Page MenuHomePhabricator
Create Task
Maniphest T261532

AbuseLog excludes revisions with any type of rev-del from non-oversighters
Closed, ResolvedPublicBUG REPORT
Actions

Description

As an admin,
When I visit Special:AbuseLog
And an entry has a revision associated with it that is revision-deleted at admin level

Expected result: as an admin, I can see the filter entry
Actual result: I don't

Notes:

SpecialAbuseLog::formatRow
public function formatRow( $row, $isListItem = true ) {
	$user = $this->getUser();
	[...]
	$isHidden = self::isHidden( $row );
	// @todo T224203 Try to show the details if the revision is deleted but the AbuseLog entry
	// is not. However, watch out to avoid showing too much stuff.
	if ( !self::canSeeHidden( $user ) && $isHidden ) {
		return '';
	}
	[...]
SpecialAbuseLog::isHidden
/**
 * Given a log entry row, decides whether or not it can be viewed by the public.
 *
 * @param stdClass $row The abuse_filter_log row object.
 *
 * @return bool|string true if the item is explicitly hidden, false if it is not.
 *    The string 'implicit' if it is hidden because the corresponding revision is hidden.
 */
public static function isHidden( $row ) {
	// First, check if the entry is hidden. Since this is an oversight-level deletion,
	// it's more important than the associated revision being deleted.
	if ( $row->afl_deleted ) {
		return true;
	}
	if ( $row->afl_rev_id ) {
		$revision = MediaWikiServices::getInstance()
			->getRevisionLookup()
			->getRevisionById( $row->afl_rev_id );
		if ( $revision && $revision->getVisibility() !== 0 ) {
			return 'implicit';
		}
	}

	return false;
}

Since the revision's visibility is not 0, it is implicitly hidden, which is silently converted to true in the check for whether the user can view the revision.

Details

SubjectRepoBranchLines +/-
Add method to properly check visibility of AbuseLog entriesmediawiki/extensions/AbuseFiltermaster+158 -120
Customize query in gerrit

Related Objects
Search...

Event Timeline

DannyS712 created this task.Aug 28 2020, 9:50 PM
Restricted Application added a project: User-DannyS712. · View Herald TranscriptAug 28 2020, 9:50 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
DannyS712 changed the subtype of this task from "Task" to "Bug Report".Aug 28 2020, 9:50 PM
DannyS712 moved this task from Unsorted to Abuse Filter on the User-DannyS712 board.
DannyS712 updated the task description. (Show Details)
DannyS712 added a subscriber: Daimona.
Daimona added a project: User-Daimona.Aug 28 2020, 10:27 PM

This code path (together with others) has been responsible for countless info leaks, so I'm not very comfortable with touching it.

This is somewhat related to T233324 and the patches there. For now, I'm adding this task to the list of candidates for the upcoming AF overhaul. Any change to that code needs very careful review, ideally by more than one person.

Daimona moved this task from Backlog to Ideas for overhaul on the User-Daimona board.Aug 28 2020, 10:27 PM
Urbanecm subscribed.Aug 28 2020, 11:20 PM
taavi subscribed.Aug 29 2020, 1:43 PM
Daimona edited projects, added AbuseFilter (Overhaul-2020); removed User-Daimona, AbuseFilter.Sep 16 2020, 3:55 PM
Daimona mentioned this in T233324: Allow privileged users to see deleted edits on Special:AbuseLog.
Proc subscribed.Sep 26 2020, 3:07 AM
Daimona mentioned this in T268208: Special:AbuseLog missing filter details line if revision is revision deleted.Nov 19 2020, 2:32 PM
Daimona added a parent task: T273970: Adjust visibility of AbuseLog entries and related items.Feb 5 2021, 12:47 PM
Daimona claimed this task.Sep 15 2021, 8:15 PM
Daimona merged a task: T233324: Allow privileged users to see deleted edits on Special:AbuseLog.Sep 15 2021, 8:27 PM
Daimona merged a task: T268208: Special:AbuseLog missing filter details line if revision is revision deleted.
Daimona added a subscriber: MusikAnimal.
gerritbot added a comment.Sep 15 2021, 8:32 PM

Change 721375 had a related patch set uploaded (by Daimona Eaytoy; author: Daimona Eaytoy):

[mediawiki/extensions/AbuseFilter@master] Add method to properly check visibility of AbuseLog entries

https://gerrit.wikimedia.org/r/721375

gerritbot added a project: Patch-For-Review.Sep 15 2021, 8:32 PM
gerritbot added a comment.Sep 25 2021, 1:04 AM

Change 721375 merged by jenkins-bot:

[mediawiki/extensions/AbuseFilter@master] Add method to properly check visibility of AbuseLog entries

https://gerrit.wikimedia.org/r/721375

Maintenance_bot removed a project: Patch-For-Review.Sep 25 2021, 1:10 AM
Daimona closed this task as Resolved.Sep 25 2021, 1:20 AM
ReleaseTaggerBot added a project: MW-1.38-notes (1.38.0-wmf.2; 2021-09-28).Sep 25 2021, 2:00 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits