[Mandiant] fix: infinitely crashes if the state is empty

[flavienSindou]

Proposed changes

• Implement an Exception, handling connector state external reset.

Related issues

• [Mandiant] Crash if the state is empty #3001

Checklist

• I consider the submitted work as finished
• I tested the code for its functionality using different use cases
• I added/update the relevant documentation (either on github or on notion)
• Where necessary I refactored code to improve the overall quality

Further comments

Investigation page

Simplified behavior changes

stateDiagram-v2
    classDef RED fill:red
    classDef ORANGE fill:orange, color:black
    classDef NEW stroke:yellow
    classDef YELLOW fill: yellow, color:black

    [*] --> ContextSetup
    ContextSetup --> ConnectorInit 
    ConnectorInit --> WaitingForNewScheduledJob : Initial State Registered
    WaitingForNewScheduledJob --> Processing : New Job Detected
    Processing --> AttemptReadState 

    AttemptReadState --> StatePresent : STATE Found
    AttemptReadState --> StateNull : STATE Null

    StatePresent --> SuccessCase : Data Received
    SuccessCase --> UpdateState : Update STATE (on scheduler ping)
    UpdateState:::ORANGE --> WaitingForNewScheduledJob : State Updated

    StateNull --> Error : PREVOUSLY - "TypeError NoneType object is not subscriptable"
    Error:::RED--> WaitingForNewScheduledJob : STATE stays null
    
    StateNull:::ORANGE -->HandledError : UPDATED -  "STATE is Null, Reseting Connector to Basic config"
    HandledError:::YELLOW --> ConnectorInit 
    ConnectorInit:::NEW --> WaitingForNewScheduledJob

    WaitingForNewScheduledJob --> ManuallyReset : STATE Manually Reset
    ManuallyReset --> ResetState : Send State Reset Ping
    ResetState --> WaitingForNewScheduledJob : STATE Reset Completed

Loading

[flavienSindou]

Note for the reviewer : Re indented to be in the try: except clause.

[flavienSindou]

use of safe get_state_value responsible for handling the Error rather than direct key access

[flavienSindou]

use of safe get_state_value responsible for handling the Error rather than direct key access

[flavienSindou]

use of safe get_state_value responsible for handling the Error rather than direct key access

[flavienSindou]

use of safe get_state_value responsible for handling the Error rather than direct key access

[flavienSindou]

use of safe get_state_value responsible for handling the Error rather than direct key access

[flavienSindou]

use of safe set_state_value method,responsible for handling the Error, rather than direct key access

[flavienSindou]

use of safe get_state_value responsible for handling the Error rather than direct key access

[flavienSindou]

Core of the PR

[flavienSindou]

Aside: fix E721

[Megafredo]

Would it be interesting to clarify the message ?

Suggested change

	self.helper.connector_logger.error(str(err))
	self.helper.connector_logger.error(
	"Failed du to connector state error", {"error": str(err)}
	)

[flavienSindou]

Thanks for your suggestion !

[Megafredo]

if work_id is not None:
    self.helper.api.work.to_processed(
        work_id, "Failed du to connector state error", in_error=True
    )
    work_id = None
    break

• Why suggest "work_id = None" :
  When we intercept the error (stateError) and the work_id exists, we perform a to_processed (and indeed, we see a return of this information on the front end!). However, because of the finally block, a second to_processed is executed, as at this point the work_id still exists. This is why we're considering setting the work_id to None before entering the finally block, to avoid this behavior.

• Why suggest "break" :
  If we don't add a break when a StateError is triggered, then the same error message will be generated for each of the “active” collections. Since a problem at state level affects all collections, it would be appropriate to exit the loop (for collection in self.mandiant_collections:) and wait for the next connector schedule.

[flavienSindou]

Thanks for your suggestion !

[Megafredo]

Everything seems ok ;)