Runner get data

[k82cn]

fix #364

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request significantly enhances the observability and debugging capabilities within flamepy by providing a dedicated utility to access the concrete input and output data of tasks. By abstracting away the underlying ObjectRef and serialization mechanisms, users can now easily retrieve and understand the actual values passed to and returned from their Runner tasks, which was previously challenging due to data being stored as pickled ObjectRefs in the cache. This change simplifies debugging, auditing, and general inspection of task execution.

Highlights

• New get_data Helper Function: Introduced a new get_data function in flamepy.runner to enable inspection of actual input and output data for executed Flame tasks. This function decodes ObjectRef instances, retrieves data from the cache, and resolves nested ObjectRefs.
• Structured Data Retrieval: The get_data function returns a structured dictionary, clearly separating task input (method, positional arguments, keyword arguments) from task output (result), and includes metadata such as the object_ref_key.
• Robust Error Handling: Custom RunnerError exception and ErrorType enum were added to provide specific and descriptive error messages for issues encountered during data decoding, cache retrieval, or format recognition.
• Comprehensive Test Coverage: Extensive end-to-end tests (test_get_data.py) have been added to validate the get_data function across a wide range of scenarios, including various argument types, nested data structures, ObjectRef resolution, and error conditions.
• Detailed Functional Specification: A new design document (FS.md) provides a thorough explanation of the motivation, API, architecture, implementation details, and use cases for the get_data feature, serving as comprehensive documentation.

Changelog

• docs/designs/RFE001-runner-get-data/FS.md
  • Added a new functional specification document detailing the get_data helper function.
• e2e/tests/test_get_data.py
  • Added comprehensive end-to-end tests for the get_data function, covering various input/output scenarios and error handling.
• sdk/python/src/flamepy/runner/init.py
  • Exported the new get_data function, RunnerError class, and ErrorType enum.
• sdk/python/src/flamepy/runner/helper.py
  • Added the core implementation for the get_data function, including RunnerError, ErrorType, and logic for ObjectRef decoding and resolution.

Activity

• A new functional specification document was added, outlining the design and implementation of the get_data feature.
• The core logic for the get_data function, including ObjectRef resolution and error handling, was implemented in a new helper.py file.
• The new get_data function and associated error types were exposed through the flamepy.runner module's __init__.py.
• A comprehensive suite of end-to-end tests was added to verify the functionality and robustness of the get_data feature.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a get_data helper function to inspect task inputs and outputs, which is a valuable addition for debugging and observability. However, the implementation contains a critical insecure deserialization vulnerability. The function decodes an ObjectRef from user-supplied bytes and uses it to fetch and unpickle data from a remote endpoint specified within that ObjectRef, allowing an attacker to trigger Remote Code Execution (RCE) by providing a malicious ObjectRef. It is highly recommended to validate remote endpoints against a trusted allow-list and avoid using pickle or cloudpickle for data that can be influenced by untrusted sources. Additionally, the review suggests improving tests for robustness, ensuring design documentation aligns with the implementation, and minor code cleanup.

[gemini-code-assist]

The get_data function and its recursive helper _resolve_value are vulnerable to insecure deserialization. The function takes raw bytes as input, decodes them into an ObjectRef (which contains a remote endpoint URL), and then retrieves and deserializes data from that endpoint using cloudpickle.loads (both directly on line 188 and indirectly via get_object on lines 176, 264, and 277). Since the remote endpoint is controlled by the input data, an attacker can provide a malicious ObjectRef pointing to a server they control. This server can then return a malicious pickle payload that executes arbitrary code when deserialized, leading to Remote Code Execution (RCE).

[gemini-code-assist]

The Raises section in the docstring is out of sync with the actual implementation. The code raises a custom RunnerError with specific ErrorType enums, not ValueError or TypeError. Please update the design document to reflect the implemented error handling strategy for consistency. The docstring in sdk/python/src/flamepy/runner/helper.py can be used as a reference.

[gemini-code-assist]

This test checks if an ObjectRef argument is resolved, but it's missing a final assertion to verify that the resolution actually occurred. The found_resolved flag is set but its value is never checked, which could lead to the test passing silently even if the feature is broken. Please add an assertion after the loop to confirm that found_resolved is True.

Suggested change

	# At minimum, verify we can retrieve input data without errors
	assert len(tasks) >= 3, f"Expected at least 3 tasks, got {len(tasks)}"
	assert found_resolved, "Did not find a task with a resolved ObjectRef argument."
	# At minimum, verify we can retrieve input data without errors
	assert len(tasks) >= 3, f"Expected at least 3 tasks, got {len(tasks)}"

[gemini-code-assist]

The assertion assert 3 in output_results_found or 30 in output_results_found or 300 in output_results_found is not strict enough. It will pass if only one of the tasks succeeded, potentially masking issues with the other tasks. To ensure all tasks are correctly processed, you should verify that all expected inputs and outputs were found.

Suggested change

	assert 3 in output_results_found or 30 in output_results_found or 300 in output_results_found
	expected_outputs = {3, 30, 300}
	assert expected_outputs.issubset(output_results_found), f"Missing outputs: {expected_outputs - output_results_found}"
	expected_inputs = {(1, 2), (10, 20), (100, 200)}
	assert expected_inputs.issubset(input_args_found), f"Missing inputs: {expected_inputs - input_args_found}"

[gemini-code-assist]

The test name test_get_data_nested_list_with_objectref and its docstring are misleading. The test implementation does not involve a nested list; instead, it re-tests a simple ObjectRef resolution scenario similar to test_get_data_task_input_objectref_resolved. Additionally, the assertion logic is weak as it only checks that the argument is not an ObjectRef without verifying its resolved value. Please either update the test to correctly test nested lists with ObjectRefs or remove it if it's redundant.

[gemini-code-assist]

The ErrorType.DATA_FORMAT_ERROR enum member is defined but it's not used anywhere in the get_data function. The data_type parameter in the RunnerError constructor is also unused. This appears to be dead code. If it's intended for future use, consider adding a comment to clarify. Otherwise, it should be removed to improve code clarity and maintainability.