Page MenuHomePhabricator
Create Task
Maniphest T191740

Bundle AbuseFilter extension with MediaWiki
Closed, ResolvedPublic
Actions

Description

  • Passed security review or already Wikimedia deployed
  • Voting CI structure tests
  • Runs MediaWiki-CodeSniffer
  • Runs phan
  • Supports MySQL, SQLite, and Postgres (if there are schema changes)
  • GPL v2 or later compatible license
  • Extension's default configuration provides optimal experience
  • Tested with web installer

Details

SubjectRepoBranchLines +/-
Add AbuseFilter to the MW tarballmediawiki/tools/releasemaster+1 -0
Rearrange config to provide better experiencemediawiki/extensions/AbuseFiltermaster+13 -4
Rearrange config to provide better experiencemediawiki/extensions/AbuseFilterwmf/1.34.0-wmf.17+13 -4
Add default rights configmediawiki/extensions/AbuseFiltermaster+24 -7
Customize query in gerrit

Related Objects
Search...

StatusSubtypeAssignedTask
 ResolvedNoneT254646 Reconsidering how we name things
 OpenNoneT281536 Schema:EditAttemptStep uses non-inclusive language.
 OpenNoneT279275 Move all the functionality of {Spam,Title}Blacklist extensions into AbuseFilter and retire them
 ResolvedNoneT290934 Expand the set of bundled extensions and skins in MediaWiki 1.38
 ResolvedDaimonaT191740 Bundle AbuseFilter extension with MediaWiki
 ResolvedDaimonaT192325 Setup phan for AbuseFilter
Restricted Task
 ResolvedDaimonaT223654 AbuseFilterCheckMatch API reveals suppressed edits and usernames (CVE-2021-31547)
 ResolvedDaimonaT213006 Create a script to update afl_var_dump, drop back-compat code
 ResolvedUrbanecmT246539 Dry-run, then actually run updateVarDumps
 DeclinedDaimonaT246938 How to update/delete ExternalStore entries?
 ResolvedDaimonaT252696 Find a good way to run the updateVarDumps script on large wikis
 ResolvedDaimonaT152394 AbuseFilter privacy concerns on action == 'createaccount' and 'accountname' (CVE-2021-31552)
 ResolvedDaimonaT71367 page_recent_contributors leaks revdeleted user names (CVE-2021-31545)
 ResolvedDaimonaT199544 Make AbuseFilter work on PostgreSQL and SQLite (epic)
 Resolvedmatej_suchanekT62639 Database: SQLite and PG are missing columns
 ResolvedDaimonaT42757 Joins on INTEGER and TEXT fail with PostgreSQL
 ResolvedDaimonaT193068 Add support for SQLite and postgre when searching patterns
 Resolvedmatej_suchanekT199506 Investigate possible issues with PostgreSQL
 Resolvedmatej_suchanekT199507 Investigate possible issues with SQLite
 ResolvedPRODUCTION ERRORDaimonaT221357 Read timeout reached while viewing AbuseLog
 ResolvedDaimonaT251967 quibble-vendor-sqlite-php72-docker is broken by AbuseFilter
 ResolvedUmherirrenderT259377 Migrate AbuseFilter to Abstract Schema
 ResolvedDaimonaT220791 afl_filter should be split in afl_filter_id and afl_global
 ResolvedMarosteguiT234052 Add abuse_filter_log.afl_filter_id and afl_global columns
 Resolved BstormT234615 Wikireplicas changes for abuse_filter_log including two new columns
 ResolvedDaimonaT269712 Migrate afl_filter to afl_filter_id and afl_global
 ResolvedUrbanecmT269713 Run the MigrateAflFilter script for AbuseFilter
 ResolvedMarosteguiT291719 Remove abuse_filter_log.afl_filter column and adjust schema consequently from Wikimedia production
 ResolvedrookT291806 Remove afl_filter column from the views

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
Legoktm added a comment.Sep 2 2018, 8:04 PM
In T191740#4427131, @Daimona wrote:

I guess "Extension's default configuration provides optimal experience" is satisfied, but is there a specific requirement list for it?

Just that the majority of wiki sysadmins will not need to change any of the defaults after installing.

Also, same question for "Tested with web installer".

Run through the web installer, installing MediaWiki+AbuseFilter, and then do a basic test that everything works as expected.

