Page MenuHomePhabricator
Create Task
Maniphest T37646

ApiBlockTest::testMakeNormalBlock() broken
Closed, ResolvedPublic
Actions

Description

Since the security patch https://gerrit.wikimedia.org/r/#change,3434 , the API has a broken test :

php tests/phpunit/phpunit.php tests/phpunit/includes/api/ApiBlockTest.php

  1. ApiBlockTest::testMakeNormalBlock UsageException: Invalid token

Version: unspecified
Severity: major

Details

Reference
bz35646

Related Objects
Search...

StatusSubtypeAssignedTask
 Resolved demonT24596 Migrate subversion to git
 ResolvedhasharT36141 Integrate Jenkins with Git
 ResolvedNoneT37646 ApiBlockTest::testMakeNormalBlock() broken

Event Timeline

bzimport raised the priority of this task from to High.Nov 22 2014, 12:17 AM
bzimport added projects: MediaWiki-Action-API, platformeng.
bzimport set Reference to bz35646.
bzimport added a subscriber: Unknown Object (MLST).
hashar created this task.Apr 2 2012, 3:21 PM
hashar added a comment.Apr 2 2012, 3:22 PM

Marking high priority since that makes the API tests job to always be failing.

Reedy added a comment.Apr 2 2012, 6:09 PM

User.php, it's the request specific tokens at fault

/**

  • Check given value against the token value stored in the session.
  • A match should confirm that the form was submitted from the
  • user's own login session, not a form submission from a third-party
  • site. *
  • @param $val String Input value to compare
  • @param $salt String Optional function-specific data for hashing
  • @param $request WebRequest object to use or null to use $wgRequest
  • @return Boolean: Whether the token matches
	 */

public function matchEditToken( $val, $salt = '', $request = null ) {

		$sessionToken = $this->getEditToken( $salt, $request );
		if ( $val != $sessionToken ) {
			wfDebug( "User::matchEditToken: broken session data\n" );
		}
		return $val == $sessionToken;

}

Commenting out the pass of $request (so it falls back to null) fixes the issue.

We've got discrepancy between code - the gettoken part of block passes the request, but prop=info doesn't, but the api itself does

		// Die if token required, but not provided (unless there is a gettoken parameter)
		$salt = $module->getTokenSalt();
		if ( $salt !== false && !isset( $moduleParams['gettoken'] ) ) {
			if ( !isset( $moduleParams['token'] ) ) {
				$this->dieUsageMsg( array( 'missingparam', 'token' ) );
			} else {
				if ( !$this->getUser()->matchEditToken( $moduleParams['token'], $salt, $this->getRequest() ) ) {
					$this->dieUsageMsg( 'sessionfailure' );
				}
			}
		}

So the question is about the requests. Where should we be passing it, and where shouldn't we?

I guess the request in the block/unblock should be removed to normalise them with the prop=info one. And then do the same in ApiMain::setupModule (ie not pass $this->request)

Reedy added a comment.Apr 2 2012, 6:12 PM

https://gerrit.wikimedia.org/r/4114

hashar added a comment.Apr 3 2012, 12:30 PM

reopening, still happening on gallium :(

ssh gallium
sudo -s -u jenkins
cd /var/lib/jenkins/jobs/MediaWiki-Tests-API
ant phpunit-api

phpunit-api:

[exec] PHPUnit 3.5.15 by Sebastian Bergmann.
[exec] 
[exec] ........I..E...
[exec] 
[exec] Time: 1 second, Memory: 95.25Mb
[exec] 
[exec] There was 1 error:
[exec] 
[exec] 1) ApiBlockTest::testMakeNormalBlock
[exec] UsageException: Invalid token
[exec] 
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/includes/api/ApiBase.php:1087
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/includes/api/ApiBase.php:1266
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/includes/api/ApiMain.php:603
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/includes/api/ApiMain.php:691
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/includes/api/ApiMain.php:342
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/includes/api/ApiTestCase.php:53
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/includes/api/ApiBlockTest.php:51
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/MediaWikiTestCase.php:66
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/MediaWikiPHPUnitCommand.php:45
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/phpunit.php:60
[exec] 
[exec] There was 1 incomplete test:
[exec] 
[exec] 1) ApiTest::testApiListPages
[exec] Somebody needs to finish loving me
[exec] 
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/includes/api/ApiTest.php:215
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/MediaWikiTestCase.php:66
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/MediaWikiPHPUnitCommand.php:45
[exec] /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace/tests/phpunit/phpunit.php:60
[exec] 
       FAILURES!
       Tests: 15, Assertions: 45, Errors: 1, Incomplete: 1.
hashar added a comment.Apr 3 2012, 12:33 PM

Another way, which only run the ApiBlockTest::testMakeNormalBlock test :

ssh gallium
sudo -s -u jenkins
cd /var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace

Then:

php tests/phpunit/phpunit.php \

--conf /var/lib/jenkins/jobs/MediaWiki-Tests-API/workspace/LocalSettings.php \
tests/phpunit/includes/api/ApiBlockTest.php
  1. ApiBlockTest::testMakeNormalBlock

UsageException: Invalid token

hashar added a comment.Apr 3 2012, 1:09 PM

Test marked as broken with https://gerrit.wikimedia.org/r/4159 so I can continue the Jenkins/Gerrit integration.

Reedy added a comment.Apr 3 2012, 1:32 PM

Irritating!

reedy@ubuntu64-web-esxi:/var/www/wiki/w$ php tests/phpunit/phpunit.php tests/phpunit/includes/api/ApiBlockTest.php
PHPUnit 3.6.10 by Sebastian Bergmann.

Configuration read from /var/www/wiki/w/tests/phpunit/suite.xml

.

Time: 10 seconds, Memory: 70.25Mb

OK (1 test, 4 assertions)
reedy@ubuntu64-web-esxi:/var/www/wiki/w$

hashar added a comment.Apr 3 2012, 2:07 PM

I am not sure what is the issue there, but it is certainly reproducible on gallium :/

Reedy added a comment.Apr 3 2012, 2:25 PM

jenkins@gallium:/var/lib/jenkins/jobs/MediaWiki-GIT-Fetching/workspace$ php tests/phpunit/phpunit.php --conf /var/lib/jenkins/jobs/MediaWiki-Tests-API/workspace/LocalSettings.php tests/phpunit/includes/api/ApiBlockTest.php
PHPUnit 3.5.15 by Sebastian Bergmann.

string(34) "1ebf829d30b805f7ed7a081c81d15c02+\"
string(0) ""
NULL
string(34) "1ebf829d30b805f7ed7a081c81d15c02+\"
.

Time: 0 seconds, Memory: 34.25Mb

OK (1 test, 4 assertions

hashar added a comment.Apr 6 2012, 8:40 AM

The test has been enabled again by https://gerrit.wikimedia.org/r/4201 . I have had PHPUnit upgraded from 3.5.x to 3.6.10, maybe that helped fixing the issue we had. Or another changed fixed it.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL