Page MenuHomePhabricator
Create Task
Maniphest T324907

Create separate tables for log events in CheckUser
Open, HighPublicFeature
Actions

Description

To implement T253796, table(s) should be created that allow storing log-specific information in a seperate table. When CheckUser queries are made, the tables will be joined so that results can continue to be shown.

This involves creating two new tables:

  • cu_log_event
  • cu_private_event

The cu_log_event table will contain entries that at the moment go into cu_changes that also:

  • Are log actions
  • Have a associated log ID in the logging table

The cu_private_event will contain entries that at the moment go into cu_changes that also:

  • Are log actions
  • Do not have an associated log ID (and thus are very unlikely to be shown publicly or be linked to)

The two tables are needed because when we have a log ID to reference storing the log parameters and other data that is not needed for indexing purposes can be gained using a join on the log ID to the logging table. Entries which do not have a associated log ID would then have to store this data, but to ensure that a new table is not polymorphic two tables are needed so that some entries have this column not be used.

Examples:

  • Log for a page move would go into the cu_log_event
  • Edit to a page would go into cu_changes
  • Login event would go into cu_private_event
  • Log events previously stored in cu_changes would be moved to cu_private_event

Doing this allows the solving of several security tickets and solving / making substantial progress towards solving:

This method was suggested by Ladsgroup to reduce the polymorphic nature of cu_changes over just adding cuc_log_id as suggested in the parent task. This would solve the parent task by removing log entries from cu_changes.

Todo (mostly in order but some can be done before others as desired):

  • Create the new tables
    • Create the schemas for these tables
    • Deploy the new tables to WMF production
  • Update code that writes and deletes to cu_changes to also use the new tables based on a schema comptability config (write new support)
    • The many methods that insert, delete and change cu_changes in Hooks.php - gerrit 876360
    • PopulateCheckUserTable maintenance script - gerrit 877182
    • PurgeOldData maintenance script - gerrit 877182
  • Add combined read and write new support - T341586
  • Add read new support so that the code that queries CheckUser reads from all three tables:
    • CheckUserQueryBuilder - gerrit 881420
    • LogFormatter-like class for cu_private_event rows (T341688)
    • CheckUser
      • Get edits pager
      • Get IPs pager
      • Get users pager
    • CheckUser API (T341827)
    • Investigate (T329189)
    • Temporary account IP reveal
  • Create a maintenance script to move log entries from cu_changes to cu_private_event, while keeping the moved entries in cu_changes with cuc_only_for_read_old set to 1 - gerrit 879919 (merged) + gerrit 886482
  • Enable write new (T330158)
    • Change the value in extension.json
    • Do this on WMF wikis
      • Double check the new tables are not included any DB dumps - Ladsgroup probably the one to contact for this
  • Move log entries in cu_changes to cu_private_event (first maintenance script)
    • Add this to update.php while ensuring that it is run before any column removal but after the creation of cu_private_event and cu_log_event
    • Have this maintenance script run on WMF wikis - No longer needed as data on WMF wikis has been purged that needed the move
  • Enable read new
    • Change the value in extension.json
    • Do this on WMF wikis
  • Stop writing old
    • In extension.json - T366505
    • Have this changed on WMF wikis - T360685
  • Delete cu_changes rows with cuc_only_for_read_old set to 1 - T341830
    • Create a maintenance script for this
    • Add this maintenance script to update.php while ensuring it it run before column removal but after the moving of log entries
    • Run this maintenance script on WMF wikis
      • Run optimise cu_changes on specific wikis, such as loginwiki due to the large drop in the number of rows(?). On enwiki it should be a ~20% drop and on loginwiki it should be a 99.9% drop in row count
  • Remove wgEventTablesMigrationStage config, inferring the value as SCHEMA_COMPAT_NEW in places that it was used
  • Remove columns related only log types in cu_changes along with cuc_only_for_read_old
    • Remove these columns from WMF production - requires maintenance script to move log entries be run if not more than 3 months since write new was enabled.

Details

SubjectRepoBranchLines +/-
Add missing CheckUser hooks to extension.json which have handlersmediawiki/extensions/AbuseFiltermaster+2 -0
Hook on privateEvent and logEvent insert hooks like CuChangesInsertmediawiki/extensions/AbuseFiltermaster+90 -16
Fix action name for password reset email eventmediawiki/extensions/CheckUsermaster+3 -3
[WIP] Add MoveLogEntriesBackToCuChanges maintenance scriptmediawiki/extensions/CheckUsermaster+228 -0
Use $row->type if it exists as $row->cuc_type won't be set soonmediawiki/extensions/Flowmaster+8 -0
Pin CheckUserEventTablesMigrationStage to read and write oldoperations/mediawiki-configmaster+5 -0
moveLogEntriesFromCuChanges: check for read stagemediawiki/extensions/CheckUsermaster+2 -2
Add maintenance script to move cu_changes log entries to new tablemediawiki/extensions/CheckUsermaster+350 -1
Use empty serialised array as default of cupe_paramsmediawiki/extensions/CheckUsermaster+3 -2
Add event table write new support for the maintenance scriptsmediawiki/extensions/CheckUsermaster+213 -28
Add write new support for cu_private_event and cu_log_event in Hooksmediawiki/extensions/CheckUsermaster+577 -215
Add methods to insert into cu_private_event and cu_log_eventmediawiki/extensions/CheckUsermaster+619 -28
Add RecentChange as a optional parameter for CheckUser hookmediawiki/extensions/AbuseFiltermaster+4 -1
Add WRITE_NEW support for cu_private_event and cu_log_eventmediawiki/extensions/CheckUsermaster+428 -48
Add tables cu_log_event and cu_private_event for storing log eventsmediawiki/extensions/CheckUsermaster+512 -0
Show related patches Customize query in gerrit

Related Objects
Search...

View Standalone Graph
This task is connected to more than 200 other tasks. Only direct parents and subtasks are shown here. Use View Standalone Graph to show more of the graph.
StatusSubtypeAssignedTask
· · ·
ResolvedDreamy_JazzT253796 Make CheckUser record the log_id of logged actions
ResolvedDreamy_JazzT145265 Store check user data action text in structured format
OpenNoneT301992 Insert CheckUser row events during certain 2FA actions
ResolvedTchandersT326393 IP Address Reveal on Log page
OpenNoneT341094 Create client hint mapping rows for CheckUser-worthy events
ResolvedtstarlingT342613 CompareService::getTotalEditsFromIp queries exceeding TransactionProfiler limits
OpenBUG REPORTNoneT28843 CheckUser results do not appear cleanly for AbuseFilter modifications
OpenNoneT366719 Update AccountInfo InfoLookup::getUserInfo to read data from cu_log_event and cu_private_event
OpenNoneT366739 Update ArticleFeedbackv5 rebuildCheckUser.php maintenance script for CheckUser extension database changes
OpenFeatureDreamy_JazzT324907 Create separate tables for log events in CheckUser
ResolvedMilimetricT327447 FYI: Other changes to the CheckUser tables
ResolvedDreamy_JazzT328988 Create a SelectQueryBuilder that allows selecting from all three tables
ResolvedDreamy_JazzT341829 Enable read new for the event table migration
ResolvedDreamy_JazzT330158 Enable write new for the event table migration
ResolvedDreamy_JazzT328874 Create temporary column in cu_changes to assist in migration to the new tables
ResolvedDreamy_JazzT341934 Failing tests for CheckUser when event table migration config set to WRITE_BOTH and READ_NEW
ResolvedDreamy_JazzT342371 Create a maintenance script used only for testing to insert a large volume of testing actions to CheckUser
ResolvedPRODUCTION ERRORpmiazgaT343983 Error: Call to a member function getTimestamp() on null
ResolvedDreamy_JazzT346044 Remove CheckUserUnionQueryBuilder
DeclinedNoneT357832 Update LoginNotify to read data from cu_private_event and cu_log_event if $wgLoginNotifyUseCheckUser is true
DeclinedDreamy_JazzT359309 Create cu_private_event_no_actor table
OpenNoneT360685 Stop writing old for event table migration on WMF wikis
OpenDreamy_JazzT366507 Remove 'CheckUserInsertForRecentChange' hook
OpenNoneT366781 Run maintenance script to delete entries only for use when reading old on WMF wikis
OpenNoneT366782 Remove now unused columns from cu_changes
· · ·

