Hello,
Just out of curiosity, now consider if a security hole in mediawiki was identified, how does wikipedia manage to roll out the new patch to all servers?
Any formal steps? Tesing? Regression? UAT?
Any build/deployment scripts can be shared?
Thanks.
Ryan Chan wrote:
Hello,
Just out of curiosity, now consider if a security hole in mediawiki was identified, how does wikipedia manage to roll out the new patch to all servers?
Any formal steps? Tesing? Regression? UAT?
Any build/deployment scripts can be shared?
Thanks.
It'd be fixed in trunk and the wmf-deployment branch (for being applied immediately). Changes would show on http://test.wikipedia.org/ a bit first, but since those commiting to wmf-deployment are the sysadmins, they'd then scap (roll it to all the apache servers). The fix would have been tested by the developer who fixed it (and reviewed by the sysadmin applying it, if different). And yes, sometimes "patching the live wiki" broke it. But since that means getting dozens of users complaining, the sysadmin figures out pretty quickly ;)
wikitech-l@lists.wikimedia.org