Skip to content

[New Scheduler]Implement PFCInvokerServer #5098

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 3 commits into from
May 6, 2021
Merged

[New Scheduler]Implement PFCInvokerServer #5098

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
c2ea992
Implement PFCInvokerServer
ningyougang Mar 30, 2021
86f5531
Remove /memory api
ningyougang Apr 15, 2021
10b2471
Default implement enable/disable
ningyougang Apr 21, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions ansible/group_vars/all
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -219,6 +219,8 @@ invoker:
keystore:
password: "{{ invoker_keystore_password | default('openwhisk') }}"
name: "{{ __invoker_ssl_keyPrefix }}openwhisk-keystore.p12"
reactiveSpi: "{{ invokerReactive_spi | default('') }}"
serverSpi: "{{ invokerServer_spi | default('') }}"

userLogs:
spi: "{{ userLogs_spi | default('org.apache.openwhisk.core.containerpool.logging.DockerToActivationLogStoreProvider') }}"
Expand Down
2 changes: 2 additions & 0 deletions ansible/roles/invoker/tasks/deploy.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -259,6 +259,8 @@
"CONFIG_kamon_statsd_hostname": "{{ metrics.kamon.host }}"
"CONFIG_kamon_statsd_port": "{{ metrics.kamon.port }}"
"CONFIG_whisk_spi_LogStoreProvider": "{{ userLogs.spi }}"
"CONFIG_whisk_spi_InvokerProvider": "{{ invoker.reactiveSpi }}"
"CONFIG_whisk_spi_InvokerServerProvider": "{{ invoker.serverSpi }}"
"CONFIG_logback_log_level": "{{ invoker.loglevel }}"
"CONFIG_whisk_memory_min": "{{ limit_action_memory_min | default() }}"
"CONFIG_whisk_memory_max": "{{ limit_action_memory_max | default() }}"
Expand Down
2 changes: 2 additions & 0 deletions ...oker/src/main/scala/org/apache/openwhisk/core/containerpool/v2/InvokerHealthManager.scala
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -153,6 +153,7 @@ class InvokerHealthManager(instanceId: InvokerInstanceId,
data.memory.inProgressMemory,
instanceId.tags,
instanceId.dedicatedNamespaces)
InvokerHealthManager.useMemory = invokerResourceMessage.busyMemory + invokerResourceMessage.inProgressMemory
dataManagementService ! UpdateDataOnChange(InvokerKeys.health(instanceId), invokerResourceMessage.serialize)
stay using data.copy(currentInvokerResource = Some(invokerResourceMessage))

Expand Down Expand Up @@ -269,6 +270,7 @@ object InvokerHealthManager {
val healthActionNamePrefix = "invokerHealthTestAction"
val bufferSize = 10
val bufferErrorTolerance = 3
var useMemory = 0l
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why do we need this mutable variable?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There has a get used memory API: http://$invoker:$port/memory,

complete(InvokerHealthManager.useMemory.toString)

The FunctionPullingContainerPool actor(which will be contributed) sends the pool's used memory info(busyMemory + inprogressMemory) to InvokerHealthyManager actor, so use a mutable variable to store the value.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I know that's there only one instance of the invoker health manager per instance / jvm, but it still seems risky to be mutating a var in an object like this especially when it's the source of truth on whether the invoker is idle or not.

Copy link
Contributor Author

@ningyougang ningyougang Apr 15, 2021
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@style95 @bdoyle0182 , yes, not a good idea of use mutable variable
It is better to do like below

functionPullingContainerPool.ask(UsedMemory)(Timeout(5.seconds)).mapTo[Int]

But functionPullingContainerPool is implementing now, so i removed /memory api in this pr: 86f5531
and i will add /memory api in [New Scheduler] FunctionPullingContainerPool pr.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: usedMemory

Copy link
Contributor Author

@ningyougang ningyougang Apr 15, 2021
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok, good catch, as i said above, i removed /memory api in this pr. i will add /memory api in another pr: [New Scheduler] FunctionPullingContainerPool with functionPullingContainerPool.ask(UsedMemory)(Timeout(5.seconds)).mapTo[Int] solution.

