SEAB-6488: Modify SourceFile to flag errors #5934

svonworl · 2024-07-10T16:29:41Z

This PR modifies SourceFile so that we can conclusively differentiate a successfully downloaded file from one which failed to meet our requirements (for example, a file that could not be stored because it was binary.) See this PR for some motivation, search for "in a followup PR": #5893

Specifically, this PR:

adds a state property to SourceFile, which describes the representation of the SourceFile, and currently has two values:

COMPLETE: the file was successfully downloaded and the SourceFile's content represents the file body.
NOT_STORED: the SourceFile's content contains a message, rather than the actual file body, that explains why the body isn't stored. For example, "Dockstore does not store binary files".
STUB: the SourceFile is a stub and has null content.

changes the "limited" SourceFile builder to set the new properties appropriately.
changes the SourceFile copy/duplicate helper methods to copy the new properties.

Later, we could add other values to the new enum. For example, if we wanted to try to handle big files by storing a smaller alternate representation of the content (instead of totally jettisoning it), we could have new state values like:

SUMMARY: the content represents a summarized version of the file content.
HEAD: the content represents the leading portion of the file content.

The above might be useful to support the registration of AI models, for example, which have files containing gigabytes of weights.

The PR also contains some db migration fixups for the existing sourcefile values.

There will be a companion UI PR, which, at a minimum, will tweak the UI so it builds and change the notebook preview code to not attempt to render not-COMPLETE content as a notebook.

Review Instructions

Register an entry that contains files that are binary and/or too large, and confirm that the resulting sourcefiles have the correct "state" values, both in the db and in the API responses.

Issue
https://ucsc-cgl.atlassian.net/browse/SEAB-6488

Security and Privacy

If there are any concerns that require extra attention from the security team, highlight them here and check the box when complete.

Security and Privacy assessed

e.g. Does this change...

Any user data we collect, or data location?
Access control, authentication or authorization?
Encryption features?

Please make sure that you've checked the following before submitting your pull request. Thanks!

Check that you pass the basic style checks and unit tests by running mvn clean install
Ensure that the PR targets the correct branch. Check the milestone or fix version of the ticket.
Follow the existing JPA patterns for queries, using named parameters, to avoid SQL injection
If you are changing dependencies, check the Snyk status check or the dashboard to ensure you are not introducing new high/critical vulnerabilities
Assume that inputs to the API can be malicious, and sanitize and/or check for Denial of Service type values, e.g., massive sizes
Do not serve user-uploaded binary images through the Dockstore API
Ensure that endpoints that only allow privileged access enforce that with the @RolesAllowed annotation
Do not create cookies, although this may change in the future
If this PR is for a user-facing feature, create and link a documentation ticket for this feature (usually in the same milestone as the linked issue). Style points if you create a documentation PR directly and link that instead.

codecov · 2024-07-10T16:30:08Z

Codecov Report

Attention: Patch coverage is 17.24138% with 24 lines in your changes missing coverage. Please review.

Project coverage is 74.21%. Comparing base (7022dd4) to head (03098f5).

Files	Patch %	Lines
...tore/webservice/core/LimitedSourceFileBuilder.java	0.00%	19 Missing ⚠️
.../java/io/dockstore/webservice/core/SourceFile.java	50.00%	5 Missing ⚠️

Additional details and impacted files

@@              Coverage Diff              @@
##             develop    #5934      +/-   ##
=============================================
- Coverage      74.27%   74.21%   -0.06%     
- Complexity      5374     5376       +2     
=============================================
  Files            376      376              
  Lines          19462    19484      +22     
  Branches        2032     2032              
=============================================
+ Hits           14455    14460       +5     
- Misses          4033     4050      +17     
  Partials         974      974

Flag	Coverage Δ
bitbuckettests	`26.89% <17.24%> (-0.02%)`	⬇️
hoverflytests	`27.37% <17.24%> (-0.01%)`	⬇️
integrationtests	`56.78% <17.24%> (-0.04%)`	⬇️
languageparsingtests	`11.07% <6.89%> (-0.01%)`	⬇️
localstacktests	`21.59% <17.24%> (+<0.01%)`	⬆️
toolintegrationtests	`30.29% <17.24%> (-0.01%)`	⬇️
unit-tests_and_non-confidential-tests	`25.92% <13.79%> (-0.01%)`	⬇️
workflowintegrationtests	`38.20% <17.24%> (-0.02%)`	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

denis-yuen

May pre-date this PR, but given how core this is to Dockstore, the 0% patch test coverage on LimitedSourceFileBuilder is worth a look. Wonder if there's something going on with unit tests vs integration tests

