Add endpoint for uploading docker image

[evanyeyeye]

Description

• Added endpoint for uploading a docker image tar created using docker save.
• The maximum file upload size was increased from 250 MB to 10 GB, which may be a concern for assignment uploads.
• Updated tango client script to utilize the new endpoint.
• Corresponding Autolab PR.

Testing

• Used the updated clients/tango-cli.py to upload and build a new docker image.
• Verified that bad file submissions are error reported properly, and do not crash Tango.

[evanyeyeye]

This PR is updated and ready for review.

[damianhxy]

@CodeRabbit review

[damianhxy]

Successfully used tango-cli to upload an image. LGTM

[cg2v]

At the very least, this operation should verify that it's using the localDocker backend, since it can only possibly work with that backend.

[coderabbitai]

Walkthrough

Walkthrough

The recent updates involve enhancing a system with Docker capabilities, including building Docker images and handling larger input files. A new .gitignore entry ensures temporary Docker files are excluded. The tango-cli script now supports a build command, and the server-side code has been updated to handle build requests and manage Docker operations. Additionally, the Python environment has been adjusted with package version changes, including a downgrade of the requests package and the addition of the docker package.

Changes

File(s)	Summary
.gitignore	Excluded dockerTmp/* to prevent tracking temporary Docker files.
clients/.../tango-cli.py	Added --build argument and tango_build function for Docker image building.
config.template.py	Increased MAX_INPUT_FILE_SIZE from 250MB to 10GB.
requirements.txt	Downgraded requests to 2.28.0 and added docker 5.0.3.
restful_tango/server.py	Added BuildHandler class for handling Docker build requests.
restful_tango/tangoREST.py (3 entries)	Imported docker module, added Docker-related status codes, and a new build method for image building.

---

Tips

Chat with CodeRabbit Bot (@coderabbitai)

• If you reply to a review comment from CodeRabbit, the bot will automatically respond.
• To engage with CodeRabbit bot directly around the specific lines of code in the PR, mention @coderabbitai in your review comment
• Note: Review comments are made on code diffs or files, not on the PR overview.
• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai help to get help.

Note: For conversation with the bot, please use the review comments on code diffs or files.

CodeRabbit Configration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• The JSON schema for the configuration file is available here.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/coderabbit-overrides.v2.json

[coderabbitai]

The increase in MAX_INPUT_FILE_SIZE to 10GB is a significant change that could impact system resources. Ensure that the system has been tested to handle such large uploads without running into issues like disk space or memory constraints. Additionally, consider the potential impact on dependents and whether the MAX_OUTPUT_FILE_SIZE should also be adjusted to accommodate larger outputs.

[coderabbitai]

The hardcoded return value "test" in the build method is likely a mistake and should be replaced with an appropriate status object or message.

-            return "test"
+            return self.status.create(-1, "Docker backend not in use")

---

Committable suggestion

❗ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	else:
	self.log.info("Key not recognized: %s" % key)
	return self.status.wrong_key
	def build(self, key, tempfile):
	self.log.debug("Received build request(%s)" % (key))
	if Config.VMMS_NAME != "localDocker":
	self.log.error("Not using Docker backend, so cannot build image")
	os.unlink(tempfile)
	return "test"
	else:
	self.log.info("Key not recognized: %s" % key)
	return self.status.wrong_key
	def build(self, key, tempfile):
	self.log.debug("Received build request(%s)" % (key))
	if Config.VMMS_NAME != "localDocker":
	self.log.error("Not using Docker backend, so cannot build image")
	os.unlink(tempfile)
	return self.status.create(-1, "Docker backend not in use")

[coderabbitai]

Use a context manager to ensure the temporary file is properly closed.

-                imageTarStr = open(tempfile, "rb").read()
+                with open(tempfile, "rb") as file:
+                    imageTarStr = file.read()

---

Committable suggestion

❗ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	client = docker.from_env()
	imageTarStr = open(tempfile, "rb").read()
	client = docker.from_env()
	with open(tempfile, "rb") as file:
	imageTarStr = file.read()

[coderabbitai]

The key validation should occur before checking the VMMS_NAME to avoid unnecessary processing for invalid keys.

-        if Config.VMMS_NAME != "localDocker":
-            self.log.error("Not using Docker backend, so cannot build image")
-            os.unlink(tempfile)
-            return "test"
-        if self.validateKey(key):
+        if self.validateKey(key):
+            if Config.VMMS_NAME != "localDocker":
+                self.log.error("Not using Docker backend, so cannot build image")
+                os.unlink(tempfile)
+                return self.status.create(-1, "Docker backend not in use")

---

Committable suggestion

❗ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	if Config.VMMS_NAME != "localDocker":
	self.log.error("Not using Docker backend, so cannot build image")
	os.unlink(tempfile)
	return "test"
	if self.validateKey(key):
	if self.validateKey(key):
	if Config.VMMS_NAME != "localDocker":
	self.log.error("Not using Docker backend, so cannot build image")
	os.unlink(tempfile)
	return self.status.create(-1, "Docker backend not in use")

[coderabbitai]

Handle the case where no images are loaded from the tar file by checking the length of the images list and returning an appropriate status message if it is empty.

+                if not images:
+                    self.log.error("No images were loaded from the tar file")
+                    os.unlink(tempfile)
+                    return self.status.create(-1, "No images loaded from file")

---

Committable suggestion

❗ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change

	images = client.images.load(imageTarStr)
	id_list = ", ".join(image.short_id for image in images)
	images = client.images.load(imageTarStr)
	if not images:
	self.log.error("No images were loaded from the tar file")
	os.unlink(tempfile)
	return self.status.create(-1, "No images loaded from file")
	id_list = ", ".join(image.short_id for image in images)

[coderabbitai]

The BuildHandler class correctly implements the streaming of request bodies to a temporary file. However, there are a few points to consider:

• The prepare method creates a temporary directory dockerTmp without checking for permissions or handling potential exceptions that could occur during directory creation.
• The post method does not perform any cleanup of the temporary file after the build process, which could lead to storage issues if not handled elsewhere.
• There is no error handling for the build method call in the post method, which could lead to unhandled exceptions if the build process fails.

[coderabbitai]

The tempdir is hardcoded as dockerTmp. Consider making this a configurable value in the Config class to improve maintainability and flexibility.

[coderabbitai]

The data_received method does not update a hash or checksum for the received data. It might be beneficial to calculate a checksum to verify the integrity of the uploaded file.

[coderabbitai]

The key parameter in the post method is not sanitized or validated before being passed to the build method. Ensure that the key is properly validated to prevent potential security issues.

[coderabbitai]

The post method does not check the result of the tangoREST.build call before writing it to the response. Consider adding error handling to provide appropriate feedback to the client in case of a build failure.