Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update fork #15

Draft
wants to merge 69 commits into
base: teleport.1
Choose a base branch
from
Draft

Update fork #15

wants to merge 69 commits into from

Conversation

gabrielcorado
Copy link

Fetched from the Microsoft repo on 10/04 (last commit being ported) and merged to our main branch.

shueybubbles and others added 30 commits March 28, 2023 15:48
@shueybubbles
prep for v0.21.0 (denisenkom#99)
17c7a0a
@shueybubbles
feat: Add admin protocol for DAC (denisenkom#110)
327d048 
* refactor!: enable hidden admin protocol

* feat: admin protocol

* fix admin test to skip in appveyor

* fix protocol parsing logic in URL()

* use SplitN

* handle ipv6 in URL()

* Update docs for v1.0 tag

BREAKING CHANGE: Add `Hidden()` method to `ProtocolParser` interface
@apoorvdeshmukh
Update go package dependencies
48240e4
@apoorvdeshmukh
Update go package dependencies
70e2d2b
@apoorvdeshmukh
Enable dependabot for pkg updates
1457717
@shueybubbles
fix: npipe dialer now returns immediately on pipe not found
c30824f 
* go mod vendor npipe to this repo

* switch to internal package
@apoorvdeshmukh
Enable dependabot for pkg updates
dd3e503
@powersj
fix: mips and mipsel builds (denisenkom#124)
78ad891 
* fix: mips and mipsel builds

fixes: denisenkom#123

* swap el or le
@apoorvdeshmukh
Accept additional values for encrypt
3cc2463
@stephaniehingtgen
Allow for local dns resolution with a custom dialer (denisenkom#121)
45ecf99 
* Allow for local dns resolution with a custom dialer

* Use a new dialer type

* fix unit test

* Add changelog & readme
@apoorvdeshmukh
Merge remote-tracking branch 'origin/main' into apoorvdeshmukh/tds8
0424103
@Musab-Nazir
Fixes MarshalText and adds UnmarshalJSON interface for UniqueIdentifi…
b607336 
…er (denisenkom#126)

* Added MarshalText() and UnmarshalJSON interfaces

- The existing MarshalText() for the UniqueIdentifier type had a bad signature. It omitted returning an error that the interface expects.
- Added UnmarshalJSON() interface to the UniqueIdentifier type with a test as well

* use strings.Replace instead of ReplaceAll
@apoorvdeshmukh
Merge remote-tracking branch 'origin/main' into apoorvdeshmukh/tds8
2534789
@apoorvdeshmukh
Enable TDS 8.0 is encrypt is strict
386a3fc
fix: protocol version
c789659
@apoorvdeshmukh
Merge pull request denisenkom#131 from srdan-bozovic-msft/srbozovi/tds8
ff5b16d 
fix: protocol version
@dlevy-msft
Update README.md
0c13c27 
Remove message referring to MSFT fork since we are there.
@dlevy-msft
Merge pull request denisenkom#132 from microsoft/dlevy-msft-patch-1
7a2e1b2 
Update README.md
@shueybubbles
prep for tag 1.4 (denisenkom#134)
d3fae84
@apoorvdeshmukh
Merge remote-tracking branch 'origin/main' into apoorvdeshmukh/tds8
3333338
@shueybubbles
Fix: Handle extended chars in SQL instance names (denisenkom#138)
7804e0c 
* Fix: Handle extended chars in SQL instance names
@apoorvdeshmukh
Merge remote-tracking branch 'origin/main' into apoorvdeshmukh/tds8
435d861
@apoorvdeshmukh
Keep certificate in PEM format explicitly to support other formats
adee951
@shueybubbles
Start Always Encrypted feature branch (denisenkom#116)
514012a 
* add core CEK parameters and types

