Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sept 23 upstream 5 0.2.122 #306

Merged
merged 17 commits into from
Sep 19, 2023
Merged

Sept 23 upstream 5 0.2.122 #306

merged 17 commits into from
Sep 19, 2023

Conversation

illusional
Copy link

Depends on: #305

Last update to get up to date 😌

daniel-goldstein and others added 15 commits September 5, 2023 21:41
@daniel-goldstein
[batch] Use the test and test-dev GSAs in test_batch not CI (hail-is#…
4d0379b 
…13562)

See relevant discussion
[here](https://hail.zulipchat.com/#narrow/stream/127527-team/topic/CI.20Deploy.20Failure/near/389266274)
@danking
[qob][batch] do not list all jobs on failure (plus: types!) (hail-is#…
4fb659c 
…13500)

CHANGELOG: In Query-on-Batch, the client-side Python code will not try
to list every job when a QoB batch fails. This could take hours for
long-running pipelines or pipelines with many partitions.

I also added API types to the list jobs end point because I have to go
hunting for this every time anyway. Seems better to have this
information at our digital fingertips.
@patrick-schultz
[compiler, lir] don’t compute unused loop regions (hail-is#13566)
7f65516 
Remove the code computing loop regions in lir. They aren't currently
being used, and the recursive function is causing stack overflows.
@danking
[release] 0.2.121 (hail-is#13529)
7343e9c 
I also had to fix issues that pyright discovered.
@danking
[query] MT.tail should prefer n_rows to n. (hail-is#13508)
e0bf6e6 
CHANGELOG: The `n` parameter of `MatrixTable.tail` is deprecated in
favor of a new `n_rows` parameter.

MT.head already does this.
@danking
[dataproc] restore parallel fetching of resources (hail-is#13574)
56f6231 
This appers to have been lost in hail-is#8268. There is no explicit mention of
it and it was inconsistently removed (e.g. loftee in GRCh38 still has
the `&`). I assume it was a mistake.
@danking
[test-dataproc] make test-dataproc-37 and -38 not race (hail-is#13573)
35da6f4 
Consider, for example, this deploy: https://ci.hail.is/batches/7956812.
`test-dataproc-37` succeeded but `test-dataproc-38` failed (it timed out
b/c the master failed to come online).

You can see the error logs for the cluster here:
https://cloudlogging.app.goo.gl/t1ux8oqy11Ba2dih7

It states a certain file either did not exist or we did not have
permission to access it.

[`test_dataproc-37`](https://batch.hail.is/batches/7956812/jobs/193) and
[`test_dataproc-38`](https://batch.hail.is/batches/7956812/jobs/194)
started around the same time and both uploaded four files into:


gs://hail-30-day/hailctl/dataproc/ci_test_dataproc/0.2.121-7343e9c368dc/

And then set it to public read/write. The public read/write means that
permissions are not the issue.

Instead, the issue is that there must be some sort of race condition in
GCS which means that if you "patch" (aka overwrite) an existing file, it
is possible that a concurrent reader will see the file as not existing.

Unfortunately, I cannot confirm this with audit logs of the writes and
read because [public objects do not generate audit
logs](https://cloud.google.com/logging/docs/audit#data-access).
> Publicly available resources that have the Identity and Access
Management policies
[allAuthenticatedUsers](https://cloud.google.com/iam/docs/overview#allauthenticatedusers)
or [allUsers](https://cloud.google.com/iam/docs/overview#allusers) don't
generate audit logs. Resources that can be accessed without logging into
a Google Cloud, Google Workspace, Cloud Identity, or Drive Enterprise
account don't generate audit logs. This helps protect end-user
identities and information.
@daniel-goldstein
[ci] Clean up temporary config for OAuth changes (hail-is#13570)
b4912b5 
All this `HAIL_AZURE_OAUTH_SCOPE` and `HAIL_IDENTITY_PROVIDER_JSON` are
now injected by batch workers by default so we don't need to specify
them explicitly in `build.yaml`.

Unrelatedly, I don't think `create_dummy_oauth2_client_secret` does
anything as `auth-oauth2-client-secret` already exists inside new
namespaces.
@danking
[deps] update rich (in query) and numpy (in batch) (hail-is#13572)
6cdd8f7
@jigold
[batch] Allow hailgenetics/vep images to be public (hail-is#13565)
8586275
@danking
[security] update scipy pin to 1.11.1 (hail-is#13571)
9cd874c 
Supersedes hail-is#13228 . Resolves
[CVE-2023-25399](https://nvd.nist.gov/vuln/detail/CVE-2023-25399).
@patrick-schultz
[query] fix transposed blanczos (hail-is#13552)
7fb6008
@patrick-schultz
[query] fix shadowing of field names by methods (hail-is#13498)
c160d3e 
In particular, struct field names which clash with methods on
`StructExpression`.

close hail-is#13495

CHANGELOG: Fix a bug where field names can shadow methods on the
StructExpression class, e.g. "items", "keys", "values". Now the only way
to access such fields is through the getitem syntax, e.g.
"some_struct['items']". It's possible this could break existing code
that uses such field names.
@daniel-goldstein
[hailtop] Fix defaulting to hail.is when the user has no deploy-config (
be9d88a 
hail-is#13585)

or domain specified. The key bug here was a check for `'domain' not in
config` instead of `config['domain'] is None`
@illusional
Merge commit 'be9d88a' into sept-23-upstream-5-0.2.122
f11ef53
@illusional illusional changed the base branch from main to sept-23-upstream-4-dc1f086 September 8, 2023 00:42
@illusional illusional force-pushed the sept-23-upstream-5-0.2.122 branch 2 times, most recently from 9cc40a8 to a56649f Compare September 12, 2023 23:38
@jmarshall
Copy link

LGTM up until where you asked me to review it.

I don't understand what that last s/google_storage_bucket/module/g commit is about. Did we change this infra/gcp/main.tf file in our branch somewhere along the line?

@illusional
Copy link
Author

@jmarshall, broad don't use this file, just us. So they made changes reflecting what's supposed to happen, but there was a typo. I worked with Daniel to resolve this upstream

@illusional illusional marked this pull request as ready for review September 19, 2023 20:57
Base automatically changed from sept-23-upstream-4-dc1f086 to main September 19, 2023 21:21
@illusional illusional merged commit 73e49d6 into main Sep 19, 2023
5 checks passed
@illusional illusional deleted the sept-23-upstream-5-0.2.122 branch September 19, 2023 22:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jmarshall jmarshall jmarshall approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@illusional @jmarshall @daniel-goldstein @danking @patrick-schultz @jigold