Bump version to 5.11.0

2025-07-27 17:19:42 +02:00 · 2024-01-10 14:47:40 -05:00 · 2024-01-10 14:47:40 -05:00 · 510e1bd0bd
commit 510e1bd0bd
parent a32510b8e6
370 changed files with 18825 additions and 5454 deletions
--- a/vendor/github.com/microsoft/go-mssqldb/msdsn/conn_str_go115.go
+++ b/vendor/github.com/microsoft/go-mssqldb/msdsn/conn_str_go115.go
@ -0,0 +1,35 @@
+//go:build go1.15
+// +build go1.15
+
+package msdsn
+
+import (
+	"crypto/tls"
+	"crypto/x509"
+	"fmt"
+)
+
+func setupTLSCommonName(config *tls.Config, pem []byte) error {
+	// fix for https://github.com/denisenkom/go-mssqldb/issues/704
+	// A SSL/TLS certificate Common Name (CN) containing the ":" character
+	// (which is a non-standard character) will cause normal verification to fail.
+	// Since the VerifyConnection callback runs after normal certificate
+	// verification, confirm that SetupTLS() has been called
+	// with "insecureSkipVerify=false", then InsecureSkipVerify must be set to true
+	// for this VerifyConnection callback to accomplish certificate verification.
+	config.InsecureSkipVerify = true
+	config.VerifyConnection = func(cs tls.ConnectionState) error {
+		commonName := cs.PeerCertificates[0].Subject.CommonName
+		if commonName != cs.ServerName {
+			return fmt.Errorf("invalid certificate name %q, expected %q", commonName, cs.ServerName)
+		}
+		opts := x509.VerifyOptions{
+			Roots:         nil,
+			Intermediates: x509.NewCertPool(),
+		}
+		opts.Intermediates.AppendCertsFromPEM(pem)
+		_, err := cs.PeerCertificates[0].Verify(opts)
+		return err
+	}
+	return nil
+}