commonswiki.uploadstash table has unexpectedly old data
Open, Needs TriagePublic
Actions

Assigned To

None

Authored By

	matmarex
	Mar 20 2016, 4:42 AM

Description

commonswiki.uploadstash table has unexpectedly old data. I'm not sure if this is specific to analytics slaves or also in production. Stashes files that are not published are supposed to be purged every six hours.

mysql:research@analytics-store.eqiad.wmnet [commonswiki]> select left(us_timestamp,8), count(*) from uploadstash group by left(us_timestamp,8);
+----------------------+----------+
| left(us_timestamp,8) | count(*) |
+----------------------+----------+
| 20120914             |        2 |
| 20130131             |        1 |
| 20130211             |        1 |
| 20130215             |        3 |
| 20130220             |        1 |
| 20130428             |        2 |
| 20131113             |        1 |
| 20131211             |        1 |
| 20140111             |        1 |
| 20140418             |        1 |
| 20140420             |        2 |
| 20140501             |        1 |
| 20140526             |        1 |
| 20140528             |        1 |
| 20140729             |        1 |
| 20140903             |        1 |
| 20140912             |        1 |
| 20140914             |        1 |
| 20140925             |        1 |
| 20141012             |        1 |
| 20141013             |        1 |
| 20141108             |        1 |
| 20150122             |        1 |
| 20150504             |        1 |
| 20150916             |        1 |
| 20160318             |     3136 |
| 20160319             |     3859 |
| 20160320             |      592 |
+----------------------+----------+
28 rows in set (0.07 sec)

I don't know what to think of this, so I'm filing as security bug. Someone please tell me what the fuck is going on here. I've recently filed bugs about both old rows in other tables that should've been deleted and upload stash keeping other data that should've been deleted, so I'm somewhat agitated by finding another bug that combines those two.

Related Objects

Mentioned Here: rOPUPf65a3264c993: this too shall be quiet

Event Timeline

matmarex created this task.Mar 20 2016, 4:42 AM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 20 2016, 4:43 AM

Confirming that the SQL query produces the same result (except for today's data) on the commonswiki master:

mysql:wikiadmin@db1040 [commonswiki]> select left(us_timestamp,8), count(*) from uploadstash group by left(us_timestamp,8);
+----------------------+----------+
| left(us_timestamp,8) | count(*) |
+----------------------+----------+
| 20120914             |        2 |
| 20130131             |        1 |
| 20130211             |        1 |
| 20130215             |        3 |
| 20130220             |        1 |
| 20130428             |        2 |
| 20131113             |        1 |
| 20131211             |        1 |
| 20140111             |        1 |
| 20140418             |        1 |
| 20140420             |        2 |
| 20140501             |        1 |
| 20140526             |        1 |
| 20140528             |        1 |
| 20140729             |        1 |
| 20140903             |        1 |
| 20140912             |        1 |
| 20140914             |        1 |
| 20140925             |        1 |
| 20141012             |        1 |
| 20141013             |        1 |
| 20141108             |        1 |
| 20150122             |        1 |
| 20150504             |        1 |
| 20150916             |        1 |
| 20160318             |     3136 |
| 20160319             |     3859 |
| 20160320             |      612 |
+----------------------+----------+
28 rows in set (0.13 sec)

matmarex renamed this task from commonswiki.uploadstash table has unexpectedly old data (analytics slaves only?) to commonswiki.uploadstash table has unexpectedly old data.Mar 20 2016, 5:06 AM

I guess the best debugging step, would be for someone to run cleanupUploadStash.php by hand, and see if its outputting any errors.

After some code browsing, I don't think this is actually a security issue (it's just really lame), this could probably be made public.

In T130478#2138065, @Bawolff wrote:

I guess the best debugging step, would be for someone to run cleanupUploadStash.php by hand, and see if its outputting any errors.

It is apparently outputting so many that the cron job redirects the output to /dev/null (f65a3264c9936a1cfd790d4bc60bebd0530adabc).

https://github.com/wikimedia/operations-puppet/blob/production/modules/mediawiki/manifests/maintenance/cleanup_upload_stash.pp

matmarex added a project: SRE-swift-storage.Mar 21 2016, 1:14 PM

In T130478#2138065, @Bawolff wrote:

I guess the best debugging step, would be for someone to run cleanupUploadStash.php by hand, and see if its outputting any errors.

It produces 30 errors, all like this:

Failed removing stashed upload with key: ${KEY} (UploadStashBadPathException)

Then it outputs a bunch of progress counts, which by itself would be enough to result in f65a3264c I believe.

Trying to delete those 30 keys with mwrepl reveals the same message in all those UploadStashBadPathExceptions: path doesn't exist. My guess is that the actual files were deleted long ago, and now the maintenance script can't take care of the database entries because it errors out trying to load them.

• csteipp added a project: Privacy.Mar 22 2016, 6:30 PM

Trying to delete those 30 keys with mwrepl reveals the same message in all those UploadStashBadPathExceptions: path doesn't exist. My guess is that the actual files were deleted long ago, and now the maintenance script can't take care of the database entries because it errors out trying to load them.

If someone can confirm those 30 manually, can we just delete the db entries (manually), in that case?

The script should be able to delete any "orphaned" files, if they still remain, so yeah, we should be able to just remove the database entries.

I ran a similar query against all databases (select count(*) from uploadstash where us_timestamp<'20160320'), and stale uploadstash entries are present on commonswiki (30), enwikivoyage (1), hewiki (4) and testwiki (1).

We removed the Security tag and bug settings since this seems to have no security implications.

Legoktm changed the visibility from "Custom Policy" to "Public (No Login Required)".Mar 22 2016, 9:18 PM

Restricted Application added a subscriber: Steinsplitter. · View Herald TranscriptMar 22 2016, 9:18 PM

Having been recently reminded of this task over my foul language in the opening comment, I re-checked it and the old rows dating back to 2012 still exist in the database.

There is also a bunch of new ones from 2016-2018, so I guess this might require fixing the 'cleanupUploadStash.php' maintenance script rather than a one-off DELETE query.

• JFishback_WMF moved this task from Intake to Backlog on the Privacy board.Mar 12 2020, 12:26 AM

DannyS712 subscribed.Mar 15 2020, 6:57 AM

Aklapper removed subscribers: • dpatrick, Anomie.Oct 16 2020, 5:01 PM

Umherirrender merged a task: T230179: clean_upload_stash maintenance cron fails to delete files on commons wiki (backend-fail-delete).Jul 4 2023, 7:50 PM

Umherirrender added a subscriber: Dzahn.

Thanks for closing the other ticket as duplicate. I was merely reporter of an issue though. Since I have nothing to contribute to actually fix it, let me remove myself. Cheers

Dzahn unsubscribed.Jul 5 2023, 5:40 PM

commonswiki.uploadstash table has unexpectedly old dataOpen, Needs TriagePublicActions

Description

Related Objects

Event Timeline

commonswiki.uploadstash table has unexpectedly old data
Open, Needs TriagePublic
Actions