Deprecate the trusted data concept in configuration

Trusting data == not validating it, so there's a definite connection to all the config validation work here too 🥸

Ohhh! I've got some good news … while working on another issue (#3230826: Expose API to sort arbitrary config arrays: TypedConfigManager::getCanonicalRepresentation() should override its parent), I found blocking bugs (the validation logic for primitives does not match the config schema checking logic).

So I was forced to write test coverage. And I extracted that into a blocking, test-coverage-only issue. While working on that, I made the whole Config::save(has_trusted_data: TRUE) thing that this issue aims to deprecate tested separately, to make it easy to extract in the future 👍

Please review/help land #3421993: PrimitiveTypeConstraintValidator vs ConfigSchemaChecker: test coverage to establish the status quo, it will help reduce the BC break risk for this issue! 😊

(Thanks @bircher for pointing me to this issue!)

As I get on new API

The only question is how to deal with upgrade tests, when we must import old config

Looking at the test failures, there seem to be a few places left where we are still passing in the $has_trusted_data argument, such as in Drupal\Tests\jsonapi\Functional\JsonApiRelationship.

It looks like this has also found some more places where the schema does not match the data, such as Drupal\Tests\search\Functional\Update\SearchBlockPageIdUpdatePath::testRunUpdates, is this because the test fixture contains the wrong data-type? Should we update the fixture?

I see no reason is to postpone it on not invented api yet, it looks like fixes for test are required and then #5 will be easier to fix

This is very interesting. We talked about doing that during more than a few Drupal events.
I am slightly surprised by how little changes are necessary to make it work. (I mean there are obviously a lot of changes but most of them just remove the deprecated method or argument) But I expected way more impact like in

• core/modules/views/tests/src/Functional/Wizard/ItemsPerPageTest.php
• core/modules/views/src/Hook/ViewsViewsHooks.php
• core/modules/layout_builder/tests/src/Kernel/LayoutBuilderEntityViewDisplayTest.php

Another interesting aspect is that the performance tests had their QueryCount and CacheSetCount reduced. I don't have the time right now unfortunately to dig into the performance impact.

And finally it is great that it leads to some re-ordering in the test config.
There are a couple of todos, but I also don't know at the moment what is best there!

I left a comment on a comment that I stumbled on and it took me a while to understand how the comment would not just address the reviewer of the MR but the reader of the changed code.

Another interesting aspect is that the performance tests had their QueryCount and CacheSetCount reduced. I don't have the time right now unfortunately to dig into the performance impact.

I asked @alexpott about this, it's because of the change in views data to not load all the actions for an entity and pick one. Because that was the only code loading actions on most pages (e.g. pages that don't have any actions on them otherwise), that work just disappears. So it's an indirect result of the MR but still good to drop some useless work on nearly all Drupal sites after every cache clear.

+1000 to this, one concern though:
I think I've used this to create invalid config for the previous state of upgrade tests that actually, well, fix config schema. Probably not in core.
I know it's not the best way to do that (a direct db insert() should be preferred, but trustData() is better for legibility). So this wouldn't be an option anymore?

RE #19
you can just use the new test trait added in this MR. Should we add a CR for that?

I think the CR looks great with these additional changes.
I've re-read the merge request a couple of times now, and I can't find anything I'd ask for more information about or that needs to be changed.

All the remarks I had are now resolved. I don't know what else I can ask for before setting this to rtbc.

One question on the MR, also needs a rebase.

Was a bit concerned we might see an increase in MR pipeline times, but the past couple of runs here are in the range of what we're seeing at the moment (which is extremely variable).

Apart from that un-deprecation (and some temporary confusion about how this would or wouldn't impact config sync) I don't have anything left here.

Committed/pushed to main, thanks!

Will need a rebase for 11.x due to performance tests.

Thank you! As igbinary coming to core it opens up door to #1977206: Default serialization of ConfigEntities

backported https://git.drupalcode.org/project/drupal/-/merge_requests/15048

Committed/pushed to 11.x, thanks!

Nice to see this merged!

One thing to keep in mind:
Even if a configuration was "normalized" at the time it was saved, it can still become denormalized over time:
- For regular config, when the schema changes (e.g. new options introduced)
- For config entities with relationships, like entity view displays, when other config entities are created that cause noise, e.g. new fields.

Doing the normalization on save does not fully prevent that additional noise, but it does improve the situation a lot.