1. 07 Feb, 2022 12 commits
    • Jérome Perrin's avatar
      web: use setEmptyCriterionValid accessor directly · 4b3e0f8f
      Jérome Perrin authored
      The accessor was added in 99cd5823 (erp5_property_sheets: Add
      Predicate/empty_criterion_valid_property ., 2013-11-20) it's been
      long enough to assume that every site have this property now.
      4b3e0f8f
    • Jérome Perrin's avatar
      web: also set empty criterion as invalid on Web Site · fd0a54a5
      Jérome Perrin authored
      For same reasons as on Web Sections: clicking the Contents tab search
      for all documents
      fd0a54a5
    • Jérome Perrin's avatar
      administration: Extend check_consistency alarm to check tools as well as modules · c61e367d
      Jérome Perrin authored
      Tools also contain documents, so it makes sense to check them as well
      c61e367d
    • Jérome Perrin's avatar
      core: define Domain_getPriceCalculationOperandDict · 10269399
      Jérome Perrin authored
      This disable price lookup on domains, because it errors and because the
      meaning is not clear.
      
      It errors because Domains are MetaResources, so they are subclass of
      Resource and they inherit the price lookup mechanism, which does not
      work on domains because of their different `getRelativeUrl` implementation.
      10269399
    • Jérome Perrin's avatar
      configurator_standard: sense check consistency alarm after configurator · f1e235f0
      Jérome Perrin authored
      check_consistency alarm checks that every document created satisfy
      contraints. This is done in order to verify that configurator it self
      create consistent documents and also that all default documents from a
      realistic configuration are consistent.
      f1e235f0
    • Jérome Perrin's avatar
      base: better handling of passwords not set · 8dec679c
      Jérome Perrin authored
      When users with no password set try to login, this should be refused.
      
      It was not possible to login but because of an error (pw_validate does
      not support to be called with None). The error was catched by PAS and
      logged with level debug, so we did not notice.
      
      These changes are mostly about covering this in a test to make sure this
      does not regress and we also change the code not to raise the error.
      8dec679c
    • Jérome Perrin's avatar
    • Jérome Perrin's avatar
      testPerson: Only check that set password security is enforced from restricted python · 016eed73
      Jérome Perrin authored
      EncryptedPasswordMixin.setPassword is public and does its own security
      checks, this is since 7d0882ef (setPassword have to do explicit
      security checks…, 2007-11-12), but a few months after this, we teached
      edit to check security - in d1312cdb (make edit check the security
      remove all useless security declaration on private method, 2008-05-23).
      
      In the end what really matters is that end users can not change passwords
      through the user interface when editing logins documents.
      016eed73
    • Jérome Perrin's avatar
      ERP5Type/XMLExportImport: use zodbpickle pickler for OrderedPickler · 8320f24d
      Jérome Perrin authored
      With upcoming ZODB 5, oids (used as persistent references in pickles)
      are no longer str as it use to be with ZODB 4, but instances of
      zodbpickle.binary, which with zodbpickle 1 are a subclass of str on
      python2.
      
      OrderedPickler was a subclass of pickle.Pickler, the pickler from standard
      library, but this pickler was not able to use a str subclass for persistent
      references, when pickles are loaded with noload method, persistent_load
      is called with `None` instead of the actual string subclass instance.
      This was problematic in the XMLExportImport handling of business templates,
      because ZODB.serialize.referencesf was unable to find persistent references.
      The error was:
      
          ZODB-5.6.0-py2.7.egg/ZODB/serialize.py", line 664, in referencesf
              assert isinstance(reference, list)
          AssertionError
      
      because the reference was None.
      
      zodbpickle 2 changed to make zodbpickle.binary implemented in C, which
      was failing earlier, because pickle.Pickle can not pickle these objects,
      failing in an error like this:
      
          lib/python2.7/copy_reg.py", line 70, in _reduce_ex
              raise TypeError, "can't pickle %s objects" % base.__name__
          TypeError: can't pickle binary objects
      
      This change also simplify our own implementation, by dropping jython
      support and calling save_dict on the super class instead of copying the
      implementation.
      
