Increase the size of the webauthn_credential credential_id field #18739
Conversation
Unfortunately credentialIDs in u2f are 255 bytes long which with base32 encoding becomes 408 bytes. The default size of a xorm string field is only a VARCHAR(255) This problem is not apparent on SQLite because strings get mapped to TEXT there. Fix go-gitea#18727 Signed-off-by: Andrew Thornton <art27@cantab.net>
|
I don't know if we should remigrate the U2F keys or not. |
GiteaBot
added
the
lgtm/need 2
Signed-off-by: Andrew Thornton <art27@cantab.net>
GiteaBot
added
lgtm/need 1
GiteaBot
added
lgtm/done
What do you mean? Is the original U2F data still present (like redo the migration) or do you mean doing a fix for first-time migrations? If the first is possible, this might fix some broken keys. Maybe check that the key wasn't removed in the meantime if this is possible? |
|
the original table is still there - because I worried that this might happen. So we would remigrate the data - but - actually users might have removed those old keys already. OK I've tried to do that. |
Signed-off-by: Andrew Thornton <art27@cantab.net>
Signed-off-by: Andrew Thornton <art27@cantab.net>
That's what I meant by
But it should be possible to check the webauthn table for fields that are using the maximum length and then try to remigrate that data, right? Edit: That doesn't make much sense, it's probably better to skip the old migration and (re-)migrate in any case. It would be nonsense to migrate twice - once broken once correctly - and my approach would rely on the data to be already migrated. Still, checking if the table is already present and not adding new records could be a solution- |
…fix of the credID and use recreateTable Signed-off-by: Andrew Thornton <art27@cantab.net>
Ah. Checking the records of the webauthn and u2f and decide if the migration is necessary. |
|
@fnetX are you able to test this to see if it works for your data? |
|
make L-G-T-M work. |
models/migrations/v209.go
Outdated
| _ = sess.Close() | ||
| return err | ||
| } | ||
| if err := recreateTable(sess, new(webauthnCredential)); err != nil { |
There was a problem hiding this comment.
Why not just modify the column for non-sqlite database?
There was a problem hiding this comment.
// This column has an index on it. I could write all of the code to attempt to change the index OR
// I could just use recreate table.There was a problem hiding this comment.
Honestly it's a nightmare handling all of the hoops which the various databases would require one to jump through to handle the index.
Certainly MSSQL won't allow you adjust a column that has a contraint on it already - that would need to be dropped first but I'm not sure about when you're allowed to readd the constraint.
Then MYSQL - which I think will allow you to change the column if it's empty - but if it contains data I have a feeling it would need to drop the constraint. Then IIRC if I would try to readd the constraint that won't work.
I think Postgres is fine simply because of cascade.
Signed-off-by: Andrew Thornton <art27@cantab.net>
Signed-off-by: Andrew Thornton <art27@cantab.net>
Signed-off-by: Andrew Thornton <art27@cantab.net>
|
OK I've written a test and this appears to be working as intended - so I think we can merge. |
…gitea#18739) Backport go-gitea#18739 Unfortunately credentialIDs in u2f are 255 bytes long which with base32 encoding becomes 408 bytes. The default size of a xorm string field is only a VARCHAR(255) This problem is not apparent on SQLite because strings get mapped to TEXT there. Fix go-gitea#18727 Signed-off-by: Andrew Thornton <art27@cantab.net>
| if err != nil { | ||
| return err | ||
| } | ||
| case schemas.ORACLE: |
There was a problem hiding this comment.
Wow, Gitea hasn't support ORACLE yet.
) (#18756) * Increase the size of the webauthn_credential credential_id field (#18739) Backport #18739 Unfortunately credentialIDs in u2f are 255 bytes long which with base32 encoding becomes 408 bytes. The default size of a xorm string field is only a VARCHAR(255) This problem is not apparent on SQLite because strings get mapped to TEXT there. Fix #18727 Signed-off-by: Andrew Thornton <art27@cantab.net> * Ignore the migrate if u2f_registration is not exist (#18760) Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
* giteaofficial/main: [skip ci] Updated translations via Crowdin Prevent dangling GetAttribute calls (go-gitea#18754) Add example to render html files (go-gitea#18736) Fix a broken link in `commits_list_small.tmpl` (go-gitea#18763) Fix broken cancel button link on patch page (go-gitea#18718) Ignore the migrate if u2f_registration is not exist (go-gitea#18760) [skip ci] Updated translations via Crowdin Increase the size of the webauthn_credential credential_id field (go-gitea#18739) Fix isempty detection of git repository (go-gitea#18746)
* 'main' of https://github.com/go-gitea/gitea: (87 commits) Fix template bug of LFS lock (go-gitea#18784) Various Mermaid improvements (go-gitea#18776) [skip ci] Updated translations via Crowdin Fix display time of milestones (go-gitea#18753) [skip ci] Updated translations via Crowdin Prevent dangling GetAttribute calls (go-gitea#18754) Add example to render html files (go-gitea#18736) Fix a broken link in `commits_list_small.tmpl` (go-gitea#18763) Fix broken cancel button link on patch page (go-gitea#18718) Ignore the migrate if u2f_registration is not exist (go-gitea#18760) [skip ci] Updated translations via Crowdin Increase the size of the webauthn_credential credential_id field (go-gitea#18739) Fix isempty detection of git repository (go-gitea#18746) [skip ci] Updated translations via Crowdin Send mail to issue/pr assignee/reviewer also when OnMention is set (go-gitea#18707) Reduce CI go module downloads, add make targets (go-gitea#18708) Add number in queue status to monitor page (go-gitea#18712) Fix source code line highlighting (go-gitea#18729) Fix forked repositories missed tags (go-gitea#18719) [skip ci] Updated translations via Crowdin ...
…gitea#18739) Unfortunately credentialIDs in u2f are 255 bytes long which with base32 encoding becomes 408 bytes. The default size of a xorm string field is only a VARCHAR(255) This problem is not apparent on SQLite because strings get mapped to TEXT there. Fix go-gitea#18727 Signed-off-by: Andrew Thornton <art27@cantab.net>
Unfortunately credentialIDs in u2f are 255 bytes long which with base32 encoding
becomes 408 bytes. The default size of a xorm string field is only a VARCHAR(255)
This problem is not apparent on SQLite because strings get mapped to TEXT there.
Fix #18727
Signed-off-by: Andrew Thornton art27@cantab.net