CRM-18504: Fix error in validating sub type by entity #8301
Conversation
JKingsnorth
commented
May 5, 2016
•
JKingsnorth
commented
- CRM-18504: validateSubTypeByEntity checks value instead of key
JKingsnorth
changed the title
|
@eileenmcnaughton @totten Can one of you review this please, On my naked eye i think it works but this is clearly related to the recent security release. Eileen i know you patched this up for us (AUG). It would be good to just get a check of this. |
|
Jenkins re test this please |
|
@seamuslee001 @JKingsnorth I don't think this code looks right. It is hardcoded to handle Contact subtypes when it appears intended for general Entity consumption? Rephrasing (took me a while to realise CustomGroup refers to option groups, what I think of as fieldsets for better or worse).
|
|
Must admit that I didn't look in to much depth as to why the method was implemented in the first place - I was focusing on getting the site not to fatal on every page.
I had the impression it was the latter - which I think is backed up by the steps to reproduce: https://issues.civicrm.org/jira/browse/CRM-18504 Is the logic: If the contact is a certain 'type' of contact (ie: an individual/organisation - not sure when this wouldn't be the case) then verify that the type exists, and then if they are a sub-type, verify that the sub-type is a sub-type of the parent. That said, I've seen 'Participant' checked as well - but then the check bails because of: It looks like participant subtypes (what?) are numeric. The check doesn't seem to be called when custom fields are used on events/participants more generally, however. @eileenmcnaughton was doing some work on this - maybe she can shed some light on what's occurring. |
|
Same issue occurs in 4.6.16 and this patch applies cleanly & fixes it there. @xurizaemon @JKingsnorth My reading is that the rationale is to validate $subType to make sure it's a legitimate entity subtype, as opposed to naughty input that might find its way into a SQL query. For most entity types, subtypes are integers, so that's an easy check. The code assumes that the only entity type that has non-integer subtypes is Contact: this is discussed at https://issues.civicrm.org/jira/browse/CRM-17984?focusedCommentId=88030&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-88030 . So if $subType is not an integer, the code checks whether it is a Contact subtype: specifically, a subtype of the type $entityType. As John found, the check on $entityType falls over if the contact type has been renamed. |
|
@davejenx Alas I didn't have permission to view that issue - but thanks for all the background information on this! |
|
this has killed one of our sites. in this case, looking at what is in contact_type and what is in custom_group the name of one of the subType as used in civicrm_contact_type differed to what was in civicrm_custom_group. in the former there is a subtype with name Funder_ (had label Funder.) - and in the latter there is a group of fields supposedly extending extends_entity_column_value of Funder (ie no following underscore). I tried cherrypicking the patch. no change. i tried change Funder_ in the contact_type field to just Funder. No joy. I tried reversing the patch in case renaming it avoided the problem. No joy (guessing what to try at 2am) Now I am wondering whether I can try using the integer of the contact sub type, since all the other entities eg event seem to be just using an integer, but think that may to wronger. Any pointers? |
|
above relates to 4.6.x |
|
by chance i thought i would go check if the upgrade completed. db said it was on 4.6.16 - /civicrm/upgrade said 'already there buddy' but guess what, seconds later the all clear alerts started coming through and site was back up. |
|
@petednz Glad it got fixed up. I guess that if you still rename one of the types you'll run in to the bug though (steps to recreate in the JIRA issue). If you get a chance to test this patch that would be fab. |
|
fwiw the problem subtype had a description "CiviEngage - Funder" - so not sure if the subtype is coming in with that weird name and hence might be hitting others |
|
@JKingsnorth i can put patch back in to try, but will wait on @xurizaemon to run his eye over this as it sounded like he was asking questions too. are there two levels of issue. one if you 'just' rename the subtype, and another if you have custom fields created off the subtype either before or after the renaming of it? |
|
@petednz Yup, would certainly be worth testing that scenario. |
|
Hi @petednz , If you throw some debugging statements in, e.g. what do you get in CiviCRM.blah.log for the problematic case? I wonder if revisiting the upgrade page cleared Civi caches and allowed one of your previous changes to take effect? |
|
Hi, just looking quickly & I haven't had a long enough look to be clear but I think we need 3 principles
CustomGroupTest.php#L55-55
|
|
problem on another site - again one with CiviEngage installed |
|
I have this in logs And what i see in DB is that contact_type has name = Media_Outlet and label of Media Outlet - and in custom_group it is Media_Outlet Suggestion? |
…Group::validateSubTypeByEntity(); instead check the returned value & use it only if it was valid (not falsey).
