pkg/scheduler/ugm/manager.go (581 lines of code) (raw):
/*
Licensed to the Apache Software Foundation (ASF) under one
or more contributor license agreements. See the NOTICE file
distributed with this work for additional information
regarding copyright ownership. The ASF licenses this file
to you under the Apache License, Version 2.0 (the
"License"); you may not use this file except in compliance
with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package ugm
import (
"errors"
"fmt"
"strings"
"sync"
"go.uber.org/zap"
"github.com/apache/yunikorn-core/pkg/common"
"github.com/apache/yunikorn-core/pkg/common/configs"
"github.com/apache/yunikorn-core/pkg/common/resources"
"github.com/apache/yunikorn-core/pkg/common/security"
"github.com/apache/yunikorn-core/pkg/events"
"github.com/apache/yunikorn-core/pkg/locking"
"github.com/apache/yunikorn-core/pkg/log"
)
var once sync.Once
var m *Manager
// Manager implements tracker. A User Group Manager to track the usage for both user and groups.
// Holds object of both user and group trackers
type Manager struct {
userTrackers map[string]*UserTracker
groupTrackers map[string]*GroupTracker
userWildCardLimitsConfig map[string]*LimitConfig // Hold limits settings of user '*'
groupWildCardLimitsConfig map[string]*LimitConfig // Hold limits settings of group '*'
configuredGroups map[string][]string // Hold groups for all configured queue paths.
userLimits map[string]map[string]*LimitConfig // Holds queue path * user limit config
groupLimits map[string]map[string]*LimitConfig // Holds queue path * group limit config
events *ugmEvents
locking.RWMutex
}
func newManager() *Manager {
manager := &Manager{
userTrackers: make(map[string]*UserTracker),
groupTrackers: make(map[string]*GroupTracker),
userWildCardLimitsConfig: make(map[string]*LimitConfig),
groupWildCardLimitsConfig: make(map[string]*LimitConfig),
events: newUGMEvents(events.GetEventSystem()),
}
return manager
}
func GetUserManager() *Manager {
once.Do(func() {
m = newManager()
})
return m
}
// LimitConfig Holds limit settings of wild card user/group
type LimitConfig struct {
maxResources *resources.Resource
maxApplications uint64
}
// IncreaseTrackedResource Increase the resource usage for the given user group and queue path combination.
// As and when every allocation or asks requests fulfilled on application, corresponding user and group
// resource usage would be increased against specific application.
func (m *Manager) IncreaseTrackedResource(queuePath, applicationID string, usage *resources.Resource, user security.UserGroup) {
log.Log(log.SchedUGM).Debug("Increasing resource usage",
zap.String("user", user.User),
zap.String("queue path", queuePath),
zap.String("application", applicationID),
zap.Stringer("resource", usage))
if queuePath == common.Empty || applicationID == common.Empty || usage == nil || user.User == common.Empty {
log.Log(log.SchedUGM).Debug("Mandatory parameters are missing to increase the resource usage")
return
}
// since we check headroom before an increase this should never result in a creation...
// some tests might not go through a scheduling that cycle so leave this
userTracker := m.getUserTracker(user.User)
// make sure the user has a groupTracker for this application, if not yet there add it
// since we check headroom before an increase this should never result in a call...
// some tests might not go through a scheduling cycle so leave this
if !userTracker.hasGroupForApp(applicationID) {
m.ensureGroupTrackerForApp(queuePath, applicationID, user)
}
userTracker.increaseTrackedResource(queuePath, applicationID, usage)
appGroup := userTracker.getGroupForApp(applicationID)
log.Log(log.SchedUGM).Debug("Increasing resource usage for user",
zap.String("user", user.User),
zap.String("queue path", queuePath),
zap.String("application", applicationID),
zap.String("group", appGroup),
zap.Stringer("resource", usage))
if appGroup == common.Empty {
return
}
groupTracker := m.GetGroupTracker(appGroup)
if groupTracker == nil {
log.Log(log.SchedUGM).Error("group tracker should be available in groupTrackers map",
zap.String("application", applicationID),
zap.String("group", appGroup))
return
}
log.Log(log.SchedUGM).Debug("Increasing resource usage for group",
zap.String("group", appGroup),
zap.String("queue path", queuePath),
zap.String("application", applicationID),
zap.Stringer("resource", usage))
groupTracker.increaseTrackedResource(queuePath, applicationID, usage, userTracker.userName)
}
// DecreaseTrackedResource Decrease the resource usage for the given user group and queue path combination.
// As and when every allocation or asks release happens, corresponding user and group
// resource usage would be decreased against specific application. When the final asks release happens, removeApp should be set to true and
// application itself would be removed from the tracker and no more usage would be tracked further for that specific application.
func (m *Manager) DecreaseTrackedResource(queuePath, applicationID string, usage *resources.Resource, user security.UserGroup, removeApp bool) {
log.Log(log.SchedUGM).Debug("Decreasing resource usage",
zap.String("user", user.User),
zap.String("queue path", queuePath),
zap.String("application", applicationID),
zap.Stringer("resource", usage),
zap.Bool("removeApp", removeApp))
if queuePath == common.Empty || applicationID == common.Empty || usage == nil || user.User == common.Empty {
log.Log(log.SchedUGM).Debug("Mandatory parameters are missing to decrease the resource usage")
return
}
userTracker := m.GetUserTracker(user.User)
if userTracker == nil {
log.Log(log.SchedUGM).Error("user tracker must be available in userTrackers map",
zap.String("user", user.User))
return
}
// get the group now as the decrease might remove the app from the user if removeApp is true
appGroup := userTracker.getGroupForApp(applicationID)
log.Log(log.SchedUGM).Debug("Decreasing resource usage for user",
zap.String("user", user.User),
zap.String("queue path", queuePath),
zap.String("application", applicationID),
zap.String("group", appGroup),
zap.Stringer("resource", usage),
zap.Bool("removeApp", removeApp))
if userTracker.decreaseTrackedResource(queuePath, applicationID, usage, removeApp) {
log.Log(log.SchedUGM).Info("Removing user from manager",
zap.String("user", user.User))
m.Lock()
delete(m.userTrackers, user.User)
m.Unlock()
}
// if the app did not have a group we're done otherwise update the groupTracker
if appGroup == common.Empty {
return
}
groupTracker := m.GetGroupTracker(appGroup)
if groupTracker == nil {
log.Log(log.SchedUGM).Error("group tracker should be available in groupTrackers map",
zap.String("application", applicationID),
zap.String("group", appGroup))
return
}
log.Log(log.SchedUGM).Debug("Decreasing resource usage for group",
zap.String("group", appGroup),
zap.String("queue path", queuePath),
zap.String("application", applicationID),
zap.Stringer("resource", usage),
zap.Bool("removeApp", removeApp))
if groupTracker.decreaseTrackedResource(queuePath, applicationID, usage, removeApp) {
log.Log(log.SchedUGM).Info("Removing group from manager",
zap.String("group", appGroup),
zap.String("queue path", queuePath),
zap.String("application", applicationID),
zap.Bool("removeApp", removeApp))
m.Lock()
delete(m.groupTrackers, appGroup)
m.Unlock()
}
}
func (m *Manager) GetUserTrackers() []*UserTracker {
m.RLock()
defer m.RUnlock()
var userTrackers []*UserTracker
for _, tracker := range m.userTrackers {
userTrackers = append(userTrackers, tracker)
}
return userTrackers
}
// GetUserTracker returns the UserTracker object if defined for the user and a nil otherwise.
func (m *Manager) GetUserTracker(user string) *UserTracker {
m.RLock()
defer m.RUnlock()
return m.userTrackers[user]
}
func (m *Manager) GetGroupTrackers() []*GroupTracker {
m.RLock()
defer m.RUnlock()
var groupTrackers []*GroupTracker
for _, tracker := range m.groupTrackers {
groupTrackers = append(groupTrackers, tracker)
}
return groupTrackers
}
// GetGroupTracker returns the GroupTracker object if defined for the group and a nil otherwise.
func (m *Manager) GetGroupTracker(group string) *GroupTracker {
m.RLock()
defer m.RUnlock()
return m.groupTrackers[group]
}
// ensureGroupTrackerForApp creates a group tracker to user and application link.
// The userTracker MUST have been created and the application SHOULD not be tracked yet for the user.
func (m *Manager) ensureGroupTrackerForApp(queuePath, applicationID string, user security.UserGroup) {
userTracker := m.GetUserTracker(user.User)
// sanity check: caller should not have called this function if the application is already tracked
if userTracker.hasGroupForApp(applicationID) {
return
}
// check which group this matches
appGroup := m.ensureGroup(user, queuePath)
var groupTracker *GroupTracker
// something matched, get the tracker or create if it does not exist
if appGroup != common.Empty {
groupTracker = m.GetGroupTracker(appGroup)
if groupTracker == nil {
log.Log(log.SchedUGM).Info("Group tracker doesn't exists. Creating appGroup tracker",
zap.String("queue path", queuePath),
zap.String("group", appGroup))
groupTracker = newGroupTracker(appGroup, m.events)
m.Lock()
m.groupTrackers[appGroup] = groupTracker
m.Unlock()
}
}
log.Log(log.SchedUGM).Info("Group tracker set for user application",
zap.String("group", appGroup),
zap.String("user", user.User),
zap.String("application", applicationID),
zap.String("queue path", queuePath))
// set this even if groupTracker is nil, as that was the final result of the resolution
// a nil group tracker means we do not track
userTracker.setGroupForApp(applicationID, groupTracker)
}
// ensureGroup returns the group to be used for tracking based on the user and queuePath
// A user can belong to zero or more groups.
// Limits are configured for different groups at different queue hierarchy.
// Among these multiple groups stored in security.UserGroup, matching against group for which limit has been configured happens from leaf to root and first
// matching group would be picked and used as user's group
func (m *Manager) ensureGroup(user security.UserGroup, queuePath string) string {
// no groups nothing to do here
if len(user.Groups) == 0 {
return common.Empty
}
m.RLock()
defer m.RUnlock()
return m.ensureGroupInternal(user.Groups, queuePath)
}
// ensureGroupInternal checks the config for a matching group to track against.
// Matching starts at the leaf queue and works upwards towards the root.
// If nothing matches an empty string is returned.
func (m *Manager) ensureGroupInternal(userGroups []string, queuePath string) string {
if configGroups, ok := m.configuredGroups[queuePath]; ok {
for _, configGroup := range configGroups {
for _, g := range userGroups {
if configGroup == g {
log.Log(log.SchedUGM).Debug("Found matching group for user",
zap.String("queue path", queuePath),
zap.String("matched group", configGroup))
return configGroup
}
}
}
}
// nothing matched check if we have the wildcard
if m.groupWildCardLimitsConfig[queuePath] != nil {
return common.Wildcard
}
// no match at this level check one level higher if it is there, otherwise no match
parentPath := getParentPath(queuePath)
if parentPath == common.Empty {
return common.Empty
}
return m.ensureGroupInternal(userGroups, parentPath)
}
func (m *Manager) UpdateConfig(config configs.QueueConfig, queuePath string) error {
userWildCardLimitsConfig := make(map[string]*LimitConfig)
groupWildCardLimitsConfig := make(map[string]*LimitConfig)
configuredGroups := make(map[string][]string)
userLimits := make(map[string]map[string]*LimitConfig) // Holds queue path * user limit config
groupLimits := make(map[string]map[string]*LimitConfig) // Holds queue path * group limit config
// as and when parse new configs, store them in temporary maps
if err := m.internalProcessConfig(config, queuePath, userLimits, groupLimits, userWildCardLimitsConfig, groupWildCardLimitsConfig, configuredGroups); err != nil {
return err
}
// compare existing config with new configs stored in above temporary maps
m.clearEarlierSetLimits(userLimits, groupLimits)
// compare existing wild card user config with new configs stored in above temporary maps
m.clearEarlierSetUserWildCardLimits(userWildCardLimitsConfig, userLimits)
// apply wild card user limits to all existing users for which no limits configured explicitly
m.applyWildCardUserLimits(userWildCardLimitsConfig, userLimits)
// switch over - replace the existing config with new configs
m.replaceLimitConfigs(userLimits, groupLimits, userWildCardLimitsConfig, groupWildCardLimitsConfig, configuredGroups)
return nil
}
func (m *Manager) internalProcessConfig(cur configs.QueueConfig, queuePath string, newUserLimits map[string]map[string]*LimitConfig, newGroupLimits map[string]map[string]*LimitConfig,
newUserWildCardLimitsConfig map[string]*LimitConfig, newGroupWildCardLimitsConfig map[string]*LimitConfig, newConfiguredGroups map[string][]string) error {
// Traverse limits of specific queue path
for _, limit := range cur.Limits {
var maxResource *resources.Resource
var err error
if maxResource, err = resources.NewResourceFromConf(limit.MaxResources); err != nil {
log.Log(log.SchedUGM).Warn("Problem in using the limit max resources settings.",
zap.String("queue path", queuePath),
zap.Any("limit max resources", limit.MaxResources),
zap.Error(err))
return errors.Join(fmt.Errorf("problem in using the max resources settings for queuepath: %s, reason: ", queuePath), err)
}
limitConfig := &LimitConfig{maxResources: maxResource, maxApplications: limit.MaxApplications}
for _, user := range limit.Users {
if user == common.Empty {
continue
}
log.Log(log.SchedUGM).Debug("Processing user limits configuration",
zap.String("user", user),
zap.String("limit", limit.Limit),
zap.String("queue path", queuePath),
zap.Uint64("max application", limit.MaxApplications),
zap.Any("max resources", limit.MaxResources))
if user == common.Wildcard {
newUserWildCardLimitsConfig[queuePath] = limitConfig
continue
}
if err := m.setUserLimits(user, limitConfig, queuePath); err != nil {
return err
}
if _, ok := newUserLimits[queuePath]; !ok {
newUserLimits[queuePath] = make(map[string]*LimitConfig)
}
newUserLimits[queuePath][user] = limitConfig
}
for _, group := range limit.Groups {
if group == common.Empty {
continue
}
log.Log(log.SchedUGM).Debug("Processing group limits configuration",
zap.String("group", group),
zap.String("limit", limit.Limit),
zap.String("queue path", queuePath),
zap.Uint64("max application", limit.MaxApplications),
zap.Any("max resources", limit.MaxResources))
if err := m.setGroupLimits(group, limitConfig, queuePath); err != nil {
return err
}
if _, ok := newGroupLimits[queuePath]; !ok {
newGroupLimits[queuePath] = make(map[string]*LimitConfig)
}
newGroupLimits[queuePath][group] = limitConfig
if group == common.Wildcard {
newGroupWildCardLimitsConfig[queuePath] = limitConfig
} else {
newConfiguredGroups[queuePath] = append(newConfiguredGroups[queuePath], group)
}
}
}
if len(cur.Queues) > 0 {
for _, child := range cur.Queues {
childQueuePath := queuePath + configs.DOT + child.Name
if err := m.internalProcessConfig(child, childQueuePath, newUserLimits, newGroupLimits, newUserWildCardLimitsConfig, newGroupWildCardLimitsConfig, newConfiguredGroups); err != nil {
return err
}
}
}
return nil
}
// clearEarlierSetLimits Clear already configured limits of users and groups for which limits have been configured before but not now
func (m *Manager) clearEarlierSetLimits(newUserLimits map[string]map[string]*LimitConfig, newGroupLimits map[string]map[string]*LimitConfig) {
m.Lock()
defer m.Unlock()
// Clear already configured limits of group for which limits have been configured before but not now
m.clearEarlierSetGroupLimits(newGroupLimits)
// Clear already configured limits of user for which limits have been configured before but not now
m.clearEarlierSetUserLimits(newUserLimits)
}
// clearEarlierSetUserWildCardLimits Traverse new wild card user config and decide whether earlier usage needs to be cleared/updated or not
// by comparing with the existing config. If config set earlier but not now, then traverse all users, check whether wild card limit has been applied/used or not.
// Reset earlier settings for the users only when wild card user limit has been applied.
// If config set earlier and now as well, then traverse all users and apply the current wild card user limit configs
// only when wild card user limit has been applied earlier.
func (m *Manager) clearEarlierSetUserWildCardLimits(newUserWildCardLimits map[string]*LimitConfig, newUserLimits map[string]map[string]*LimitConfig) {
m.RLock()
defer m.RUnlock()
for queuePath, currentLimitConfig := range m.userWildCardLimitsConfig {
_, currentQPExists := m.userLimits[queuePath]
_, newQPExists := newUserLimits[queuePath]
// Does queue path exist? In case wild limit does not exist, reset limit settings and useWildCard flag for all those users
if newLimitConfig, ok := newUserWildCardLimits[queuePath]; !ok && (!currentQPExists || !newQPExists) {
for _, ut := range m.userTrackers {
_, exists := m.userLimits[queuePath][ut.userName]
if _, ok = newUserLimits[queuePath][ut.userName]; !ok || !exists {
log.Log(log.SchedUGM).Debug("Need to clear earlier set configs for user because wild card limit has been applied earlier",
zap.String("user", ut.userName),
zap.String("queue path", queuePath))
ut.clearLimits(queuePath, true)
}
}
} else if !currentQPExists || !newQPExists {
// In case wild card user limit exists, compare the old wild card limits with new limits for existing users already using wild card limits.
// In case of difference, set new limits for all those users.
if currentLimitConfig.maxApplications != newLimitConfig.maxApplications ||
!resources.Equals(currentLimitConfig.maxResources, newLimitConfig.maxResources) {
for _, ut := range m.userTrackers {
log.Log(log.SchedUGM).Debug("Need to update earlier set configs for user because wild card limit applied earlier has been updated",
zap.String("user", ut.userName),
zap.String("queue path", queuePath))
_, exists := m.userLimits[queuePath][ut.userName]
if _, ok = newUserLimits[queuePath][ut.userName]; !ok || !exists {
ut.setLimits(queuePath, newLimitConfig.maxResources, newLimitConfig.maxApplications, true, true)
}
}
}
}
}
}
// applyWildCardUserLimits Traverse new wild card user config and apply the limits for all existing users for which no limits configured explicitly
func (m *Manager) applyWildCardUserLimits(newUserWildCardLimits map[string]*LimitConfig, newUserLimits map[string]map[string]*LimitConfig) {
m.RLock()
defer m.RUnlock()
for queuePath, newLimitConfig := range newUserWildCardLimits {
for _, ut := range m.userTrackers {
if _, ok := newUserLimits[queuePath][ut.userName]; !ok {
ut.setLimits(queuePath, newLimitConfig.maxResources, newLimitConfig.maxApplications, true, false)
}
}
}
}
// clearEarlierSetUserLimits Traverse new user config and decide whether earlier usage needs to be cleared or not
// by comparing with the existing config. Reset earlier usage only config set earlier but not now
func (m *Manager) clearEarlierSetUserLimits(newUserLimits map[string]map[string]*LimitConfig) {
for queuePath, limitConfig := range m.userLimits {
// Is queue path exists?
if newUserLimit, ok := newUserLimits[queuePath]; !ok {
for u := range limitConfig {
if ut, utExists := m.userTrackers[u]; utExists {
m.resetUserEarlierUsage(ut, queuePath)
}
}
} else {
// Queue path exists. Is user exists?
for u := range limitConfig {
if _, ulExists := newUserLimit[u]; !ulExists {
if ut, utExists := m.userTrackers[u]; utExists {
m.resetUserEarlierUsage(ut, queuePath)
}
}
}
}
}
}
// resetUserEarlierUsage Clear or reset earlier usage only when user already tracked for the queue path.
// Reset the max apps and max resources to default, unlink the end leaf queue of queue path from its immediate parent and
// eventually remove user tracker object itself from ugm if it can be removed.
func (m *Manager) resetUserEarlierUsage(ut *UserTracker, queuePath string) {
// Is this user already tracked for the queue path?
hierarchy := strings.Split(queuePath, configs.DOT)
if ut.isQueuePathTrackedCompletely(hierarchy) {
log.Log(log.SchedUGM).Debug("Need to clear earlier set configs for user",
zap.String("user", ut.userName),
zap.Strings("queue path", hierarchy))
ut.clearLimits(queuePath, false)
// Is there any running applications in end queue of this queue path? If not, then remove the linkage between end queue and its immediate parent
if ut.isUnlinkRequired(hierarchy) {
ut.unlinkQT(hierarchy)
}
log.Log(log.SchedUGM).Debug("Cleared earlier set limit configs for user",
zap.String("user", ut.userName),
zap.Strings("queue path", hierarchy))
if ut.canBeRemoved() {
delete(m.userTrackers, ut.userName)
}
}
}
// clearEarlierSetGroupLimits Traverse new group config and decide whether earlier usage needs to be cleared or not
// by comparing with the existing config. Reset earlier usage only config set earlier but not now
func (m *Manager) clearEarlierSetGroupLimits(newGroupLimits map[string]map[string]*LimitConfig) {
for queuePath, limitConfig := range m.groupLimits {
// Is queue path exists?
if newGroupLimit, ok := newGroupLimits[queuePath]; !ok {
for g := range limitConfig {
if gt, gtExists := m.groupTrackers[g]; gtExists {
m.resetGroupEarlierUsage(gt, queuePath)
}
}
} else {
// Queue path exists. Is group exists?
for g := range limitConfig {
if _, glExists := newGroupLimit[g]; !glExists {
if gt, gtExists := m.groupTrackers[g]; gtExists {
m.resetGroupEarlierUsage(gt, queuePath)
}
}
}
}
}
}
// resetGroupEarlierUsage Clear or reset earlier usage only when group already tracked for the queue path.
// Decrease the group usage and collect the list of applications for which user app group linkage needs to be broken.
// Reset the max apps and max resources to default, unlink the end leaf queue of queue path from its immediate parent and
// eventually remove group tracker object itself from ugm if it can be removed.
func (m *Manager) resetGroupEarlierUsage(gt *GroupTracker, queuePath string) {
hierarchy := strings.Split(queuePath, configs.DOT)
if gt.isQueuePathTrackedCompletely(hierarchy) {
log.Log(log.SchedUGM).Debug("Need to clear earlier set configs for group",
zap.String("group", gt.groupName),
zap.Strings("queue path", hierarchy))
appUsersMap := gt.decreaseAllTrackedResourceUsage(hierarchy)
for app, u := range appUsersMap {
ut := m.userTrackers[u]
delete(ut.appGroupTrackers, app)
}
gt.clearLimits(queuePath)
// Is there any running applications in end queue of this queue path? If not, then remove the linkage between end queue and its immediate parent
if gt.isUnlinkRequired(hierarchy) {
gt.unlinkQT(hierarchy)
}
log.Log(log.SchedUGM).Debug("Cleared earlier set limit configs for group",
zap.String("group", gt.groupName),
zap.Strings("queue path", hierarchy))
if gt.canBeRemoved() {
delete(m.groupTrackers, gt.groupName)
}
}
}
func (m *Manager) replaceLimitConfigs(newUserLimits map[string]map[string]*LimitConfig, newGroupLimits map[string]map[string]*LimitConfig,
newUserWildCardLimitsConfig map[string]*LimitConfig, newGroupWildCardLimitsConfig map[string]*LimitConfig, newConfiguredGroups map[string][]string) {
m.Lock()
defer m.Unlock()
m.userLimits = newUserLimits
m.groupLimits = newGroupLimits
m.userWildCardLimitsConfig = newUserWildCardLimitsConfig
m.groupWildCardLimitsConfig = newGroupWildCardLimitsConfig
m.configuredGroups = newConfiguredGroups
}
func (m *Manager) setUserLimits(user string, limitConfig *LimitConfig, queuePath string) error {
m.Lock()
defer m.Unlock()
log.Log(log.SchedUGM).Debug("Setting user limits",
zap.String("user", user),
zap.String("queue path", queuePath),
zap.Uint64("max application", limitConfig.maxApplications),
zap.Stringer("max resources", limitConfig.maxResources))
userTracker, ok := m.userTrackers[user]
if !ok {
log.Log(log.SchedUGM).Debug("User tracker does not exist. Creating user tracker object to set the limit configuration",
zap.String("user", user),
zap.String("queue path", queuePath))
userTracker = newUserTracker(user, m.events)
m.userTrackers[user] = userTracker
}
userTracker.setLimits(queuePath, limitConfig.maxResources, limitConfig.maxApplications, false, false)
return nil
}
func (m *Manager) setGroupLimits(group string, limitConfig *LimitConfig, queuePath string) error {
m.Lock()
defer m.Unlock()
log.Log(log.SchedUGM).Debug("Setting group limits",
zap.String("group", group),
zap.String("queue path", queuePath),
zap.Uint64("max application", limitConfig.maxApplications),
zap.Stringer("max resources", limitConfig.maxResources))
groupTracker, ok := m.groupTrackers[group]
if !ok {
log.Log(log.SchedUGM).Debug("Group tracker does not exist. Creating group tracker object to set the limit configuration",
zap.String("group", group),
zap.String("queue path", queuePath))
groupTracker = newGroupTracker(group, m.events)
m.groupTrackers[group] = groupTracker
}
groupTracker.setLimits(queuePath, limitConfig.maxResources, limitConfig.maxApplications)
return nil
}
// getUserTracker returns the requested user tracker and creates one if it does not exist.
// This only happens if the user does not have any limits in the config.
// Wildcard limits should be applied for this user as part of the checks.
func (m *Manager) getUserTracker(user string) *UserTracker {
m.Lock()
defer m.Unlock()
if ut, ok := m.userTrackers[user]; ok {
return ut
}
log.Log(log.SchedUGM).Info("User tracker doesn't exists. Creating user tracker.",
zap.String("user", user))
userTracker := newUserTracker(user, m.events)
m.userTrackers[user] = userTracker
return userTracker
}
func (m *Manager) getUserWildCardLimitsConfig(queuePath string) *LimitConfig {
if config, ok := m.userWildCardLimitsConfig[queuePath]; ok {
return config
}
return nil
}
// Headroom calculates the headroom for this specific application that runs as the user and group.
func (m *Manager) Headroom(queuePath, applicationID string, user security.UserGroup) *resources.Resource {
hierarchy := strings.Split(queuePath, configs.DOT)
userTracker := m.getUserTracker(user.User)
userHeadroom := userTracker.headroom(hierarchy)
// make sure the user has a groupTracker for this application, if not yet there add it
if !userTracker.hasGroupForApp(applicationID) {
m.ensureGroupTrackerForApp(queuePath, applicationID, user)
}
// check if this application now has group tracking, if not we're done
appGroup := userTracker.getGroupForApp(applicationID)
if appGroup == common.Empty {
return userHeadroom
}
groupTracker := m.GetGroupTracker(appGroup)
if groupTracker == nil {
return userHeadroom
}
groupHeadroom := groupTracker.headroom(hierarchy)
return resources.ComponentWiseMin(userHeadroom, groupHeadroom)
}
// CanRunApp checks the maxApplications for this specific application that runs as the user and group.
func (m *Manager) CanRunApp(queuePath, applicationID string, user security.UserGroup) bool {
hierarchy := strings.Split(queuePath, configs.DOT)
userTracker := m.getUserTracker(user.User)
userCanRunApp := userTracker.canRunApp(hierarchy, applicationID)
// make sure the user has a groupTracker for this application, if not yet there add it
if !userTracker.hasGroupForApp(applicationID) {
m.ensureGroupTrackerForApp(queuePath, applicationID, user)
}
// check if this application now has group tracking, if not we're done
appGroup := userTracker.getGroupForApp(applicationID)
if appGroup == common.Empty {
return userCanRunApp
}
groupTracker := m.GetGroupTracker(appGroup)
if groupTracker == nil {
return userCanRunApp
}
groupCanRunApp := groupTracker.canRunApp(hierarchy, applicationID)
return userCanRunApp && groupCanRunApp
}
// ClearUserTrackers only for tests
func (m *Manager) ClearUserTrackers() {
m.Lock()
defer m.Unlock()
m.userTrackers = make(map[string]*UserTracker)
}
// ClearGroupTrackers only for tests
func (m *Manager) ClearGroupTrackers() {
m.Lock()
defer m.Unlock()
m.groupTrackers = make(map[string]*GroupTracker)
}
// ClearConfigLimits only for tests
func (m *Manager) ClearConfigLimits() {
m.Lock()
defer m.Unlock()
m.userWildCardLimitsConfig = make(map[string]*LimitConfig)
m.groupWildCardLimitsConfig = make(map[string]*LimitConfig)
m.configuredGroups = make(map[string][]string)
m.userLimits = make(map[string]map[string]*LimitConfig)
m.groupLimits = make(map[string]map[string]*LimitConfig)
}
// GetUserResources returns the root queue maxResources for the user
// Should only be used in tests
func (m *Manager) GetUserResources(user string) *resources.Resource {
m.RLock()
defer m.RUnlock()
ut := m.userTrackers[user]
if ut == nil {
return nil
}
return ut.queueTracker.resourceUsage.Clone()
}
// GetGroupResources returns the root queue maxResources
// Should only be used in tests
func (m *Manager) GetGroupResources(group string) *resources.Resource {
m.RLock()
defer m.RUnlock()
gt := m.groupTrackers[group]
if gt == nil {
return nil
}
return gt.queueTracker.resourceUsage.Clone()
}