report(); } else { MWExceptionRenderer::output( $e, MWExceptionRenderer::AS_PRETTY ); } } catch ( Exception $e2 ) { // Exception occurred from within exception handler // Show a simpler message for the original exception, // don't try to invoke report() MWExceptionRenderer::output( $e, MWExceptionRenderer::AS_RAW, $e2 ); } } /** * Roll back any open database transactions and log the stack trace of the throwable * * This method is used to attempt to recover from exceptions * * @since 1.23 * @param Throwable $e * @param string $catcher CAUGHT_BY_* class constant indicating what caught the error */ public static function rollbackMasterChangesAndLog( Throwable $e, $catcher = self::CAUGHT_BY_OTHER ) { $services = MediaWikiServices::getInstance(); if ( !$services->isServiceDisabled( 'DBLoadBalancerFactory' ) ) { // Rollback DBs to avoid transaction notices. This might fail // to rollback some databases due to connection issues or exceptions. // However, any sane DB driver will rollback implicitly anyway. try { $services->getDBLoadBalancerFactory()->rollbackMasterChanges( __METHOD__ ); } catch ( DBError $e2 ) { // If the DB is unreacheable, rollback() will throw an error // and the error report() method might need messages from the DB, // which would result in an exception loop. PHP may escalate such // errors to "Exception thrown without a stack frame" fatals, but // it's better to be explicit here. self::logException( $e2, $catcher ); } } self::logException( $e, $catcher ); } /** * Callback to use with PHP's set_exception_handler. * * @since 1.31 * @param Throwable $e */ public static function handleUncaughtException( Throwable $e ) { self::handleException( $e, self::CAUGHT_BY_HANDLER ); // Make sure we don't claim success on exit for CLI scripts (T177414) if ( wfIsCLI() ) { register_shutdown_function( function () { exit( 255 ); } ); } } /** * Exception handler which simulates the appropriate catch() handling: * * try { * ... * } catch ( Exception $e ) { * $e->report(); * } catch ( Exception $e ) { * echo $e->__toString(); * } * * @since 1.25 * @param Throwable $e * @param string $catcher CAUGHT_BY_* class constant indicating what caught the error */ public static function handleException( Throwable $e, $catcher = self::CAUGHT_BY_OTHER ) { self::rollbackMasterChangesAndLog( $e, $catcher ); self::report( $e ); } /** * Handler for set_error_handler() callback notifications. * * Receive a callback from the interpreter for a raised error, create an * ErrorException, and log the exception to the 'error' logging * channel(s). * * @since 1.25 * @param int $level Error level raised * @param string $message * @param string|null $file * @param int|null $line * @return bool */ public static function handleError( $level, $message, $file = null, $line = null ) { global $wgPropagateErrors; // Map PHP error constant to a PSR-3 severity level. // Avoid use of "DEBUG" or "INFO" levels, unless the // error should evade error monitoring and alerts. // // To decide the log level, ask yourself: "Has the // program's behaviour diverged from what the written // code expected?" // // For example, use of a deprecated method or violating a strict standard // has no impact on functional behaviour (Warning). On the other hand, // accessing an undefined variable makes behaviour diverge from what the // author intended/expected. PHP recovers from an undefined variables by // yielding null and continuing execution, but it remains a change in // behaviour given the null was not part of the code and is likely not // accounted for. switch ( $level ) { case E_WARNING: case E_CORE_WARNING: case E_COMPILE_WARNING: $prefix = 'PHP Warning: '; $severity = LogLevel::ERROR; break; case E_NOTICE: $prefix = 'PHP Notice: '; $severity = LogLevel::ERROR; break; case E_USER_NOTICE: // Used by wfWarn(), MWDebug::warning() $prefix = 'PHP Notice: '; $severity = LogLevel::WARNING; break; case E_USER_WARNING: // Used by wfWarn(), MWDebug::warning() $prefix = 'PHP Warning: '; $severity = LogLevel::WARNING; break; case E_STRICT: $prefix = 'PHP Strict Standards: '; $severity = LogLevel::WARNING; break; case E_DEPRECATED: case E_USER_DEPRECATED: $prefix = 'PHP Deprecated: '; $severity = LogLevel::WARNING; break; default: $prefix = 'PHP Unknown error: '; $severity = LogLevel::ERROR; break; } $e = new ErrorException( $prefix . $message, 0, $level, $file, $line ); self::logError( $e, 'error', $severity, self::CAUGHT_BY_HANDLER ); // If $wgPropagateErrors is true return false so PHP shows/logs the error normally. // Ignore $wgPropagateErrors if track_errors is set // (which means someone is counting on regular PHP error handling behavior). return !( $wgPropagateErrors || ini_get( 'track_errors' ) ); } /** * Callback used as a registered shutdown function. * * This is used as callback from the interpreter at system shutdown. * If the last error was not a recoverable error that we already reported, * and log as fatal exception. * * Special handling is included for missing class errors as they may * indicate that the user needs to install 3rd-party libraries via * Composer or other means. * * @since 1.25 * @return bool Always returns false */ public static function handleFatalError() { // Free reserved memory so that we have space to process OOM // errors self::$reservedMemory = null; $lastError = error_get_last(); if ( $lastError !== null ) { $level = $lastError['type']; $message = $lastError['message']; $file = $lastError['file']; $line = $lastError['line']; } else { $level = 0; $message = ''; } if ( !in_array( $level, self::$fatalErrorTypes ) ) { // Only interested in fatal errors, others should have been // handled by MWExceptionHandler::handleError return false; } $url = WebRequest::getGlobalRequestURL(); $msgParts = [ '[{exception_id}] {exception_url} PHP Fatal Error', ( $line || $file ) ? ' from' : '', $line ? " line $line" : '', ( $line && $file ) ? ' of' : '', $file ? " $file" : '', ": $message", ]; $msg = implode( '', $msgParts ); // Look at message to see if this is a class not found failure (Class 'foo' not found) if ( preg_match( "/Class '\w+' not found/", $message ) ) { // phpcs:disable Generic.Files.LineLength $msg = <<mediawiki.org for help on installing the required components. TXT; // phpcs:enable } $e = new ErrorException( "PHP Fatal Error: {$message}", 0, $level, $file, $line ); $logger = LoggerFactory::getInstance( 'exception' ); $logger->error( $msg, [ 'exception' => $e, 'exception_id' => WebRequest::getRequestId(), 'exception_url' => $url, 'caught_by' => self::CAUGHT_BY_HANDLER ] ); return false; } /** * Generate a string representation of a throwable's stack trace * * Like Throwable::getTraceAsString, but replaces argument values with * argument type or class name. * * @param Throwable $e * @return string * @see prettyPrintTrace() */ public static function getRedactedTraceAsString( Throwable $e ) { return self::prettyPrintTrace( self::getRedactedTrace( $e ) ); } /** * Generate a string representation of a stacktrace. * * @since 1.26 * @param array $trace * @param string $pad Constant padding to add to each line of trace * @return string */ public static function prettyPrintTrace( array $trace, $pad = '' ) { $text = ''; $level = 0; foreach ( $trace as $level => $frame ) { if ( isset( $frame['file'] ) && isset( $frame['line'] ) ) { $text .= "{$pad}#{$level} {$frame['file']}({$frame['line']}): "; } else { // 'file' and 'line' are unset for calls from C code // (T57634) This matches behaviour of // Throwable::getTraceAsString to instead display "[internal // function]". $text .= "{$pad}#{$level} [internal function]: "; } if ( isset( $frame['class'] ) && isset( $frame['type'] ) && isset( $frame['function'] ) ) { $text .= $frame['class'] . $frame['type'] . $frame['function']; } elseif ( isset( $frame['function'] ) ) { $text .= $frame['function']; } else { $text .= 'NO_FUNCTION_GIVEN'; } if ( isset( $frame['args'] ) ) { $text .= '(' . implode( ', ', $frame['args'] ) . ")\n"; } else { $text .= "()\n"; } } $level = $level + 1; $text .