Merge pull request #16449 from jumpserver/dev

v4.10.14
Merge pull request #16316 from jumpserver/dev
2025-12-26 14:02:39 +00:00 · 2025-12-18 17:28:48 +08:00 · 2025-11-20 20:20:02 +08:00 · 2025-10-16 17:30:34 +08:00 · 2025-09-18 16:52:13 +08:00 · 2025-08-21 19:03:18 +08:00
5 changed files with 22 additions and 100 deletions
--- a/apps/accounts/serializers/account/account.py
+++ b/apps/accounts/serializers/account/account.py
@@ -341,6 +341,10 @@ class AssetAccountBulkSerializer(

    @staticmethod
    def _handle_update_create(vd, lookup):
+        ori = Account.objects.filter(**lookup).first()
+        if ori and ori.secret == vd.get('secret'):
+            return ori, False, 'skipped'
+
        instance, value = Account.objects.update_or_create(defaults=vd, **lookup)
        state = 'created' if value else 'updated'
        return instance, True, state
--- a/apps/common/drf/throttling.py
+++ b/apps/common/drf/throttling.py
@@ -1,34 +0,0 @@
-# -*- coding: utf-8 -*-
-from rest_framework.throttling import SimpleRateThrottle
-
-
-class RateThrottle(SimpleRateThrottle):
-
-    def __init__(self):
-        # Override the usual SimpleRateThrottle, because we can't determine
-        # the rate until called by the view.
-        pass
-
-    def allow_request(self, request, view):
-        if getattr(request, "user", None) and request.user.is_authenticated:
-            if getattr(request.user, "is_service_account", False):
-                self.scope = "service_account"
-            else:
-                self.scope = "user"
-        else:
-            self.scope = "anon"
-
-        self.rate = self.get_rate()
-        self.num_requests, self.duration = self.parse_rate(self.rate)
-        return super().allow_request(request, view)
-
-    def get_cache_key(self, request, view):
-        if request.user and request.user.is_authenticated:
-            ident = request.user.pk
-        else:
-            ident = self.get_ident(request)
-
-        return self.cache_format % {
-            'scope': self.scope,
-            'ident': ident
-        }
--- a/apps/jumpserver/settings/libs.py
+++ b/apps/jumpserver/settings/libs.py
@@ -38,14 +38,6 @@ REST_FRAMEWORK = {
        "oauth2_provider.contrib.rest_framework.OAuth2Authentication",
        'authentication.backends.drf.SessionAuthentication',
    ),
-    'DEFAULT_THROTTLE_CLASSES': (
-        'common.drf.throttling.RateThrottle',
-    ),
-    'DEFAULT_THROTTLE_RATES': {
-        'anon': '60/min',
-        'user': '180/min',
-        'service_account': '300/min',
-    },
    'DEFAULT_FILTER_BACKENDS': (
        'django_filters.rest_framework.DjangoFilterBackend',
        'common.drf.filters.SearchFilter',
--- a/apps/settings/tools/ping.py
+++ b/apps/settings/tools/ping.py
@@ -12,8 +12,6 @@ from settings.utils import generate_ips

 # From /usr/include/linux/icmp.h; your milage may vary.
 ICMP_ECHO_REQUEST = 8  # Seems to be the same on Solaris.
-ICMPV6_ECHO_REQUEST = 128
-ICMPV6_ECHO_REPLY = 129


 def checksum(source_string):
@@ -43,15 +41,7 @@ def checksum(source_string):
    return answer


-def _get_icmp_header_offset(received_packet, family):
-    if family != socket.AF_INET6:
-        return 20
-    if received_packet and (received_packet[0] >> 4) == 6:
-        return 40
-    return 0
-
-
-def receive_one_ping(my_socket, id, timeout, family):
+def receive_one_ping(my_socket, id, timeout):
    """
    Receive the ping from the socket.
    """
@@ -65,20 +55,11 @@ def receive_one_ping(my_socket, id, timeout, family):

        time_received = time.time()
        received_packet, addr = my_socket.recvfrom(1024)
-        header_offset = _get_icmp_header_offset(received_packet, family)
-        icmpHeader = received_packet[header_offset:header_offset + 8]
-        if len(icmpHeader) < 8:
-            continue
-        type, code, checksum, packet_id, sequence = struct.unpack("BBHHH", icmpHeader)
-        if family == socket.AF_INET6 and type != ICMPV6_ECHO_REPLY:
-            continue
+        icmpHeader = received_packet[20:28]
+        type, code, checksum, packet_id, sequence = struct.unpack("bbHHh", icmpHeader)
        if packet_id == id:
            bytes = struct.calcsize("d")
-            if len(received_packet) < header_offset + 8 + bytes:
-                continue
-            time_sent = struct.unpack(
-                "d", received_packet[header_offset + 8: header_offset + 8 + bytes]
-            )[0]
+            time_sent = struct.unpack("d", received_packet[28: 28 + bytes])[0]
            return time_received - time_sent

        time_left -= how_long_in_select
@@ -86,19 +67,11 @@ def receive_one_ping(my_socket, id, timeout, family):
            return