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
RoySmith subscribed.Feb 21 2023, 1:03 AM
Dreamy_Jazz added a parent task: T326393: IP Address Reveal on Log page.Feb 21 2023, 1:57 PM
Dreamy_Jazz removed a parent task: T326393: IP Address Reveal on Log page.Feb 21 2023, 2:04 PM
Dreamy_Jazz updated the task description. (Show Details)Feb 21 2023, 2:07 PM
TThoabala added a parent task: T326393: IP Address Reveal on Log page.Feb 22 2023, 3:40 PM
Dreamy_Jazz mentioned this in T333367: Persist revealed IPs of temporary accounts for 24 hours.Mar 29 2023, 5:32 PM
gerritbot added a comment.Apr 22 2023, 6:25 PM

Change 910832 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/extensions/AbuseFilter@master] Add missing CheckUser hooks to extension.json which have handlers

https://gerrit.wikimedia.org/r/910832

Dreamy_Jazz updated the task description. (Show Details)Apr 23 2023, 2:11 PM
Dreamy_Jazz closed subtask T328988: Create a SelectQueryBuilder that allows selecting from all three tables as Resolved.
gerritbot added a comment.Apr 23 2023, 6:56 PM

Change 910832 merged by jenkins-bot:

[mediawiki/extensions/AbuseFilter@master] Add missing CheckUser hooks to extension.json which have handlers

https://gerrit.wikimedia.org/r/910832

Dreamy_Jazz mentioned this in T335508: Connect temporary and permanent account during signup.Apr 27 2023, 2:28 PM
Dreamy_Jazz mentioned this in T257893: [EPIC] Support User-Agent Client Hints header in CheckUser.May 11 2023, 9:42 AM
ReleaseTaggerBot added a project: MW-1.41-notes (1.41.0-wmf.9; 2023-05-15).May 15 2023, 7:01 PM
Milimetric added a comment.May 16 2023, 8:50 PM
In T324907#8503754, @Dreamy_Jazz wrote:

@Milimetric: Keeping data engineering in the loop like for T233004. This task will likely affect your analysis in a larger way than T233004 is as it will split data stored in cu_changes into three tables (cu_changes, cu_private_event and cu_log_event).

Thank you, I don't think this affects us right now. But I appreciate the ping. I think the new User Agent changes are going to affect us though, so I appreciate you cc-ing me.

kostajh subscribed.Jun 21 2023, 11:32 AM
gerritbot added a comment.Jul 11 2023, 2:58 PM

Change 886482 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/extensions/CheckUser@master] Add support for writing both new and old for event table migration

https://gerrit.wikimedia.org/r/886482

Dreamy_Jazz updated the task description. (Show Details)Jul 12 2023, 12:57 PM
Dreamy_Jazz added a parent task: T341094: Create client hint mapping rows for CheckUser-worthy events.Jul 13 2023, 7:32 PM
Dreamy_Jazz added a subtask: T341934: Failing tests for CheckUser when event table migration config set to WRITE_BOTH and READ_NEW.Jul 15 2023, 7:34 PM
Dreamy_Jazz mentioned this in T341094: Create client hint mapping rows for CheckUser-worthy events.Jul 17 2023, 7:30 PM
Dreamy_Jazz updated the task description. (Show Details)Jul 18 2023, 12:12 PM
Dreamy_Jazz moved this task from Untriaged to CheckUser on the Anti-Harassment board.Jul 22 2023, 5:49 PM
Dreamy_Jazz added a parent task: T342613: CompareService::getTotalEditsFromIp queries exceeding TransactionProfiler limits.Jul 25 2023, 12:15 PM
Dreamy_Jazz mentioned this in T342613: CompareService::getTotalEditsFromIp queries exceeding TransactionProfiler limits.Jul 25 2023, 12:19 PM
Vermont subscribed.Aug 1 2023, 1:09 PM
Dreamy_Jazz added a subtask: T343983: Error: Call to a member function getTimestamp() on null.Aug 10 2023, 1:51 PM
Tchanders closed subtask T330158: Enable write new for the event table migration as Resolved.Aug 14 2023, 10:21 AM
Tchanders closed subtask T341934: Failing tests for CheckUser when event table migration config set to WRITE_BOTH and READ_NEW as Resolved.Aug 14 2023, 11:58 AM
Dreamy_Jazz updated the task description. (Show Details)Aug 21 2023, 12:29 PM
pmiazga mentioned this in T343983: Error: Call to a member function getTimestamp() on null.Aug 21 2023, 3:47 PM
Dreamy_Jazz updated the task description. (Show Details)Aug 29 2023, 1:10 PM
Dreamy_Jazz mentioned this in T346022: Remove wgCheckUserLogAdditionalRights.Sep 11 2023, 9:27 AM
Dreamy_Jazz added a subtask: T346022: Remove wgCheckUserLogAdditionalRights.
Dreamy_Jazz added a subtask: T346044: Remove CheckUserUnionQueryBuilder.Sep 11 2023, 2:50 PM
dom_walden mentioned this in T345052: LoginNotify seen subnets table.Sep 18 2023, 10:11 AM
Dreamy_Jazz mentioned this in T345819: Store client hint mapping rows for logout events.Sep 25 2023, 12:17 PM
kostajh closed subtask T342371: Create a maintenance script used only for testing to insert a large volume of testing actions to CheckUser as Resolved.Sep 26 2023, 12:39 PM
Milimetric closed subtask T327447: FYI: Other changes to the CheckUser tables as Resolved.Sep 26 2023, 1:47 PM
Dreamy_Jazz mentioned this in T316360: Oversighted action text is shown in Special:CheckUser when the checkuser does not have the right to see it.Oct 4 2023, 2:43 PM
Dreamy_Jazz updated the task description. (Show Details)Oct 6 2023, 8:28 PM
Dreamy_Jazz added a project: Epic.Oct 22 2023, 1:14 PM
Dreamy_Jazz closed subtask T341688: Create LogFormatter for cu_private_event log events as Resolved.Oct 24 2023, 2:35 PM
Niharika closed subtask T343983: Error: Call to a member function getTimestamp() on null as Resolved.Nov 6 2023, 9:56 PM
Dreamy_Jazz updated the task description. (Show Details)Nov 25 2023, 2:48 PM
Dreamy_Jazz updated the task description. (Show Details)Nov 27 2023, 11:29 AM
Dreamy_Jazz closed subtask T346044: Remove CheckUserUnionQueryBuilder as Resolved.Nov 27 2023, 5:31 PM
Dreamy_Jazz moved this task from Patches for review to General / Unsorted on the CheckUser board.Dec 3 2023, 8:17 PM
Dreamy_Jazz closed subtask T328992: Add read new support to Special:CheckUser for event table migration as Resolved.Dec 11 2023, 5:21 PM
Dreamy_Jazz closed subtask T341829: Enable read new for the event table migration as Resolved.Dec 18 2023, 2:46 PM
Dreamy_Jazz updated the task description. (Show Details)
Dreamy_Jazz added a subtask: T354643: Queries to cu_log_event on large wikis are exceeding TransactionProfiler limits on Special:CheckUser.Jan 9 2024, 1:10 PM
Dreamy_Jazz mentioned this in T357620: Hard deprecate the CheckUserInsertForRecentChange hook.Feb 15 2024, 11:34 AM
Dreamy_Jazz added a subtask: T357620: Hard deprecate the CheckUserInsertForRecentChange hook.Feb 16 2024, 11:05 AM
Dreamy_Jazz mentioned this in T357832: Update LoginNotify to read data from cu_private_event and cu_log_event if $wgLoginNotifyUseCheckUser is true.Feb 16 2024, 10:39 PM
Dreamy_Jazz added a subtask: T357832: Update LoginNotify to read data from cu_private_event and cu_log_event if $wgLoginNotifyUseCheckUser is true.
