Handle collisions in autogenerated temporary account username provided by TempUserCreator::acquireName
Closed, ResolvedPublic3 Estimated Story PointsBUG REPORT
Actions

Assigned To

Authored By

	Dreamy_Jazz
	Dec 13 2023, 10:15 PM

Description

As described in T349503: Update the serial mapping config for generating temporary user names on beta, the TempUserCreator::acquireName method uses SerialProvider::acquireIndex in a way that assumes it will always return an integer that has never been used before. However, the documentation for this method says the index is instead unlikely to be used again.

As discussed at T349503, this means that the TempUserCreator::create and TempUserCreator::acquireAndStashName methods must handle the situation where an index is returned that has previously been used. This code currently causes issues because this assumption means that a user can be logged in to an already existing temporary account on a collision.

Steps to replicate the issue

These steps are aimed at a local testing wiki

Disable temporary account creation (if enabled)
Run one of the following SQL:
1. If using CentralAuth, run the SQL in 2A on the centralauth DB
2. If not using CentralAuth, run the SQL in 2B on the local wiki DB

2A: SQL for step 1 when using CentralAuth

SELECT uas_value FROM global_user_autocreate_serial WHERE uas_shard = 0;

2B: SQL for step 1 when not using CentralAuth

SELECT uas_value FROM user_autocreate_serial WHERE uas_shard = 0;

Keep a track of the result of the query 2A or 2B. If query 2A or 2B returned no rows, then take this number as 1.
Create an account with the username that matches the temporary account format, using the number from step 3. This should usually be *Unregistered X where X is the integer from step 3, though the format will change with T349494.
Log out of the new account
Re-enable temporary account creation, with the serialMapping key defined with a value of [ 'type' => 'plain-numeric', 'numShards' => 1 ]
Go to any page, and open the edit window.
Make some changes and press save

What happens?:
The edit fails to save with the Username entered already in use error displayed:

Screenshot 2023-12-14 130214.png (1×2 px, 112 KB)

When loading any other page after this occurs, I am now logged in to that temporary account. As shown by the Special:Contributions page, this account has no contributions (so the edit did not go through):

Screenshot 2023-12-14 130254.png (1×2 px, 194 KB)

What should have happened instead?:
The edit form should display an error if after a few attempts it fails to get a temporary account username that isn't already in use.

QA Results - Local

AC	Status	Details
1	✅	https://phabricator.wikimedia.org/T353390 here

Details

Related Changes in Gerrit:

	Subject	Repo	Branch	Lines +/-
	Handle collisions from SerialProvider::acquireIndex	mediawiki/core	master	+239 -33

Customize query in gerrit

Related Objects
Search...

Status	Subtype	Assigned	Task
			Restricted Task
Resolved		kostajh	T294511 2021 Security Team wikireplicas audit
Declined		None	T284948 Raw IPs of logged-out users disclosed in wiki-replicas
Resolved		Niharika	T324492 Temporary accounts - MVP
Resolved		Niharika	T345760 [Epic] Temporary username format
Resolved		Tchanders	T345855 Update temporary username format
Resolved		STran	T349503 Update the serial mapping config for generating temporary user names on beta
Resolved	BUG REPORT	Dreamy_Jazz	T353390 Handle collisions in autogenerated temporary account username provided by TempUserCreator::acquireName

Event Timeline

Dreamy_Jazz created this task.Dec 13 2023, 10:15 PM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 13 2023, 10:15 PM

Dreamy_Jazz renamed this task from Handle collisions in autogenerated temporary account username in TempUserCreator::create to Handle collisions in autogenerated temporary account username provided by TempUserCreator::acquireName.Dec 13 2023, 10:15 PM

Dreamy_Jazz claimed this task.

Dreamy_Jazz added a parent task: T349503: Update the serial mapping config for generating temporary user names on beta.

Dreamy_Jazz set the point value for this task to 2.