* add column encryption featureext

* Add parsing of always encrypted tokens

* implement local cert key provider

* use key providers for decrypt

* implement EncryptColumnEncryptionKey for local cert

* add cipher data to parameters

* copy swisscom code locally

* implement Encrypt

* don't claim to support enclaves

* update readme

* fix Scan to use correct data types

* make cert store provider go1.17+

* rename files for clarity
* update dependencies and min Go version

* update reviewdog

* remove old SQL versions from PR build
@dlevy-msft
Update README.md Title
af86594 
Update title to stand out in search results.
@dlevy-msft
Merge pull request denisenkom#143 from microsoft/dlevy-msft-patch-1
6318536 
Update README.md Title
@apoorvdeshmukh
Merge remote-tracking branch 'origin/main' into apoorvdeshmukh/tds8
ad2cf66
@shueybubbles
Feat: Implement change password during login (denisenkom#141)
6b69560 
* Feat: Implement change password during login

* use -v for go test

* move assert usage to go117+
@apoorvdeshmukh
Add TDS8 testcase
1e53bf7
@apoorvdeshmukh
Merge remote-tracking branch 'origin/main' into apoorvdeshmukh/tds8
79c823e
dlevy-msft and others added 26 commits August 31, 2023 12:12
@dlevy-msft
Update README.md
d611ee3 
Change parameters to match driver rather than sdk
@apoorvdeshmukh
Add TDS8 support
2c72afb 
This commit fixes denisenkom#136.  Adds support for TDS8. TDS8 connection
can now be used by specifying encrypt=strict. TrustServerCertificate=true
will not come into effect when encrypt is set to 'strict'.
@dlevy-msft
Merge pull request denisenkom#151 from microsoft/dlevy-msft-patch-2
80cf4b6 
Add note on CLI authentication
@apoorvdeshmukh
Add support for DER certificates
12069dc
@apoorvdeshmukh
Add unit test for readCertificate
df78a90
@apoorvdeshmukh
Minor test tweaks
8f2a85c
@konart
fix(CharsetToUTF8): use strings.Builder (denisenkom#154)
d3f844a 
Co-authored-by: akondratev <[email protected]>
@apoorvdeshmukh
Refine test
d229b26
@apoorvdeshmukh
Add support for DER certificates
e51fa15
@shueybubbles
Replace panic with returning errors from key decryption providers (de…
670fd58 
…nisenkom#155)

* Add context parameter to key provider interface

* update error handling for AE key providers
@shueybubbles
Feat: Allow krb5 config through environment variables (denisenkom#157)
2b177e8 
* FEAT:support environment config of krb5

* update readme and version

* use client keytab file as default
@abairmj
fix: Added multisubnetfailover option, set to false to prevent issue d…
c902b67 
…enisenkom#158 (denisenkom#159)

* fix: Added multisubnetfailover option that can be set to false to prevent issue denisenkom#158
@shueybubbles @sergeytenmsft
Fix mappings between LCIDs and code pages. (denisenkom#169)
5738a68 
* Fix mappings between LCIDs and code pages.

* Add test for fetching various LCIDs.

* Address Github automation feedback.

* Refine comments.

---------

Co-authored-by: Sergey Ten <[email protected]>
@El-76 @DS-AI
Cut string output parameter fix (denisenkom#168)
5821c4e 
* Reserve extra space for out parameter + tests.

* Test for []byte parameter.

---------

Co-authored-by: El-76 <[email protected]>
@toddtreece
Lazy initialization of charset maps (denisenkom#166)
b650081 
* lazy initialization of charset maps

* initialize each charsetmap separately

* switch from init to get
@shueybubbles
Handle alternate form of prelogin response (denisenkom#175)
f37ff1d 
* Update dependencies

* support dataverse endpoint
@ngehrsitz
Feat: Add NullableUniqueIdentifier type
fe7c3d4 
* Refactor UniqueIdentifier tests

* Parallelize tests

* Add NullableUniqueIdentifier type

* Add missing test case for UniqueIdentifier

* Improve error message

* Rename to NullUniqueIdentifier

* Add NullUniqueIdentifier to TestBulkcopy

* Add uniqueidentifier parsing to the list of Features

* Add Valid bool to NullUniqueIdentifier

* Handle null in UnmarshalJSON()

* Handle !Valid in Value(),String(),MarshalText()

---------

Co-authored-by: Norman Gehrsitz <[email protected]>
@shueybubbles
Fix: Support nullable types in Always Encrypted (denisenkom#179)
80b58f2 
* preserve type information for Valuer parameters

