Merge lp:~gz/qbzr/reliable_exception_encoding_686735 into lp:qbzr

I've used unicode_escape to be 200% sure nothing will broke qbzr subprocess interactions. At the time I've switched to unicode_escape I've already twice tried to fix related errors with non-ascii characters, so I've decided that better be safe than sorry. Maybe it was overkill. We can try to fly with your variant now, if new non-ascii bugs wil arise then I'll be forced to switch back to unicode_escape again.

I'm going to review your code tonight. It seems we need new bugfix release right after the fix land.

Martin, I'm not quite comfortable with bare `except:`, although I see you explicitly catch and re-raise others exceptions. But why do you use bare except here? What kind of errors we might get there? IIUC we shouldn't get UnicodeError, because we try hard to avoid it. Maybe something related to error in repr? Can you explain that in the comments to that except, please?

Otherwise, I'm happy to merge it.

> Martin, I'm not quite comfortable with bare `except:`, although I see you
> explicitly catch and re-raise others exceptions. But why do you use bare
> except here? What kind of errors we might get there? IIUC we shouldn't get
> UnicodeError, because we try hard to avoid it. Maybe something related to
> error in repr? Can you explain that in the comments to that except, please?

So, what I'm not sure about is whether we need to be careful about KeyboardInterrupt under Qt, the rest of the file seemed to worry about it.

The reasoning of the try/except formulation is as follows:
* repr invokes __repr__ which can run arbitrary code, so can raise any exception at all
* Just catching Exception traps KeyboardInterrupt on Python 2.4
* Once we're catching the classes moved to BaseException in 2.5 first, may as well use the bare except which happens to cover string exceptions on versions they're still legal

If KeyboardInterrupt should be being reraised, I should probably add that to the try/except around commands.run_bzr too, while Python 2.3 is still supported.

Is this change based on the right revision, or should I move it to be daggy if you want to land it as a bug fix?

Martin [gz] пишет:
>> Martin, I'm not quite comfortable with bare `except:`, although I see you
>> explicitly catch and re-raise others exceptions. But why do you use bare
>> except here? What kind of errors we might get there? IIUC we shouldn't get
>> UnicodeError, because we try hard to avoid it. Maybe something related to
>> error in repr? Can you explain that in the comments to that except, please?
>
> So, what I'm not sure about is whether we need to be careful about KeyboardInterrupt under Qt, the rest of the file seemed to worry about it.
>
> The reasoning of the try/except formulation is as follows:
> * repr invokes __repr__ which can run arbitrary code, so can raise any exception at all
> * Just catching Exception traps KeyboardInterrupt on Python 2.4
> * Once we're catching the classes moved to BaseException in 2.5 first, may as well use the bare except which happens to cover string exceptions on versions they're still legal

OK, that's enough for now. I'd like to see this explanation added as
comment in bare except block.

> If KeyboardInterrupt should be being reraised, I should probably add that to the try/except around commands.run_bzr too, while Python 2.3 is still supported.
>
> Is this change based on the right revision, or should I move it to be daggy if you want to land it as a bug fix?

I'm going to cherrypick it to backport the fix to lp:qbzr/0.20.

--
All the dude wanted was his rug back

> OK, that's enough for now. I'd like to see this explanation added as
> comment in bare except block.

Done.

> > If KeyboardInterrupt should be being reraised, I should probably add that to
> the try/except around commands.run_bzr too, while Python 2.3 is still
> supported.
> >
> > Is this change based on the right revision, or should I move it to be daggy
> if you want to land it as a bug fix?
>
> I'm going to cherrypick it to backport the fix to lp:qbzr/0.20.

I've moved the change back in to r1267 as well which looks like it's merge cleanly to any branches to want it on, and fiddled with a couple of other details. If there is anything else you'd like me to do, say. What's the qbzr NEWS policy? It might be easier for you to add it when merging if this is going to multiple places.

Thank you very much. I update NEWS.

