Notebook spawned in Yarn but killed after timeout

ajs6f · July 18, 2023, 4:28pm

I’m afraid not. It is a fairly complex environment using Ambari-managed Hadoop. I don’t really know how I would containerize it and I can no longer afford to spend the time experimenting. I’ll have to move on and perhaps Jupyterhub is something I can pursue again later for our site. My whole interest in YarnSpawner was to avoid having to build up a completely different and independent infrastructure using container tech alongside the extensive Hadoop investment we already have made, but that doesn’t seem possible.

I would like to suggest that the YarnSpawner repo be marked as out-of-maintenance and the documentation be updated as such. I’ve spent quite a lot of time on this with no results and it seems that YarnSpawner doesn’t work now, or at least not without much Jupyterhub knowledge beyond the newbie stage. I’ll make that suggestion in a separate thread.

mahendrapaipuri · July 18, 2023, 5:15pm

Fair enough!! As a final try, could you make sure that you have notebook and jupyterlab installed in your single user environments. Also try to spawn a JupyterLab interface rather than classic notebook using c.YarnSpawner.default_url = '/lab' to see if it changes anything.

ajs6f · July 19, 2023, 3:25pm

Holy moly! It did indeed change things. Now the missing cookie-token is being found! But there is another problem… Here’s what I’m seeing now (below). It looks like auth.py is looking for a value in the JSON of the default scope env var JUPYTERHUB_OAUTH_ACCESS_SCOPES that isn’t there? (Please be aware that some of the line numbers in this stacktrace may be a few off from the shared code because of logging statements I have inserted.)

[D 2023-07-19 11:22:38.469 YarnSingleUserNotebookApp auth:746] token found
[D 2023-07-19 11:22:38.469 YarnSingleUserNotebookApp auth:676] got user_model from cookie: {'name': 'sorokaa', 'admin': False, 'kind': 'user', 'groups': [], 'session_id': '2aa3b4492f3d40fb9127eb8b964f6d21', 'scopes': ['access:servers!server=sorokaa/', 'read:users:groups!user=sorokaa', 'read:users:name!user=sorokaa']}
[D 2023-07-19 11:22:38.470 YarnSingleUserNotebookApp auth:368] env_scopes = os.getenv('JUPYTERHUB_OAUTH_ACCESS_SCOPES' resulted in [access:servers!server=sorokaa/, access:servers!user=sorokaa]
[E 2023-07-19 11:22:38.470 YarnSingleUserNotebookApp http1connection:67] Uncaught exception
    Traceback (most recent call last):
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/tornado/http1connection.py", line 273, in _read_message
        delegate.finish()
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/tornado/httpserver.py", line 387, in finish
        self.delegate.finish()
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/tornado/routing.py", line 268, in finish
        self.delegate.finish()
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/tornado/web.py", line 2290, in finish
        self.execute()
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/tornado/web.py", line 2309, in execute
        self.handler = self.handler_class(
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/tornado/web.py", line 227, in __init__
        self.clear()
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/tornado/web.py", line 328, in clear
        self.set_default_headers()
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyter_server/base/handlers.py", line 314, in set_default_headers
        elif self.token_authenticated and "Access-Control-Allow-Origin" not in self.settings.get(
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyter_server/base/handlers.py", line 159, in token_authenticated
        return self.login_handler.is_token_authenticated(self)
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyterhub/singleuser/mixins.py", line 99, in is_token_authenticated
        handler.get_current_user()
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyterhub/services/auth.py", line 1165, in get_current_user
        self._hub_auth_user_cache = self.check_hub_user(user_model)
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyterhub/services/auth.py", line 1090, in check_hub_user
        if self.allow_all:
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyterhub/services/auth.py", line 1036, in allow_all
        self.hub_scopes is None
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyterhub/services/auth.py", line 1028, in hub_scopes
        return self.hub_auth.access_scopes or None
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/traitlets/traitlets.py", line 703, in __get__
        return self.get(obj, cls)
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/traitlets/traitlets.py", line 659, in get
        default = obj.trait_defaults(self.name)
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/traitlets/traitlets.py", line 1872, in trait_defaults
        return self._get_trait_default_generator(names[0])(self)
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/traitlets/traitlets.py", line 1233, in __call__
        return self.func(*args, **kwargs)
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyterhub/services/auth.py", line 374, in _default_scopes
        return set(json.loads(env_scopes))
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/json/__init__.py", line 346, in loads
        return _default_decoder.decode(s)
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/json/decoder.py", line 337, in decode
        obj, end = self.raw_decode(s, idx=_w(s, 0).end())
      File "/cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/json/decoder.py", line 355, in raw_decode
        raise JSONDecodeError("Expecting value", s, err.value) from None
    json.decoder.JSONDecodeError: Expecting value: line 1 column 2 (char 1)

ajs6f · July 19, 2023, 3:37pm

Actually, now that I look more closely, it looks like the value in that env var: JUPYTERHUB_OAUTH_ACCESS_SCOPES = [access:servers!server=sorokaa/, access:servers!user=sorokaa] really isn’t valid JSON: it’s missing some quotes around the terms…

mahendrapaipuri · July 19, 2023, 3:58pm

Thats great news. So, notebook was missing from the single user environment? If so, we need to raise an issue with core developers as the error is quite misleading.

Well, env var JUPYTERHUB_OAUTH_ACCESS_SCOPES is a list of strings. I think this issue must be Hadoop specific as env vars are set here and you need to make sure that this list of strings is properly formatted.

ajs6f · July 19, 2023, 4:01pm

Excellent, anything YarnSpawner-specific is a much smaller zone for fixes! I will get to that right away and see what I can figure out. Do you think it’s worth waiting to fix everything I can fix before filing that issue about the absence of notebook? I want to make sure I can give the best possible picture to the devs.

Thank you again @mahendrapaipuri for all the help you have been giving me for this!

ajs6f · July 20, 2023, 5:17pm

Hello @mahendrapaipuri , I can report success!

With one more edit I was able to successfully launch and connect to a JupyterLab notebook (if that is the correct terminology). In YarnSpawner’s spawner.py I overrode the default value for JUPYTERHUB_OAUTH_ACCESS_SCOPES as follows:

    @default("oauth_access_scopes")
    def _default_access_scopes(self):
        self.log.debug("Now using YarnSpawner oauth_access_scopes override")
        return [
            f'"access:servers!server={self.user.name}/{self.name}"',
            f'"access:servers!user={self.user.name}"',
        ]

This overrides the out-of-the-box default value from Spawner in JupyterHub itself, which is:

    @default("oauth_access_scopes")
    def _default_access_scopes(self):
        return [
            f"access:servers!server={self.user.name}/{self.name}",
            f"access:servers!user={self.user.name}",
        ]

Notice the quotation marks I have added. Now, I can’t begin to tell you why my setup is “picky” about this. I don’t think it has anything to do with Hadoop, or at least I cannot see why it would. That having been said, that’s what worked.

I would very much like to contribute these fixes back to JupyterHub. Do you think the best move is to open issues and PRs on YarnSpawner? Or is there a better way to get the attention of someone who can take responsibility for merging fixes?

Thank you again for all your help!

mahendrapaipuri · July 20, 2023, 6:01pm

Well, JupyterHub spawner exports this env var as string after converting it into json string. So, generally you will not need to escape quotes again. I thought it might be some sort of side effect of skein library that YarnSpawner is using to spawn single user servers.

Yes, you can submit PR for YarnSpawner and hope someone will respond.