Daimona added a comment.Sep 6 2018, 4:01 PM

Looking at WMF config, these are my thoughts about default configuration:

  1. Regarding available actions (AbuseFilterActions), I think we should remove blockautopromote (unused), while 'block' can probably be left in place.
  2. We need to decide whether AF major rights (modify, viewprivate, log-detail ...) should be assigned to sysops or to a dedicated group. I think for WMF wiki the preferred option is to give all these rights to sysops only.
  3. We need to decide who to assign basic rights (abusefilter-view, abusefilter-log). I think the most used configs are to give them either to everyone ('*') or autoconfirmed.
  4. Profiling should be enabled by default, as soon as https://gerrit.wikimedia.org/r/#/c/201104/ is merged
  5. Maybe a default should be specified for AbuseFilterNotifications (rc?), while AbuseFilterNotificationsPrivate should probably be left false

Discussing the points above should be enough to make the default configuration optimal.

Daimona added a project: User-Daimona.Sep 15 2018, 12:34 PM
Daimona moved this task from Backlog to Future on the User-Daimona board.
Legoktm moved this task from Backlog to Bundling additions on the MW-1.32-release board.Oct 9 2018, 12:40 AM
Daimona updated the task description. (Show Details)Oct 20 2018, 10:07 AM
Daimona added a comment.Oct 20 2018, 10:09 AM

Works with web installer. The DB part is dependent on several tasks, so it won't probably be completed too soon. As for the user rights, I'm adding to my comment above the fact that "abusefilter-modify-restricted" has to be assigned by default: the default config has "dangerous" actions enabled and categorized as restricted, but the right is unassigned, so no-one can edit filters with such actions. Giving it to sysop would be the natural solution.

gerritbot added a comment.Oct 20 2018, 12:03 PM

Change 468696 had a related patch set uploaded (by Daimona Eaytoy; owner: Daimona Eaytoy):
[mediawiki/extensions/AbuseFilter@master] Rearrange config to provide better experience

https://gerrit.wikimedia.org/r/468696

gerritbot added a project: Patch-For-Review.Oct 20 2018, 12:03 PM
CCicalese_WMF renamed this task from Bundle AbuseFilter extension with MW 1.32 to Bundle AbuseFilter extension with MediaWiki.Nov 10 2018, 6:49 PM
CCicalese_WMF mentioned this in T209220: Expand the set of bundled extensions and skins in MediaWiki 1.34.Nov 10 2018, 6:58 PM
CCicalese_WMF edited parent tasks, added: T209220: Expand the set of bundled extensions and skins in MediaWiki 1.34; removed: T196650: Expand the set of bundled extensions and skins in MediaWiki 1.32.Nov 10 2018, 7:05 PM
CCicalese_WMF edited projects, added MW-1.33-release; removed MW-1.32-release.Nov 21 2018, 3:07 PM
MGChecker moved this task from Backlog to Bundling additions on the MW-1.33-release board.Dec 21 2018, 9:26 AM
Daimona moved this task from Future to Under review on the User-Daimona board.Jan 25 2019, 2:39 PM
gerritbot added a comment.Mar 29 2019, 6:09 PM

Change 468696 had a related patch set uploaded (by Daimona Eaytoy; owner: Daimona Eaytoy):
[mediawiki/extensions/AbuseFilter@master] Rearrange config to provide better experience

https://gerrit.wikimedia.org/r/468696

Tgr mentioned this in T173055: Better defaults for preventing spam.May 9 2019, 4:37 PM
Jdforrester-WMF edited projects, added MW-1.34-release; removed MW-1.33-release.Jun 7 2019, 9:00 PM
Krinkle moved this task from Blocker to Bundling additions on the MW-1.34-release board.Jun 15 2019, 12:28 AM
gerritbot added a comment.Aug 15 2019, 11:43 AM

Change 530349 had a related patch set uploaded (by Daimona Eaytoy; owner: Daimona Eaytoy):
[mediawiki/extensions/AbuseFilter@wmf/1.34.0-wmf.17] Rearrange config to provide better experience

https://gerrit.wikimedia.org/r/530349

gerritbot added a comment.Aug 15 2019, 12:07 PM

Change 530349 merged by jenkins-bot:
[mediawiki/extensions/AbuseFilter@wmf/1.34.0-wmf.17] Rearrange config to provide better experience

https://gerrit.wikimedia.org/r/530349

Stashbot added a comment.Aug 15 2019, 12:14 PM

Mentioned in SAL (#wikimedia-operations) [2019-08-15T12:14:47Z] <urbanecm@deploy1001> Synchronized wmf-config/: SWAT: 7e95f6d: Update AbuseFilter config to keep the status quo (T191740, T200032, T226987) (duration: 00m 49s)

Stashbot mentioned this in T200032: Some wikis have block enabled but don't assign the abusefilter-modify-restricted right to anyone.Aug 15 2019, 12:14 PM
Stashbot mentioned this in T226987: Missing abusefilter-log-private right in $wgGrantPermissions.

