Page MenuHomePhabricator
Create Task
Maniphest T264394

Ensure content of ParserOutput is safe to serialize
Closed, ResolvedPublic
Actions

Description

ParserOutput provides two methods to attach arbitrary data: setProperty() and setExtensionData(). We need to ensure the data passed into these methods is safe to serialize, for two reasons:

  • ParserOutput should be kept small. Serializing arbitrary objects can easily drag in large amounts of data, causing issues with cache capacity.
  • We want to start using JSON for serializing the ParserOutput. To achieve this, only plain data can be supported here. That is, the data must not contain objects (beyond anonymous objects).

To avoid production errors such as T264363, attempts to attach complex objects to ParserOutput should be logged as errors (or deprecation warnings?), but should not throw an exception for a while.

Found in logstash:

  • $.ExtensionData.pageImages.13.frame.link-title (T266251)
  • $.ExtensionData.GeoDataCoordsOutput (T266248)
  • $.ExtensionData.TemplateDataStatus (T266252)
  • $.ExtensionData.kartographer (T266260)
  • $.ExtensionData.referenced-entities.0 (T266263)
  • $.JsConfigVars.entityTitle (T267377)
  • $.ExtensionData.translate-translation-page.sourcepagetitle (T266268)

Also noted in Semantic MediaWiki: issue 4868

Details

SubjectRepoBranchLines +/-
Safe ParserOutput extension data and JsonUnserializable helper.mediawiki/coremaster+544 -166
Enable warn+ logging for ParserCache channeloperations/mediawiki-configmaster+2 -0
Check if non-JSON-serializable data passed to ParserOutputmediawiki/coremaster+96 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

daniel triaged this task as High priority.Oct 2 2020, 8:14 AM
daniel created this task.
Pchelolo added a comment.Oct 2 2020, 12:46 PM

We have been serializing things into JSON EventBus for awhile, we have a battle-proven piece of code for this kind of validation: see EventBus::validateJSONSerializable. It might not cover all cases since we have good control over what we sent in there, but should be an ok start. Do you think we could port it up to FormarJson and reuse in EventBus?

gerritbot added a comment.Oct 2 2020, 3:42 PM

Change 631801 had a related patch set uploaded (by Ppchelko; owner: Ppchelko):
[mediawiki/core@master] Check if non-JSON-serializable data passed to ParserOutput

https://gerrit.wikimedia.org/r/631801

gerritbot added a project: Patch-For-Review.Oct 2 2020, 3:42 PM
gerritbot added a comment.Oct 5 2020, 5:19 PM

Change 631801 merged by jenkins-bot:
[mediawiki/core@master] Check if non-JSON-serializable data passed to ParserOutput

https://gerrit.wikimedia.org/r/631801

ReleaseTaggerBot added a project: MW-1.36-notes (1.36.0-wmf.12; 2020-10-05; NEVER DEPLOYED).Oct 5 2020, 6:00 PM
Maintenance_bot removed a project: Patch-For-Review.Oct 5 2020, 6:10 PM
Pchelolo edited projects, added Platform Team Workboards (Green); removed Platform Engineering.Oct 5 2020, 7:23 PM
Pchelolo moved this task from Backlog to Ready to Deploy on the Platform Team Workboards (Green) board.
Pchelolo added a comment.Oct 5 2020, 7:25 PM

The patch above added some debug logging into setProperty and setExtensionData methods. After it's deployed, we need to look if any non-serializable data is passed in there.

Pchelolo added a comment.Oct 5 2020, 7:39 PM

I went through all the ParserOutput member variables and it seems like unless setProperty or setExtensionData are doing something brutally bad, we should be fine.

gerritbot added a comment.Oct 19 2020, 8:25 PM

Change 635071 had a related patch set uploaded (by Ppchelko; owner: Ppchelko):
[operations/mediawiki-config@master] Enable warn+ logging for ParserCache channel

https://gerrit.wikimedia.org/r/635071

gerritbot added a project: Patch-For-Review.Oct 19 2020, 8:25 PM
gerritbot added a comment.Oct 21 2020, 5:17 PM

Change 635071 merged by jenkins-bot:
[operations/mediawiki-config@master] Enable warn+ logging for ParserCache channel

https://gerrit.wikimedia.org/r/635071

Pchelolo added a comment.EditedOct 21 2020, 11:14 PM

After deploying to beta and to testwiki revealed a bunch of non-JSON-serializable data pithing ExtensionData: https://logstash-beta.wmflabs.org/goto/de000f31b6d6abad639c7ce039917826 and https://logstash.wikimedia.org/goto/e0806c65d45b32bc0d6ca307bf9c76bc

reveals the following properties until now:

  • $.ExtensionData.pageImages.13.frame.link-title
  • $.ExtensionData.GeoDataCoordsOutput
  • $.ExtensionData.referenced-entities.0
  • $.ExtensionData.TemplateDataStatus
  • $.JsConfigVars.entityTitle
  • $.ExtensionData.kartographer

These all indicate different extensions placing instances of classes into extension data. These can not be JSON-serialied. Extensions need to be fixed to only put arrays into it's data.

CCicalese_WMF updated the task description. (Show Details)Oct 22 2020, 4:51 PM
CCicalese_WMF updated the task description. (Show Details)
CCicalese_WMF updated the task description. (Show Details)Oct 22 2020, 4:54 PM
CCicalese_WMF updated the task description. (Show Details)Oct 22 2020, 5:07 PM
Pchelolo updated the task description. (Show Details)Oct 22 2020, 6:21 PM
CCicalese_WMF updated the task description. (Show Details)Oct 22 2020, 8:36 PM
Reedy renamed this task from Ensure content of ParserOutput is safe to serialize. to Ensure content of ParserOutput is safe to serialize.Oct 22 2020, 11:33 PM
Reedy removed a project: MW-1.36-notes (1.36.0-wmf.12; 2020-10-05; NEVER DEPLOYED).
gerritbot added a comment.Oct 23 2020, 12:20 AM

Change 635906 had a related patch set uploaded (by Ppchelko; owner: Ppchelko):
[mediawiki/core@master] Bikesheeding demo: safe ParserOutput extension data

https://gerrit.wikimedia.org/r/635906

Pchelolo updated the task description. (Show Details)Nov 5 2020, 10:54 PM
noarave closed subtask T266263: Wikibase extension should not write objects into ExtensionData as Resolved.Nov 6 2020, 12:44 PM
Pchelolo closed subtask T266268: Translate extension should not write objects into ExtensionData as Resolved.Nov 10 2020, 1:19 AM
Pchelolo closed subtask T266251: PageImages extension should not write objects into ExtensionData as Resolved.
Pchelolo moved this task from Ready to Deploy to Waiting for Review on the Platform Team Workboards (Green) board.
gerritbot added a comment.Nov 10 2020, 7:26 PM

Change 635906 merged by jenkins-bot:
[mediawiki/core@master] Safe ParserOutput extension data and JsonUnserializable helper.

https://gerrit.wikimedia.org/r/635906

daniel moved this task from Waiting for Review to Ready to Deploy on the Platform Team Workboards (Green) board.Nov 18 2020, 5:20 PM
Pchelolo closed this task as Resolved.Nov 18 2020, 8:01 PM
Pchelolo claimed this task.
Pchelolo moved this task from Ready to Deploy to Done on the Platform Team Workboards (Green) board.

After deploying to group0 I see no logs about JSON serialization. https://logstash.wikimedia.org/goto/acb6acc897690baf1c2ebe23fe6b48e8

Pchelolo closed subtask T266200: TemplateData extension sets non-json-serializable page properties as Resolved.Nov 18 2020, 8:01 PM
Pchelolo closed subtask T266248: GeoData extension should not write objects into ExtensionData as Resolved.
Pchelolo closed subtask T266252: TemplateData extension should not write objects into ExtensionData as Resolved.
Pchelolo closed subtask T266260: Kartographer extension should not write objects into ExtensionData as Resolved.
Pchelolo closed subtask T267377: Jade must not set non-json-serializable properties to JSConfigVars as Resolved.
Pchelolo reopened subtask T266200: TemplateData extension sets non-json-serializable page properties as Open.Nov 18 2020, 8:12 PM
Pchelolo removed a subtask: T266200: TemplateData extension sets non-json-serializable page properties.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits