Rico Neitzel told me back in the days, that during Magento updates files gets deleted, therefore it is a bad idea, therefore you want to run a patch (not the ones from Magento, but a patch between the versions) over your Magento installation.

After fiddeling around for a while it is a good idea to document, what I have just done (I updated from 1.9.2.2 to 1.9.3.3):

1. Get a trusted git repository with all Magento versions you need, I can recommend https://github.com/OpenMage/magento-mirror

2. Clone it

git clone https://github.com/OpenMage/magento-mirror.git

3. Make sure your current installation is free of core hacks and all files exists which might get patched

magento-mirror$git checkout 1.9.2.2 (old version) production$  rsync --progress -v -r ../magento-mirror/* .

4. You might have now too much files - either you have them already in your gitignore - if not, time to add them.

5. Create a patch file (diff-index is needed for binary patches)

magento-mirror$git checkout 1.9.3.3 (new version) magento-mirror$ git diff-index 1.9.2.2 --binary > patch.patch

6. Apply the patch

production$git apply --binary ../magento-mirror/patch.patch 7. Now you have a working copy with all the changes. You can review them, commit them, etc. This is an old problem, quite a few security researchers already wrote about. But repeating things, helps learning them (especially me). In MageSetup we read posted agreements (terms and conditions) and compare them with all the agreements we expect. This looks like that:$requiredAgreements = $this->_getCustomerCreateAgreements();$controller = $observer->getEvent()->getControllerAction();$postedAgreements = array_keys($controller->getRequest()->getPost('agreement', array())); if ($diff = array_diff($requiredAgreements,$postedAgreements)) {
// ERROR
}

Today I discovered a nasty bug: if you submit no array for agreement, you end up with:

array_keys(1);
array_diff([1,2,3,4], null);

Which throws two warnings:

Warning: array_keys() expects parameter 1 to be array, string given
Warning: array_diff(): Argument #2 is not an array

If developer mode is on, the warning is transformed into an exception and thrown, which "solves" the problem. But if dev mode is off, array_keys returns null first, and then array_diff() does the same.

So we don't have the expected check against our $requiredAgreements. Please make sure, you are handling arrays, before passing them into array_* functions! Guest Author: Rico Neitzel, http://buro71a.de/ I sometimes have the following strange behaviour in Magento: ## Config not loaded in Backend 1. I do have valid config entries in core_config_data Table 2. The backend in System -> Config doesn't reflect these config values from the table On further investigation I saw that this usually only applies to the General Tab and the General Section. My finding was astonishing! There had been a core_config_data Entry with the following data: ID scope scope_id path value 123 default 0 general NULL ## How did that happen? I'm pretty sure that I accidentally clicked the "Add new row" Button in my SQL-Tool. That prefilled the fields with its (in SQL defined) default values. The main issue here is the default value for the path field: general ## What did it do? When Magento loads the configuration and applies the database config values this NULL value for general will overwrite all general/* settings and so the backend cannot find anything although it's stored in the DB. ## How to solve it? Dead simple: Remove that broken general entry from the core_config_data table and you're fine :-) You want to disable block cache? You can do it in layout.xml, cms block/page layout update, etc. <action method="setCacheLifetime"></action> More about this in Fabrizio Branca's blog Thanks to sr_aromicon for the link! This blogpost is of the kind: I don't want to forget that this exists, therefore I hope it helps you, but it's mine. :o) Magento updates are pain, because of the damn fcking cockspl*t @copyright header. Thanks to Franklin P Strube there is a solution for this: • Copy your new magento version over the old one. • Run the command: git diff -G '@copyright.*[Cc]opyright' --name-only | xargs -I {} sh -c 'FILE={} ; [$(git diff -U0 -- $FILE | wc -l | tr -d " " | cut -f1-) -eq 7 ] && git add$FILE'

Then most of the files which contain the copyright header are staged. Unforunately when I'm reading the command correctly, the whole file is staged, not only the line. Maybe only the files are added where ONLY the copyright header is changed. Please try.

There is a second answer from Luke H which might help too. I don't understand a word of these commands, so no description.