-def send_one_ping(my_socket, dest_addr, id, psize, family):
+def send_one_ping(my_socket, dest_addr, id, psize):
    """
    Send one ping to the given >dest_addr<.
    """
-    if family == socket.AF_INET6:
-        dest_addr = dest_addr
-        icmp_type = ICMPV6_ECHO_REQUEST
-    else:
-        if isinstance(dest_addr, tuple):
-            dest_addr = (dest_addr[0], 1)
-        else:
-            dest_addr = (socket.gethostbyname(dest_addr), 1)
-        icmp_type = ICMP_ECHO_REQUEST
+    dest_addr = socket.gethostbyname(dest_addr)

    # Remove header size from packet size
    # psize = psize - 8
@@ -111,45 +84,33 @@ def send_one_ping(my_socket, dest_addr, id, psize, family):
    my_checksum = 0

    # Make a dummy heder with a 0 checksum.
-    header = struct.pack("BBHHH", icmp_type, 0, my_checksum, id, 1)
+    header = struct.pack("bbHHh", ICMP_ECHO_REQUEST, 0, my_checksum, id, 1)
    bytes = struct.calcsize("d")
    data = (psize - bytes) * b"Q"
    data = struct.pack("d", time.time()) + data

-    if family != socket.AF_INET6:
-        # Calculate the checksum on the data and the dummy header.
-        my_checksum = checksum(header + data)
+    # Calculate the checksum on the data and the dummy header.
+    my_checksum = checksum(header + data)

    # Now that we have the right checksum, we put that in. It's just easier
    # to make up a new header than to stuff it into the dummy.
    header = struct.pack(
-        "BBHHH", icmp_type, 0, socket.htons(my_checksum), id, 1
+        "bbHHh", ICMP_ECHO_REQUEST, 0, socket.htons(my_checksum), id, 1
    )
    packet = header + data
-    my_socket.sendto(packet, dest_addr)
-
-
-def resolve_dest_addr(dest_addr):
-    addrinfos = socket.getaddrinfo(
-        dest_addr, None, socket.AF_UNSPEC, socket.SOCK_DGRAM
-    )
-    family, _, _, _, sockaddr = addrinfos[0]
-    return family, sockaddr
+    my_socket.sendto(packet, (dest_addr, 1))  # Don't know about the 1


 def ping(dest_addr, timeout, psize, flag=0):
    """
    Returns either the delay (in seconds) or none on timeout.
    """
-    family, dest_sockaddr = resolve_dest_addr(dest_addr)
-    if family == socket.AF_INET6:
-        icmp = socket.IPPROTO_ICMPV6
-        sock_type = socket.SOCK_DGRAM
-    else:
-        icmp = socket.getprotobyname("icmp")
-        sock_type = socket.SOCK_DGRAM if os.getuid() != 0 else socket.SOCK_RAW
+    icmp = socket.getprotobyname("icmp")
    try:
-        my_socket = socket.socket(family, sock_type, icmp)
+        if os.getuid() != 0:
+            my_socket = socket.socket(socket.AF_INET, socket.SOCK_DGRAM, icmp)
+        else:
+            my_socket = socket.socket(socket.AF_INET, socket.SOCK_RAW, icmp)
    except socket.error as e:
        if e.errno == 1:
            # Operation not permitted
@@ -161,8 +122,8 @@ def ping(dest_addr, timeout, psize, flag=0):
    flag &= 0x00FF
    my_id = process_pre | flag

-    send_one_ping(my_socket, dest_sockaddr, my_id, psize, family)
-    delay = receive_one_ping(my_socket, my_id, timeout, family)
+    send_one_ping(my_socket, dest_addr, my_id, psize)
+    delay = receive_one_ping(my_socket, my_id, timeout)

    my_socket.close()
    return delay
--- a/apps/tickets/handlers/apply_asset.py
+++ b/apps/tickets/handlers/apply_asset.py
@@ -18,7 +18,6 @@ class Handler(BaseHandler):
            self._create_asset_permission()

    def _create_asset_permission(self):
-        self.ticket.refresh_from_db()
        org_id = self.ticket.org_id
        with tmp_to_org(org_id):
            asset_permission = AssetPermission.objects.filter(id=self.ticket.id).first()
Author	SHA1	Message	Date
Jiangjie Bai	a005c78653	Merge pull request #16449 from jumpserver/dev v4.10.14	2025-12-18 17:28:48 +08:00
Jiangjie Bai	1d0db2ba8b	Merge pull request #16316 from jumpserver/dev v4.10.13-lts	2025-11-20 20:20:02 +08:00
老广	e617245b26	merge: to master	2025-10-16 17:30:34 +08:00
Bryan	9280884c1c	Merge pull request #16056 from jumpserver/dev v4.10.8-lts	2025-09-18 16:52:13 +08:00
Bryan	f31994fdcd	Merge pull request #15899 from jumpserver/dev	2025-08-21 19:03:18 +08:00
Bryan	71766418bb	Merge pull request #15742 from jumpserver/dev merge: v4.10.4-lts	2025-07-17 15:12:58 +08:00
Bryan	a9399dd709	Merge pull request #15608 from jumpserver/dev v4.10.2	2025-06-19 20:14:21 +08:00
Bryan	d0cb9e5432	Merge pull request #15412 from jumpserver/dev v4.10.0	2025-05-15 17:11:43 +08:00
老广	558188da90	merge: dev to master Ready to relase	2025-04-17 20:24:45 +08:00
Bryan	ad5460dab8	Merge pull request #15086 from jumpserver/dev v4.8.0	2025-03-20 18:44:44 +08:00
Bryan	4d37dca0de	Merge pull request #14901 from jumpserver/dev v4.7.0	2025-02-20 10:21:16 +08:00
Bryan	2ca4002624	Merge pull request #14813 from jumpserver/dev v4.6.0	2025-01-15 14:38:17 +08:00
Bryan	053d640e4c	Merge pull request #14699 from jumpserver/dev v4.5.0	2024-12-19 16:04:45 +08:00
Bryan	f3acc28ded	Merge pull request #14697 from jumpserver/dev v4.5.0	2024-12-19 15:57:11 +08:00
Bryan	25987545db	Merge pull request #14511 from jumpserver/dev v4.4.0	2024-11-21 19:00:35 +08:00
Bryan	6720ecc6e0	Merge pull request #14319 from jumpserver/dev v4.3.0	2024-10-17 14:55:38 +08:00
老广	0b3a7bb020	Merge pull request #14203 from jumpserver/dev merge: from dev to master	2024-09-19 19:37:19 +08:00
Bryan	56373e362b	Merge pull request #13988 from jumpserver/dev v4.1.0	2024-08-16 18:40:35 +08:00
Bryan	02fc045370	Merge pull request #13600 from jumpserver/dev v4.0.0	2024-07-03 19:04:35 +08:00
Bryan	e4ac73896f	Merge pull request #13452 from jumpserver/dev v3.10.11-lts	2024-06-19 16:01:26 +08:00
Bryan	1518f792d6	Merge pull request #13236 from jumpserver/dev v3.10.10-lts	2024-05-16 16:04:07 +08:00
Bai	67277dd622	fix: 修复仪表盘会话排序数量都是 1 的问题	2024-04-22 19:42:33 +08:00
Bryan	82e7f020ea	Merge pull request #13094 from jumpserver/dev v3.10.9 (dev to master)	2024-04-22 19:39:53 +08:00
Bryan	f20b9e01ab	Merge pull request #13062 from jumpserver/dev v3.10.8 dev to master	2024-04-18 18:01:20 +08:00
Bryan	8cf8a3701b	Merge pull request #13059 from jumpserver/dev v3.10.8	2024-04-18 17:16:37 +08:00
Bryan	7ba24293d1	Merge pull request #12736 from jumpserver/pr@dev@master_fix fix: 解决冲突	2024-02-29 16:38:43 +08:00
Bai	f10114c9ed	fix: 解决冲突	2024-02-29 16:37:10 +08:00
Bryan	cf31cbfb07	Merge pull request #12729 from jumpserver/dev v3.10.4	2024-02-29 16:19:59 +08:00
wangruidong	0edad24d5d	fix: 资产过期消息提示发送失败	2024-02-04 11:41:48 +08:00
ibuler	1f1c1a9157	fix: 修复定时检测用户是否活跃任务无法执行的问题	2024-01-23 09:28:38 +00:00
feng	6c9d271ae1	fix: redis 密码有特殊字符celery beat启动失败	2024-01-22 06:18:34 +00:00
Bai	6ff852e225	perf: 修复 Count 时没有去重的问题	2024-01-22 06:16:25 +00:00
Bryan	baa75dc735	Merge pull request #12566 from jumpserver/master v3.10.2	2024-01-17 07:34:28 -04:00
Bryan	8a9f0436b8	Merge pull request #12565 from jumpserver/dev v3.10.2	2024-01-17 07:23:30 -04:00
Bryan	a9620a3cbe	Merge pull request #12461 from jumpserver/master v3.10.1	2023-12-29 11:33:05 +05:00
Bryan	769e7dc8a0	Merge pull request #12460 from jumpserver/dev v3.10.1	2023-12-29 11:20:36 +05:00
Bryan	2a70449411	Merge pull request #12458 from jumpserver/dev v3.10.1	2023-12-29 11:01:13 +05:00
Bryan	8df720f19e	Merge pull request #12401 from jumpserver/dev v3.10	2023-12-21 15:14:19 +05:00
老广	dabbb45f6e	Merge pull request #12144 from jumpserver/dev v3.9.0	2023-11-16 18:23:05 +08:00
Bryan	ce24c1c3fd	Merge pull request #11914 from jumpserver/dev v3.8.0	2023-10-19 03:37:39 -05:00
Bryan	3c54c82ce9	Merge pull request #11636 from jumpserver/dev v3.7.0	2023-09-21 17:02:48 +08:00