Page MenuHomePhabricator
Create Task
Maniphest T9601

Diff can cause httpd to hang and peg cpu
Closed, DeclinedPublic
Actions

Description

Author: wikimediatester

Description:
This is with mediawiki 1.8.2

If a spammer posts a page revision a with 2000 lines of spam links which are
enclosed in square brackets, then a subsequent 'diff' of that page with the
previous revision can cause mediawiki to hang and cause httpd to peg the CPU.

Repeated occurances of this on a server (even over a period of days) can cause
multiple httpd processes to hang, and can eventually cause total depletion of
the system's swap space.

Version: 1.8.x
Severity: minor
OS: Linux
Platform: Other

Details

Reference
bz7601

Event Timeline

bzimport raised the priority of this task from to Lowest.Nov 21 2014, 9:27 PM
bzimport added a project: MediaWiki-Page-diffs.
bzimport set Reference to bz7601.
bzimport added a subscriber: Unknown Object (MLST).
bzimport created this task.Oct 16 2006, 2:41 PM
bzimport added a comment.Oct 16 2006, 2:57 PM

wikimediatester wrote:

Under FC5 with apache-2.2.2 and php-5.1.4

bzimport added a comment.Nov 28 2006, 4:02 PM

pez wrote:

This problem quickly gets huge if such a diff is included in the rss feeds. I
had to disable recent changes feeds on my mediawiki site because it immediately
(after a httpd restart) started using up about all apache and system resources.

bzimport added a comment.Nov 29 2006, 8:50 PM

pez wrote:

Siteowners might be interested in knowing that using the wikidiff2 extension
dodges this bug.

bzimport added a comment.Dec 27 2006, 8:17 AM

robchur wrote:

This is because the built-in difference engine is rather slow and inefficient
when called multiple times; if wikis are large enough that a large number of
diff requests are anticipated, then the wikidiff2 extension should be installed,
which is a compiled form of the same algorithm, and works a lot faster.

demon added a comment.May 7 2009, 3:45 PM
  • Bug 14867 has been marked as a duplicate of this bug. ***
tstarling added a comment.May 7 2009, 4:53 PM

Reducing priority/severity, nobody cares.

brooke added a comment.May 7 2009, 6:20 PM

It would be nice to have a) a faster default implementation and b) cleaner resource limits so ultra-long diffs can be aborted internally without killing the whole UI or RSS feed generation.

demon added a comment.Aug 4 2009, 10:27 PM
  • Bug 20041 has been marked as a duplicate of this bug. ***
demon added a comment.May 21 2010, 7:51 PM
  • Bug 9410 has been marked as a duplicate of this bug. ***
bzimport added a comment.Oct 7 2011, 9:00 PM

sumanah wrote:

Can anyone reproduce this on MediaWiki 1.17.0 or later? I just played around a bunch with 1.18 via a test wiki https://secure.wikimedia.org/wikipedia/test2/wiki/Why_is_there_an_article%3F and couldn't reproduce the issue. Please reopen if you can reproduce this problem on a recent version of MediaWiki.

Aklapper added a project: MediaWiki-Page-history.Sep 20 2019, 7:49 PM
Aklapper removed a subscriber: wikibugs-l-list.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL