[ExceptionHandling] Throw proper 400 errors instead of 500 for agent execute and MCP

[pyek-bot]

Description

Throws proper 400 errors for bad requests

1. Request - Illegal value in agent execution

POST /_plugins/_ml/agents/<ID>/_execute?async=true
{
  "parameters": {
    "question": "Respond with Hi",
    "is_async": random
  }
}

Response:

{
    "error": {
        "root_cause": [
            {
                "type": "null_pointer_exception",
                "reason": "Cannot invoke \"org.opensearch.ml.common.input.MLInput.setAlgorithm(org.opensearch.ml.common.FunctionName)\" because \"mlInput\" is null"
            }
        ],
        "type": "null_pointer_exception",
        "reason": "Cannot invoke \"org.opensearch.ml.common.input.MLInput.setAlgorithm(org.opensearch.ml.common.FunctionName)\" because \"mlInput\" is null"
    },
    "status": 500
}

Post this change:

{
    "error": {
        "root_cause": [
            {
                "type": "json_parse_exception",
                "reason": "Unrecognized token 'asjkdhsadkjfh': was expecting (JSON String, Number, Array, Object or token 'null', 'true' or 'false')\n at [Source: REDACTED (`StreamReadFeature.INCLUDE_SOURCE_IN_LOCATION` disabled); line: 4, column: 36]"
            }
        ],
        "type": "json_parse_exception",
        "reason": "Unrecognized token 'asjkdhsadkjfh': was expecting (JSON String, Number, Array, Object or token 'null', 'true' or 'false')\n at [Source: REDACTED (`StreamReadFeature.INCLUDE_SOURCE_IN_LOCATION` disabled); line: 4, column: 36]"
    },
    "status": 400
}

2. Request: - register same name tool in MCP

POST /_plugins/_ml/mcp/tools/_register
{
  "tools": [
    {
      "type": "SearchIndexTool",
      "name": "this is random",
      "attributes": {
        "type": "fool"
      }
    }
  ]
}

Response:

{
    "error": {
        "root_cause": [
            {
                "type": "exception",
                "reason": "Unable to register tools: [this is random] as they already exist"
            }
        ],
        "type": "exception",
        "reason": "Unable to register tools: [this is random] as they already exist"
    },
    "status": 500
}

Post this change:

{
    "error": {
        "root_cause": [
            {
                "type": "illegal_argument_exception",
                "reason": "Unable to register tools: [this is random] as they already exist"
            }
        ],
        "type": "illegal_argument_exception",
        "reason": "Unable to register tools: [this is random] as they already exist"
    },
    "status": 400
}

Related Issues

Resolves #3987

Check List

• New functionality includes testing.
• New functionality has been documented.
• API changes companion pull request created.
• Commits are signed per the DCO using --signoff.
• Public documentation issue/PR created.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

[dhrubo-os]

why do we need to add throws JsonParseException?

[pyek-bot]

the internal init method is throwing this exception, so this needs to be as well.

Now we are throwing new type of exception rather than simply error logging and returning null

[dhrubo-os]

the internal init method is throwing this exception

Why?

[pyek-bot]

For example:

POST /_plugins/_ml/agents/<agent_id>/_execute
{
  "parameters": {
    "question": "Give me statistics about my cluster",
    "is_async": random
  }
}

Here, we want to surface the actual error. In this case, is_async has invalid value, so that triggers the JsonParseException which we want to show to the user.

[dhrubo-os]

I'm trying to understand :

if (cause instanceof MLException) {
                throw (MLException) cause;
            } else if (cause instanceof IllegalArgumentException) {
                throw (IllegalArgumentException) cause;

why we don't need to add MLException or IllegalArgumentException in throws?

[pyek-bot]

ah, got it. MLException and IllegalArgumentException are runtime exceptions so they don't need explicit throws.

[dhrubo-os]

Unrecognized token 'asjkdhsadkjfh': was expecting (JSON String, Number, Array, Object or token 'null', 'true' or 'false')\n at [Source: REDACTED (StreamReadFeature.INCLUDE_SOURCE_IN_LOCATION disabled); line: 4, column: 36]

I understand it's better to send a json parse exception as a final defense. But I think we should send validation error before even coming here. I assume this value is optional. But if the value is provided then we should check if this is a valid value. If not send a validation error.

If I'm a customer, from this error nothing makes sense to me except I just know a json parse error happened somewhere. And I don't have any direction how can I fix my issue.

[pyek-bot]

Agreed, we should have some validation before even reaching this point.

This PR, i'm just ensuring we don't throw 500 errors to the user as this was raised as a security concern. It can be used to exploit codebase and expose unhandled paths.

As a last defense, I think this is good enough to understand the issue: it is pointing out which is the invalid token

Unrecognized token 'asjkdhsadkjfh': was expecting (JSON String, Number, Array, Object or token 'null', 'true' or 'false')\n

As you rightly mentioned, the correct solution would be to add validation to the input before executing any kind of task.

I created an issue to add proper validation for different kinds of executes depending on the Function being executed: #4013

we can track that there, I would like to avoid this here and immediately prevent potential exploits as a quick fix.

[dhrubo-os]

I'm fine if you want to work on a separate PR. But let's make sure we are working on that issue too. I still think this is a broken CX experience.

[codecov]

Codecov Report

❌ Patch coverage is 33.33333% with 2 lines in your changes missing coverage. Please review.
✅ Project coverage is 80.63%. Comparing base (7040e8a) to head (bc364c4).
⚠️ Report is 11 commits behind head on main.

Files with missing lines	Patch %	Lines
...org/opensearch/ml/common/MLCommonsClassLoader.java	0.00%	2 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff              @@
##               main    #3988      +/-   ##
============================================
+ Coverage     80.62%   80.63%   +0.01%     
- Complexity     8003     8007       +4     
============================================
  Files           695      695              
  Lines         35023    35025       +2     
  Branches       3935     3936       +1     
============================================
+ Hits          28236    28243       +7     
+ Misses         5051     5046       -5     
  Partials       1736     1736              

Flag	Coverage Δ
ml-commons	80.63% <33.33%> (+0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[akolarkunnu]

Why is this change?

[pyek-bot]

In this case, since the tool already exists, we can confidently say that it is an IllegalArgumentException as the name provided is already used.

[akolarkunnu]

Can you please explain in PR description, how's this fix handles the actual issue.

[dhrubo-os]

+1

[pyek-bot]

Added more details to the description regarding the responses before and after this change

[akolarkunnu]

Please add the test case which actually throws JsonParseException, the actual scenario which you are fixing this PR.

[dhrubo-os]

@pyek-bot you should be able to write a test like this:

@Test
    public void testJsonParseExceptionHandling() throws Exception {
        // Add a field to access connectorClassMap for testing
        Field connectorClassMapField = MLCommonsClassLoader.class.getDeclaredField("connectorClassMap");
        connectorClassMapField.setAccessible(true);
        @SuppressWarnings("unchecked")
        Map<String, Class<?>> connectorClassMap = (Map<String, Class<?>>) connectorClassMapField.get(null);

        // Add our mock class to the map
        connectorClassMap.put("TestConnector", MockClassThrowingJsonParseException.class);

        // We expect the method to throw JsonParseException
        exceptionRule.expect(JsonParseException.class);
        exceptionRule.expectMessage("Test JsonParseException");

        // Call the method that should throw JsonParseException
        MLCommonsClassLoader.initConnector("TestConnector", new Object[]{}, new Class<?>[]{});
    }

    // Mock class that throws JsonParseException when instantiated
    private static class MockClassThrowingJsonParseException {
        public MockClassThrowingJsonParseException() throws JsonParseException {
            throw new JsonParseException(null, "Test JsonParseException");
        }
    }

[pyek-bot]

thanks for sharing @dhrubo-os, i added a simpler test case in the latest commit, can you take a look at that?

[dhrubo-os]

Looks good to me.

[akolarkunnu]

Looks good to me.

[dhrubo-os]

Approved the PR. Let's work on the issue you created for validation. Thanks.

[pyek-bot]

Thanks for the review and merge!

Can we please add 3.1 backport label as well please?

cc: @dhrubo-os @ylwu-amzn