Some minor comments/questions

denis-yuen · 2024-07-10T18:27:53Z

dockstore-webservice/src/main/java/io/dockstore/webservice/core/LimitedSourceFileBuilder.java

+                    // https://www.postgresql.org/docs/current/datatype-character.html#DATATYPE-CHARACTER
+                    // https://www.ascii-code.com/character/%E2%90%80
+                    limitedContent = "Dockstore does not store binary files";
+                    limitedForm = SourceFile.FormEnum.ERROR;


Not exactly an error in this case since it is working as intended.
Maybe "incomplete" or "placeholder"?

Not exactly an error in this case since it is working as intended. Maybe "incomplete" or "placeholder"?

I agree that this is not an error, it's the design, and I think it should be distinguishable from an actual error. The conversation is moving and some of this has been addressed the comments and in your PR description, so this is probably repetitive, but...

I also think it's worth distinguishing the cases where we don't have have the data because it's binary vs. the case where the content is too large (and your TRUNCATED proposal addresses that).

denis-yuen · 2024-07-10T18:28:26Z

dockstore-webservice/src/main/java/io/dockstore/webservice/core/LimitedSourceFileBuilder.java

-                // https://www.ascii-code.com/character/%E2%90%80
-                if (Bytes.indexOf(bytes, Byte.decode("0x00")) != -1) {
-                    limitedContent = "Dockstore does not store binary files";
+                    limitedForm = SourceFile.FormEnum.ERROR;


Borderline (see previous comment), but seems more okay

To elaborate, I'd almost imagine that an error should really be something unexpected like a 500 on GitHub's side and we'd have states for large files or binary files rather than merging them into errors in-case those two states are useful someday.
i.e. maybe we'd link to binaries or large files on github?

I guess this is similar to your description

Later, we could add other values to the "form" enum. For example, if we wanted to try to handle big files by storing some portion of the content (instead of totally jettisoning it), we could have values like:

we'd have states for large files or binary files

IMHO, the following two things are different concepts:

whether a file is binary (or not).

how we choose to represent the file's content on our end.

I'd recommend they are stored in separate fields (one for isBinary, another that describes the representation we've chosen for the content (which could be "none")).

Makes sense, I think as long as they're not merged into the error state, being even more descriptive is totally cool

denis-yuen · 2024-07-10T18:30:30Z

dockstore-webservice/src/main/java/io/dockstore/webservice/core/SourceFile.java

@@ -371,4 +385,9 @@ public static class VerificationInformation {

        // There is no dbupdatedate because it doesn't work with @Embeddable nor @ElementCollection
    }
+
+    public enum FormEnum {


Should probably code comment the enum and the enum values.
Don't feel strongly about this, but Form doesn't really convey much to me aside from Google Forms, web forms, etc.
Perhaps "status" or "state"?

Yeah, this one is tough. I'm not super-hot on "form", either, but it feels more apt than most of the alternatives.
"Status" and "state" are both vague, and suggest the possibility future change. "Mode" is a previously-loaded term when it comes to files. Maybe "representation", which could have values COMPLETE and NONE?

I like representation better than form at least

Not wild about Form either, although I can see why you chose it. I don't think I like Representation either -- I may be biased against it from its meaning in REST.

SyncState or SyncStatus? But that's not really applicable to hosted entries. ContentState?

coverbeck · 2024-07-10T22:25:40Z

dockstore-webservice/src/main/java/io/dockstore/webservice/core/LimitedSourceFileBuilder.java

+                    // https://www.postgresql.org/docs/current/datatype-character.html#DATATYPE-CHARACTER
+                    // https://www.ascii-code.com/character/%E2%90%80
+                    limitedContent = "Dockstore does not store binary files";
+                    limitedForm = SourceFile.FormEnum.ERROR;


Not exactly an error in this case since it is working as intended. Maybe "incomplete" or "placeholder"?

I agree that this is not an error, it's the design, and I think it should be distinguishable from an actual error. The conversation is moving and some of this has been addressed the comments and in your PR description, so this is probably repetitive, but...

I also think it's worth distinguishing the cases where we don't have have the data because it's binary vs. the case where the content is too large (and your TRUNCATED proposal addresses that).

coverbeck · 2024-07-10T22:28:39Z

dockstore-webservice/src/main/resources/migrations.1.16.0.xml

+        </addColumn>
+        <sql dbms="postgresql">
+            <comment>Set appropriate content and form for sourcefiles with null content</comment>
+            UPDATE sourcefile SET form = 'ERROR', content = 'Dockstore could not retrieve this file' WHERE content IS NULL;


Do we know that this is always the reason why the content is null? Just checking... And there are no null content source files for hosted entries?

Oh, upon further investigation, turns out that we do intentionally create SourceFile stubs, in EntryVersionHelper at least. I've added a STUB state and changed the migrations to define all existing null-content SourceFiles as stubs. The webservice might not have intentionally created all of them as stubs, but that's effectively what they are now.

Editorial: the "stub" concept introduces another state into our system, which makes it more difficult to reason about. If we can simplify our system by someday eliminating stubs, that probably would be good,

coverbeck · 2024-07-10T22:34:54Z

dockstore-webservice/src/main/java/io/dockstore/webservice/core/SourceFile.java

@@ -371,4 +385,9 @@ public static class VerificationInformation {

        // There is no dbupdatedate because it doesn't work with @Embeddable nor @ElementCollection
    }
+
+    public enum FormEnum {


Not wild about Form either, although I can see why you chose it. I don't think I like Representation either -- I may be biased against it from its meaning in REST.

SyncState or SyncStatus? But that's not really applicable to hosted entries. ContentState?

denis-yuen

Looking better, questions

dockstore-webservice/src/main/java/io/dockstore/webservice/core/SourceFile.java

denis-yuen · 2024-07-15T18:11:49Z

dockstore-webservice/src/main/java/io/dockstore/webservice/core/SourceFile.java

+        STUB
+    }
+
+    public enum Reason {


Open to considering the two enum approach. The weird part in my eyes is we would need constraints or a validator (?) to enforce illegal combinations. Like a complete + binary error for example.

What is the argument against one enum with more states?

What is the argument against one enum with more states?

Each enum contains a different type of information: State describes how the SourceFile is stored, and Reason describes why we stored the SourceFile that way. When the values are separate, the code that uses them is simpler, and needs less modification when we add values, we don't need as many ifs. The UI can look at State to figure out how to display the SourceFile, and other code can examine Reason to generate statistics, etc.

What's the advantage to "one enum" (that encodes both values) besides eliminating the illegal combos?

It would be easy to add a constraint that made sure "reason" was null for the COMPLETE and STUB states.

I'm on the fence on this one. Some thoughts:

Would you also need to add a constraint that if the state is MESSAGE, then reason has to be set?

And if you add more states, you'd have to constrain those relationships too. Could it start to get a little complex?

On the other hand, if you have one enum, you could end up with a lot of values.

Digression on other possible states -- truncated, which you proposed. Not sure what else, maybe quarantined, lol -- we find or are informed about a file that might be have malware or PII?

Both the "one" and "two" enum solutions seem to have their pros and cons. How's about, in the interest of 10000 forward progress, we go with the "two enum" solution for now. Maybe its pros will be more apparent when in use, and if we don't like it, we can easily change to the other later. Agile!

That works for me.

I should also note that I'm personally a proponent of the "one enum" solution with values that only encode the representation, with the "reason" being recorded as an English message, stored in the content field (for now). Clean, simple, no partial 2d grid of enum values to have to keep consistent. We wouldn't have access to the "reason" as an abstract enum value, but if we wanted to know how often it happens, we could log something...

I separated the Reason field into a separate enum because a conversation with a key team member implied that they might insist upon it...

Not wedded to the one enum approach, but thanks for explaining.

That said, like in https://github.com/dockstore/dockstore/blob/develop/dockstore-common/src/main/java/io/dockstore/common/DescriptorLanguage.java#L45 we can put some smarts in the enum, I think that can deal with some of the concerns about having too many states.

