wiki.techinc.nl/maintenance/Maintenance.php

<?php
/**
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License along
 * with this program; if not, write to the Free Software Foundation, Inc.,
 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
 * http://www.gnu.org/copyleft/gpl.html
 *
 * @file
 * @ingroup Maintenance
 * @defgroup Maintenance Maintenance
 */

/**
 * @defgroup MaintenanceArchive Maintenance archives
 * @ingroup Maintenance
 */

if ( !defined( 'RUN_MAINTENANCE_IF_MAIN' ) ) {
	// Define this so scripts can easily find doMaintenance.php
	define( 'RUN_MAINTENANCE_IF_MAIN', __DIR__ . '/doMaintenance.php' );

	// Original name for compat, harmless
	// Support: MediaWiki < 1.31
	define( 'DO_MAINTENANCE', RUN_MAINTENANCE_IF_MAIN );
}

if ( defined( 'MEDIAWIKI' ) ) {
	// This file is included by many autoloaded class files, and so may
	// potentially be invoked in the context of a web request or another CLI
	// script. It's not appropriate to run the following file-scope code in
	// such a case.
	return;
}

// Abort if called from a web server
// wfIsCLI() is not available yet
if ( PHP_SAPI !== 'cli' && PHP_SAPI !== 'phpdbg' ) {
	echo "This script must be run from the command line\n";
	exit( 1 );
}

define( 'MW_ENTRY_POINT', 'cli' );

// Bail on old versions of PHP, or if composer has not been run yet to install
// dependencies.
require_once __DIR__ . '/../includes/BootstrapHelperFunctions.php';
require_once __DIR__ . '/../includes/PHPVersionCheck.php';
wfEntryPointCheck( 'text' );

/**
 * @var string|false $maintClass
 * @phan-var class-string|false
 */
$maintClass = false;

// Some extensions rely on MW_INSTALL_PATH to find core files to include. Setting it here helps them
// if they're included by a core script (like DatabaseUpdater) after Maintenance.php has already
// been run.
if ( strval( getenv( 'MW_INSTALL_PATH' ) ) === '' ) {
	putenv( 'MW_INSTALL_PATH=' . realpath( __DIR__ . '/..' ) );
}

require_once __DIR__ . '/includes/Maintenance.php';
require_once __DIR__ . '/includes/LoggedUpdateMaintenance.php';
require_once __DIR__ . '/includes/FakeMaintenance.php';
Merge maintenance-work branch (now with less errors!): * Docs have been updated to indicate the standard on how to write maintenance scripts (MW.org docs will follow) Have ported vast majority of maintenance scripts to new format. Remaining ones (mostly FiveUpgrade-related) are a bit more tricky. commandLine.inc is untouched for now. Many have gotten code-style updates as well. Deleted .inc files were only used by their .php counterparts, and have been merged into single files. * (bug 11867) Lock error on redirect table when running orphans.php * (bug 16322) Allow maintenance scripts to accept DB user/pass over input or params * (bug 18566) Maintenance script to un/protect pages * initStats overhaul, now uses class SiteStatsInit. Also fixes bug 18930 2009-08-02 19:35:17 +00:00			`<?php`
Readded definition for doxygen's Maintenance group that was removed in r55810 2009-12-12 22:22:26 +00:00			`/**`
Part of bug 26280: added license headers to PHP files in maintenance 2010-12-16 19:15:12 +00:00			`* This program is free software; you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation; either version 2 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License along`
			`* with this program; if not, write to the Free Software Foundation, Inc.,`
			`* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.`
			`* http://www.gnu.org/copyleft/gpl.html`
			`*`
Readded definition for doxygen's Maintenance group that was removed in r55810 2009-12-12 22:22:26 +00:00			`* @file`
			`* @ingroup Maintenance`
			`* @defgroup Maintenance Maintenance`
			`*/`

Make sure RUN_MAINTENANCE_IF_MAIN is defined in tests. This moves the definition of the RUN_MAINTENANCE_IF_MAIN constant in Maintenance.php before the check on MEDIAWIKI, so the constant will be defined even if MEDIAWIKI is also defined. This allows maintenance scripts to be successfully loaded in a context in which MEDIAWIKI is already defined, but RUN_MAINTENANCE_IF_MAIN is not. Without this change, such an attempt would fail with a warning that the constant is undefined at the bottom of the maintenance script. A notable use case for loading a maintenance script inline is calling RunJobs in a test case. This would work fine if the test is called via MediaWiki's phpunit wrapper, since that wrapper is itself written as a maintenance script, and thus declared RUN_MAINTENANCE_IF_MAIN. However, integration tests may also be invoked without the wrapper, using the phpunit.xml.dist config file instead. This is the standard way to invoke PHPUnit from within an IDE like PhpStorm, allowing for debugging of unit tests. So, without this patch, integration tests that call RunJobs fail due to an undeclared constant when run via IDE integration. With this patch, they work properly. Change-Id: I52889e092cc9f20bf892c297635b87a972dafa41 2021-01-19 16:31:44 +00:00			`/**`
			`* @defgroup MaintenanceArchive Maintenance archives`
			`* @ingroup Maintenance`
			`*/`