* support uniqueidentifier in AE

* update readme
@shueybubbles
Fix named pipe path handling to preserve "." (denisenkom#178)
ada30cb 
* Fix:Enable connection to WID
@vecknishwaran
fix: support nullable types for bulkcopy (denisenkom#192)
b3a8513 
* fix: support nullable types for bulkcopy

* Add test cases for all nullable types

* Fix test cases

* Add bulkcopy test for invalid nullable types

* Add case in convertInputParameter to bypass uniqueidentifier type

* Add test cases for invalid nullable test

* Revert bypass change
@shueybubbles
fix: use proper scope for Entra auth (denisenkom#198)
3ed002a
@shueybubbles
Fix: handle sql.NullTime parameters (denisenkom#195)
a1c982b 
* handle sql.NullTime parameters

* Match SQL sizes for sql.Nullxxx integer types

* handle custom nullable Valuer implementations
@chlowell
Migrate managed identity example to azidentity (denisenkom#199)
2395b78
@tulioncds
Vulnerabilty dependency x/net (denisenkom#203)
9b84d9b 
* Vulnerabilty depency x/net

* Att Dependencies
@tentone
Support for UDT (hierarchyid, geometry and geography) (denisenkom#216)
02deabf 
* Accept hierarchyid as a valid type

* error

* derp

* geography and geometry

* Return value

* Tests

* Typo

* Upper

* hasSize
@gabrielcorado
Merge branch 'main' of github.com:microsoft/go-mssqldb into gabrielco…
d050f87 
…rado/update-library-microsoft
@gabrielcorado gabrielcorado requested a review from greedy52 October 4, 2024 16:14
github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 4, 2024
View reviewed changes
aecmk/localcert/keyprovider.go
if err != nil {
panic(err)
}
bytes[i] = byte(b)

Check failure

Code scanning / CodeQL

Incorrect conversion between integer types High

Incorrect conversion of a signed 32-bit integer from
strconv.ParseInt
Loading
to a lower bit size type uint8 without an upper bound check.

Copilot Autofix AI 3 months ago

To fix the problem, we need to ensure that the value parsed by strconv.ParseInt is within the range of a byte (0 to 255) before converting it. This can be done by adding a check to ensure the parsed value is within the valid range for a byte. If the value is out of range, we should handle the error appropriately.

  1. Parse the string using strconv.ParseInt with a bit size of 8 to directly get an 8-bit integer.
  2. Check if the parsed value is within the range of a byte (0 to 255).
  3. If the value is within the range, convert it to a byte.
  4. If the value is out of range, handle the error (e.g., by panicking or returning a default value).
Suggested changeset 1
aecmk/localcert/keyprovider.go

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/aecmk/localcert/keyprovider.go b/aecmk/localcert/keyprovider.go
--- a/aecmk/localcert/keyprovider.go
+++ b/aecmk/localcert/keyprovider.go
@@ -256,3 +256,3 @@
 	for i := range bytes {
-		b, err := strconv.ParseInt(thumbprint[i*2:(i*2)+2], 16, 32)
+		b, err := strconv.ParseInt(thumbprint[i*2:(i*2)+2], 16, 8)
 		if err != nil {
@@ -260,2 +260,5 @@
 		}
+		if b < 0 || b > 255 {
+			panic(fmt.Errorf("Parsed value out of byte range: %d", b))
+		}
 		bytes[i] = byte(b)
EOF
@@ -256,3 +256,3 @@
for i := range bytes {
b, err := strconv.ParseInt(thumbprint[i*2:(i*2)+2], 16, 32)
b, err := strconv.ParseInt(thumbprint[i*2:(i*2)+2], 16, 8)
if err != nil {
@@ -260,2 +260,5 @@
}
if b < 0 || b > 255 {
panic(fmt.Errorf("Parsed value out of byte range: %d", b))
}
bytes[i] = byte(b)
Copilot is powered by AI and may make mistakes. Always verify output.
Positive Feedback
Negative Feedback

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.

Please select one or more of the options
@greedy52 greedy52 mentioned this pull request Oct 4, 2024
Closed
5 tasks
@gabrielcorado gabrielcorado marked this pull request as draft November 12, 2024 13:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@greedy52 greedy52 Awaiting requested review from greedy52

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.