Regardless of what approach we end up with, I would prefer constraints or whatever in this PR to ensure we don't forget and that we never have to deal with inconsistent data.

coverbeck

As stated in-line, on the fence on 1 vs 2 enums. Agreed with comments on the enums.

coverbeck · 2024-07-16T17:26:14Z

dockstore-webservice/src/main/java/io/dockstore/webservice/core/SourceFile.java

+        STUB
+    }
+
+    public enum Reason {


I'm on the fence on this one. Some thoughts:

Would you also need to add a constraint that if the state is MESSAGE, then reason has to be set?

And if you add more states, you'd have to constrain those relationships too. Could it start to get a little complex?

On the other hand, if you have one enum, you could end up with a lot of values.

Digression on other possible states -- truncated, which you proposed. Not sure what else, maybe quarantined, lol -- we find or are informed about a file that might be have malware or PII?

denis-yuen

Don't care too much about the enum approach, do prefer constraints or what not up front and not as a follow-up.

svonworl · 2024-07-17T01:54:52Z

Ok, I reverted to a simplified version which is similar to the original implementation, with a single enum that represents the state, some naming improvements, an additional STUB enum value, and some logging so we can determine how often sourcefiles are limited in the various ways. The dual enums are history, and discussions about their logical consistency and how to maintain it are now moot. w00t!

sonarqubecloud · 2024-07-17T02:17:57Z

Quality Gate failed

Failed conditions
13.5% Coverage on New Code (required ≥ 80%)

See analysis details on SonarCloud

denis-yuen · 2024-07-18T14:54:28Z

dockstore-webservice/src/main/java/io/dockstore/webservice/core/LimitedSourceFileBuilder.java

+                    // Thus, Dockstore cannot currently store binary files.
+                    // https://www.postgresql.org/docs/current/datatype-character.html#DATATYPE-CHARACTER
+                    // https://www.ascii-code.com/character/%E2%90%80
+                    file.setContent("Dockstore does not store binary files");


If I understand correctly, if we wanted to get a list of binary files or truncated files we would need to do a SQL query with this string, so should at least be a constant.
A hex/reason code or something quick to look up may be helpful too if we end up with a bunch of these.

e.g. "R01 - Dockstore does not store binary files", "R02 - Dockstore does not store files of this type ", etc.

svonworl added 7 commits July 9, 2024 14:11

initial revision

9711f98

add sourcefile table fixups to migration

d6c23a8

modify unit test

3a076be

little tweak

c5b6072

minor comment change

34694ea

add default for sourcefile form

40723fd

jpa tweax

1342d0a

svonworl self-assigned this Jul 10, 2024

svonworl requested review from denis-yuen, kathy-t, coverbeck, david4096 and hyunnaye July 10, 2024 16:57

denis-yuen reviewed Jul 10, 2024

View reviewed changes

coverbeck reviewed Jul 10, 2024

View reviewed changes

svonworl added 2 commits July 11, 2024 16:37

change new props to "state" and "reason"

0495266

fix migration name

f57b3d7

svonworl requested review from coverbeck and denis-yuen July 12, 2024 17:54

svonworl added 2 commits July 12, 2024 10:54

add STUB state

0434c38

fix test

06feae7

denis-yuen reviewed Jul 15, 2024

View reviewed changes

coverbeck approved these changes Jul 16, 2024

View reviewed changes

denis-yuen self-requested a review July 16, 2024 20:40

denis-yuen reviewed Jul 16, 2024

View reviewed changes

svonworl added 4 commits July 16, 2024 16:58

remove Reason property

e0e272a

merge develop

e34f2af

rename "MESSAGE" value to "NOT_STORED", remove residual "reason" code

e5839a2

fix pom

0b9f76b

add enum value comments

03098f5

svonworl requested a review from denis-yuen July 17, 2024 01:54

kathy-t approved these changes Jul 17, 2024

View reviewed changes

denis-yuen approved these changes Jul 18, 2024

View reviewed changes

svonworl merged commit 3c672b6 into develop Jul 18, 2024
17 of 19 checks passed

svonworl deleted the feature/seab-6488/modify-sourcefile-to-flag-errors branch July 18, 2024 18:56

svonworl mentioned this pull request Jul 19, 2024

SEAB-6488: Adjust UI code for new "state" SourceFile property dockstore/dockstore-ui2#1995

Merged

11 tasks

SEAB-6488: Modify SourceFile to flag errors #5934

SEAB-6488: Modify SourceFile to flag errors #5934

Uh oh!

Conversation

Uh oh!

Uh oh!

Uh oh!

Codecov Report

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Quality Gate failed

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!