Ryan Chan wrote:
Hello,
Just out of curiosity, now consider if a security hole in mediawiki
was identified, how does wikipedia manage to roll out the new patch to
all servers?
Any formal steps? Tesing? Regression? UAT?
Any build/deployment scripts can be shared?
Thanks.
It'd be fixed in trunk and the wmf-deployment branch (for being applied
immediately).
Changes would show on
http://test.wikipedia.org/ a bit first, but since
those commiting to wmf-deployment are the sysadmins, they'd then scap
(roll it to all the apache servers).
The fix would have been tested by the developer who fixed it (and
reviewed by the sysadmin applying it, if different).
And yes, sometimes "patching the live wiki" broke it. But since that
means getting dozens of users complaining, the sysadmin figures out
pretty quickly ;)