Dreamy_Jazz closed subtask T357620: Hard deprecate the CheckUserInsertForRecentChange hook as Resolved.Feb 21 2024, 7:38 PM
Dreamy_Jazz added a subtask: T359309: Create cu_private_event_no_actor table.Mar 6 2024, 12:51 PM
Dreamy_Jazz closed subtask T359309: Create cu_private_event_no_actor table as Declined.Mar 8 2024, 1:43 PM
Dreamy_Jazz added a parent task: T28843: CheckUser results do not appear cleanly for AbuseFilter modifications.Mar 14 2024, 1:10 PM
Dreamy_Jazz mentioned this in T28843: CheckUser results do not appear cleanly for AbuseFilter modifications.Mar 14 2024, 1:32 PM
Dreamy_Jazz closed subtask T354643: Queries to cu_log_event on large wikis are exceeding TransactionProfiler limits on Special:CheckUser as Resolved.Mar 27 2024, 5:54 PM
Dreamy_Jazz mentioned this in T361291: If the reason provided for a log entry is hidden, it is not hidden in the checkuser API response for an actions request.Mar 28 2024, 7:39 PM
Dreamy_Jazz closed subtask T341827: Add read new support to the CheckUser API as Resolved.Apr 5 2024, 3:23 PM
Dreamy_Jazz updated the task description. (Show Details)Apr 11 2024, 12:26 PM
Dreamy_Jazz updated the task description. (Show Details)
Dreamy_Jazz updated the task description. (Show Details)Apr 11 2024, 1:12 PM
Dreamy_Jazz updated the task description. (Show Details)
Dreamy_Jazz edited projects, added Trust and Safety Product Team; removed Anti-Harassment.Apr 12 2024, 9:18 AM
Dreamy_Jazz closed subtask T357832: Update LoginNotify to read data from cu_private_event and cu_log_event if $wgLoginNotifyUseCheckUser is true as Declined.Apr 24 2024, 9:14 AM
Dreamy_Jazz mentioned this in T363487: Remove the cuc_ip, cule_ip, and cupe_ip columns from the cu_changes, cu_log_event, and cu_private_event tables respectively as duplicated to the IP hex columns.Apr 25 2024, 3:32 PM
Dreamy_Jazz added a subtask: T366546: Remove wgCheckUserEventTablesMigrationStage.Mon, Jun 3, 11:02 PM
Dreamy_Jazz closed subtask T329189: Add read new support to Special:Investigate for event table migration as Resolved.Tue, Jun 4, 8:08 AM
Dreamy_Jazz updated the task description. (Show Details)Tue, Jun 4, 4:17 PM
Dreamy_Jazz updated the task description. (Show Details)Tue, Jun 4, 4:22 PM
Dreamy_Jazz updated the task description. (Show Details)Tue, Jun 4, 5:43 PM
Dreamy_Jazz updated the task description. (Show Details)
Dreamy_Jazz updated the task description. (Show Details)Tue, Jun 4, 5:49 PM
Dreamy_Jazz updated the task description. (Show Details)
Dreamy_Jazz mentioned this in T366719: Update AccountInfo InfoLookup::getUserInfo to read data from cu_log_event and cu_private_event.Wed, Jun 5, 4:03 PM
Dreamy_Jazz added a parent task: T366719: Update AccountInfo InfoLookup::getUserInfo to read data from cu_log_event and cu_private_event.
Dreamy_Jazz removed a subtask: T357620: Hard deprecate the CheckUserInsertForRecentChange hook.Wed, Jun 5, 4:44 PM
Dreamy_Jazz removed a subtask: T354643: Queries to cu_log_event on large wikis are exceeding TransactionProfiler limits on Special:CheckUser.
Dreamy_Jazz removed a subtask: T341830: Create maintenance script to delete entries only for read old.
Dreamy_Jazz removed a subtask: T341827: Add read new support to the CheckUser API.
Dreamy_Jazz removed a subtask: T341688: Create LogFormatter for cu_private_event log events.
Dreamy_Jazz removed a subtask: T329189: Add read new support to Special:Investigate for event table migration.Wed, Jun 5, 4:46 PM
Dreamy_Jazz removed a subtask: T328992: Add read new support to Special:CheckUser for event table migration.
Dreamy_Jazz removed a subtask: T326105: Create cu_log_event and cu_private_event on WMF wikis.Wed, Jun 5, 4:48 PM
Dreamy_Jazz mentioned this in T366739: Update ArticleFeedbackv5 rebuildCheckUser.php maintenance script for CheckUser extension database changes.Wed, Jun 5, 7:00 PM
Dreamy_Jazz added a parent task: T366739: Update ArticleFeedbackv5 rebuildCheckUser.php maintenance script for CheckUser extension database changes.Wed, Jun 5, 7:03 PM
Dreamy_Jazz removed a subtask: T366546: Remove wgCheckUserEventTablesMigrationStage.Thu, Jun 6, 9:36 AM
Dreamy_Jazz removed a subtask: T346022: Remove wgCheckUserLogAdditionalRights.Thu, Jun 6, 9:55 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL