Issues in DatabaseTermCleaner.php (master) - Issues in master - wmde/mediawiki-term-store - Measure and Improve Code Quality continuously with Scrutinizer

Issues (22)

Security Analysis no request data

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

src/PackagePrivate/DatabaseTermCleaner.php (2 issues)

Labels

Severity

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php

namespace Wikibase\TermStore\MediaWiki\PackagePrivate;

use Psr\Log\LoggerInterface;
use Psr\Log\NullLogger;
use Wikimedia\Rdbms\DBError;
use Wikimedia\Rdbms\IDatabase;
use Wikimedia\Rdbms\ILoadBalancer;

/**
 * Cleans up the normalized term store after some terms are no longer needed.
 * Unused term_in_lang, text_in_lang and text rows are automatically removed.
 * (Unused type rows are never cleaned up.)
 *
 * @license GPL-2.0-or-later
 */
class DatabaseTermCleaner implements TermCleaner {

	/** @var ILoadBalancer */
	private $lb;

	/** @var IDatabase a connection to DB_REPLICA */
	private $dbr = null;

	/** @var IDatabase a connection to DB_MASTER */
	private $dbw = null;

	/** @var LoggerInterface */
	private $logger;

	public function __construct(
		ILoadBalancer $lb,
		LoggerInterface $logger = null
	) {
		$this->lb = $lb;
		// $this->dbr and $this->dbw are lazily initialized in cleanTerms()
		$this->logger = $logger ?: new NullLogger();
class Id
{
    public $id;

    public function __construct($id)
    {
        $this->id = $id;
    }

}

class Account
{
    /** @var  Id $id */
    public $id;
}

$account_id = false;

if (starsAreRight()) {
    $account_id = new Id(42);
}

$account = new Account();
if ($account instanceof Id)
{
    $account->id = $account_id;
}
	}

	/**
	 * Delete the specified term_in_lang rows from the database,
	 * as well as any text_in_lang and text rows that are now unused.
	 *
	 * It is the caller’s responsibility ensure
	 * that the term_in_lang rows are no longer referenced anywhere;
	 * on the other hand, this class takes care that text_in_lang and text rows
	 * used by other term_in_lang rows are not removed.
	 *
	 * @param int[] $termInLangIds
	 */
	public function cleanTerms( array $termInLangIds ) {
		if ( $this->dbr === null ) {
			$this->dbr = $this->lb->getConnection( ILoadBalancer::DB_REPLICA );
			$this->dbw = $this->lb->getConnection( ILoadBalancer::DB_MASTER );
		}

		try {
			$this->lb->beginMasterChanges( __METHOD__ );
			$this->cleanTermInLangIds( $termInLangIds );
			$this->lb->commitMasterChanges( __METHOD__ );
		} catch ( DBError $exception ) {

			$this->lb->rollbackMasterChanges( __METHOD__ );
			$this->logger->error(
				'{method}: DBError while cleaning terms {termInLangIds}: {exception}',
				[
					'method' => __METHOD__,
					'termInLangIds' => $termInLangIds,
					'exception' => $exception
				]
			);
			throw $exception;
		}
	}

	/**
	 * Delete the specified term_in_lang rows from the database,
	 * as well as any text_in_lang and text rows that are now unused.
	 *
	 * @param int[] $termInLangIds
	 */
	private function cleanTermInLangIds( array $termInLangIds ) {
		if ( $termInLangIds === [] ) {
			return;
		}

		$this->logger->debug(
			'{method}: deleting {count} term_in_lang rows',
			[
				'method' => __METHOD__,
				'count' => count( $termInLangIds ),
			]
		);

		$potentiallyUnusedTextInLangIds = $this->selectFieldValuesForPrimaryKey(
			'wbt_term_in_lang',
			'wbtl_text_in_lang_id',
			'wbtl_id',
			$termInLangIds,
			__METHOD__
		);

		$this->dbw->delete(
			'wbt_term_in_lang',
			[ 'wbtl_id' => $termInLangIds ],
			__METHOD__
		);

		$stillUsedTextInLangIds = $this->dbw->selectFieldValues(
			'wbt_term_in_lang',
			'wbtl_text_in_lang_id',
			[ 'wbtl_text_in_lang_id' => $potentiallyUnusedTextInLangIds ],
			__METHOD__,
			[
				/**
				 * If we try to clean up a text_in_lang whose last use in a term_in_lang we just
				 * removed, and simultaneously another request adds a new term_in_lang using that
				 * text_in_lang, we want one of the following to happen:
				 *
				 * 1. Our transaction completes first and removes the text_in_lang. The concurrent
				 *    request blocks until we’re done, then sees that the text_in_lang is gone and
				 *    creates it (again) as part of inserting the term_in_lang.
				 * 2. The other transaction completes first and registers another term_in_lang using
				 *    that text_in_lang. We block until that’s done and then notice the text_in_lang
				 *    is still used and don’t clean it up.
				 *
				 * For this to work, we need to use 'FOR UPDATE' when checking whether a
				 * text_in_lang is still used in a term_in_lang, and the other request needs to
				 * ensure during or after insert of the new term_in_lang that the text_in_lang still
				 * exists, or create it otherwise. This way, either our check here or the other
				 * request’s insert will block and wait for the other to complete.
				 */
				'FOR UPDATE',
				// 'DISTINCT', // not supported in combination with FOR UPDATE on some DB types
			]
		);
		$unusedTextInLangIds = array_diff(
			$potentiallyUnusedTextInLangIds,
			$stillUsedTextInLangIds
		);

		$this->cleanTextInLangIds( $unusedTextInLangIds );
	}

	/**
	 * Delete the specified text_in_lang rows from the database,
	 * as well as any text rows that are now unused.
	 *
	 * @param int[] $textInLangIds
	 */
	private function cleanTextInLangIds( array $textInLangIds ) {
		if ( $textInLangIds === [] ) {
			return;
		}

		$this->logger->debug(
			'{method}: deleting {count} text_in_lang rows',
			[
				'method' => __METHOD__,
				'count' => count( $textInLangIds ),
			]
		);

		$potentiallyUnusedTextIds = $this->selectFieldValuesForPrimaryKey(
			'wbt_text_in_lang',
			'wbxl_text_id',
			'wbxl_id',
			$textInLangIds,
			__METHOD__
		);

		$this->dbw->delete(
			'wbt_text_in_lang',
			[ 'wbxl_id' => $textInLangIds ],
			__METHOD__
		);

		$stillUsedTextIds = $this->dbw->selectFieldValues(
			'wbt_text_in_lang',
			'wbxl_text_id',
			[ 'wbxl_text_id' => $potentiallyUnusedTextIds ],
			__METHOD__,
			[
				'FOR UPDATE', // see comment in cleanTermInLangIds
				// 'DISTINCT', // not supported in combination with FOR UPDATE on some DB types
			]
		);
		$unusedTextIds = array_diff(
			$potentiallyUnusedTextIds,
			$stillUsedTextIds
		);

		$this->cleanTextIds( $unusedTextIds );
	}

	/**
	 * Delete the specified text rows from the database.
	 *
	 * @param array $textIds
	 */
	private function cleanTextIds( array $textIds ) {
		if ( $textIds === [] ) {
			return;
		}

		$this->logger->debug(
			'{method}: deleting {count} text rows',
			[
				'method' => __METHOD__,
				'count' => count( $textIds ),
			]
		);

		$this->dbw->delete(
			'wbt_text',
			[ 'wbx_id' => $textIds ],
			__METHOD__
		);
	}

	/**
	 * Select the values for a field in rows with the given primary key.
	 * All the rows with these primary keys should exist in the master database,
	 * and the selected values should never change.
	 *
	 * This initially selects from the replica database,
	 * only falling back to the master if the replica did not return
	 * as many rows as there were specified primary key values.
	 *
	 * @param string $table
	 * @param string $selectedVar
	 * @param string $primaryKeyVar
	 * @param int[] $primaryKeyValues
	 * @param string $fname
	 * @return array
	 */
	private function selectFieldValuesForPrimaryKey(
		$table,
		$selectedVar,
		$primaryKeyVar,
		$primaryKeyValues,
		$fname = __METHOD__
	) {
		$values = $this->dbr->selectFieldValues(
			$table,
			$selectedVar,
			[ $primaryKeyVar => $primaryKeyValues ],
			$fname
		);

		if ( count( $values ) < count( $primaryKeyValues ) ) {
			$this->logger->debug(
				"{method}: replica only returned {valuesCount} '{selectedVar}' values " .
					"for {primaryKeyValuesCount} '{primaryKeyVar}' values, " .
					'falling back to read from master.',
				[
					'method' => __METHOD__,
					'callingMethod' => $fname,
					'valuesCount' => count( $values ),
					'selectedVar' => $selectedVar,
					'primaryKeyValuesCount' => count( $primaryKeyValues ),
					'primaryKeyVar' => $primaryKeyVar,
				]
			);
			$values = $this->dbw->selectFieldValues(
				$table,
				$selectedVar,
				[ $primaryKeyVar => $primaryKeyValues ],
				$fname
			);
		}