			`if ( !defined( 'RUN_MAINTENANCE_IF_MAIN' ) ) {`
			`// Define this so scripts can easily find doMaintenance.php`
			`define( 'RUN_MAINTENANCE_IF_MAIN', __DIR__ . '/doMaintenance.php' );`

			`// Original name for compat, harmless`
			`// Support: MediaWiki < 1.31`
			`define( 'DO_MAINTENANCE', RUN_MAINTENANCE_IF_MAIN );`
			`}`

Safer autoloading with respect to file-scope code Many files were in the autoloader despite having potentially harmful file-scope code. * Exclude all CommandLineInc maintenance scripts from the autoloader. * Introduce "NO_AUTOLOAD" tag which excludes the file containing it from the autoloader. Use it on CommandLineInc.php and a few suspicious-looking files without classes in case they are refactored to add classes in the future. * Add a test which parses all non-PSR4 class files and confirms that they do not contain dangerous file-scope code. It's slow (15s) but its results were enlightening. * Several maintenance scripts define constants in the file scope, intending to modify the behaviour of MediaWiki. Either move the define() to a later setup function, or protect with NO_AUTOLOAD. * Use require_once consistently with Maintenance.php and doMaintenance.php, per the original convention which is supposed to allow one maintenance script to use the class of another maintenance script. Using require breaks autoloading of these maintenance class files. * When Maintenance.php is included, check if MediaWiki has already started, and if so, return early. Revert the fix for T250003 which is incompatible with this safety measure. Hopefully it was superseded by splitting out the class file. * In runScript.php add a redundant PHP_SAPI check since it does some things in file-scope code before any other check will be run. * Change the if(false) class_alias(...) to something more hackish and more compatible with the new test. * Some site-related scripts found Maintenance.php in a non-standard way. Use the standard way. * fileOpPerfTest.php called error_reporting(). Probably debugging code left in; removed. * Moved mediawiki.compress.7z registration from the class file to the caller. Change-Id: I1b1be90343a5ab678df6f1b1bdd03319dcf6537f 2021-01-08 02:16:02 +00:00			`if ( defined( 'MEDIAWIKI' ) ) {`
			`// This file is included by many autoloaded class files, and so may`
			`// potentially be invoked in the context of a web request or another CLI`
			`// script. It's not appropriate to run the following file-scope code in`
			`// such a case.`
			`return;`
Maintenance: Don't redefine MW_ENTRY_POINT if it's already set Maintenance.php may be included after other entry points in certain configurations (like IDE bootstrapping). So if MW_ENTRY_POINT is already set, don't try and define() it as another value. Bug: T250003 Change-Id: Ide011ad11d8dd29fe786a745c6e67259e46b9bfb 2020-04-11 14:14:09 +00:00			`}`
Add MW_REST_API and MW_ENTRY_POINT Define the global constant MW_REST_API in rest.php, by analogy with MW_API. Also generalize this by adding MW_ENTRY_POINT, which contains the entry script name, "cli" or "unknown". This allows tests such as if ( MW_ENTRY_POINT !== 'index' ) which is probably what is really intended by defined('MW_API') in many cases. Change-Id: I24099f4cdd170de17afd6e1bbad67c9b204071fc 2019-09-02 23:55:00 +00:00
MaintenanceRunner: Pull some checks out of initInternal() * Move the PHP_SAPI check to the earliest convenient point in Maintenance.php, well before we attempt to access $argv. * Remove the register_argc_argv check altogether; we don't allow "cgi" SAPI to be used for running scripts from the command line any more. Any value from php.ini is overridden by "cli" and "phpdbg" SAPIs: https://www.php.net/manual/en/features.commandline.differences.php https://github.com/php/php-src/blob/php-8.2.1/sapi/phpdbg/phpdbg.c#L991 And using "-d register_argc_argv=0" or similar seems unlikely. * Don't check if $IP is null (reverts b0647c30bc30874c). This specific check is not useful any more, as $IP is now initialized before the Maintenance object is constructed, and addOption() and similar methods happen to generate PHP errors in the described situation. If desired, a check serving the same purpose could be added in a separate commit. Change-Id: I8032ab18cb26d92ee01ab9851ea1d45b3f9eadbf 2023-01-11 15:18:50 +00:00			`// Abort if called from a web server`
			`// wfIsCLI() is not available yet`
			`if ( PHP_SAPI !== 'cli' && PHP_SAPI !== 'phpdbg' ) {`
			`echo "This script must be run from the command line\n";`
			`exit( 1 );`
			`}`

