Page MenuHomePhabricator
Create Task
Maniphest T235355

REST Handler::getValidatedParams() return contract
Closed, ResolvedPublic
Actions

Description

In an unrelated code review, it looks like there might be a code smell in Handler::getValidatedParams.

From my basic understanding, the method is allowed to return null or array, where null indicates we're early in the processing and validate() hasn't been called yet, and array is a fully-formed array of parameters.

The PageHistoryHandler::run implementation, requires its return value to be an array, but has no way to enforce this currently, nor is it responsible for handling the error. At glance, it would seem like one of two things should happen:

  1. For getValidatedParams() to enforce that it only be called after validate() and thus throw if that is the case (instead of null).
  2. Or, if null values from getValidatedParams() are needed elsewhere, for Handler::run to inject this array upfront, so that it doesn't have to pull it from getValidatedParams() and thus need to support null returns.

This is additionally problematic because if this contract were to be broken right now by accident, there is not even a run-time error. The null will silently tolerate the bracket-access on its keys and continue on, emitting warnings at every step of the way, but not stopping for anything, likely not producing a pre-determined outcome, perhaps even a successful response with unintended data.

This came up in reviewing https://gerrit.wikimedia.org/r/542672 due to the current code being flagged by Phan as "suspicious".

Details

SubjectRepoBranchLines +/-
REST: Make getValidatedParams() always return an arraymediawiki/coremaster+7 -6
Customize query in gerrit

Event Timeline

Krinkle created this task.Oct 12 2019, 11:49 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 12 2019, 11:49 PM
Daimona subscribed.Oct 13 2019, 8:49 AM
Anomie moved this task from Inbox to Triage Meeting Inbox on the Platform Engineering board.Oct 15 2019, 3:11 PM
Pchelolo edited projects, added Platform Team Initiatives (MW REST API in PHP); removed Platform Engineering.Oct 15 2019, 8:14 PM
gerritbot added a comment.Nov 15 2019, 1:27 AM

Change 550991 had a related patch set uploaded (by Tim Starling; owner: Tim Starling):
[mediawiki/core@master] REST: Make getValidatedParams() always return an array

https://gerrit.wikimedia.org/r/550991

gerritbot added a project: Patch-For-Review.Nov 15 2019, 1:27 AM
gerritbot added a comment.Nov 15 2019, 5:07 AM

Change 550991 merged by jenkins-bot:
[mediawiki/core@master] REST: Make getValidatedParams() always return an array

https://gerrit.wikimedia.org/r/550991

Maintenance_bot removed a project: Patch-For-Review.Nov 15 2019, 5:10 AM
ReleaseTaggerBot added a project: MW-1.35-notes (1.35.0-wmf.8; 2019-11-26).Nov 15 2019, 6:00 AM
Krinkle closed this task as Resolved.Jan 8 2020, 4:49 PM
Krinkle assigned this task to tstarling.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL