream.Read to download any outputs
// it does not already have;
// embed it in response, or will serve it by LookupFile later
// 9. job is complete
// 9.1. convert ExecResp from ExecuteResponse.
// for small outputs, embed in resp. otherwise use FILE_META.
func (f *Adapter) Exec(ctx context.Context, req *gomapb.ExecReq) (resp *gomapb.ExecResp, err error) {
ctx, span := trace.StartSpan(ctx, "go.chromium.org/goma/server/remoteexec.Adapter.Exec")
defer span.End()
logger := log.FromContext(ctx)
defer func() {
if err != nil {
return
}
err := exec.RecordAPIError(ctx, resp)
if err != nil {
logger.Errorf("failed to record stats: %v", err)
}
}()
err = exec.RecordRequesterInfo(ctx, req.GetRequesterInfo())
if err != nil {
logger.Errorf("failed to record stats: %v", err)
}
// Use this to collect all timestamps and then print on one line,
// regardless of where this function returns.
espan := &execSpan{t0: time.Now()}
defer espan.Close(ctx)
adjustExecReq(req)
ctx = f.outgoingContext(ctx, req.GetRequesterInfo())
f.ensureCapabilities(ctx)
r := f.newRequest(ctx, req)
defer r.Close()
espan.req = r
dur := espan.Do(ctx, "inventory", f.SpanTimeout.Inventory, func(ctx context.Context) {
resp = r.getInventoryData(ctx)
})
if resp != nil {
logger.Infof("fail fast in inventory lookup: %s", dur)
return resp, nil
}
dur = espan.Do(ctx, "input tree", f.SpanTimeout.InputTree, func(ctx context.Context) {
resp = r.newInputTree(ctx)
})
if resp != nil {
logger.Infof("fail fast in input tree: %s", dur)
return resp, nil
}
espan.Do(ctx, "setup", f.SpanTimeout.Setup, func(ctx context.Context) {
r.setupNewAction(ctx)
})
eresp := &rpb.ExecuteResponse{}
var cached bool
espan.Do(ctx, "check cache", f.SpanTimeout.CheckCache, func(ctx context.Context) {
eresp.Result, cached = r.checkCache(ctx)
})
if !cached {
var blobs []*rpb.Digest
var err error
espan.Do(ctx, "check missing", f.SpanTimeout.CheckMissing, func(ctx context.Context) {
blobs, err = r.missingBlobs(ctx)
})
if err != nil {
logger.Errorf("exec call: error in check missing blobs: %v", err)
return nil, err
}
espan.Do(ctx, "upload blobs", f.SpanTimeout.UploadBlobs, func(ctx context.Context) {
resp, err = r.uploadBlobs(ctx, blobs)
})
if err != nil {
logger.Errorf("exec call: error in upload blobs: %v", err)
return nil, err
}
if resp != nil {
logger.Infof("fail fast for uploading missing blobs: %v", resp)
return resp, nil
}
espan.Do(ctx, "execute", f.SpanTimeout.Execute, func(ctx context.Context) {
eresp, err = r.executeAction(ctx)
})
if err != nil {
logger.Errorf("exec call: execute err=%v", err)
return nil, err
}
}
espan.Do(ctx, "response", f.SpanTimeout.Response, func(ctx context.Context) {
resp, err = r.newResp(ctx, eresp, cached)
})
if err != nil {
logger.Errorf("exec call: resp err=%v", err)
}
return resp, err
}