Safer autoloading with respect to file-scope code Many files were in the autoloader despite having potentially harmful file-scope code. * Exclude all CommandLineInc maintenance scripts from the autoloader. * Introduce "NO_AUTOLOAD" tag which excludes the file containing it from the autoloader. Use it on CommandLineInc.php and a few suspicious-looking files without classes in case they are refactored to add classes in the future. * Add a test which parses all non-PSR4 class files and confirms that they do not contain dangerous file-scope code. It's slow (15s) but its results were enlightening. * Several maintenance scripts define constants in the file scope, intending to modify the behaviour of MediaWiki. Either move the define() to a later setup function, or protect with NO_AUTOLOAD. * Use require_once consistently with Maintenance.php and doMaintenance.php, per the original convention which is supposed to allow one maintenance script to use the class of another maintenance script. Using require breaks autoloading of these maintenance class files. * When Maintenance.php is included, check if MediaWiki has already started, and if so, return early. Revert the fix for T250003 which is incompatible with this safety measure. Hopefully it was superseded by splitting out the class file. * In runScript.php add a redundant PHP_SAPI check since it does some things in file-scope code before any other check will be run. * Change the if(false) class_alias(...) to something more hackish and more compatible with the new test. * Some site-related scripts found Maintenance.php in a non-standard way. Use the standard way. * fileOpPerfTest.php called error_reporting(). Probably debugging code left in; removed. * Moved mediawiki.compress.7z registration from the class file to the caller. Change-Id: I1b1be90343a5ab678df6f1b1bdd03319dcf6537f 2021-01-08 02:16:02 +00:00			`define( 'MW_ENTRY_POINT', 'cli' );`

