Page MenuHomePhabricator
Create Task
Maniphest T182208

Replace manual IN query with select wrapper in maintenance/storage/checkStorage.php
Closed, ResolvedPublic
Actions

Description

In MediaWiki core, maintenance/storage/checkStorage.php manually puts together SQL fragments to
make IN queries. This is causing false positives in the SecurityCheckPlugin script.

Instead we should use the functionality of the $dbr->select() to generate them automatically.

Things like:

$res = $dbr->select( 'text', [ 'old_id', 'old_flags' ],
	'old_id IN (' . implode( ',', $this->oldIdMap ) . ')', __METHOD__ );

Should be replaced with

$res = $dbr->select(
	'text',
	[ 'old_id', 'old_flags' ],
	[ 'old_id' => $this->oldIdMap ],
	 __METHOD__
);

You are expected to provide a patch in Wikimedia Gerrit which replaces all 4 instances of manual IN construction in maintenance/storage/checkStorage.php.
See https://www.mediawiki.org/wiki/Gerrit/Tutorial for how to set up Git and Gerrit.

Details

SubjectRepoBranchLines +/-
maintenance: Replace manual IN query with select wrappermediawiki/coremaster+14 -6
Customize query in gerrit

Related Objects

Event Timeline

Bawolff created this task.Dec 6 2017, 4:42 PM
Restricted Application added subscribers: TerraCodes, Aklapper. · View Herald TranscriptDec 6 2017, 4:42 PM
Aklapper added a project: MediaWiki-Maintenance-system.Dec 6 2017, 4:47 PM
Aklapper updated the task description. (Show Details)
Bawolff moved this task from Proposed tasks to Imported in GCI Site on the Google-Code-in-2017 board.Dec 6 2017, 6:55 PM
gerritbot subscribed.Dec 12 2017, 11:29 AM

Change 397776 had a related patch set uploaded (by Eflyjason; owner: Eflyjason):
[mediawiki/core@master] maintenance: Replace manual IN query with select wrapper

https://gerrit.wikimedia.org/r/397776

gerritbot added a project: Patch-For-Review.Dec 12 2017, 11:29 AM
Bawolff closed this task as Resolved.Dec 12 2017, 2:35 PM
Bawolff claimed this task.
Bawolff removed projects: Patch-For-Review, MediaWiki-Maintenance-system.
gerritbot added a comment.Dec 12 2017, 2:41 PM

Change 397776 merged by jenkins-bot:
[mediawiki/core@master] maintenance: Replace manual IN query with select wrapper

https://gerrit.wikimedia.org/r/397776

Bawolff mentioned this in T182689: Replace manual IN query with select wrapper in maintenance/storage/checkStorage.php [blob_id].Dec 12 2017, 2:44 PM
ReleaseTaggerBot added a project: MW-1.31-release-notes (WMF-deploy-2017-12-12 (1.31.0-wmf.12)).Dec 12 2017, 3:00 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL