Runcommand/dynamic #2

grahamc · 2021-12-15T03:20:26Z

Dynamically define jobs within a jobset by:

Enabling them in the hydra.conf:

<dynamicruncommand>
  enable = 1
</dynamicruncommand>

Set enable_dynamic_run_command to true on the project record and the jobset record in the database
Create a job in the jobset:

{ pkgs, ... }: {
    runCommandHook = {
        recurseForDerivations = true;
        example = pkgs.writeScript "run-me" ''
          #!${pkgs.runtimeShell}
          ${pkgs.jq}/bin/jq . "$HYDRA_JSON"
        '';
    };
}

lead-up PRs to this:

Includes:

RunCommand: store a log of execution and render it on the Build page NixOS/hydra#1062

TODO

doc/manual/src/plugins/RunCommand.md

This in-progress feature will run a dynamically generated set of buildFinished hooks, which must be nested under the `runCommandHook.*` attribute set. This implementation is not very good, with some to-dos: 1. Only run if the build succeeded 2. Verify the output is named $out and that it is an executable file (or a symlink to a file) 3. Require the jobset itself have a flag enabling the feature, since this feature can be a bit dangerous if various people of different trust levels can create the jobs.

eligible for execution under dynamic run commands.

… points to a file) which is executable.

…et agree they should be enabled

grahamc · 2022-01-10T14:41:12Z

src/lib/Hydra/Plugin/GithubStatus.pm

@@ -94,7 +94,7 @@ sub common {
                if (defined $eval->flake) {
                    my $fl = $eval->flake;
                    print STDERR "Flake is $fl\n";
-                    if ($eval->flake =~ m!github:([^/]+)/([^/]+)/([[:xdigit:]]{40})$! or $eval->flake =~ m!git\+ssh://git\@github.com/([^/]+)/([^/]+)\?.*rev=([[:xdigit:]]{40})$!) {
+                    if ($eval->flake =~ m!github:([^/]+)/([^/]+)/([[:xdigit:]]{40})$! or $eval->flake =~ m!git\+ssh://git\@github[^/]+/([^/]+)/([^/]+)\?.*rev=([[:xdigit:]]{40})$!) {


We should break this matcher out in to a separate function, write some tests for it, and upstream it separately. The bit about doCheck should be dropped.

grahamc · 2022-01-10T14:53:00Z

src/lib/Hydra/Controller/Jobset.pm

+    my $enable_dynamic_run_command = defined $c->stash->{params}->{enable_dynamic_run_command} ? 1 : 0;
+    if ($enable_dynamic_run_command
+        && !($c->config->{dynamicruncommand}->{enable}
+            && $jobset->project->enable_dynamic_run_command))
+    {
+        badRequest($c, "Dynamic RunCommand is not enabled by the server or the parent project.");
+    }


I'm not sure what the right thing here is, but this pattern of checking has been peppered around. Instead we should probably have a single function which implements "is dynamic run command enabled?" and use that everywhere.

cole-h · 2022-01-10T20:30:47Z

Moved my commits to a separate PR (and also copied over your comments): #4.

On hydra.nixos.org the queue runner had child processes that were stuck handling an exception: Thread 1 (Thread 0x7f501f7fe640 (LWP 1413473) "bld~v54h5zkhmb3"): #0 futex_wait (private=0, expected=2, futex_word=0x7f50c27969b0 <_rtld_local+2480>) at ../sysdeps/nptl/futex-internal.h:146 #1 __lll_lock_wait (futex=0x7f50c27969b0 <_rtld_local+2480>, private=0) at lowlevellock.c:52 #2 0x00007f50c21eaee4 in __GI___pthread_mutex_lock (mutex=0x7f50c27969b0 <_rtld_local+2480>) at ../nptl/pthread_mutex_lock.c:115 #3 0x00007f50c1854bef in __GI___dl_iterate_phdr (callback=0x7f50c190c020 <_Unwind_IteratePhdrCallback>, data=0x7f501f7fb040) at dl-iteratephdr.c:40 #4 0x00007f50c190d2d1 in _Unwind_Find_FDE () from /nix/store/65hafbsx91127farbmyyv4r5ifgjdg43-glibc-2.33-117/lib/libgcc_s.so.1 #5 0x00007f50c19099b3 in uw_frame_state_for () from /nix/store/65hafbsx91127farbmyyv4r5ifgjdg43-glibc-2.33-117/lib/libgcc_s.so.1 #6 0x00007f50c190ab90 in uw_init_context_1 () from /nix/store/65hafbsx91127farbmyyv4r5ifgjdg43-glibc-2.33-117/lib/libgcc_s.so.1 #7 0x00007f50c190b08e in _Unwind_RaiseException () from /nix/store/65hafbsx91127farbmyyv4r5ifgjdg43-glibc-2.33-117/lib/libgcc_s.so.1 #8 0x00007f50c1b02ab7 in __cxa_throw () from /nix/store/dd8swlwhpdhn6bv219562vyxhi8278hs-gcc-10.3.0-lib/lib/libstdc++.so.6 #9 0x00007f50c1d01abe in nix::parseURL (url="[email protected]") at src/libutil/url.cc:53 NixOS#10 0x0000000000484f55 in extraStoreArgs (machine="[email protected]") at build-remote.cc:35 NixOS#11 operator() (__closure=0x7f4fe9fe0420) at build-remote.cc:79 ... Maybe the fork happened while another thread was holding some global stack unwinding lock (https://gcc.gnu.org/bugzilla/show_bug.cgi?id=71744). Anyway, since the hanging child inherits all file descriptors to SSH clients, shutting down remote builds (via 'child.to = -1' in State::buildRemote()) doesn't work and 'child.pid.wait()' hangs forever. So let's not do any significant work between fork and exec.