Mentioned in SAL (#wikimedia-operations) [2019-08-15T12:16:18Z] <urbanecm@deploy1001> Synchronized php-1.34.0-wmf.17/extensions/AbuseFilter/extension.json: SWAT: rEABFe9422c5c92cb: Rearrange config to provide better experience (T191740, T200032, T226987) (duration: 00m 47s)

Daimona updated the task description. (Show Details)Aug 15 2019, 12:27 PM
gerritbot added a comment.Aug 15 2019, 12:40 PM

Change 468696 merged by jenkins-bot:
[mediawiki/extensions/AbuseFilter@master] Rearrange config to provide better experience

https://gerrit.wikimedia.org/r/468696

CCicalese_WMF added a comment.Sep 13 2019, 4:34 PM
In T191740#4682331, @Daimona wrote:

Works with web installer. The DB part is dependent on several tasks, so it won't probably be completed too soon.

@Daimona, what is the status of the DB work? Will this be ready for 1.34? The release branch is being cut on September 30.

CCicalese_WMF triaged this task as Medium priority.Sep 13 2019, 4:48 PM
Daimona added a comment.Sep 13 2019, 4:49 PM

@CCicalese_WMF It depends... Right now we only have two known incompatibilities with Postgres.

For the first one (T193068), there's https://gerrit.wikimedia.org/r/#/c/mediawiki/extensions/AbuseFilter/+/503562/. That patch (and its two depends-on) are something that maybe CPT could review?

As for the second (T42757): I had tried to fix it by using string casts. While the incompatibility was fixed, casting a primary key slowed down the affected queries a lot (T221357), hence we had to revert. There's a proper fix at https://gerrit.wikimedia.org/r/#/c/mediawiki/extensions/AbuseFilter/+/459818/ (which would also pay some tech debt), but it requires a schema change, so I don't think that's doable before the branch cut. We could try to get it done before the 1.35. It would need some review as well.

DannyS712 subscribed.Sep 13 2019, 4:49 PM
In T191740#5491206, @CCicalese_WMF wrote:
In T191740#4682331, @Daimona wrote:

Works with web installer. The DB part is dependent on several tasks, so it won't probably be completed too soon.

@Daimona, what is the status of the DB work? Will this be ready for 1.34? The release branch is being cut on September 30.

Not addressed to me, but I suggest holding of until 1.35. There are a few security tickets that I have permission to view that are still open (and probably some that I cannot see) including T224203 and T223654, as well as (the less urgent) T230320 (which will be more relevant if bundled)

CCicalese_WMF edited projects, added MW-1.35-release; removed MW-1.34-release.Sep 13 2019, 4:53 PM

Thank you, @Daimona and @DannyS712! I will bump to 1.35 and have requested CPT review for the patches related to T193068.

CCicalese_WMF edited parent tasks, added: T232854: Expand the set of bundled extensions and skins in MediaWiki 1.35; removed: T209220: Expand the set of bundled extensions and skins in MediaWiki 1.34.Sep 13 2019, 4:53 PM
CCicalese_WMF mentioned this in T232854: Expand the set of bundled extensions and skins in MediaWiki 1.35.
CCicalese_WMF added subtasks: Restricted Task, T223654: AbuseFilterCheckMatch API reveals suppressed edits and usernames (CVE-2021-31547), Restricted Task.Sep 13 2019, 4:58 PM
Daimona added a comment.Sep 13 2019, 6:04 PM

@CCicalese_WMF Thanks! I'd also appreciate a lot some review for T220791, which is a bit more delicate...

As for the security issues: yes, of course there are others, with varying severities. I don't know how strict the requirements should be for bundling an extension in the tarball, but of the three above I'd say that T230320 is not so urgent. T152394 is IMHO more important (and a bit harder to fix).

I'd also like to fix T213006 first, so that people will start with a sane version. That one is blocked on T34478 and T213478, for which I'd also like some input from CPT. Resolving that task would mean paying a lot of tech debt, a decent cleanup, and the disappearing of several issues like T187731 (security).

