rlmesh-sandbox 0.1.0-rc.1

Internal RLMesh crate (unstable Rust API): Docker-backed environment packaging and execution.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137

//! Public error type for the rlmesh-sandbox crate.
//!
//! The crate uses [`anyhow`] internally for ergonomic context propagation but
//! exposes this typed [`SandboxError`] enum on its public API so consumers can
//! discriminate failure classes (e.g. "docker unavailable" vs "unpinned HF
//! source" vs "invalid options") without matching on `Display` text.

use thiserror::Error;

/// Errors returned by the public rlmesh-sandbox API.
///
/// This enum is `#[non_exhaustive]`: new variants may be added in future
/// releases, so downstream `match` expressions must include a wildcard arm.
#[derive(Debug, Error)]
#[non_exhaustive]
pub enum SandboxError {
    /// An environment source reference could not be parsed.
    #[error("invalid sandbox source: {message}")]
    InvalidSource {
        /// Human-readable description of the parse failure.
        message: String,
    },

    /// A sandbox option (base image, packages, imports, num_envs,
    /// vectorization mode, rlmesh package spec, ...) was invalid.
    #[error("invalid sandbox option: {message}")]
    InvalidOption {
        /// Human-readable description of the invalid option.
        message: String,
    },

    /// An `hf://` source was rejected by the trust/pinning policy (remote code
    /// not trusted, or revision not pinned to a full git SHA).
    #[error("hugging face source policy violation: {message}")]
    HuggingFacePolicy {
        /// Human-readable description of the policy violation.
        message: String,
    },

    /// Resolving an `hf://` revision (via `git ls-remote`) or materializing the
    /// source tree failed.
    #[error("failed to resolve hugging face source: {message}")]
    SourceResolution {
        /// Human-readable description of the resolution failure.
        message: String,
    },

    /// Selecting or reading a local RLMesh wheel failed.
    #[error("rlmesh wheel resolution failed: {message}")]
    Wheel {
        /// Human-readable description of the wheel resolution failure.
        message: String,
    },

    /// Building the sandbox image failed (e.g. `docker build` returned an
    /// error, or the build context could not be assembled).
    #[error("sandbox image build failed: {message}")]
    ImageBuild {
        /// Human-readable description of the build failure.
        message: String,
    },

    /// Starting the container or waiting for it to become ready failed.
    #[error("sandbox container failed to start: {message}")]
    ContainerStartup {
        /// Human-readable description of the startup failure, including any
        /// captured container state and logs.
        message: String,
    },

    /// Invoking the `docker` CLI failed (e.g. docker is not installed or the
    /// daemon is unavailable), or a docker subcommand returned an error.
    #[error("docker command failed: {message}")]
    Docker {
        /// Human-readable description of the docker failure.
        message: String,
    },
}

impl SandboxError {
    pub(crate) fn invalid_source(err: impl std::fmt::Display) -> Self {
        Self::InvalidSource {
            message: err.to_string(),
        }
    }

    pub(crate) fn invalid_option(err: impl std::fmt::Display) -> Self {
        Self::InvalidOption {
            message: err.to_string(),
        }
    }

    pub(crate) fn huggingface_policy(err: impl std::fmt::Display) -> Self {
        Self::HuggingFacePolicy {
            message: err.to_string(),
        }
    }

    pub(crate) fn source_resolution(err: impl std::fmt::Display) -> Self {
        Self::SourceResolution {
            message: err.to_string(),
        }
    }

    pub(crate) fn wheel(err: impl std::fmt::Display) -> Self {
        Self::Wheel {
            message: err.to_string(),
        }
    }

    pub(crate) fn container_startup(err: impl std::fmt::Display) -> Self {
        Self::ContainerStartup {
            message: err.to_string(),
        }
    }

    /// Classify an internal docker-backend error. If the failure was an
    /// inability to spawn the `docker` CLI (e.g. it is not installed or the
    /// daemon socket is unreachable), it is reported as [`SandboxError::Docker`]
    /// regardless of which operation triggered it; otherwise the supplied
    /// operation-specific variant is used.
    pub(crate) fn from_docker_op(
        err: anyhow::Error,
        operation: impl FnOnce(String) -> Self,
    ) -> Self {
        if let Some(io_err) = err
            .chain()
            .find_map(|cause| cause.downcast_ref::<std::io::Error>())
            && io_err.kind() == std::io::ErrorKind::NotFound
        {
            return Self::Docker {
                message: format!("docker CLI not found: {err:#}"),
            };
        }
        operation(format!("{err:#}"))
    }
}