I'm sorry, but I've just ran the tests and all your three new tests has failed. Can you look into it?

bzr selftest -s bp.qbzr
bzr selftest: C:\Program Files\Bazaar\bzr.exe
   C:\Program Files\Bazaar\lib\library.zip\bzrlib
   bzr-2.3.1 python-2.6.6 Windows-XP-5.1.2600-SP3

FAIL: bzrlib.plugins.qbzr.lib.tests.test_subprocess.TestExceptionInstanceSerialisation.test_non_ascii_bytes
    Text attachment: log
------------

------------
Text attachment: traceback
------------
Traceback (most recent call last):
  File "testtools\runtest.pyo", line 169, in _run_user
  File "testtools\testcase.pyo", line 499, in _run_test_method
  File "C:\work\Bazaar\plugins\qbzr\lib\tests\test_subprocess.py", line 79, in test_non_ascii_bytes
  File "C:\work\Bazaar\plugins\qbzr\lib\tests\test_subprocess.py", line 68, in check_exception_instance
AssertionError: not equal:
a = ('OSError', {})
b = ('OSError',
 {'args': "(13, 'Lupa ev\\xc3\\xa4tty')",
  'errno': '13',
  'filename': 'None',
  'strerror': u'Lupa ev\ufffd\ufffdtty'})

------------

FAIL: bzrlib.plugins.qbzr.lib.tests.test_subprocess.TestExceptionInstanceSerialisation.test_simple_error
    Text attachment: log
------------

------------
Text attachment: traceback
------------
Traceback (most recent call last):
  File "testtools\runtest.pyo", line 169, in _run_user
  File "testtools\testcase.pyo", line 499, in _run_test_method
  File "C:\work\Bazaar\plugins\qbzr\lib\tests\test_subprocess.py", line 73, in test_simple_error
  File "C:\work\Bazaar\plugins\qbzr\lib\tests\test_subprocess.py", line 68, in check_exception_instance
AssertionError: not equal:
a = ('ValueError', {})
b = ('ValueError', {'args': "('Simple',)"})

------------

FAIL: bzrlib.plugins.qbzr.lib.tests.test_subprocess.TestExceptionInstanceSerialisation.test_unreprable_obj
    Text attachment: log
------------

------------
Text attachment: traceback
------------
Traceback (most recent call last):
  File "testtools\runtest.pyo", line 169, in _run_user
  File "testtools\testcase.pyo", line 499, in _run_test_method
  File "C:\work\Bazaar\plugins\qbzr\lib\tests\test_subprocess.py", line 87, in test_unreprable_obj
  File "C:\work\Bazaar\plugins\qbzr\lib\tests\test_subprocess.py", line 68, in check_exception_instance
AssertionError: not equal:
a = ('ValueError', {})
b = ('ValueError', {'args': '[QBzr could not serialize this attribute]'})

------------

======================================================================
FAIL: bzrlib.plugins.qbzr.lib.tests.test_subprocess.TestExceptionInstanceSerialisation.test_non_ascii_bytes
----------------------------------------------------------------------
_StringException: Text attachment: log
------------

------------
Text attachment: traceback
------------
Traceback (most recent call last):
  File "testtools\runtest.pyo", line 169, in _run_user
  File "testtools\testcase.pyo", line 499, in _run_test_method
  File "C:\work\Bazaar\plugins\qbzr\lib\tests\test_subprocess.py", line 79, in test_non_ascii_bytes
  File "C:\work\Bazaar\plugins\qbzr\lib\tests\test_subprocess.py", line 68, in check_exception_instance
AssertionError: not equal:
a = ('OSError', {})
b = ('OSError',
 {'args': "(13, 'Lupa ev\\xc3\\xa4tty...

This is with standalone bzr.exe 2.3.1

Alexander Belchenko пишет:
> This is with standalone bzr.exe 2.3.1

C:\Python26>python.exe
Python 2.6.6 (r266:84297, Aug 24 2010, 18:46:32) [MSC v.1500 32 bit
(Intel)] on win32
Type "help", "copyright", "credits" or "license" for more information.
>>> e = ValueError("Simple")
>>> e.__dict__
{}
>>> e = OSError(13, "Foo bar")
>>> e.__dict__
{}
>>>

OK, so our code to pass the exception attributes never works as we
think. But I don't understand now why we have that bug.

/me confused

--
All the dude wanted was his rug back

It seems we should use dir(e) to get the list of the keys, instead of e.__dict__, because in Python 2.5 and 2.6 the latter is always empty dict.

e.__dict__ works only in Python 2.4 as I can see.

> I'm sorry, but I've just ran the tests and all your three new tests has
> failed. Can you look into it?

Yeay for unittesting catching this before it was merged. Note the fourth test I added last did not fail†. The problem got past me because I assumed the previous attribute selection logic was correct and preserved it, and naturally 2.4 was the version I tested on.

Annoyingly, just switching to `dir(e)` isn't enough, as that includes all attributes on the class and any parent classes which is what I think the original formulation was trying to avoid including.

I'll see if I can find out what's going on and if there's a neater way of doing what qbzr wants.

† Seems that assigning to self does get the attribute in __dict__ which is what BzrError classes tend to do, which is probably why this wasn't noticed before. Getting the attributes of standard Python errors is useful so we do want this code to work for them too.

Martin [gz] пишет:
>> I'm sorry, but I've just ran the tests and all your three new tests has
>> failed. Can you look into it?
>
> Yeay for unittesting catching this before it was merged. Note the fourth test I added last did not fail†. The problem got past me because I assumed the previous attribute selection logic was correct and preserved it, and naturally 2.4 was the version I tested on.
>
> Annoyingly, just switching to `dir(e)` isn't enough, as that includes all attributes on the class and any parent classes which is what I think the original formulation was trying to avoid including.

I'm not sure what do you mean by "all attributes on the class". At least
for OSError/ValueError we may want to filter out message or maybe args
attribute, I don't know. What BzrError attributes is really importnat
for us?

Looking through the code I see only one place where the errors internals
are used:

inside on_failed method:

         if error=='UncommittedChanges':
             self.action_url = self.process_widget.error_data['display_url']
             self.uncommitted_info.show()

So it seems Gary only wanted to show the display_url for
UncommittedChanges error.

So, if we serialize everything and later use only what we need, then it
does not worth to worry about filtering dir(e), does it?

>
> I'll see if I can find out what's going on and if there's a neater way of doing what qbzr wants.

I'm not quite sure what attributes we want to serialize, maybe Gary can
shed some light on that?

> † Seems that assigning to self does get the attribute in __dict__ which is what BzrError classes tend to do, which is probably why this wasn't noticed before. Getting the attributes of standard Python errors is useful so we do want this code to work for them too.

--
All the dude wanted was his rug back

So, qbzr is really care only about BzrErrors (today only UncommittdeChanges error used), not about generic errors. So you can rework your tests for ValueError and OSError to reflect this. And please add test for serializing UncommittedChanges error, so we can see it works as expected.

As for generic errors, I'd better serialize them as error class name plus stringified exception (like str(e) or unicode(e) but I'm not sure the latter will work for all errors), and send that to GUI process as `(error_name, {'str': str(e)})`. When we will decide that we need to process something like OSError we will change the serializer accordingly.

On 16/04/2011 16:48, Martin [gz] wrote:
>> Martin, I'm not quite comfortable with bare `except:`, although I
>> see you explicitly catch and re-raise others exceptions. But why do
>> you use bare except here? What kind of errors we might get there?
>> IIUC we shouldn't get UnicodeError, because we try hard to avoid
>> it. Maybe something related to error in repr? Can you explain that
>> in the comments to that except, please?
>
> So, what I'm not sure about is whether we need to be careful about
> KeyboardInterrupt under Qt, the rest of the file seemed to worry
> about it.
>
> The reasoning of the try/except formulation is as follows: * repr
> invokes __repr__ which can run arbitrary code, so can raise any
> exception at all * Just catching Exception traps KeyboardInterrupt on
> Python 2.4 * Once we're catching the classes moved to BaseException
> in 2.5 first, may as well use the bare except which happens to cover
> string exceptions on versions they're still legal
>
> If KeyboardInterrupt should be being reraised, I should probably add
> that to the try/except around commands.run_bzr too, while Python 2.3
> is still supported.
>
> Is this change based on the right revision, or should I move it to be
> daggy if you want to land it as a bug fix?

Note that a KeyboardInterrupt is very likely to happen in the
subprocess. On *nix, when you press cancel, the main process will send a
interrupt signal to the subprocess, which will cause a KeyboardInterrupt
to be raised. (On Windows we do something different.)

I think that it is best to catch all exceptions here. Essentially this
becomes the top level exception handler, and KeyboardInterrupts should
be reported to the main process like any other exception.

Gary

Thanks for continuing to follow up on this Alexander.

> I'm not sure what do you mean by "all attributes on the class". At least
> for OSError/ValueError we may want to filter out message or maybe args
> attribute, I don't know. What BzrError attributes is really importnat
> for us?