Mic92 reviewed Dec 15, 2021

View reviewed changes

doc/manual/src/plugins/RunCommand.md Outdated Show resolved Hide resolved

grahamc force-pushed the runcommand/dynamic branch 3 times, most recently from 6b0a2af to 7462a6f Compare December 15, 2021 17:06

cole-h force-pushed the runcommand/dynamic branch 8 times, most recently from 814c2d0 to cf5d1fd Compare December 20, 2021 22:14

grahamc force-pushed the runcommand-logs branch from e41bbe1 to 441539a Compare January 3, 2022 16:02

grahamc force-pushed the runcommand/dynamic branch from cf5d1fd to 478b14c Compare January 3, 2022 16:07

grahamc force-pushed the runcommand-logs branch from 441539a to 1505a56 Compare January 7, 2022 20:18

grahamc added 15 commits January 10, 2022 09:22

RunCommand: split out documentation, fixup the matcher syntax

60bdd79

RunCommand: write documentation for dynamic commands

60299cd

RunCommand: enable the plugin if dynamicruncommand is set

1b5396e

DynamicRunCommand: pull out the function determining if a build is

4dd881e

eligible for execution under dynamic run commands.

fanout.t: switch to makeAndEvaluateJobset

7669fdc

Dynamic RunCommand: validate that the job's out exists, is a file (or…

1af5eb5

… points to a file) which is executable.

DynamicRunCommand: don't run if the build failed

932e4c4

Jobsets: add enable_dynamic_run_command

e200681

Only run dynamic runcommand hooks if the jobset enables them

0bfc5f8

sql: add a migration for enable_dynamic_run_command

9162055

sql: add enable_dynamic_run_command to the Project as well

0ccad21

RunCommand: only run dynamic runcommand hooks if the project AND jobs…

ca7cb8e

…et agree they should be enabled

regenerate schema files after adding the flag to the projects

0b33323

finish making the dynamic hooks only run on project & jobset agreement

8209751

grahamc added 5 commits January 10, 2022 09:22

Declarative Jobs: add support for the enable_dynamic_run_command flag

7126879

HTTP/Jobset: support setting / reading enable_dynamic_run_command

5b33a81

jobset API: expose and check the enable_dynamic_run_command

d6bde27

Project: enable enabling dynamic runcommand per project

c377a38

whoops: add a test on the enable_dynamic_run_command field

ef6df46

grahamc force-pushed the runcommand/dynamic branch from 478b14c to e124c3b Compare January 10, 2022 14:23

grahamc commented Jan 10, 2022

View reviewed changes

cole-h force-pushed the runcommand/dynamic branch from e124c3b to ef6df46 Compare January 10, 2022 20:26

cole-h mentioned this pull request Jan 10, 2022

Dynamic RunCommand guarding #4

Merged

grahamc closed this Jan 11, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Runcommand/dynamic #2

Runcommand/dynamic #2

grahamc commented Dec 15, 2021 •

edited by cole-h

Loading

grahamc Jan 10, 2022

grahamc Jan 10, 2022

cole-h commented Jan 10, 2022

Runcommand/dynamic #2

Runcommand/dynamic #2

Conversation

grahamc commented Dec 15, 2021 • edited by cole-h Loading

TODO

grahamc Jan 10, 2022

Choose a reason for hiding this comment

grahamc Jan 10, 2022

Choose a reason for hiding this comment

cole-h commented Jan 10, 2022

grahamc commented Dec 15, 2021 •

edited by cole-h

Loading