      Further references:
      
      - minimal script to reproduce the issues:
      
      ```python
      from __future__ import print_function
      import io
      import pickle
      
      import zodbpickle
      import zodbpickle.pickle
      import zodbpickle.fastpickle
      
      class ExternalObject(object):
        def __init__(self, oid):
          self.oid = oid
      
      def persistent_id(obj):
        if isinstance(obj, ExternalObject):
          return obj.oid
      
      def persistent_load(persid):
        print('persistent_load called with persid', repr(persid))
      
      o = ExternalObject(oid=zodbpickle.binary("binary persid"))
      
      for pickler_class in pickle.Pickler, zodbpickle.pickle.Pickler:
      
        f = io.BytesIO()
        p = pickler_class(f, 1)
        p.persistent_id = persistent_id
        p.dump(o)
      
        print('dump with pickler %s:\n  %r' % (pickler_class, f.getvalue()))
      
        # ZODB uses this unpickler
        up = zodbpickle.fastpickle.Unpickler(io.BytesIO(f.getvalue()))
        up.persistent_load = persistent_load
        up.noload()
      ```
      
      ```console
      $ python2 repro.py # with zodbpickle 1
      dump with pickler pickle.Pickler:
        'ccopy_reg\n_reconstructor\nq\x00(czodbpickle\nbinary\nq\x01c__builtin__\nstr\nq\x02U\rbinary persidq\x03tq\x04Rq\x05Q.'
      persistent_load called with persid None
      dump with pickler zodbpickle.pickle_2.Pickler:
        'U\rbinary persidq\x00Q.'
      persistent_load called with persid 'binary persid'
      ```
      
      ```console
      $ python2 repro.py # with zodbpickle 2
      Traceback (most recent call last):
        File "repro.py", line 45, in <module>
          p.dump(o)
        File ".../lib/python2.7/pickle.py", line 224, in dump
          self.save(obj)
        File ".../lib/python2.7/pickle.py", line 273, in save
          self.save_pers(pid)
        File ".../lib/python2.7/pickle.py", line 340, in save_pers
          self.save(pid)
        File ".../lib/python2.7/pickle.py", line 306, in save
          rv = reduce(self.proto)
        File ".../lib/python2.7/copy_reg.py", line 70, in _reduce_ex
          raise TypeError, "can't pickle %s objects" % base.__name__
      TypeError: can't pickle binary objects
      ```
      
      * ZODB change starting to use zodbpickle.binary instead of str:
      12ee41c4 (-ZODB now uses pickle protocol 3 for both Python 2 and Python 3., 2018-03-26)
      Since of 5.4.0 release
      
      * zodbpickle change starting to use C objects for zodbpickle.binary:
      bbef98c (Implement zodbpickle.binary in C for Py27., 2019-11-12)
      Since of 2.0.0 release
      8320f24d
    • Jérome Perrin's avatar
      ProcessingNodeTestCase.tic: increase delay to 30 minutes · ed37eb84
      Jérome Perrin authored
      Now that we fail immediately in case of failure, the deadline can be
      safely increased, because it only protects against kind of infinite loops.
      
      Increasing the delay should fix RuntimeError: tic is looping forever
      errors with only messages in status -1, that we sometimes saw on testnodes.
      ed37eb84
    • Jérome Perrin's avatar
      ProcessingNodeTestCase.tic: fail as soon as one message had failed · f2bea116
      Jérome Perrin authored
      Now that tic retries until the deadline is reached or all messages has
      failed, it can lead to situations where developer have to wait until the
      deadline, when a message failed but other messages (typically scheduled
      to run after the failed message) were still running.
      
      By stopping as soon as one message is failed, in this scenario the
      developer does not need to wait until the deadline.
      f2bea116
    • Jérome Perrin's avatar
      aa7ae8b5
  2. 04 Feb, 2022 1 commit
  3. 03 Feb, 2022 4 commits
  4. 02 Feb, 2022 18 commits
  5. 01 Feb, 2022 1 commit
  6. 31 Jan, 2022 1 commit
    • Vincent Pelletier's avatar
      Products.ERP5Type.Core.Predicate: Obey isEmptyCriterionValid . · 57463f30
      Vincent Pelletier authored
      When EmptyCriterionValid property is true, this method is expected to
      return a query which does not match any document. This only happens when
      query_list is empty, but because of category membership checking,
      query_list is never empty: it at least contains two ComplexQueries which
      themselves may contain an empty query list, and which match all documents.
      Calling getCategoryParameterDict with an empty list is dubious, but
      changing its behaviour in ZSQLCatalog may affect more than just predicates,
      so change the behaviour in Predicate class directly by checking whether
      there is any category being matched to begin with.
      57463f30
  7. 28 Jan, 2022 1 commit
  8. 27 Jan, 2022 1 commit
  9. 26 Jan, 2022 1 commit