The Python 2.5 switch to using descriptors complicates detecting what are attributes of the error, and what are methods or attributes of the class. In practice, I think we can not worry about this because of the below.

> So it seems Gary only wanted to show the display_url for
> UncommittedChanges error.

I've been working on the assumption this information would all end up somewhere visible. If that's not the case, then being much more specific about what attributes need serialising would be better.

> So, qbzr is really care only about BzrErrors (today only UncommittdeChanges
> error used), not about generic errors. So you can rework your tests for
> ValueError and OSError to reflect this. And please add test for serializing
> UncommittedChanges error, so we can see it works as expected.

Okay, so let's change the initial catch as well to only trap BzrError instances for now too, which is less risky as we know all the code involved there.

> As for generic errors, I'd better serialize them as error class name plus
> stringified exception (like str(e) or unicode(e) but I'm not sure the latter
> will work for all errors), and send that to GUI process as `(error_name,
> {'str': str(e)})`. When we will decide that we need to process something like
> OSError we will change the serializer accordingly.

Right, that would also mean I could fix OSError stringificatin in bzrlib and not have to duplicate the code in qbzr.

> I think that it is best to catch all exceptions here. Essentially this
> becomes the top level exception handler, and KeyboardInterrupts should
> be reported to the main process like any other exception.

Thanks for the extra information Gary. I'm still confused about what you actually want to printed with SUB_ERROR though, as the exceptions are reraised anyway, do you want the attributes of everything or just a few specific ones?

C:\Temp>bzr init-repo 1
Shared repository with trees (format: 1.14)
Location:
  shared repository: 1

C:\Temp>cd 1
C:\Temp\1>

C:\Temp\1>bzr init a
Created a repository tree (format: 1.14)
Using shared repository: C:/Temp/1/

C:\Temp\1>cd a
C:\Temp\1\a>

C:\Temp\1\a>bzr mkdir foo
added foo

C:\Temp\1\a>bzr ci -m1
Committing to: C:/Temp/1/a/
added foo
Committed revision 1.

C:\Temp\1\a>cd ..
C:\Temp\1>

C:\Temp\1>bzr branch a b
Branched 1 revision(s).

C:\Temp\1>cd b
C:\Temp\1\b>

C:\Temp\1\b>bzr mkdir spam
added spam

C:\Temp\1\b>bzr ci -m 2
Committing to: C:/Temp/1/b/
added spam
Committed revision 2.

C:\Temp\1\b>cd ../a
C:\Temp\1\a>

C:\Temp\1\a>bzr mkdir bar
added bar

C:\Temp\1\a>bzr qmerge ../b

If you press OK button then `bzr merge ../b` in the subprocess will fail with UncommittedChanges error and the merge dialog will show you additional frame with Commit and Revert buttons to proceed.

Pressing Commit or Revert window qbzr tries to open the tree pointed by `display_url` attribute of the error instance but in fact it will work only for ascii-only paths due to bug 388437, won't it?

So, Gary, Martin, it seems we need real unicode path to the tree/branch to be able then use it to open the tree/branch. But the question is: why do we need to extract this path from exception at all? We're already operating on the specific tree/branch, and we know it's location. The logic of using display_url is not clear for me.

> Pressing Commit or Revert window qbzr tries to open the tree pointed by
> `display_url` attribute of the error instance but in fact it will work only
> for ascii-only paths due to bug 388437, won't it?

OK, I was wrong. I've just tested it with russian branch name тест and it works as expected, I suppose because actual path is URL file:///C:/Temp/1/%D1%82%D0%B5%D1%81%D1%82/ and bzr eats it without any complains.

Can you test this branch again Alexander? I've junked all the code trying to examine exception instances and gone with a class/attribute whitelist (currently with only one thing) instead.

I agree the use of urlutils.unescape_for_display behaves rather counter-intuitively in UncommittedChanges and have added a test as that's the only case that's currently used.

Martin [gz] пишет:
> Can you test this branch again Alexander? I've junked all the code trying to examine exception instances and gone with a class/attribute whitelist (currently with only one thing) instead.

He-he, you're very conservative now :-)

> I agree the use of urlutils.unescape_for_display behaves rather counter-intuitively in UncommittedChanges and have added a test as that's the only case that's currently used.

OK, thanks. Testing now.

--
All the dude wanted was his rug back

Will merge to 0.20 and trunk. Thank you.