val healthActionIdentity: Identity = {
val whiskSystem = "whisk.system"
val uuid = UUID()
Expand Down
65 changes: 65 additions & 0 deletions core/invoker/src/main/scala/org/apache/openwhisk/core/invoker/DefaultInvokerServer.scala
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,65 @@
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/

package org.apache.openwhisk.core.invoker

import akka.actor.ActorSystem
import akka.http.scaladsl.model.StatusCodes
import akka.http.scaladsl.model.headers.BasicHttpCredentials
import akka.http.scaladsl.server.Route
import org.apache.openwhisk.common.{Logging, TransactionId}
import org.apache.openwhisk.http.BasicRasService
import org.apache.openwhisk.http.ErrorResponse.terminate
import spray.json.PrettyPrinter

import scala.concurrent.ExecutionContext

/**
* Implements web server to handle certain REST API calls.
*/
class DefaultInvokerServer(val invoker: InvokerCore, systemUsername: String, systemPassword: String)(
implicit val ec: ExecutionContext,
val actorSystem: ActorSystem,
val logger: Logging)
extends BasicRasService {

/** Pretty print JSON response. */
implicit val jsonPrettyResponsePrinter = PrettyPrinter

override def routes(implicit transid: TransactionId): Route = {
super.routes ~ extractCredentials {
case Some(BasicHttpCredentials(username, password)) if username == systemUsername && password == systemPassword =>
(path("enable") & post) {
invoker.enable()
} ~ (path("disable") & post) {
invoker.disable()
}
case _ => terminate(StatusCodes.Unauthorized)
}
}
}

object DefaultInvokerServer extends InvokerServerProvider {

// TODO: TBD, after FPCInvokerReactive is ready, can read the credentials from pureconfig
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not a problem for this mr, but I don't think that's a secure way of setting admin credentials

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, after FPCInvokerReactive is ready, can read the credentials from pureconfig like other components.

val invokerUsername = "admin"
val invokerPassword = "admin"

override def instance(
invoker: InvokerCore)(implicit ec: ExecutionContext, actorSystem: ActorSystem, logger: Logging): BasicRasService =
new DefaultInvokerServer(invoker, invokerUsername, invokerPassword)
}
68 changes: 68 additions & 0 deletions core/invoker/src/main/scala/org/apache/openwhisk/core/invoker/FPCInvokerServer.scala
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,68 @@
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/

package org.apache.openwhisk.core.invoker

import akka.actor.ActorSystem
import akka.http.scaladsl.model.StatusCodes
import akka.http.scaladsl.model.headers.BasicHttpCredentials
import akka.http.scaladsl.server.Route
import org.apache.openwhisk.common.{Logging, TransactionId}
import org.apache.openwhisk.core.containerpool.v2.InvokerHealthManager
import org.apache.openwhisk.http.BasicRasService
import org.apache.openwhisk.http.ErrorResponse.terminate
import spray.json.PrettyPrinter

import scala.concurrent.ExecutionContext

/**
* Implements web server to handle certain REST API calls.
*/
class FPCInvokerServer(val invoker: InvokerCore, systemUsername: String, systemPassword: String)(
implicit val ec: ExecutionContext,
val actorSystem: ActorSystem,
val logger: Logging)
extends BasicRasService {

/** Pretty print JSON response. */
implicit val jsonPrettyResponsePrinter = PrettyPrinter

override def routes(implicit transid: TransactionId): Route = {
super.routes ~ extractCredentials {
case Some(BasicHttpCredentials(username, password)) if username == systemUsername && password == systemPassword =>
(path("enable") & post) {
invoker.enable()
} ~ (path("disable") & post) {
invoker.disable()
} ~ (path("memory") & get) {
Copy link
Contributor Author

@ningyougang ningyougang Mar 31, 2021
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Regarding /memory, this is for FPCInvokerServer only, this is used for judge whether the invoker is idle, if the result(busyMemory + inProgressMemory) > 0, it shows the invoker is executing activations, so it is busy, if the result == 0, it shows the invoker is idle.