= "{$pad}#{$level} {main}"; return $text; } /** * Return a copy of a throwable's backtrace as an array. * * Like Throwable::getTrace, but replaces each element in each frame's * argument array with the name of its class (if the element is an object) * or its type (if the element is a PHP primitive). * * @since 1.22 * @param Throwable $e * @return array */ public static function getRedactedTrace( Throwable $e ) { return static::redactTrace( $e->getTrace() ); } /** * Redact a stacktrace generated by Throwable::getTrace(), * debug_backtrace() or similar means. Replaces each element in each * frame's argument array with the name of its class (if the element is an * object) or its type (if the element is a PHP primitive). * * @since 1.26 * @param array $trace Stacktrace * @return array Stacktrace with arugment values converted to data types */ public static function redactTrace( array $trace ) { return array_map( function ( $frame ) { if ( isset( $frame['args'] ) ) { $frame['args'] = array_map( function ( $arg ) { return is_object( $arg ) ? get_class( $arg ) : gettype( $arg ); }, $frame['args'] ); } return $frame; }, $trace ); } /** * If the exception occurred in the course of responding to a request, * returns the requested URL. Otherwise, returns false. * * @since 1.23 * @return string|false */ public static function getURL() { global $wgRequest; if ( !isset( $wgRequest ) || $wgRequest instanceof FauxRequest ) { return false; } return $wgRequest->getRequestURL(); } /** * Get a message formatting the throwable message and its origin. * * Despite the method name, this is not used for logging. * It is only used for HTML or CLI output, by MWExceptionRenderer * and MWException::getText, respectively. * * @since 1.22 * @param Throwable $e * @return string */ public static function getLogMessage( Throwable $e ) { $id = WebRequest::getRequestId(); $type = get_class( $e ); $file = $e->getFile(); $line = $e->getLine(); $message = $e->getMessage(); $url = self::getURL() ?: '[no req]'; if ( $e instanceof DBQueryError ) { $message = "A database query error has occurred. Did you forget to run" . " your application's database schema updater after upgrading?\n\n" . $message; } return "[$id] $url $type from line $line of $file: $message"; } /** * Get a normalised message for formatting with PSR-3 log event context. * * Must be used together with `getLogContext()` to be useful. * * @since 1.30 * @param Throwable $e * @return string */ public static function getLogNormalMessage( Throwable $e ) { $type = get_class( $e ); $file = $e->getFile(); $line = $e->getLine(); $message = $e->getMessage(); return "[{exception_id}] {exception_url} $type from line $line of $file: $message"; } /** * @param Throwable $e * @return string */ public static function getPublicLogMessage( Throwable $e ) { $reqId = WebRequest::getRequestId(); $type = get_class( $e ); return '[' . $reqId . '] ' . gmdate( 'Y-m-d H:i:s' ) . ': ' . 'Fatal exception of type "' . $type . '"'; } /** * Get a PSR-3 log event context from a Throwable. * * Creates a structured array containing information about the provided * throwable that can be used to augment a log message sent to a PSR-3 * logger. * * @since 1.26 * @param Throwable $e * @param string $catcher CAUGHT_BY_* class constant indicating what caught the error * @return array */ public static function getLogContext( Throwable $e, $catcher = self::CAUGHT_BY_OTHER ) { return [ 'exception' => $e, 'exception_id' => WebRequest::getRequestId(), 'exception_url' => self::getURL() ?: '[no req]', 'caught_by' => $catcher ]; } /** * Get a structured representation of a Throwable. * * Returns an array of structured data (class, message, code, file, * backtrace) derived from the given throwable. The backtrace information * will be redacted as per getRedactedTraceAsArray(). * * @since 1.26 * @param Throwable $e * @param string $catcher CAUGHT_BY_* class constant indicating what caught the error * @return array */ public static function getStructuredExceptionData( Throwable $e, $catcher = self::CAUGHT_BY_OTHER ) { global $wgLogExceptionBacktrace; $data = [ 'id' => WebRequest::getRequestId(), 'type' => get_class( $e ), 'file' => $e->getFile(), 'line' => $e->getLine(), 'message' => $e->getMessage(), 'code' => $e->getCode(), 'url' => self::getURL() ?: null, 'caught_by' => $catcher ]; if ( $e instanceof ErrorException && ( error_reporting() & $e->getSeverity() ) === 0 ) { // Flag surpressed errors $data['suppressed'] = true; } if ( $wgLogExceptionBacktrace ) { $data['backtrace'] = self::getRedactedTrace( $e ); } $previous = $e->getPrevious(); if ( $previous !== null ) { $data['previous'] = self::getStructuredExceptionData( $previous, $catcher ); } return $data; } /** * Serialize a Throwable object to JSON. * * The JSON object will have keys 'id', 'file', 'line', 'message', and * 'url'. These keys map to string values, with the exception of 'line', * which is a number, and 'url', which may be either a string URL or or * null if the throwable did not occur in the context of serving a web * request. * * If $wgLogExceptionBacktrace is true, it will also have a 'backtrace' * key, mapped to the array return value of Throwable::getTrace, but with * each element in each frame's "args" array (if set) replaced with the * argument's class name (if the argument is an object) or type name (if * the argument is a PHP primitive). * * @par Sample JSON record ($wgLogExceptionBacktrace = false): * @code * { * "id": "c41fb419", * "type": "MWException", * "file": "/var/www/mediawiki/includes/cache/MessageCache.php", * "line": 704, * "message": "Non-string key given", * "url": "/wiki/Main_Page" * } * @endcode * * @par Sample JSON record ($wgLogExceptionBacktrace = true): * @code * { * "id": "dc457938", * "type": "MWException", * "file": "/vagrant/mediawiki/includes/cache/MessageCache.php", * "line": 704, * "message": "Non-string key given", * "url": "/wiki/Main_Page", * "backtrace": [{ * "file": "/vagrant/mediawiki/extensions/VisualEditor/VisualEditor.hooks.php", * "line": 80, * "function": "get", * "class": "MessageCache", * "type": "->", * "args": ["array"] * }] * } * @endcode * * @since 1.23 * @param Throwable $e * @param bool $pretty Add non-significant whitespace to improve readability (default: false). * @param int $escaping Bitfield consisting of FormatJson::.*_OK class constants. * @param string $catcher CAUGHT_BY_* class constant indicating what caught the error * @return string|false JSON string if successful; false upon failure */ public static function jsonSerializeException( Throwable $e, $pretty = false, $escaping = 0, $catcher = self::CAUGHT_BY_OTHER ) { return FormatJson::encode( self::getStructuredExceptionData( $e, $catcher ), $pretty, $escaping ); } /** * Log a throwable to the exception log (if enabled). * * This method must not assume the throwable is an MWException, * it is also used to handle PHP exceptions or exceptions from other libraries. * * @since 1.22 * @param Throwable $e * @param string $catcher CAUGHT_BY_* class constant indicating what caught the error * @param array $extraData (since 1.34) Additional data to log */ public static function logException( Throwable $e, $catcher = self::CAUGHT_BY_OTHER, $extraData = [] ) { if ( !( $e instanceof MWException ) || $e->isLoggable() ) { $logger = LoggerFactory::getInstance( 'exception' ); $context = self::getLogContext( $e, $catcher ); if ( $extraData ) { $context['extraData'] = $extraData; } $logger->error( self::getLogNormalMessage( $e ), $context ); $json = self::jsonSerializeException( $e, false, FormatJson::ALL_OK, $catcher ); if ( $json !== false ) { $logger = LoggerFactory::getInstance( 'exception-json' ); $logger->error( $json, [ 'private' => true ] ); } Hooks::runner()->onLogException( $e, false ); } } /** * Log an exception that wasn't thrown but made to wrap an error. * * @param ErrorException $e * @param string $channel * @param string $level * @param string $catcher CAUGHT_BY_* class constant indicating what caught the error */ private static function logError( ErrorException $e, $channel, $level, $catcher ) { // The set_error_handler callback is independent from error_reporting. // Filter out unwanted errors manually (e.g. when // Wikimedia\suppressWarnings is active). $suppressed = ( error_reporting() & $e->getSeverity() ) === 0; if ( !$suppressed ) { $logger = LoggerFactory::getInstance( $channel ); $logger->log( $level, self::getLogNormalMessage( $e ), self::getLogContext( $e, $catcher ) ); } // Include all errors in the json log (surpressed errors will be flagged) $json = self::jsonSerializeException( $e, false, FormatJson::ALL_OK, $catcher ); if ( $json !== false ) { $logger = LoggerFactory::getInstance( "{$channel}-json" ); // Unlike the 'error' channel, the 'error-json' channel is unfiltered, // and emits messages even if wikimedia/at-ease was used to suppress the // error. To avoid clobbering Logstash dashboards with these, make sure // those have their level casted to DEBUG so that they are excluded by // level-based filteres automatically instead of requiring a dedicated filter // for this channel. To be improved: T193472. $unfilteredLevel = $suppressed ? LogLevel::DEBUG : $level; $logger->log( $unfilteredLevel, $json, [ 'private' => true ] ); } Hooks::runner()->onLogException( $e, $suppressed ); } }