As a side note, waiting for 1.35 would also give us time to make some progresses in T156095, which is good.

DannyS712 added a comment.Sep 13 2019, 6:14 PM

@Daimona would you be willing to add me to T152394 and/or T187731?

Daimona added a comment.Sep 13 2019, 6:47 PM
In T191740#5491715, @DannyS712 wrote:

@Daimona would you be willing to add me to T152394 and/or T187731?

Those task contain personal info leaks, so I'm unsure about the policy to add people to them (specifically regarding NDA). For me it's fine to add you, but I don't want to make anything wrong. I can definitely say that T187731 is not too bad, and it's not exploitable by normal users.

CCicalese_WMF added a subtask: T213006: Create a script to update afl_var_dump, drop back-compat code.Sep 13 2019, 9:08 PM
Daimona added a subtask: T152394: AbuseFilter privacy concerns on action == 'createaccount' and 'accountname' (CVE-2021-31552).Sep 16 2019, 2:19 PM
Daimona added a subtask: T71367: page_recent_contributors leaks revdeleted user names (CVE-2021-31545).Sep 18 2019, 12:32 PM
Daimona closed subtask Restricted Task as Resolved.Sep 19 2019, 2:24 PM
Daimona removed a subtask: Restricted Task.Sep 22 2019, 5:25 PM
Krinkle moved this task from Blocker to Bundling on the MW-1.35-release board.Oct 11 2019, 10:45 PM
Jdforrester-WMF mentioned this in T246381: Expand the set of bundled extensions and skins in MediaWiki 1.36.Feb 27 2020, 9:15 PM
Jdforrester-WMF edited projects, added MW-1.36-release; removed MW-1.35-release.Jul 8 2020, 10:07 AM
Jdforrester-WMF edited parent tasks, added: T246381: Expand the set of bundled extensions and skins in MediaWiki 1.36; removed: T232854: Expand the set of bundled extensions and skins in MediaWiki 1.35.
Jdforrester-WMF mentioned this in T246539: Dry-run, then actually run updateVarDumps.Jul 14 2020, 10:16 AM
Legoktm moved this task from Blocker to Bundling on the MW-1.36-release board.Jul 15 2020, 4:30 AM
Reedy changed the status of subtask T199544: Make AbuseFilter work on PostgreSQL and SQLite (epic) from Open to Stalled.Jul 31 2020, 5:18 PM
Daimona moved this task from Under review to Ideas for overhaul on the User-Daimona board.Aug 20 2020, 12:07 PM
Daimona edited projects, added AbuseFilter (Overhaul-2020); removed User-Daimona, AbuseFilter.Sep 16 2020, 3:29 PM

Hoping that we'll be able to resolve all blockers within the overhaul.

Daimona closed subtask T213006: Create a script to update afl_var_dump, drop back-compat code as Resolved.Dec 8 2020, 5:30 PM
Jdforrester-WMF added a parent task: T279275: Move all the functionality of {Spam,Title}Blacklist extensions into AbuseFilter and retire them.Apr 5 2021, 12:28 AM
Jdforrester-WMF mentioned this in T279842: Expand the set of bundled extensions and skins in MediaWiki 1.37.Apr 10 2021, 10:47 PM
Reedy closed subtask T71367: page_recent_contributors leaks revdeleted user names (CVE-2021-31545) as Resolved.Apr 12 2021, 11:34 PM
Reedy closed subtask T223654: AbuseFilterCheckMatch API reveals suppressed edits and usernames (CVE-2021-31547) as Resolved.Apr 13 2021, 12:22 AM
Daimona removed a subtask: T199544: Make AbuseFilter work on PostgreSQL and SQLite (epic).Apr 13 2021, 10:00 AM
Jdforrester-WMF subscribed.Apr 13 2021, 2:41 PM

[Moving specific discussion here.]

In T246381#6993548, @Daimona wrote:
In T246381#6992559, @Jdforrester-WMF wrote:

I think it's reasonable to put in the release notes that people should run the migration script. The vast majority of sysadmins won't have AbuseFilter installed, and the few that already installed it manually will have a small single extra task alongside the others they already have. I think expecting it in 1.36 is fine.

WFM. I've removed the subtask as it's no longer a blocker. Is there anything else I could do to get it bundled? I'm not really familiar with the process.

Sorry, I was insufficiently clear. Support for postgres and sqlite is a requirement for bundling extensions.

That's fine, we can just move this to 1.37. :-)

Jdforrester-WMF edited parent tasks, added: T279842: Expand the set of bundled extensions and skins in MediaWiki 1.37; removed: T246381: Expand the set of bundled extensions and skins in MediaWiki 1.36.Apr 13 2021, 2:41 PM
Jdforrester-WMF added a subtask: T199544: Make AbuseFilter work on PostgreSQL and SQLite (epic).
Jdforrester-WMF edited projects, added MW-1.37-release; removed MW-1.36-release.
Jdforrester-WMF moved this task from Blocker to Bundling on the MW-1.37-release board.
Daimona added a comment.Apr 13 2021, 3:43 PM
In T191740#6994610, @Jdforrester-WMF wrote:

Sorry, I was insufficiently clear. Support for postgres and sqlite is a requirement for bundling extensions.

That's fine, we can just move this to 1.37. :-)

Oh, sorry :-) Yes, that works too.

sbassett closed subtask T152394: AbuseFilter privacy concerns on action == 'createaccount' and 'accountname' (CVE-2021-31552) as Resolved.Apr 23 2021, 6:56 PM
Jdforrester-WMF edited projects, added MW-1.38-release; removed MW-1.37-release.Aug 25 2021, 5:53 PM

I note that T199544 is blocked by T220791 which is marked as to do in 1.38. :-(

Daimona added a comment.Aug 25 2021, 7:04 PM
In T191740#7309532, @Jdforrester-WMF wrote:

I note that T199544 is blocked by T220791 which is marked as to do in 1.38. :-(

Yeah 1.38 is the current target for this. Once 1.37 is cut I'll rebase r488482 and put it up for review, so that we can move this forward as soon as possible.

Tgr moved this task from Blocker to Bundling on the MW-1.38-release board.Sep 7 2021, 4:35 AM
Tgr mentioned this in T290934: Expand the set of bundled extensions and skins in MediaWiki 1.38.Sep 14 2021, 12:19 AM
Tgr added a parent task: T290934: Expand the set of bundled extensions and skins in MediaWiki 1.38.Sep 14 2021, 12:30 AM
Daimona closed subtask T199544: Make AbuseFilter work on PostgreSQL and SQLite (epic) as Resolved.Oct 26 2021, 8:41 PM
Daimona updated the task description. (Show Details)
Jdforrester-WMF added a comment.Jan 4 2022, 6:07 PM

OK, let's do this.

gerritbot added a comment.Jan 4 2022, 6:09 PM

Change 751479 had a related patch set uploaded (by Jforrester; author: Jforrester):

[mediawiki/tools/release@master] Add AbuseFilter to the MW tarball

https://gerrit.wikimedia.org/r/751479

gerritbot added a comment.Jan 4 2022, 6:12 PM

Change 751479 merged by jenkins-bot:

[mediawiki/tools/release@master] Add AbuseFilter to the MW tarball

https://gerrit.wikimedia.org/r/751479

Zabe subscribed.Jan 4 2022, 6:12 PM
Daimona removed a project: Patch-For-Review.Mar 4 2022, 12:09 PM

Can this be closed now?

Jdforrester-WMF closed this task as Resolved.Mar 4 2022, 10:32 PM
Jdforrester-WMF assigned this task to Daimona.

Yup!

Kghbln subscribed.EditedMar 29 2022, 9:23 AM

Documented for inclusion in 1.38.+ here and there. EDIT: Forgot this spot.

Jdforrester-WMF added a comment.Mar 29 2022, 12:57 PM
In T191740#7813455, @Kghbln wrote:

Documented for inclusion in 1.38.+ here and there.

Thanks!

EDIT: Forgot this spot.

That's not a normal section; I've added it into the actual release notes, which will be copy-pasted there during the release process. But no worries, we can clean things up, it's a wiki after all.

Kghbln added a comment.Mar 29 2022, 4:37 PM

EDIT: Forgot this spot.

That's not a normal section; I've added it into the actual release notes, which will be copy-pasted there during the release process. But no worries, we can clean things up, it's a wiki after all.

Indeed. No worries. I just took the link from the bundled template and added the section to the page. Did not put much thought into it. Probably the template needs to be tweaked a bit.

Izno removed a parent task: T279842: Expand the set of bundled extensions and skins in MediaWiki 1.37.Dec 28 2022, 10:00 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL