#27746 closed defect (bug) (invalid)
Trunk Regression: XML-RPC could fail with erroneous disabled status
Reported by: | redsweater | Owned by: | |
---|---|---|---|
Milestone: | Priority: | normal | |
Severity: | normal | Version: | 3.9 |
Component: | XML-RPC | Keywords: | close |
Focuses: | Cc: |
Description
Some users are noticing that the use of 3rd party apps such as the official WordPress app, MarsEdit, etc., are failing because the server is reporting that XML-RPC services are disabled:
https://wordpress.org/support/topic/xml-rpc-services-disabled?replies=10
It traced the problem to documentation changes made here:
The changes starting at line 194 add multiple lines to what was previously a 1 line statement following an unbracketed if statement. The result is the line following the comment is now executed unconditionally:
$enabled = apply_filters( 'option_enable_xmlrpc', true );
I suspect the case being encountered by users in the forum thread is one where "option_enable"xmlrpc" is filtering to false but the filter should not even be reached by the intended logic.
Adding braces around the (now commented) single line seems to address the issue.
Attachments (2)
Change History (11)
#1
@
11 years ago
Update: thanks to dd32 in IRC for pointing out the affected revisions are not in the 3.8 branch. I jumped to the wrong conclusion, but as it happens this might cause trouble down the road instead if not patched ;)
#2
@
11 years ago
- Summary changed from 3.8.2 Regression: XML-RPC fails with erroneous disabled status to Trunk Regression: XML-RPC fails with erroneous disabled status
@
11 years ago
Revision 2 eliminates the superfluous documentation on the back-compatibility checks.
#3
@
11 years ago
- Summary changed from Trunk Regression: XML-RPC fails with erroneous disabled status to Trunk Regression: XML-RPC could fail with erroneous disabled status
Changed the title to further reflect the probably less serious nature of this bug.
#5
@
11 years ago
The changes starting at line 194 add multiple lines to what was previously a 1 line statement following an unbracketed if statement. The result is the line following the comment is now executed unconditionally:
$enabled = apply_filters( 'option_enable_xmlrpc', true );
From my reading, that's not the case. It's still a single-line statement, the comment block doesn't affect the logic.
As noted in IRC, the issue appears to be caused by Wordfence Security plugin update.
Looks like 27506.5.diff:ticket:27506 on #27506 is the way to go here.
#6
@
11 years ago
- Keywords close added; has-patch commit removed
Sounds like invalid and as Sergey has mentioned, #27506 is the way to go.
Patch to fix logic broken by inline documentation