		return $values;
	}

}


1			<?php
2
3			namespace Wikibase\TermStore\MediaWiki\PackagePrivate;
4
5			use Psr\Log\LoggerInterface;
6			use Psr\Log\NullLogger;
7			use Wikimedia\Rdbms\DBError;
8			use Wikimedia\Rdbms\IDatabase;
9			use Wikimedia\Rdbms\ILoadBalancer;
10
11			/**
12			* Cleans up the normalized term store after some terms are no longer needed.
13			* Unused term_in_lang, text_in_lang and text rows are automatically removed.
14			* (Unused type rows are never cleaned up.)
15			*
16			* @license GPL-2.0-or-later
17			*/
18			class DatabaseTermCleaner implements TermCleaner {
19
20			/** @var ILoadBalancer */
21			private $lb;
22
23			/** @var IDatabase a connection to DB_REPLICA */
24			private $dbr = null;
25
26			/** @var IDatabase a connection to DB_MASTER */
27			private $dbw = null;
28
29			/** @var LoggerInterface */
30			private $logger;
31
32			public function __construct(
33			ILoadBalancer $lb,
34			LoggerInterface $logger = null
35			) {
36			$this->lb = $lb;
37			// $this->dbr and $this->dbw are lazily initialized in cleanTerms()
38			$this->logger = $logger ?: new NullLogger();
			0 ignored issues – show Documentation Bug introduced 2019-05-14 18:42 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like `$logger ?: new \Psr\Log\NullLogger()` can also be of type `object<Psr\Log\NullLogger>`. However, the property `$logger` is declared as type `object<Psr\Log\LoggerInterface>`. Maybe add an additional type check? Our type inference engine has found a suspicous assignment of a value to a property. This check raises an issue when a value that can be of a mixed type is assigned to a property that is type hinted more strictly. For example, imagine you have a variable `$accountId` that can either hold an Id object or false (if there is no account id yet). Your code now assigns that value to the `id` property of an instance of the `Account` class. This class holds a proper account, so the id value must no longer be false. Either this assignment is in error or a type check should be added for that assignment. class Id { public $id; public function __construct($id) { $this->id = $id; } } class Account { /** @var Id $id */ public $id; } $account_id = false; if (starsAreRight()) { $account_id = new Id(42); } $account = new Account(); if ($account instanceof Id) { $account->id = $account_id; } Loading history...
39			}
40
41			/**
42			* Delete the specified term_in_lang rows from the database,
43			* as well as any text_in_lang and text rows that are now unused.
44			*
45			* It is the caller’s responsibility ensure
46			* that the term_in_lang rows are no longer referenced anywhere;
47			* on the other hand, this class takes care that text_in_lang and text rows
48			* used by other term_in_lang rows are not removed.
49			*
50			* @param int[] $termInLangIds
51			*/
52			public function cleanTerms( array $termInLangIds ) {
53			if ( $this->dbr === null ) {
54			$this->dbr = $this->lb->getConnection( ILoadBalancer::DB_REPLICA );
55			$this->dbw = $this->lb->getConnection( ILoadBalancer::DB_MASTER );
56			}
57
58			try {
59			$this->lb->beginMasterChanges( __METHOD__ );
60			$this->cleanTermInLangIds( $termInLangIds );
61			$this->lb->commitMasterChanges( __METHOD__ );
62			} catch ( DBError $exception ) {
			0 ignored issues – show Bug introduced 2019-05-14 18:42 UTC by Report Bug Copy Issue Report Show Similar Issues like this The class `Wikimedia\Rdbms\DBError` does not exist. Did you forget a USE statement, or did you not list all dependencies? Scrutinizer analyzes your `composer.json`/`composer.lock` file if available to determine the classes, and functions that are defined by your dependencies. It seems like the listed class was neither found in your dependencies, nor was it found in the analyzed files in your repository. If you are using some other form of dependency management, you might want to disable this analysis. Loading history...
63			$this->lb->rollbackMasterChanges( __METHOD__ );
64			$this->logger->error(
65			'{method}: DBError while cleaning terms {termInLangIds}: {exception}',
66			[
67			'method' => __METHOD__,
68			'termInLangIds' => $termInLangIds,
69			'exception' => $exception
70			]
71			);
72			throw $exception;
73			}
74			}
75
76			/**
77			* Delete the specified term_in_lang rows from the database,
78			* as well as any text_in_lang and text rows that are now unused.
79			*
80			* @param int[] $termInLangIds
81			*/
82			private function cleanTermInLangIds( array $termInLangIds ) {
83			if ( $termInLangIds === [] ) {
84			return;
85			}
86
87			$this->logger->debug(
88			'{method}: deleting {count} term_in_lang rows',
89			[
90			'method' => __METHOD__,
91			'count' => count( $termInLangIds ),
92			]
93			);
94
95			$potentiallyUnusedTextInLangIds = $this->selectFieldValuesForPrimaryKey(
96			'wbt_term_in_lang',
97			'wbtl_text_in_lang_id',
98			'wbtl_id',
99			$termInLangIds,
100			__METHOD__
101			);
102
103			$this->dbw->delete(
104			'wbt_term_in_lang',
105			[ 'wbtl_id' => $termInLangIds ],
106			__METHOD__
107			);
108
109			$stillUsedTextInLangIds = $this->dbw->selectFieldValues(
110			'wbt_term_in_lang',
111			'wbtl_text_in_lang_id',
112			[ 'wbtl_text_in_lang_id' => $potentiallyUnusedTextInLangIds ],
113			__METHOD__,
114			[
115			/**
116			* If we try to clean up a text_in_lang whose last use in a term_in_lang we just
117			* removed, and simultaneously another request adds a new term_in_lang using that
118			* text_in_lang, we want one of the following to happen:
119			*
120			* 1. Our transaction completes first and removes the text_in_lang. The concurrent
121			* request blocks until we’re done, then sees that the text_in_lang is gone and
122			* creates it (again) as part of inserting the term_in_lang.
123			* 2. The other transaction completes first and registers another term_in_lang using
124			* that text_in_lang. We block until that’s done and then notice the text_in_lang
125			* is still used and don’t clean it up.
126			*
127			* For this to work, we need to use 'FOR UPDATE' when checking whether a
128			* text_in_lang is still used in a term_in_lang, and the other request needs to
129			* ensure during or after insert of the new term_in_lang that the text_in_lang still
130			* exists, or create it otherwise. This way, either our check here or the other
131			* request’s insert will block and wait for the other to complete.
132			*/
133			'FOR UPDATE',
134			// 'DISTINCT', // not supported in combination with FOR UPDATE on some DB types
135			]
136			);
137			$unusedTextInLangIds = array_diff(
138			$potentiallyUnusedTextInLangIds,
139			$stillUsedTextInLangIds
140			);
141
142			$this->cleanTextInLangIds( $unusedTextInLangIds );
143			}
144
145			/**
146			* Delete the specified text_in_lang rows from the database,
147			* as well as any text rows that are now unused.
148			*
149			* @param int[] $textInLangIds
150			*/
151			private function cleanTextInLangIds( array $textInLangIds ) {
152			if ( $textInLangIds === [] ) {
153			return;
154			}
155
156			$this->logger->debug(
157			'{method}: deleting {count} text_in_lang rows',
158			[
159			'method' => __METHOD__,
160			'count' => count( $textInLangIds ),
161			]
162			);
163
164			$potentiallyUnusedTextIds = $this->selectFieldValuesForPrimaryKey(
165			'wbt_text_in_lang',
166			'wbxl_text_id',
167			'wbxl_id',
168			$textInLangIds,
169			__METHOD__
170			);
171
172			$this->dbw->delete(
173			'wbt_text_in_lang',
174			[ 'wbxl_id' => $textInLangIds ],
175			__METHOD__
176			);
177
178			$stillUsedTextIds = $this->dbw->selectFieldValues(
179			'wbt_text_in_lang',
180			'wbxl_text_id',
181			[ 'wbxl_text_id' => $potentiallyUnusedTextIds ],
182			__METHOD__,
183			[
184			'FOR UPDATE', // see comment in cleanTermInLangIds
185			// 'DISTINCT', // not supported in combination with FOR UPDATE on some DB types
186			]
187			);
188			$unusedTextIds = array_diff(
189			$potentiallyUnusedTextIds,
190			$stillUsedTextIds
191			);
192
193			$this->cleanTextIds( $unusedTextIds );
194			}
195
196			/**
197			* Delete the specified text rows from the database.
198			*
199			* @param array $textIds
200			*/
201			private function cleanTextIds( array $textIds ) {
202			if ( $textIds === [] ) {
203			return;
204			}
205
206			$this->logger->debug(
207			'{method}: deleting {count} text rows',
208			[
209			'method' => __METHOD__,
210			'count' => count( $textIds ),
211			]
212			);
213
214			$this->dbw->delete(
215			'wbt_text',
216			[ 'wbx_id' => $textIds ],
217			__METHOD__
218			);
219			}
220
221			/**
222			* Select the values for a field in rows with the given primary key.
223			* All the rows with these primary keys should exist in the master database,
224			* and the selected values should never change.
225			*
226			* This initially selects from the replica database,
227			* only falling back to the master if the replica did not return
228			* as many rows as there were specified primary key values.
229			*
230			* @param string $table
231			* @param string $selectedVar
232			* @param string $primaryKeyVar
233			* @param int[] $primaryKeyValues
234			* @param string $fname
235			* @return array
236			*/
237			private function selectFieldValuesForPrimaryKey(
238			$table,
239			$selectedVar,
240			$primaryKeyVar,
241			$primaryKeyValues,
242			$fname = __METHOD__
243			) {
244			$values = $this->dbr->selectFieldValues(
245			$table,
246			$selectedVar,
247			[ $primaryKeyVar => $primaryKeyValues ],
248			$fname
249			);
250
251			if ( count( $values ) < count( $primaryKeyValues ) ) {
252			$this->logger->debug(
253			"{method}: replica only returned {valuesCount} '{selectedVar}' values " .
254			"for {primaryKeyValuesCount} '{primaryKeyVar}' values, " .
255			'falling back to read from master.',
256			[
257			'method' => __METHOD__,
258			'callingMethod' => $fname,
259			'valuesCount' => count( $values ),
260			'selectedVar' => $selectedVar,
261			'primaryKeyValuesCount' => count( $primaryKeyValues ),
262			'primaryKeyVar' => $primaryKeyVar,
263			]
264			);
265			$values = $this->dbw->selectFieldValues(
266			$table,
267			$selectedVar,
268			[ $primaryKeyVar => $primaryKeyValues ],
269			$fname
270			);
271			}
272
273			return $values;
274			}
275
276			}
277

wmde / mediawiki-term-store

Issues (22)

Security Analysis no request data

src/PackagePrivate/DatabaseTermCleaner.php (2 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like