…if subType is invalid.
|
The sites where this appeared most obviously had it triggered via Views - This function calls One method of triggering the exceptions introduced in 7936342 is to have a subtype which is disabled. CiviCRM Views sees these subtypes (it probably shouldn't?) and tries to The two commits above are for 4.6 branch and seem to address the issue triggered via Views which was affecting our sites. I ought to have mentioned earlier that this issue was hitting us on the Fuzion 4.6 branch not CiviCRM 4.7.7, wish I'd seen earlier how different the file is btw 4.6 and 4.7. As a result the above changes won't apply to 4.7, but something similar should work - I don't have availability to look into that right now though. |
|
Sorry, it still throws an error if there are deleted contact sub-types, in our case it looks like: |
|
@yurg may I confirm your Young Arts Group Member subtype is deleted and not disabled? (Disabled is represented as |
|
and can I ask, if the sub Contact Type is deleted, are there any Custom Fields still associated with the now missing Contact type? |
|
@xurizaemon It's actually disabled ( have checked via civicrm/admin/options/subtype?reset=1 ) ; should we delete it? @petednz No, there aren't (as far as I can see here civicrm/admin/custom/group?reset=1 in "Type" column ) , but Sub Contact Type isn't deleted. |
|
Thanks @yurg - no that's fine - I'm working on the issue for "disabled" but wanted to check if you were seeing some other issue. Appreciate the correction. |
|
Feel free to close this once the discussion has run its course if there is a better patch being formulated in the Fuzion repo. |
|
What's the current status of this one? It continues to stabs us in the back here and there at contact add / edit forms. |
|
I have the same issue now at a fresh upgrade from 4.4 to 4.6 and cannot view the contact summary anymore of contacts with a contact subtype set. |
|
So, status of this is that it needs someone to read through it & do a clear QA on it. The waters are a little muddied by the suggestion there is a competing patch that is not in a PR (half way up the thread). It definitely HAS to be in the rc release going out in a few days, leading up to a full release at the beginning of next month. If you are dealing with a bug that is fixed in the rc & need to go live with the rc the main caution I have is that if any changes occur during the rc period you may need to do some manual fiddling to get all changes in the upgrade script to run. |
|
As an aside - I'm not even slightly sold on the suggestion that we shouldn't hard-fail when the wrong input is passed into the function. I think we should just pass the right input into the function. There is no reason we can't do that & a soft fail just opens up other hard-to-debug errors |
|
Have found this https://issues.civicrm.org/jira/browse/CRM-18567 and this #8388 (the latter looks like a fix for us after a quick tests). |
|
The waters are also muddied by there being several different scenarios where errors occur around validateSubTypeByEntity(), including...
|
|
Thanks Dave for the great summary - we just have to try to add tests when we fixes things so we don't wind up in a game of whack-a-mole.... |
|
I'm happy to merge this part of the patch - #8389 - because I was able to replicate it in a test |
| @@ -652,13 +652,13 @@ protected static function validateSubTypeByEntity($entityType, $subType) { | |||
| return $subType; | |||
| } | |||
| $contactTypes = civicrm_api3('Contact', 'getoptions', array('field' => 'contact_type')); | |||
| if ($entityType != 'Contact' && !in_array($entityType, $contactTypes['values'])) { | |||
| if ($entityType != 'Contact' && !array_key_exists($entityType, $contactTypes['values'])) { | |||
There was a problem hiding this comment.
This line replicated/merged via eileen's #8389.
The other change is not replicated merged there.
|
I propose to close this PR now. The second line of John's patch on this PR (which turned out to be consistency rather than functionality) is covered in #8405 - as is the issue around disabled contact types. The other issues all appear to be resolved elsewhere (which much thanks to DaveJ & Seamus) with the exception of the views issue. I don't have a clear picture of the views issue other than to note it needs it's own JIRA, description, steps etc & PR. |
|
OK, closing since there are newer PR's with tests. @JKingsnorth, if that's a mistake, feel free to reopen. |
|
Sorry guys I discover that the provided in #8301 is not good when a contact has multiple subtypes. At a client we have a contact which is an organisation and has multiple subtypes. The I have fixed this in CRM_Core_BAO_CustomGroup::getTree (Line: 332) with the following lines: |
|
@jaapjansma I think you gave the wrong PR number there? |
|
@jaapjansma Just to be clear the custom group is what extends the multiple subtypes correct? |
|
@seamuslee001 Yes it is the custom group and not the contact ;-) |
|
@jaapjansma which number did you mean? There are lots of PRs floating around. :-) |
|
I did mean PR #8301 |
|
I think #8301 has been abandoned in favour of #8389 + #8405 plus there are PRs for other issues I summarised at #8301 (comment) . |
|
Ok. I see. It is very confusing espiallcy now we have backported the security fix and have lots and lots more problems... :-( |
|
I believe regressions are all fixed now in the rc / 4.6 dist tarball - see dist.civicrm.org/latest |
|
fwiw both Dave Jenkins and we have hit this or a very very similar one with upgrading to 4.6.18 so just flagging here to try and tie conversation back in with jira-18504 |
|
Re @petednz's last comment, details of the issue I encountered on a 4.6.18 upgrade are here: https://issues.civicrm.org/jira/browse/CRM-18504?focusedCommentId=90551&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-90551 |
|
Wanting to leave these markers for others (and risking repeating earlier examples but not certain). Two more, or subsets, or scenarios where this error can bite a 4.6.x upgrade. a/ if there are custom group fields set up for an entity (eg CiviCase) that has now been disabled. Can be fixed through UI by deleting the custom fields and then the custom group b/ if there are custom group fields have been set up to 'extend' a contact subtype, but that subtype has been renamed, leaving 'bad' data in the civicrm_custom_group.extends_entity_column_value. Can be fixed through UI finding the Custom Groups that should be extending a subtype, and resetting them to the new name of the subtype. Note the 'extends' shows nothing on the Custom Group summary page. You probably need to go look at whether the subtype 'names' are still in alignment in the civicrm_custom_group table and the civicrm_contact_type table. |