Dreamy_Jazz moved this task from Priority Backlog to In Progress on the Trust and Safety Product Sprint (Sprint Lute (11th Dec. - 22nd Dec. 2023)) board.

Change 982931 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/core@master] [WIP] Handle collisions from SerialProvider::acquireIndex

https://gerrit.wikimedia.org/r/982931

gerritbot added a project: Patch-For-Review.Dec 13 2023, 10:58 PM

Dreamy_Jazz updated the task description. (Show Details)Dec 14 2023, 12:26 PM

Dreamy_Jazz updated the task description. (Show Details)Dec 14 2023, 1:08 PM

Dreamy_Jazz changed the point value for this task from 2 to 3.Dec 14 2023, 2:54 PM

Dreamy_Jazz attached a referenced file: F41600500: Screenshot 2023-12-14 130254.png. (Show Details)

Dreamy_Jazz attached a referenced file: F41600498: Screenshot 2023-12-14 130214.png. (Show Details)

Dreamy_Jazz updated the task description. (Show Details)Dec 14 2023, 2:59 PM

Dreamy_Jazz updated the task description. (Show Details)

Dreamy_Jazz moved this task from In Progress to Needs review on the Trust and Safety Product Sprint (Sprint Lute (11th Dec. - 22nd Dec. 2023)) board.Dec 14 2023, 5:13 PM

Dreamy_Jazz mentioned this in T349503: Update the serial mapping config for generating temporary user names on beta.Dec 14 2023, 5:22 PM

Change 982931 merged by jenkins-bot:

[mediawiki/core@master] Handle collisions from SerialProvider::acquireIndex

https://gerrit.wikimedia.org/r/982931

ReleaseTaggerBot added a project: MW-1.42-notes (1.42.0-wmf.12; 2024-01-02).Dec 21 2023, 4:00 PM

Maintenance_bot removed a project: Patch-For-Review.Dec 21 2023, 4:30 PM

Dreamy_Jazz moved this task from Needs review to Needs QA on the Trust and Safety Product Sprint (Sprint Lute (11th Dec. - 22nd Dec. 2023)) board.Dec 21 2023, 11:14 PM

The QA of this ticket requires a local instance because it needs changes to the database/config that could cause problems if on betawikis and are not possible for patchdemo wikis.

Suggested QA steps:

Enable temporary account creation using the defaults.
Create three temporary accounts and note the number included in the username for the first temporary account you create
Open the DB for your wiki
Run the following SQL, replacing X with the number from step 2:

UPDATE user_autocreate_serial SET uas_value = X - 1;

Log out of any temporary account
Visit any page and open the edit window
Attempt to make an edit using source mode
Verify that the following error appears:

Open Special:ApiSandbox
Choose edit from the action dropdown menu
In the edit tab, define a page title and text content
Click Make request and then Correct token and resubmit
Verify the following appears:

Re-open Special:ApiSandbox
Choose the acquiretempusername option from the action dropdown menu
Click Make request
Verify that the following appears:

Click Make request again and verify that something like the following screenshot appears. The temporary account username shown should not exist on the wiki (you can check this using Special:ListUsers):

Go back to any page and attempt to make a test edit
Verify that the edit is successful and that you are logged into the temporary account with the same name as the name returned by the API in step 18

@Dreamy_Jazz Works as design as seen in the screenshots below. I will move this to Done. Thank you for your work and your QA steps as usual!

Status: ✅PASS
Environment: Local 1.42.0-alpha (15ff133)19:27, 4 January 2024
OS: macOS Sonoma 14.2
Browser: Chrome 120
Skins. Vector 2022
Device: MBA M2
Emulated Device:: n/a
Test Links:
https://en.m.wikipedia.beta.wmflabs.org/wiki/Dog#

✅AC1: https://phabricator.wikimedia.org/T353390

Verify Error	Verify Api Page Title Error	Verify acquiretempusername Error	Request again TUN	Special:ListUsers Before Edit	Special:ListUsers After Edit