Check for dependencies in entry point and Maintenance.php This way, if someone tries to install MediaWiki via either web installer or install.php maintenance script, after obtaining from git, they get some useful information on what to do. Put the checks alongside the php version check, as stuff installed via composer (mustache / lightncandy) is used for NoLocalSettings.php and install.php attempts to use logging stuff. Also tried to make PHPVersionError look slightly nicer, with some <h2> elements and more padding for the <p> elements. and centralized this code in one place, as much as possible, for improved ease of maintenance. Bug: T90438 Bug: T88951 Change-Id: Iae4eb42c4266dbe9213c5de8a96fccfbeaa9acb0 2015-04-18 09:37:10 +00:00			`// Bail on old versions of PHP, or if composer has not been run yet to install`
Maintenance: Use __DIR__ instead of dirname( __FILE__ ) dirname( __FILE__ ) was used because it worked in PHP 5.2, allowing the version check to function correctly. However, Maintenance.php now uses the short array syntax, which is a parse error before 5.4: > Parse error: syntax error, unexpected '[' in maintenance/Maintenance.php > on line 66 Also, do the same in install.php where it includes Maintenance.php. Change-Id: I3373a02c684bb6cbde83d7bedc204818f3394602 2016-06-15 00:14:20 +00:00			`// dependencies.`
Allow main settings file to be selected via env variable. This allows a file other than LocalSettings.php to be used as the primary settings file by setting the MW_CONFIG_FILE environment variable. This also allows the primary settings file to use YAML or JSON format. Using static configuration files should be the default in the future. However, YAML files in the document root could easily be exposed to the public. Better not to encourage that, and require them to be enabled explicitly and loaded from a different place. Bug: T294750 Change-Id: I7747f83481cb05a6d05f819be652259951183819 2021-11-16 18:22:57 +00:00			`require_once __DIR__ . '/../includes/BootstrapHelperFunctions.php';`
Maintenance: Use __DIR__ instead of dirname( __FILE__ ) dirname( __FILE__ ) was used because it worked in PHP 5.2, allowing the version check to function correctly. However, Maintenance.php now uses the short array syntax, which is a parse error before 5.4: > Parse error: syntax error, unexpected '[' in maintenance/Maintenance.php > on line 66 Also, do the same in install.php where it includes Maintenance.php. Change-Id: I3373a02c684bb6cbde83d7bedc204818f3394602 2016-06-15 00:14:20 +00:00			`require_once __DIR__ . '/../includes/PHPVersionCheck.php';`
PHPVersionCheck: Remove obsolete load.php code and simplify * Remove obsolete handling for 'load.php', which no longer uses this check. This hasn't been used for several releases. * Remove the 'entryPoint' parameter in favour of 'format', which it was already a proxy for. * Move the double dirname() logic to mw-config/index.php. Bug: T189966 Change-Id: I343216442475d36e61213900f196ab6ec5f6b747 2018-10-28 21:12:54 +00:00			`wfEntryPointCheck( 'text' );`
Use __DIR__ instead of dirname( __FILE__ ) Removed left over uses of dirname( __FILE__ ) to __DIR__, even in comments. Running the PHP version test in maintenance/Maintenance.php earlier, so that we no longer have to stay PHP < 5.3 compatible in there. Change-Id: I5a00bd5c6af44b7f826c4e5576a7b3de7b5026d8 2012-08-27 21:58:28 +00:00
Add type hint for $maintClass Change-Id: I0ba7fd7eb6145ab12625796c842bb2b664d362ab 2019-10-04 17:59:59 +00:00			`/**`
Fix even more PHPStorm inspections (#3) * Inappropriate @inheritDoc usage. Arguably all @inheritDoc is inappropriate but these are the ones PHPStorm flags as misleading due to the method not being inherited. * Doc comment type does not match actual argument/return type. * I replaced "@return void\|never" with "@return void" since never means never, it doesn't make sense for it to be conditional. If a method can return (even if that is unlikely) then @return contains the type that it returns. "@return never" means that there is no such type because the method never returns. * Incomplete/partial/broken doc tags Change-Id: Ide86bd6d2b44387f37d234c2b059d6fbc42ec962 2023-03-24 02:48:54 +00:00			`* @var string\|false $maintClass`
Add type hint for $maintClass Change-Id: I0ba7fd7eb6145ab12625796c842bb2b664d362ab 2019-10-04 17:59:59 +00:00			`* @phan-var class-string\|false`
			`*/`
Fix potential arbitrary script execution vulnerability. Doesn't seem to be exploitable with a default install of PHP, but it might be possible with third-party extensions enabled. 2009-09-04 06:51:38 +00:00			`$maintClass = false;`
Merge maintenance-work branch (now with less errors!): * Docs have been updated to indicate the standard on how to write maintenance scripts (MW.org docs will follow) Have ported vast majority of maintenance scripts to new format. Remaining ones (mostly FiveUpgrade-related) are a bit more tricky. commandLine.inc is untouched for now. Many have gotten code-style updates as well. Deleted .inc files were only used by their .php counterparts, and have been merged into single files. * (bug 11867) Lock error on redirect table when running orphans.php * (bug 16322) Allow maintenance scripts to accept DB user/pass over input or params * (bug 18566) Maintenance script to un/protect pages * initStats overhaul, now uses class SiteStatsInit. Also fixes bug 18930 2009-08-02 19:35:17 +00:00
Set MW_INSTALL_PATH in Maintenance.php Otherwise, if running update.php, there are require_once failures from extensions (at least Echo and Flow) if they aren't inside extensions/ -- e.g., if they're just symlinked from there. Change-Id: Iaf4231abae1621627f01171f955b5bb7a0fa77d8 2019-04-09 07:52:38 +00:00			`// Some extensions rely on MW_INSTALL_PATH to find core files to include. Setting it here helps them`
			`// if they're included by a core script (like DatabaseUpdater) after Maintenance.php has already`
			`// been run.`
			`if ( strval( getenv( 'MW_INSTALL_PATH' ) ) === '' ) {`
			`putenv( 'MW_INSTALL_PATH=' . realpath( __DIR__ . '/..' ) );`
			`}`

maintenance: Move FakeMaintenance and LoggedUpdateMaintenance to their own files Originally submitted as commit 2cdeb26d0c2bc6f3fb4d05d7b8b72c4a601b3da7. This patch is fully backwards compatible. The Maintenance.php entry point is now a true entry point (i.e. no classes defined), and it requires all the *Maintenance classes. Bug: T246780 Change-Id: I75b22f54b19fe560ab71349189598245af1c5693 2020-03-03 14:33:54 +00:00			`require_once __DIR__ . '/includes/Maintenance.php';`
			`require_once __DIR__ . '/includes/LoggedUpdateMaintenance.php';`
			`require_once __DIR__ . '/includes/FakeMaintenance.php';`