MyBB to flarum

MichaelBelgium

Update 8.2 (pre-release)

added support to migrate attachments of mybb posts (requires fof/upload)

Gerriet

Hi there ;D
At first this extensions are very awesome ;D
Now, I would make migration from my forum in flarum, but I have become this message
https://paste.md-5.net/equkagafow.pl

What make I wrong ?

my forum run on the actual version 1.8.30

greetings
Gerriet

luceos

Gerriet you have a multiple users with the same email address.

Gerriet

OK, I have now more errors in a log ..

https://paste.md-5.net/ukubimubek.php

Bogus

Is maybe the plugins that problem?

GreXXL

Bogus I can't be of detailed assistance here, but the from a quick look into the source it seems to have a connection with the user groups. Maybe some members with too many or no group that's causing the problem?

                    foreach($userGroups as $group)
                    {
                        if($group <= 7) continue;
                        $newUser->groups()->save(Group::find($group));
                    }
                }

MichaelBelgium

The error mysqli object is already closed means it cant connect to database, but i assume you fixed that as it only happened once.

The user group error should be looked into: it's trying to add a user to a usergroup but that usergroup doesnt exist in the flarum database.

either the usergroup failed to migrate (but it exists in mybb db)
the usergroup doesn't exist in mybb database, which results in the same as above

The easiest way to find out what group it tries to access is to debug in my Migrator.php file.
but i forgot what function u can use to write to flarum.log - imma look it up (or someone might be quicker)

Gerriet

HI there ;D
If I leave the groups out, the convert should work or ?

MattyWjeisz

Trying to migrate and I'm getting the 'Oops!' error and the following in the error log:

[2022-08-18 11:28:22] flarum.ERROR: TypeError: Illuminate\Database\Eloquent\Relations\BelongsToMany::save(): Argument #1 ($model) must be of type Illuminate\Database\Eloquent\Model, null given, called in /home/hx9xvmlx8jo1/public_html/owd/discuss/vendor/michaelbelgium/mybb-to-flarum/src/Migrator.php on line 149 and defined in /home/hx9xvmlx8jo1/public_html/owd/discuss/vendor/illuminate/database/Eloquent/Relations/BelongsToMany.php:1147

clarkwinkelmann

I'm curious why the passwords are ~~set~~ (seeded?) to time() during the migration? That seems pretty insecure. The time of migration can be found in the columns that are set to Carbon::now() in the same migration script, or it could be brute-forced pretty easily if you roughly know the week the migration took place on.

If the goal is to set a random unguessable password, PHP has much better methods to generate those. Or even better, leave the column empty so it won't be a valid hash and no passwords will match.

EDIT: after re-reading the code I realize the code might actually set the password to the bcrypt hash of the time, which stores a hash of a hash, so the hash that serves as password is in fact random since it contains the bcrypt salt which is a true random value. If that's the case then it's safe against attacks, but why do something so complicated to generate a random password? It's so slow compared to other options, there's no need to go through 10 rounds of bcrypt hashing if all you need is a random value.

The script ends up doing 2 times 10 rounds of bcrypt for each user, all of that to set an unusable password? This will waste a lot of minutes over a large dataset migration.

MikeBanim

@MichaelBelgium I executed the migration but received the following error:

SQLSTATE[HY000] [2002] Can't connect to local MySQL server through socket '/var/lib/mysql/mysql.sock'

I ran through each of users/posts/groups/categories individually and this time they all migrated. However, none of my discussions have been assigned their tags :-( there are about 4,000 so re-adding them manually would take a long time! Any ideas?

MichaelBelgium

MikeBanim SQLSTATE[HY000] [2002] Can't connect to local MySQL server through socket '/var/lib/mysql/mysql.sock'

Doesn't that mean that your mysql server isn't running or wrong user/password?

@clarkwinkelmann The password is just a bcrypt of current time. I'm not sure where you see it's doing it multiple times?

Or even better, leave the column empty so it won't be a valid hash and no passwords will match.

Password field is required (at least at the time of making the extension) so not sure what to put instead tho?

MikeBanim

Never mind - I figured out a workaround by exporting/importing the values via a csv file

clarkwinkelmann

MichaelBelgium bcrypt does multiple rounds of hashing on a value to generate the output. The more rounds, the more secure the hash is, but the more processing power and time it takes (which is the whole point to protect against brute-force). By default PHP does 10 rounds if you don't specify it. If you create a bcrypt hash and then set it as password through Flarum method it's hashed again, so that would be 20 rounds total.

If you are only trying to generate invalid values, that's a lot of processing time wasted when an empty password column or value generated from the system random generator would serve the same purpose. You won't notice much on hundreds of records but on millions of records it can be significant if the server isn't very powerful.

In Laravel seeds and Flarum tests, password hashes to use are pre-generated and stored in constants to make execution faster. My own Flarum migration script has a bcrypt cache implemented to speed up subsequent re-reruns because of how long it adds to the total execution time. Hence why I would recommend to not use bcrypt at all if the goal can be achieved in a more performant way.

If you create the database model manually, you can set the raw value of the password column to an empty string or just random content. It won't be a valid bcrypt hash, so it'll never match any input.

MikeBanim

MichaelBelgium it was about 50000 records through the posts migration when I received that error. However it worked fine the second time I executed it 🤷‍♂️

MichaelBelgium

clarkwinkelmann Ah alright i see! I didn't know User::register() hashes the password, I didn't see it in the source code.

Either way you're right, it's time wasted for the same, invalid values, purpose. I've updated the extension

Gerriet

Hi there ;D
I have now test my little forum zu merge from mybb to flarum. So I have issues in the log and here is the log ;D
https://paste.md-5.net/iqokujahac.shell

I have no idea, what is the fall by me or better in my forum. I hop you can me help me ;D

Greetings

Gerriet

itsjp89

Is this still being developed or is it dead?

luceos

itsjp89 try Nitro Porter, it's a more generic solution: https://discuss.flarum.org/d/31776-nitro-porter-the-inter-software-migration-toolkit

MichaelBelgium

itsjp89 Neither

Whats there to update? It's not being updated as long as its compatible with newest flarum + if mybb doesn't change their database structure

But yeah, like @luceos said you could try it out, I didnt receive any bug reports since months/years so I assume it still works

itsjp89

MichaelBelgium Ya sorry, that's what I meant.

« Previous Page Next Page »