For DefaultInvokerServer, can't use /memory to judge whether the invoker is idle, this is another topic for this. btw, we judge it like this, get every controller slot of the invoker, and do sum. if the result > 0, the invoker is busy, otherwise, it is idle.

complete(InvokerHealthManager.useMemory.toString)
}
case _ => terminate(StatusCodes.Unauthorized)
}
}
}

object FPCInvokerServer extends InvokerServerProvider {

// TODO: TBD, after FPCInvokerReactive is ready, can read the credentials from pureconfig
val invokerUsername = "admin"
val invokerPassword = "admin"

override def instance(
invoker: InvokerCore)(implicit ec: ExecutionContext, actorSystem: ActorSystem, logger: Logging): BasicRasService =
new FPCInvokerServer(invoker, invokerUsername, invokerPassword)
}
12 changes: 5 additions & 7 deletions core/invoker/src/main/scala/org/apache/openwhisk/core/invoker/Invoker.scala
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,7 @@ package org.apache.openwhisk.core.invoker

import akka.Done
import akka.actor.{ActorSystem, CoordinatedShutdown}
import akka.http.scaladsl.server.Route
import akka.stream.ActorMaterializer
import com.typesafe.config.ConfigValueFactory
import kamon.Kamon
Expand Down Expand Up @@ -217,7 +218,10 @@ trait InvokerProvider extends Spi {
}

// this trait can be used to add common implementation
trait InvokerCore {}
trait InvokerCore {
def enable(): Route
def disable(): Route
}

/**
* An Spi for providing RestAPI implementation for invoker.
Expand All @@ -227,9 +231,3 @@ trait InvokerServerProvider extends Spi {
def instance(
invoker: InvokerCore)(implicit ec: ExecutionContext, actorSystem: ActorSystem, logger: Logging): BasicRasService
}

object DefaultInvokerServer extends InvokerServerProvider {
Copy link
Contributor Author

@ningyougang ningyougang Mar 31, 2021
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I moved DefaultInvokerServer to a separate file, keep the same as FPCInvokerServer.
This is mainly to facilitate management

override def instance(
invoker: InvokerCore)(implicit ec: ExecutionContext, actorSystem: ActorSystem, logger: Logging): BasicRasService =
new BasicRasService {}
}
5 changes: 5 additions & 0 deletions core/invoker/src/main/scala/org/apache/openwhisk/core/invoker/InvokerReactive.scala
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,7 @@ import java.time.Instant
import akka.Done
import akka.actor.{ActorRefFactory, ActorSystem, CoordinatedShutdown, Props}
import akka.event.Logging.InfoLevel
import akka.http.scaladsl.server.Route
import akka.stream.ActorMaterializer
import org.apache.openwhisk.common._
import org.apache.openwhisk.common.tracing.WhiskTracerProvider
Expand Down Expand Up @@ -299,4 +300,8 @@ class InvokerReactive(
}
})

override def enable(): Route = ???
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I haven't tried it but would it be ok to leave these methods empty to run it?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry, you mean implement it like below?

override def enable(): Route = {
    complete("todo or pong")
}

Due to InvokerReactive extends InvokerCore which has enabled/disabled,
so need to implement enable/disabled

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

when deploy using InvokerReactive and send enable/disable requests to invoker, what will happen?


override def disable(): Route = ???

}
4 changes: 4 additions & 0 deletions tests/src/test/scala/common/WhiskProperties.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -270,6 +270,10 @@ public static String getBaseControllerAddress() {
return getBaseControllerHost() + ":" + getControllerBasePort();
}

public static String getBaseInvokerAddress(){
return getInvokerHosts()[0] + ":" + whiskProperties.getProperty("invoker.hosts.basePort");
}

public static int getMaxActionInvokesPerMinute() {
String valStr = whiskProperties.getProperty("limits.actions.invokes.perMinute");
return Integer.parseInt(valStr);
Expand Down
145 changes: 145 additions & 0 deletions tests/src/test/scala/org/apache/openwhisk/core/invoker/test/DefaultInvokerServerTests.scala
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,145 @@
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/