mahendrapaipuri · July 20, 2023, 6:05pm

[I 2023-07-11 14:21:58.981 YarnSingleUserNotebookApp mixins:609] Starting jupyterhub single-user server version 3.1.1
[I 2023-07-11 14:21:58.981 YarnSingleUserNotebookApp mixins:623] Extending __main__.YarnSingleUserNotebookApp from __main__ 
[I 2023-07-11 14:21:58.981 YarnSingleUserNotebookApp mixins:623] Extending jupyter_server.serverapp.ServerApp from jupyter_server 1.23.6
[D 2023-07-11 14:21:58.999 YarnSingleUserNotebookApp application:190] Searching ['/home/.jupyter', '/home/.local/etc/jupyter', '/cm/shared/datalake/jupyterhub/miniconda/etc/jupyter', '/usr/local/etc/jupyter', '/etc/jupyter'] for config files
[D 2023-07-11 14:21:58.999 YarnSingleUserNotebookApp application:902] Looking for jupyter_config in /etc/jupyter
[D 2023-07-11 14:21:58.999 YarnSingleUserNotebookApp application:902] Looking for jupyter_config in /usr/local/etc/jupyter
[D 2023-07-11 14:21:59.000 YarnSingleUserNotebookApp application:902] Looking for jupyter_config in /cm/shared/datalake/jupyterhub/miniconda/etc/jupyter
[D 2023-07-11 14:21:59.000 YarnSingleUserNotebookApp application:902] Looking for jupyter_config in /home/.local/etc/jupyter
[D 2023-07-11 14:21:59.000 YarnSingleUserNotebookApp application:902] Looking for jupyter_config in /home/.jupyter
[D 2023-07-11 14:21:59.000 YarnSingleUserNotebookApp application:902] Looking for jupyter_server_config in /etc/jupyter
[D 2023-07-11 14:21:59.001 YarnSingleUserNotebookApp application:902] Looking for jupyter_server_config in /usr/local/etc/jupyter
[D 2023-07-11 14:21:59.001 YarnSingleUserNotebookApp application:902] Looking for jupyter_server_config in /cm/shared/datalake/jupyterhub/miniconda/etc/jupyter
[D 2023-07-11 14:21:59.001 YarnSingleUserNotebookApp application:902] Looking for jupyter_server_config in /home/.local/etc/jupyter
[D 2023-07-11 14:21:59.001 YarnSingleUserNotebookApp application:902] Looking for jupyter_server_config in /home/.jupyter
[D 2023-07-11 14:21:59.003 YarnSingleUserNotebookApp config_manager:93] Paths used for configuration of jupyter_server_config: 
    	/etc/jupyter/jupyter_server_config.json
[D 2023-07-11 14:21:59.003 YarnSingleUserNotebookApp config_manager:93] Paths used for configuration of jupyter_server_config: 
    	/usr/local/etc/jupyter/jupyter_server_config.json
[D 2023-07-11 14:21:59.003 YarnSingleUserNotebookApp config_manager:93] Paths used for configuration of jupyter_server_config: 
    	/cm/shared/datalake/jupyterhub/miniconda/etc/jupyter/jupyter_server_config.json
[D 2023-07-11 14:21:59.003 YarnSingleUserNotebookApp config_manager:93] Paths used for configuration of jupyter_server_config: 
    	/home/.local/etc/jupyter/jupyter_server_config.json
[D 2023-07-11 14:21:59.004 YarnSingleUserNotebookApp config_manager:93] Paths used for configuration of jupyter_server_config: 
    	/home/.jupyter/jupyter_server_config.json
[I 2023-07-11 14:21:59.080 YarnSingleUserNotebookApp mixins:670] Starting jupyterhub-singleuser server version 3.1.1
[D 2023-07-11 14:21:59.085 YarnSingleUserNotebookApp _version:74] jupyterhub and jupyterhub-singleuser both on version 3.1.1
[I 2023-07-11 14:21:59.086 YarnSingleUserNotebookApp serverapp:2686] Serving notebooks from local directory: /hadoop/yarn/local/usercache/sorokaa/appcache/application_1687889389675_0015/container_1687889389675_0015_01_000001
[I 2023-07-11 14:21:59.086 YarnSingleUserNotebookApp serverapp:2686] Jupyter Server 1.23.6 is running at:
[I 2023-07-11 14:21:59.086 YarnSingleUserNotebookApp serverapp:2686] http://dl-test-01:39199/user/sorokaa/tree/
[I 2023-07-11 14:21:59.086 YarnSingleUserNotebookApp serverapp:2686]  or http://127.0.0.1:39199/user/sorokaa/tree/
[I 2023-07-11 14:21:59.086 YarnSingleUserNotebookApp serverapp:2687] Use Control-C to stop this server and shut down all kernels (twice to skip confirmation).
[I 2023-07-11 14:21:59.092 YarnSingleUserNotebookApp mixins:591] Updating Hub with activity every 300 seconds
[D 2023-07-11 14:21:59.093 YarnSingleUserNotebookApp mixins:553] Notifying Hub of activity 2023-07-11T18:21:59.014371Z
[I 2023-07-11 14:21:59.240 YarnSingleUserNotebookApp log:186] 302 GET /user/sorokaa/ -> /user/sorokaa/tree/? (@192.168.60.11) 0.64ms
[I 2023-07-11 14:21:59.351 YarnSingleUserNotebookApp log:186] 302 GET /user/sorokaa/ -> /user/sorokaa/tree/? (@::ffff:10.254.127.246) 0.59ms
[I 2023-07-11 14:21:59.399 YarnSingleUserNotebookApp log:186] 302 GET /user/sorokaa/tree/? -> /user/sorokaa/tree? (@::ffff:10.254.127.246) 0.55ms
[D 2023-07-11 14:21:59.440 YarnSingleUserNotebookApp auth:673] No user identified
[D 2023-07-11 14:21:59.441 YarnSingleUserNotebookApp handlers:273] Using contents: services/contents
[D 2023-07-11 14:21:59.476 YarnSingleUserNotebookApp handlers:881] Path favicon.ico served from /cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyter_server/static/favicon.ico
[D 2023-07-11 14:21:59.478 YarnSingleUserNotebookApp handlers:881] Path style/bootstrap.min.css served from /cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyter_server/static/style/bootstrap.min.css
[D 2023-07-11 14:21:59.479 YarnSingleUserNotebookApp handlers:881] Path style/bootstrap-theme.min.css served from /cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyter_server/static/style/bootstrap-theme.min.css
[D 2023-07-11 14:21:59.480 YarnSingleUserNotebookApp handlers:881] Path style/index.css served from /cm/shared/datalake/jupyterhub/miniconda/lib/python3.10/site-packages/jupyter_server/static/style/index.css
[W 2023-07-11 14:21:59.481 YarnSingleUserNotebookApp log:186] 404 GET /user/sorokaa/tree? (@::ffff:10.254.127.246) 42.27ms
[D 2023-07-11 14:21:59.538 YarnSingleUserNotebookApp auth:673] No user identified
[D 2023-07-11 14:21:59.540 YarnSingleUserNotebookApp log:186] 200 GET /user/sorokaa/static/style/bootstrap.min.css?v=0e8a7fbd6de23ad6b27ab95802a0a0915af6693af612bc304d83af445529ce5d95842309ca3405d10f538d45c8a3a261b8cff78b4bd512dd9effb4109a71d0ab (@::ffff:10.254.127.246) 2.96ms
[D 2023-07-11 14:21:59.546 YarnSingleUserNotebookApp auth:673] No user identified
[D 2023-07-11 14:21:59.547 YarnSingleUserNotebookApp auth:673] No user identified
[D 2023-07-11 14:21:59.549 YarnSingleUserNotebookApp log:186] 200 GET /user/sorokaa/static/style/bootstrap-theme.min.css?v=8b2f045cb5b4d5ad346f6e816aa2566829a4f5f2783ec31d80d46a57de8ac0c3d21fe6e53bcd8e1f38ac17fcd06d12088bc9b43e23b5d1da52d10c6b717b22b3 (@::ffff:10.254.127.246) 2.86ms
[D 2023-07-11 14:21:59.550 YarnSingleUserNotebookApp log:186] 200 GET /user/sorokaa/static/style/index.css?v=30372e3246a801d662cf9e3f9dd656fa192eebde9054a2282449fe43919de9f0ee9b745d7eb49d3b0a5e56357912cc7d776390eddcab9dac85b77bdb17b4bdae (@::ffff:10.254.127.246) 2.82ms
[D 2023-07-11 14:21:59.769 YarnSingleUserNotebookApp auth:673] No user identified
[D 2023-07-11 14:21:59.771 YarnSingleUserNotebookApp log:186] 200 GET /user/sorokaa/static/favicon.ico?v=50afa725b5de8b00030139d09b38620224d4e7dba47c07ef0e86d4643f30c9bfe6bb7e1a4a1c561aa32834480909a4b6fe7cd1e17f7159330b6b5914bf45a880 (@::ffff:10.254.127.246) 1.85ms
End of LogType:application.driver.log.This log file belongs to a running container (container_1687889389675_0015_01_000001) and so may not be complete.

@manics Do you happen to know why when notebook is missing from single user environment we get this No user identified error? I mean it is sort of misleading, right? Can we check for the presence of notebook/jupyterlab before starting single user server? Cheers!!

manics · July 21, 2023, 8:37pm

Do you happen to know why when notebook is missing from single user environment we get this No user identified error? I mean it is sort of misleading, right?

notebook shouldn’t be required, though you will need something that provides the singleuser server. Notebook or JupyterLab are the common ones, but there are other alternative implementations.

I’ve just tested the latest JupyterHub with only jupyter_server (no notebook, nor jupyterlab), and it’s working. Is it possible this is another bug in yarnspawner?

mahendrapaipuri · July 24, 2023, 9:03am

I agree that there is no “strict” requirement of having notebook or jupyterlab in the single user environment. But when we configure default_url as /tree and there is no notebook in the single user environment, it seems like we might end up in this situation for JupyterHub 3.

I will try to replicate this behaviour and if I can, I will post my environment here. \

Cheers!!

ajs6f · August 14, 2023, 4:09pm

Just a note that a fortnight ago I filed an issue for the original problem with an async method:

github.com/jupyterhub/yarnspawner

Hub and single-user notebook fail to connect out-of-the-box

opened 08:10PM - 31 Jul 23 UTC

ajs6f

bug

Thanks to much help from @mahendrapaipuri at [this issue](https://discourse.jupy…ter.org/t/notebook-spawned-in-yarn-but-killed-after-timeout) I was able to fix this bug. I can prepare a PR if that is desired. ### Bug description There is an error in `YarnSpawner`'s https://github.com/jupyterhub/yarnspawner/blob/1c40f529ddf9fd6217e9b8ae954fd669e4276c92/yarnspawner/singleuser.py#L15-L19 After v3 of JupyterHub, [HubAuth._api_request()](https://github.com/jupyterhub/jupyterhub/blob/3fbdf02cc5c6574432dd28710ed2fc64b2353081/jupyterhub/services/auth.py#L460-L546) is now an `async` method. A corrected `YarnSingleUserNotebookApp.start(self)` looks like: ```python def start(self): self.oauth_callback_handler_class = HubOAuthCallbackHandler hub_auth = HubOAuth() url = url_path_join(hub_auth.api_url, "yarnspawner") headers = {"Authorization": f"token {hub_auth.api_token}"} r = requests.post( url, headers=headers, json={"port": self.port}, ) super().start() ``` #### Expected behaviour I thought the hub would correctly wait for the single-user notebook to be spawned and then communicate therewith. #### Actual behaviour The single-user notebook spawns, the hub and notebook exchange activity messages, but the hub never correctly returns from the notebook spawn and eventually kills the notebook, even though it was running perfectly well. ### How to reproduce Install and configure YarnSpawner. This will happen every time. ### Your personal set up - OS: CentOS Linux release 7.9.2009 (Core) - Version(s): ``` [sorokaa@dl-test-02 miniconda]$ bin/jupyterhub --version 3.1.1 [sorokaa@dl-test-02 miniconda]$ bin/python --version Python 3.10.10 ``` <details><summary>Full environment</summary> ``` # packages in environment at /cm/shared/datalake/jupyterhub/miniconda: # # Name Version Build Channel _libgcc_mutex 0.1 main _openmp_mutex 5.1 1_gnu abseil-cpp 20211102.0 h27087fc_1 conda-forge alembic 1.11.1 pyhd8ed1ab_0 conda-forge anyio 3.7.0 pyhd8ed1ab_1 conda-forge argon2-cffi 21.3.0 pyhd8ed1ab_0 conda-forge argon2-cffi-bindings 21.2.0 py310h5764c6d_2 conda-forge asttokens 2.0.5 pyhd3eb1b0_0 async_generator 1.10 py_0 conda-forge attrs 23.1.0 pyh71513ae_1 conda-forge babel 2.11.0 py310h06a4308_0 backcall 0.2.0 pyhd3eb1b0_0 beautifulsoup4 4.12.2 pyha770c72_0 conda-forge bleach 6.0.0 pyhd8ed1ab_0 conda-forge blinker 1.6.2 pyhd8ed1ab_0 conda-forge boltons 23.0.0 py310h06a4308_0 brotlipy 0.7.0 py310h7f8727e_1002 bzip2 1.0.8 h7b6447c_0 c-ares 1.19.0 h5eee18b_0 ca-certificates 2023.05.30 h06a4308_0 certifi 2023.5.7 py310h06a4308_0 certipy 0.1.3 py_0 conda-forge cffi 1.15.1 py310h5eee18b_3 charset-normalizer 2.0.4 pyhd3eb1b0_0 comm 0.1.2 py310h06a4308_0 conda 23.5.2 py310h06a4308_0 conda-content-trust 0.1.3 py310h06a4308_0 conda-package-handling 2.0.2 py310h06a4308_0 conda-package-streaming 0.7.0 py310h06a4308_0 configurable-http-proxy 4.0.1 node6_0 cryptography 39.0.1 py310h9ce1e76_0 debugpy 1.5.1 py310h295c915_0 decorator 5.1.1 pyhd3eb1b0_0 defusedxml 0.7.1 pyhd8ed1ab_0 conda-forge entrypoints 0.4 pyhd8ed1ab_0 conda-forge exceptiongroup 1.1.1 pyhd8ed1ab_0 conda-forge executing 0.8.3 pyhd3eb1b0_0 flit-core 3.9.0 pyhd8ed1ab_0 conda-forge grpc-cpp 1.48.2 h5bf31a4_0 grpcio 1.48.2 py310h5bf31a4_0 icu 58.2 he6710b0_3 idna 3.4 py310h06a4308_0 importlib-metadata 6.6.0 pyha770c72_0 conda-forge importlib_resources 5.12.0 pyhd8ed1ab_0 conda-forge ipykernel 6.19.2 py310h2f386ee_0 ipython 8.12.0 py310h06a4308_0 ipython_genutils 0.2.0 pyhd3eb1b0_1 jedi 0.18.1 py310h06a4308_1 jinja2 3.1.2 pyhd8ed1ab_1 conda-forge json5 0.9.6 pyhd3eb1b0_0 jsonpatch 1.32 pyhd3eb1b0_0 jsonpointer 2.1 pyhd3eb1b0_0 jsonschema 4.17.3 pyhd8ed1ab_0 conda-forge jupyter_client 7.3.4 pyhd8ed1ab_0 conda-forge jupyter_core 5.3.0 py310hff52083_0 conda-forge jupyter_server 1.13.5 pyhd3eb1b0_0 jupyter_telemetry 0.1.0 pyhd8ed1ab_1 conda-forge jupyterhub 3.1.1 py310h06a4308_0 jupyterhub-dummyauthenticator 0.3.1 pypi_0 pypi jupyterhub-yarnspawner 0.4.0 py310hff52083_2 conda-forge jupyterlab 3.3.2 pyhd3eb1b0_0 jupyterlab_pygments 0.2.2 pyhd8ed1ab_0 conda-forge jupyterlab_server 2.10.3 pyhd3eb1b0_1 ld_impl_linux-64 2.38 h1181459_1 libffi 3.4.2 h6a678d5_6 libgcc 7.2.0 h69d50b8_2 conda-forge libgcc-ng 11.2.0 h1234567_1 libgomp 11.2.0 h1234567_1 libprotobuf 3.20.3 he621ea3_0 libsodium 1.0.18 h36c2ea0_1 conda-forge libstdcxx-ng 11.2.0 h1234567_1 libuuid 1.41.5 h5eee18b_0 libxml2 2.10.3 hcbfbd50_0 libxslt 1.1.37 h2085143_0 lxml 4.9.2 py310h5eee18b_0 mako 1.2.4 pyhd8ed1ab_0 conda-forge markupsafe 2.1.1 py310h7f8727e_0 matplotlib-inline 0.1.6 py310h06a4308_0 mistune 0.8.4 py310h7f8727e_1000 nbclassic 0.5.5 py310h06a4308_0 nbclient 0.8.0 pyhd8ed1ab_0 conda-forge nbconvert 6.5.4 py310h06a4308_0 nbformat 5.9.0 pyhd8ed1ab_0 conda-forge ncurses 6.4 h6a678d5_0 nest-asyncio 1.5.6 pyhd8ed1ab_0 conda-forge nodejs 6.13.1 0 conda-forge notebook 6.5.4 py310h06a4308_0 notebook-shim 0.2.2 py310h06a4308_0 oauthlib 3.2.2 pyhd8ed1ab_0 conda-forge openssl 1.1.1u h7f8727e_0 packaging 23.0 py310h06a4308_0 pamela 1.0.0 py_0 conda-forge pandocfilters 1.5.0 pyhd8ed1ab_0 conda-forge parso 0.8.3 pyhd3eb1b0_0 pexpect 4.8.0 pyhd3eb1b0_3 pickleshare 0.7.5 pyhd3eb1b0_1003 pip 23.0.1 py310h06a4308_0 pkgutil-resolve-name 1.3.10 pyhd8ed1ab_0 conda-forge platformdirs 3.5.1 pyhd8ed1ab_0 conda-forge pluggy 1.0.0 py310h06a4308_1 prometheus_client 0.17.0 pyhd8ed1ab_0 conda-forge prompt-toolkit 3.0.36 py310h06a4308_0 protobuf 3.20.3 py310h6a678d5_0 psutil 5.9.0 py310h5eee18b_0 ptyprocess 0.7.0 pyhd3deb0d_0 conda-forge pure_eval 0.2.2 pyhd3eb1b0_0 pycosat 0.6.4 py310h5eee18b_0 pycparser 2.21 pyhd3eb1b0_0 pygments 2.15.1 pyhd8ed1ab_0 conda-forge pyjwt 2.7.0 pyhd8ed1ab_0 conda-forge pyopenssl 23.0.0 py310h06a4308_0 pyrsistent 0.18.0 py310h7f8727e_0 pysocks 1.7.1 py310h06a4308_0 python 3.10.10 h7a1cb2a_2 python-dateutil 2.8.2 pyhd8ed1ab_0 conda-forge python-fastjsonschema 2.17.1 pyhd8ed1ab_0 conda-forge python-json-logger 2.0.7 pyhd8ed1ab_0 conda-forge python_abi 3.10 2_cp310 conda-forge pytz 2022.7 py310h06a4308_0 pyyaml 6.0 py310h5764c6d_4 conda-forge pyzmq 25.0.2 py310h6a678d5_0 re2 2022.04.01 h27087fc_0 conda-forge readline 8.2 h5eee18b_0 requests 2.28.1 py310h06a4308_1 ruamel.yaml 0.17.21 py310h5eee18b_0 ruamel.yaml.clib 0.2.6 py310h5eee18b_1 send2trash 1.8.2 pyh41d4057_0 conda-forge setuptools 65.6.3 py310h06a4308_0 six 1.16.0 pyhd3eb1b0_1 skein 0.8.1 py310hff52083_3 conda-forge sniffio 1.3.0 pyhd8ed1ab_0 conda-forge soupsieve 2.3.2.post1 pyhd8ed1ab_0 conda-forge sqlalchemy 1.3.24 py310h5764c6d_1 conda-forge sqlite 3.41.1 h5eee18b_0 stack_data 0.2.0 pyhd3eb1b0_0 terminado 0.17.1 pyh41d4057_0 conda-forge tinycss2 1.2.1 pyhd8ed1ab_0 conda-forge tk 8.6.12 h1ccaba5_0 toolz 0.12.0 py310h06a4308_0 tornado 6.1 py310h5764c6d_3 conda-forge tqdm 4.65.0 py310h2f386ee_0 traitlets 5.9.0 pyhd8ed1ab_0 conda-forge typing-extensions 4.6.3 hd8ed1ab_0 conda-forge typing_extensions 4.6.3 pyha770c72_0 conda-forge tzdata 2023c h04d1e81_0 urllib3 1.26.15 py310h06a4308_0 wcwidth 0.2.5 pyhd3eb1b0_0 webencodings 0.5.1 py_1 conda-forge websocket-client 1.5.3 pyhd8ed1ab_0 conda-forge wheel 0.38.4 py310h06a4308_0 xz 5.2.10 h5eee18b_1 yaml 0.2.5 h7f98852_2 conda-forge zeromq 4.3.4 h9c3ff4c_1 conda-forge zipp 3.15.0 pyhd8ed1ab_0 conda-forge zlib 1.2.13 h5eee18b_0 zstandard 0.19.0 py310h5eee18b_0 ``` </details> <details><summary>Configuration</summary>  ```python [sorokaa@dl-test-02 miniconda]$ cat /etc/jupyterhub/jupyterhub_config.py c.JupyterHub.hub_ip = '' c.Application.log_level='DEBUG' c.JupyterHub.bind_url = 'http://:9090' c.JupyterHub.cookie_secret_file = '/etc/jupyterhub/jupyterhub_cookie_secret' c.JupyterHub.db_url = 'sqlite:////var/jupyterhub/jupyterhub.sqlite' c.JupyterHub.hub_bind_url = 'http://dl-test-02.cm.cluster:9091' c.JupyterHub.ssl_cert = '/etc/jupyterhub/cert-bundle.pem' c.JupyterHub.ssl_key = '/etc/jupyterhub/server.key' c.Application.logging_config = { 'handlers': { 'file': { 'class': 'logging.FileHandler', 'level': 'DEBUG', 'filename': '/var/log/jupyterhub/jupyterhub.log', } }, 'loggers': { '<application-name>': { 'level': 'DEBUG', # NOTE: if you don't list the default "console" # handler here then it will be disabled 'handlers': ['console', 'file'], }, } } c.JupyterHub.authenticator_class = 'dummyauthenticator.DummyAuthenticator' # Optionally add a shared global password to be used by all users c.DummyAuthenticator.password = "test" c.JupyterHub.spawner_class = 'yarnspawner.YarnSpawner' #c.YarnSpawner.localize_files = { # 'environment': { # 'source': 'hdfs:///jupyterhub/example.tar.gz', # 'visibility': 'public' # } #} c.YarnSpawner.prologue = 'source /cm/shared/datalake/jupyterhub/miniconda/bin/activate' # The memory limit for a notebook instance. c.YarnSpawner.mem_limit = '2 G' # The cpu limit for a notebook instance c.YarnSpawner.cpu_limit = 1 c.YarnSpawner.debug = True c.JupyterHub.activity_resolution = 30 c.YarnSpawner.poll_interval = 30 c.YawnSpawner.args = ["--debug"] c.YarnSpawner.default_url = '/lab' ``` </details>

with no response as of yet. There is a PR from last December that appears to address the same issue that also appears to have been ignored.

brezzsent · August 18, 2023, 10:36am

Thank you so much for this advice.

ajs6f · August 18, 2023, 1:32pm

@brezzsent, did you also have difficulty getting YarnSpawner to work? If so, please comment on the issue I raised and perhaps we can get it addressed so that others won’t have the same problem.

dariuss · September 25, 2023, 1:48pm

Hey @ajs6f,

I have created an account just to say thank you for your findings. I have managed to run a POC’est of all POCs JH in Yarn after bashing a head in the wall for a week until I found this thread and your contribution in it.

However, being not a progammer by nature I wish I understood what you meant by saying:

In YarnSpawner’s spawner.py I overrode the default value for JUPYTERHUB_OAUTH_ACCESS_SCOPES as follows

I have only managed to patch JupyterHub's spawner.py directly. Is there an easy way to bring this patch out of the main JupyterHub's spawner.py into a YarnSpawner’s spawner.py file? I would like to leave JupyterHub's spawner.py file vanilla.

Thanks!

ajs6f · September 26, 2023, 6:50pm

Hi @dariuss, I’m so glad you were able to make progress! This is clearly an unmaintained section of the codebase and it seems we are largely on our own wrt to the core team. I couldn’t have gotten anywhere myself but for help from @mahendrapaipuri, so much thanks to them.

The alteration I made to YarnSpawner’s spawner.py looks like:

    @default("oauth_access_scopes")
    def _default_access_scopes(self):
        self.log.debug("Now using YarnSpawner oauth_access_scopes override")
        return [
            f'"access:servers!server={self.user.name}/{self.name}"',
            f'"access:servers!user={self.user.name}"',
        ]

and I put it right at the top of the file for convenience. There is probably a more readable place.

Let me know if that works for you: it was the final step for me in getting a POC to work. If you have time, please do comment on the relevant issue (see above) and perhaps we can get some attention and get merged one of the various fixes that have already been sent as PRs.

dariuss · October 3, 2023, 1:38pm

Hi @ajs6f, thanks for your reply. I am still struggling to understand how have you managed to get it working inside Yarnspawner's spawner.py file? I have bluntly tried to paste your code at the top of the file, and it failed, with identation errors:

      File "/opt/miniconda/envs/py310_github/lib/python3.10/site-packages/yarnspawner/spawner.py", line 1
        @default("oauth_access_scopes")
    IndentationError: unexpected indent

I am not sure if this is the correct way. Would you mind sharing the whole modified files please? Thanks!

ajs6f · October 10, 2023, 1:45pm

I can and will later today, but if you are not able to independently correct that miscopy error, you may face a great deal of trouble supporting Jupyter. It is written in Python and Python is whitespace-sensitive.

ajs6f · October 16, 2023, 6:26pm

Hello @dariuss, I’m sorry for the delay, but below you will find the whole of my Yarnspawner spawner.py file. I would emphasize again that if you cannot correct indentation errors on your own, you are not likely to have a good time supporting JupyterHub, but good luck in any case!

import skein
from jupyterhub.spawner import Spawner
from jupyterhub.traitlets import Command, ByteSpecification
from traitlets import Unicode, Dict, Integer, default
from tornado import gen


_STOPPED_STATES = {'FAILED', 'KILLED', 'FINISHED'}


class YarnSpawner(Spawner):
    """A spawner for starting singleuser instances in a YARN container."""

    @default("oauth_access_scopes")
    def _default_access_scopes(self):
        self.log.debug("Now using YarnSpawner oauth_access_scopes override")
        return [
            f'"access:servers!server={self.user.name}/{self.name}"',
            f'"access:servers!user={self.user.name}"',
        ]

    start_timeout = Integer(
        300,
        help="Timeout (in seconds) before giving up on starting of singleuser server.",
        config=True
    )

    ip = Unicode(
        "0.0.0.0",
        help="The IP address (or hostname) the singleuser server should listen on.",
        config=True
    )

    principal = Unicode(
        None,
        help='Kerberos principal for JupyterHub user',
        allow_none=True,
        config=True,
    )

    keytab = Unicode(
        None,
        help='Path to kerberos keytab for JupyterHub user',
        allow_none=True,
        config=True,
    )

    queue = Unicode(
        'default',
        help='The YARN queue to submit applications under',
        config=True,
    )

    localize_files = Dict(
        help="""
        Extra files to distribute to the singleuser server container.

        This is a mapping from ``local-name`` to ``resource``. Resource paths
        can be local, or in HDFS (prefix with ``hdfs://...`` if so). If an
        archive (``.tar.gz`` or ``.zip``), the resource will be unarchived as
        directory ``local-name``. For finer control, resources can also be
        specified as ``skein.File`` objects, or their ``dict`` equivalents.

        This can be used to distribute conda/virtual environments by
        configuring the following:

        .. code::

            c.YarnSpawner.localize_files = {
                'environment': {
                    'source': 'hdfs:///path/to/archived/environment.tar.gz',
                    'visibility': 'public'
                }
            }
            c.YarnSpawner.prologue = 'source environment/bin/activate'

        These archives are usually created using either ``conda-pack`` or
        ``venv-pack``. For more information on distributing files, see
        https://jcrist.github.io/skein/distributing-files.html.
        """,
        config=True,
    )

    prologue = Unicode(
        '',
        help='Script to run before singleuser server starts.',
        config=True,
    )

    cmd = Command(
        ['python -m yarnspawner.singleuser'],
        allow_none=True,
        help='The command used for starting the singleuser server.',
        config=True
    )

    mem_limit = ByteSpecification(
        '2 G',
        help="""
        Maximum number of bytes a singleuser notebook server is allowed to
        use. Allows the following suffixes:

        - K -> Kibibytes
        - M -> Mebibytes
        - G -> Gibibytes
        - T -> Tebibytes
        """,
        config=True)

    cpu_limit = Integer(
        1,
        min=1,
        help="""
        Maximum number of cpu-cores a singleuser notebook server is allowed to
        use. Unlike other spawners, this must be an integer amount >= 1.
        """,
        config=True)

    epilogue = Unicode(
        '',
        help='Script to run after singleuser server ends.',
        config=True,
    )

    script_template = Unicode(
        ("{prologue}\n"
         "{singleuser_command}\n"
         "{epilogue}"),
        help="""
        Template for application script.

        Filled in by calling ``script_template.format(**variables)``. Variables
        include the following attributes of this class:

        - prologue
        - singleuser_command
        - epilogue
        """,
        config=True,
    )

    # A cache of clients by (principal, keytab). In most cases this will only
    # be a single client. These should persist for the lifetime of jupyterhub.
    clients = {}

    async def _get_client(self):
        key = (self.principal, self.keytab)
        client = type(self).clients.get(key)
        if client is None:
            kwargs = dict(principal=self.principal,
                          keytab=self.keytab,
                          security=skein.Security.new_credentials())
            client = await gen.IOLoop.current().run_in_executor(
                None, lambda: skein.Client(**kwargs)
            )
            type(self).clients[key] = client
        return client

    @property
    def singleuser_command(self):
        """The full command (with args) to launch a singleuser server"""
        return ' '.join(self.cmd + self.get_args())

    def _build_specification(self):
        script = self.script_template.format(
            prologue=self.prologue,
            singleuser_command=self.singleuser_command,
            epilogue=self.epilogue
        )

        resources = skein.Resources(
            memory='%d b' % self.mem_limit,
            vcores=self.cpu_limit
        )

        security = skein.Security.new_credentials()

        # Support dicts as well as File objects
        files = {k: skein.File.from_dict(v) if isinstance(v, dict) else v
                 for k, v in self.localize_files.items()}

        master = skein.Master(
            resources=resources,
            files=files,
            env=self.get_env(),
            script=script,
            security=security
        )

        return skein.ApplicationSpec(
            name='jupyterhub',
            queue=self.queue,
            user=self.user.name,
            master=master
        )

    def load_state(self, state):
        super().load_state(state)
        self.app_id = state.get('app_id', '')

    def get_state(self):
        state = super().get_state()
        if self.app_id:
            state['app_id'] = self.app_id
        return state

    def clear_state(self):
        super().clear_state()
        self.app_id = ''

    async def start(self):
        loop = gen.IOLoop.current()

        spec = self._build_specification()

        client = await self._get_client()
        # Set app_id == 'PENDING' to signal that we're starting
        self.app_id = 'PENDING'
        try:
            self.app_id = app_id = await loop.run_in_executor(None, client.submit, spec)
        except Exception as exc:
            # We errored, no longer pending
            self.app_id = ''
            self.log.error(
                "Failed to submit application for user %s. Original exception:",
                self.user.name,
                exc_info=exc
            )
            raise

        # Wait for application to start
        while True:
            report = await loop.run_in_executor(
                None, client.application_report, app_id
            )
            state = str(report.state)
            if state in _STOPPED_STATES:
                raise Exception("Application %s failed to start, check "
                                "application logs for more information"
                                % app_id)
            elif state == 'RUNNING':
                self.current_ip = report.host
                break
            else:
                await gen.sleep(0.5)

        # Wait for port to be set
        while getattr(self, 'current_port', 0) == 0:
            await gen.sleep(0.5)

            report = await loop.run_in_executor(
                None, client.application_report, app_id
            )
            if str(report.state) in _STOPPED_STATES:
                raise Exception("Application %s failed to start, check "
                                "application logs for more information"
                                % app_id)

        return self.current_ip, self.current_port

    async def poll(self):
        if self.app_id == '':
            return 0
        elif self.app_id == 'PENDING':
            return None

        client = await self._get_client()
        report = await gen.IOLoop.current().run_in_executor(
            None, client.application_report, self.app_id
        )
        status = str(report.final_status)
        if status in {'SUCCEEDED', 'KILLED'}:
            return 0
        elif status == 'FAILED':
            return 1
        else:
            return None

    async def stop(self, now=False):
        if self.app_id == 'PENDING':
            # The application is in the process of being submitted. Wait for a
            # reasonable amount of time until we have an application id
            for i in range(20):
                if self.app_id != 'PENDING':
                    break
                await gen.sleep(0.1)
            else:
                self.log.warn("Application has been PENDING for an "
                              "unreasonable amount of time, there's likely "
                              "something wrong")

        # Application not submitted, or submission errored out, nothing to do.
        if self.app_id == '':
            return

        client = await self._get_client()
        await gen.IOLoop.current().run_in_executor(
            None, client.kill_application, self.app_id
        )

brezzsent · January 11, 2024, 1:37pm

I will try to replicate this behaviour and if I can, I will post my environment here..
.

Topic		Replies	Views
Switch to Hub/Lab4: Jupyterhub and spawner Jupyterlab container can't communicate properly: "No user identified" JupyterHub	5	641	April 22, 2024
Spawn failed: Server at http://127.0.0.1:42783/user/ccadmin/api didn't respond in 30 seconds JupyterHub jupyterlab , jupyterhub , how-to , help-wanted	5	3064	July 10, 2024
Missing or invalid credentials issue with Jupyterhub>4.0.1 Zero to JupyterHub on Kubernetes community , jupyterlab , jupyterhub , help-wanted	10	1423	February 5, 2024
Redirect Loops and failing Jupyter Notebook Authentication JupyterHub jupyterhub , how-to , help-wanted , notebook	32	5733	October 20, 2023
Spawn failed: Server at http://127.0.0.1:39145/user/sramineni/ didn't respond in 300 seconds JupyterHub community , jupyterhub , how-to , help-wanted	3	4842	December 30, 2021

Notebook spawned in Yarn but killed after timeout

Related topics