restrict python submission

[ChenyuLInx]

resolves #5596

Description

Only allow submit_python_job being used in statement macro within materializition logic.
TODO

• make adapter.submit_python_job in dbt snowflake not available in jinja

Checklist

• I have read the contributing guide and understand what's expected of me
• I have signed the CLA
• I have run this code in development and it appears to resolve the stated issue
• This PR includes tests, or tests are not required/relevant for this PR
• I have opened an issue to add/update docs, or docs changes are not required/relevant for this PR
• I have run changie new to create a changelog entry

[github-actions]

Thank you for your pull request! We could not find a changelog entry for this change. For details on how to document a change, see the contributing guide.

[ChenyuLInx]

@gshank This way user actually still can use this submit_python_job function via {{special_function(model, python_code)}} in macro, is there a way to actually have this in context but not allow jinja to access it?

Other ways I have been trying to do is save it somewhere else individually, but haven't found a good place, the MacroGenerater object for materialization macro and statement macro are actually two different objects, with only context being passed from one to another(node, stack are both None for materialization macro)

[ChenyuLInx]

Also tag @jtcohen6 to see if you have any thoughts

[ChenyuLInx]

@jtcohen6 with this user can't actually access submit_python_job in custom statement macro. Any concern with that?

[jtcohen6]

@ChenyuLInx I'm aligned. I'm not familiar with any reason or legitimate use case for an end user to override the statement macro — this should really be treated as internal to dbt-core.

If we want to loosen this restriction in the future, we can. (E.g. by changing this conditional to check for any macro named statement, rather than the unique_id containing project name dbt.)

[ChenyuLInx]

Don't have a test since we can't run python model in core now. but manually checked locally and made sure materialization-> statement is the only place that you can properly access python submit job function. You can also access it in materialization root level with some strange and clearly not good looking syntax. And not in all other places.

[ChenyuLInx]

Also skipping changelog since I don't think we want to tell everyone about it

[jtcohen6]

just a typo

Suggested change

	def _is_statement_under_materailization(self) -> bool:
	def _is_statement_under_materialization(self) -> bool:

and where it's called below

[ChenyuLInx]

Fixed

[jtcohen6]

Just to make sure I understand, the idea here is: submit_python_job can only be called from within a statement, within a materialization (macro containing the name materialization). Otherwise, the user should see an exception like:

submit_python_job is not intended to be called here.

I haven't been able to see the desired behavior when running locally. I tried checking out the branch, and then defining a model like:

-- models/my_model.sql
{% set compiled_code %}

def main(session):
    pass

{% endset %}

{% set result = adapter.submit_python_job(model, compiled_code) %}

-- actual view definition
select '{{ result }}' as result

This seems to actually work — it doesn't get blocked

[jtcohen6]

@ChenyuLInx I'm aligned. I'm not familiar with any reason or legitimate use case for an end user to override the statement macro — this should really be treated as internal to dbt-core.

If we want to loosen this restriction in the future, we can. (E.g. by changing this conditional to check for any macro named statement, rather than the unique_id containing project name dbt.)

[jtcohen6]

Will this include the name of the macro / node calling the unsupported function?

[ChenyuLInx]

Not really, but I can add it!

[ChenyuLInx]

Added for usage in models, for hooks, operation, test we can't really tell(they use MacroGenerator) but we don't get info about which function actually calls it unless we do some really aggressive tracking. So I just added a generic message indication it is in one of those places. Let me know if we want to be very specific.
I also included the full name adapter.submit_python_job in the message so shouldn't be hard to do a search

[jtcohen6]

Really solid UX improvement - thank you!

[ChenyuLInx]

@jtcohen6 fixed the issue you mentioned by also remove that function for compilation time.

[gshank]

I'm kind of concerned with this approach. I think doing this in the MacroGenerator is almost certainly the wrong place. That code would execute for every single macro that's built. The adapter that's linked in the contexts comes from the global adapter? Why doesn't the last created MacroGenerator determine which monkeypatched method is active?

I think the MacroNamespaceBuilder is a more likely place to put this -- you can modify the context before it's used to create the MacroGenerator object. But I would prefer finding some way to just pass along information on the 'submit_python_job' call that would allow us to determine the validity in the python code. What is it that we need to know? The call stack?

[ChenyuLInx]

@gshank the MacroNamespaceBuilder sounds promising. One question, for the materialization macro does that also go through MacroNamespaceBuilder somehow? I feel like we need to somehow pass in the call stack of the macros if we want to check it at that function, not sure how that's going to look like. Scheduled a meeting tomorrow to talk this live

[jtcohen6]

Really appreciate you taking a look here @gshank! If we're going to do this, it ought to be a surgical change in the right spot.

The high-level goal here is to restrict adapter.submit_python_job to only be callable within a statement of a materialization. We want to prevent users from firing up Python jobs willy-nilly (in post-hooks, in tests, wherever). We may want to support those as patterns in the future. So we're trying to put guardrails in place for now, with the possibility of removing them later, without adding a ton of cruft to the codebase in the process.

[gshank]

I wonder what the call stack looks like in adapter.submit_python_job. Could we recognize that it comes from a materialization?

Or if that doesn't work, maybe we could make a special context with a 'submit_python_job' method, with two flavors, the error-raising function and the "call adapter.submit_python_job' version, and limit the context with the working 'submit_python_job' to materialization macros. Then we could check the call stack in adapter.submit_python_job and make sure it's only coming from that method.

[gshank]

So maybe that second suggestion wouldn't work. It looks like the materialization macro is the wrapping thing that's called to execute models, so it's passed the model_context used by everything else. It wouldn't be very clean to have two contexts at that point...

[ChenyuLInx]

@gshank the depth is being kept as 0 because of the comment in I updated

[gshank]

This looks so much cleaner!

[jtcohen6]

I agree - looks much cleaner!

[jtcohen6]

QQ: Will adapter.submit_python_job still be callable (as a classmethod) from within the Jinja context? Would we need to decorate it as "unavailable"?

[ChenyuLInx]

It is no longer available from within Jinja context, we make functions available using @available decorator, and I removed that decorator for submit_python_job function. Also have a snowflake PR opened for it(given that snowflake actually submit things slightly different). Gonna also sync with the dbt-databricks maintainer to make sure they don't add that @available decorator anymore

[ChenyuLInx]

https://github.com/dbt-labs/dbt-core/pull/5822/files#diff-aa1e9e602a0f1e2930b465b30a35a28778fbe131da4fbf2c4e88dd52ca44f140L1223