package org.apache.openwhisk.core.invoker.test

import akka.http.scaladsl.model.StatusCodes.{OK, Unauthorized}
import akka.http.scaladsl.model.headers.BasicHttpCredentials
import akka.http.scaladsl.server.Route
import akka.http.scaladsl.testkit.ScalatestRouteTest
import common.StreamLogging
import org.apache.openwhisk.common.TransactionId
import org.apache.openwhisk.core.invoker.{DefaultInvokerServer, InvokerCore}
import org.apache.openwhisk.http.BasicHttpService
import org.junit.runner.RunWith
import org.scalamock.scalatest.MockFactory
import org.scalatest.{BeforeAndAfterAll, BeforeAndAfterEach, FlatSpec, Matchers}
import org.scalatest.junit.JUnitRunner

/**
* Tests InvokerServer API.
*/
@RunWith(classOf[JUnitRunner])
class DefaultInvokerServerTests
extends FlatSpec
with BeforeAndAfterEach
with BeforeAndAfterAll
with ScalatestRouteTest
with Matchers
with StreamLogging
with MockFactory {

def transid() = TransactionId("tid")

val systemUsername = "username"
val systemPassword = "password"

val reactive = new TestInvokerReactive
val server = new DefaultInvokerServer(reactive, systemUsername, systemPassword)

override protected def afterEach(): Unit = reactive.reset()

/** DefaultInvokerServer API tests */
behavior of "DefaultInvokerServer API"

it should "enable invoker" in {
implicit val tid = transid()
val validCredentials = BasicHttpCredentials(systemUsername, systemPassword)
Post(s"/enable") ~> addCredentials(validCredentials) ~> Route.seal(server.routes(tid)) ~> check {
status should be(OK)
reactive.enableCount shouldBe 1
reactive.disableCount shouldBe 0
}
}

it should "disable invoker" in {
implicit val tid = transid()
val validCredentials = BasicHttpCredentials(systemUsername, systemPassword)
Post(s"/disable") ~> addCredentials(validCredentials) ~> Route.seal(server.routes(tid)) ~> check {
status should be(OK)
reactive.enableCount shouldBe 0
reactive.disableCount shouldBe 1
}
}

it should "not enable invoker with invalid credential" in {
implicit val tid = transid()
val invalidCredentials = BasicHttpCredentials("invaliduser", "invalidpass")
Post(s"/enable") ~> addCredentials(invalidCredentials) ~> Route.seal(server.routes(tid)) ~> check {
status should be(Unauthorized)
reactive.enableCount shouldBe 0
reactive.disableCount shouldBe 0
}
}

it should "not disable invoker with invalid credential" in {
implicit val tid = transid()
val invalidCredentials = BasicHttpCredentials("invaliduser", "invalidpass")
Post(s"/disable") ~> addCredentials(invalidCredentials) ~> Route.seal(server.routes(tid)) ~> check {
status should be(Unauthorized)
reactive.enableCount shouldBe 0
reactive.disableCount shouldBe 0
}
}

it should "not enable invoker with empty credential" in {
implicit val tid = transid()
Post(s"/enable") ~> Route.seal(server.routes(tid)) ~> check {
status should be(Unauthorized)
reactive.enableCount shouldBe 0
reactive.disableCount shouldBe 0
}
}

it should "not disable invoker with empty credential" in {
implicit val tid = transid()
Post(s"/disable") ~> Route.seal(server.routes(tid)) ~> check {
status should be(Unauthorized)
reactive.enableCount shouldBe 0
reactive.disableCount shouldBe 0
}
}

}

class TestInvokerReactive extends InvokerCore with BasicHttpService {
var enableCount = 0
var disableCount = 0

override def enable(): Route = {
enableCount += 1
complete("")
}

override def disable(): Route = {
disableCount += 1
complete("")
}

def reset(): Unit = {
enableCount = 0
disableCount = 0
}

/**
* Gets the routes implemented by the HTTP service.
*
* @param transid the id for the transaction (every request is assigned an id)
*/
override def routes(implicit transid: TransactionId): Route = ???

}
Loading