From 51c1831d8971e5158f6757d72528d57e41316f5a Mon Sep 17 00:00:00 2001
From: Brion Vibber <brion@users.mediawiki.org>
Date: Wed, 5 Dec 2007 15:19:45 +0000
Subject: [PATCH] Revert r28158, 28159, 28160, 28164: * Bad validation of input
 * Bad passing of unescaped input into SQL * Bad passing of unescaped titles
 into URL output

---
 RELEASE-NOTES                     |  5 ---
 includes/SpecialUndelete.php      | 53 ++++++-------------------------
 languages/messages/MessagesEn.php |  5 ---
 3 files changed, 10 insertions(+), 53 deletions(-)

diff --git a/RELEASE-NOTES b/RELEASE-NOTES
index bf789ed52c..3bb9cd78e9 100644
--- a/RELEASE-NOTES
+++ b/RELEASE-NOTES
@@ -87,11 +87,6 @@ it from source control: http://www.mediawiki.org/wiki/Download_from_SVN
   does not exists
 * (bug 8396) Ignore out-of-date serialised message caches
 * (bug 12195) Undeleting pages now requires 'undelete' permission
-* Only show most recent 5000 revisions on Special:Undelete by default. Accept
-  limit and offset parameters. Undelete with no revisions selected still
-  undeletes all revisions, regardless of how many are displayed.
-* Add "show all" option to Special:Undelete when some revisions are excluded,
-  despite that showing all revisions may fail less than gracefully.
 
 === Bug fixes in 1.12 ===
 
diff --git a/includes/SpecialUndelete.php b/includes/SpecialUndelete.php
index 482aac1938..06d66a2b85 100644
--- a/includes/SpecialUndelete.php
+++ b/includes/SpecialUndelete.php
@@ -97,21 +97,14 @@ class PageArchive {
 	 *
 	 * @return ResultWrapper
 	 */
-	function listRevisions( $startTime, $limit ) {
-		$whereClause = array( 'ar_namespace' => $this->title->getNamespace(),
-			'ar_title' => $this->title->getDBkey() );
-		if ( $startTime && is_numeric($startTime) )
-			$whereClause[] = "ar_timestamp < $startTime";
-
-		$optionsClause = array( 'ORDER BY' => 'ar_timestamp DESC' );
-		if ( $limit > 0 ) $optionsClause['LIMIT'] = intval($limit);
-
+	function listRevisions() {
 		$dbr = wfGetDB( DB_SLAVE );
 		$res = $dbr->select( 'archive',
 			array( 'ar_minor_edit', 'ar_timestamp', 'ar_user', 'ar_user_text', 'ar_comment', 'ar_len' ),
-			$whereClause,
+			array( 'ar_namespace' => $this->title->getNamespace(),
+			       'ar_title' => $this->title->getDBkey() ),
 			'PageArchive::listRevisions',
-			$optionsClause ) ;
+			array( 'ORDER BY' => 'ar_timestamp DESC' ) );
 		$ret = $dbr->resultObject( $res );
 		return $ret;
 	}
@@ -829,7 +822,7 @@ class UndeleteForm {
 	}
 
 	/* private */ function showHistory() {
-		global $wgLang, $wgContLang, $wgUser, $wgOut, $wgRequest;
+		global $wgLang, $wgContLang, $wgUser, $wgOut;
 
 		$sk = $wgUser->getSkin();
 		if ( $this->mAllowed ) {
@@ -853,37 +846,12 @@ class UndeleteForm {
 		}
 
 		# List all stored revisions
-		$tmpLimit = $wgRequest->getIntOrNull ( 'limit' );
-		$tmpLimit = (is_null($tmpLimit))? 5001 : $tmpLimit + 1;
-		$revisions = $archive->listRevisions( $wgRequest->getVal ( 'offset' ),
-			$tmpLimit );
-		if ( $tmpLimit < 1 ) $tmpLimit = $revisions->numRows() + 1;
-
+		$revisions = $archive->listRevisions();
 		$files = $archive->listFiles();
 
 		$haveRevisions = $revisions && $revisions->numRows() > 0;
 		$haveFiles = $files && $files->numRows() > 0;
 
-		$hasMore = false;
-		if ( $revisions && $revisions->numRows() >= $tmpLimit ) {
-			if ( $revisions->numRows() >= 2 ) {
-				$revisions->seek ( $revisions->numRows() - 2 );
-				$tmp = $revisions->fetchObject();
-				$revisions->rewind ( );
-				$offset = $tmp->ar_timestamp;
-			} else
-				$offset = 0;
-
-			$titleObj = SpecialPage::getTitleFor ( 'Undelete' );
-			$nextLink = $sk->makeKnownLinkObj ( $titleObj, wfMsg( 'undelete-next-revs', 5000 ), 
-				"target={$this->mTarget}&limit=5000&offset=$offset" );
-
-			$allLink = $sk->makeKnownLinkObj ( $titleObj, wfMsg( 'undelete-show-all' ), 
-				"target={$this->mTarget}&limit=-1&offset=0" );
-	
-			$wgOut->addHTML ( wfMsg ( 'undelete-more-revs', $tmpLimit - 1, $nextLink, $allLink ) );
-			$hasMore = true;
-		}
 		# Batch existence check on user and talk pages
 		if( $haveRevisions ) {
 			$batch = new LinkBatch();
@@ -967,17 +935,16 @@ class UndeleteForm {
 			$target = urlencode( $this->mTarget );
 			$remaining = $revisions->numRows();
 			$earliestLiveTime = $this->getEarliestTime( $this->mTargetObj );
-
-			if ( $hasMore ) $remaining --;
-
-			while( ( $row = $revisions->fetchObject() ) && $remaining-- ) {
+			
+			while( $row = $revisions->fetchObject() ) {
+				$remaining--;
 				$ts = wfTimestamp( TS_MW, $row->ar_timestamp );
 				if ( $this->mAllowed ) {
 					$checkBox = Xml::check( "ts$ts" );
 					$pageLink = $sk->makeKnownLinkObj( $titleObj,
 						$wgLang->timeanddate( $ts, true ),
 						"target=$target&timestamp=$ts" );
-					if( ($remaining > 0 || $hasMore ) ||
+					if( ($remaining > 0) ||
 							($earliestLiveTime && $ts > $earliestLiveTime ) ) {
 						$diffLink = '(' .
 							$sk->makeKnownLinkObj( $titleObj,
diff --git a/languages/messages/MessagesEn.php b/languages/messages/MessagesEn.php
index d40dee6c40..6fd29e4b3f 100644
--- a/languages/messages/MessagesEn.php
+++ b/languages/messages/MessagesEn.php
@@ -2006,11 +2006,6 @@ Consult the [[Special:Log/delete|deletion log]] for a record of recent deletions
 	'It may have already been undeleted.',
 'undelete-error-short'     => 'Error undeleting file: $1',
 'undelete-error-long'      => "Errors were encountered while undeleting the file:\n\n$1",
-'undelete-more-revs'       => '<b><font style="color: red">WARNING!</font> This page has more deleted revisions than are displayed here.</b><br />
-$1 revisions are displayed below. You may select revisions from this list or select none to restore all revisions (including those not displayed).<br />
-($2) ($3)',
-'undelete-next-revs'       => 'View next $1 revisions',
-'undelete-show-all'        => 'Show all revisions',
 
 # Namespace form on various pages
 'namespace'      => 'Namespace:',
-- 
2.20.1