SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


An Open Thank You to the Microsoft SQL Server Team


An Open Thank You to the Microsoft SQL Server Team

Author
Message
Steve Jones
Steve Jones
SSC Guru
SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)

Group: Administrators
Points: 686486 Visits: 21594
Comments posted to this topic are about the item An Open Thank You to the Microsoft SQL Server Team

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Thomas Rushton
Thomas Rushton
SSC-Insane
SSC-Insane (21K reputation)SSC-Insane (21K reputation)SSC-Insane (21K reputation)SSC-Insane (21K reputation)SSC-Insane (21K reputation)SSC-Insane (21K reputation)SSC-Insane (21K reputation)SSC-Insane (21K reputation)

Group: Moderators
Points: 21504 Visits: 10975
Hurrah! Finally, a (partial) resolution to a problem that's been around for over 20 years... Yes, a full error set would be nice, but I suspect that that would involve a serious overhaul of the error handling system. But this is a good step forward. Thanks, Steve, for bringing it to our attention.

...but did you say it's TF-dependent? Why? Why can't they just surface this extra information by default? Is it because they're putting it out as a different error message ID?
Mark Dalley
Mark Dalley
SSCrazy
SSCrazy (2.4K reputation)SSCrazy (2.4K reputation)SSCrazy (2.4K reputation)SSCrazy (2.4K reputation)SSCrazy (2.4K reputation)SSCrazy (2.4K reputation)SSCrazy (2.4K reputation)SSCrazy (2.4K reputation)

Group: General Forum Members
Points: 2423 Visits: 1986
This is great news. Better late than never!

From the SQL Server 2019 white paper:
So that it cannot break existing applications parsing message ID 8152, this new message ID 2628 is an opt-in replacement, which can be enabled with trace flag 460.


MarkD
Jeff Mlakar
Jeff Mlakar
SSCrazy
SSCrazy (2.7K reputation)SSCrazy (2.7K reputation)SSCrazy (2.7K reputation)SSCrazy (2.7K reputation)SSCrazy (2.7K reputation)SSCrazy (2.7K reputation)SSCrazy (2.7K reputation)SSCrazy (2.7K reputation)

Group: General Forum Members
Points: 2718 Visits: 675
Don't forget Dark Mode! Smile
Steve Jones
Steve Jones
SSC Guru
SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)

Group: Administrators
Points: 686486 Visits: 21594
ThomasRushton - Thursday, September 27, 2018 5:00 AM
Hurrah! Finally, a (partial) resolution to a problem that's been around for over 20 years... Yes, a full error set would be nice, but I suspect that that would involve a serious overhaul of the error handling system. But this is a good step forward. Thanks, Steve, for bringing it to our attention.

...but did you say it's TF-dependent? Why? Why can't they just surface this extra information by default? Is it because they're putting it out as a different error message ID?


I think this is a CTP thing, but I hope this is the default. After all, it returns a new error number.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Chris Arbogast
Chris Arbogast
SSC Veteran
SSC Veteran (255 reputation)SSC Veteran (255 reputation)SSC Veteran (255 reputation)SSC Veteran (255 reputation)SSC Veteran (255 reputation)SSC Veteran (255 reputation)SSC Veteran (255 reputation)SSC Veteran (255 reputation)

Group: General Forum Members
Points: 255 Visits: 109
This is a beautiful thing for debugging. Should there be a concern however, about potentially leaking sensitive data via attacks that exploit the error messages? Perhaps that is why they will make it off by default.
crmitchell
crmitchell
SSCarpal Tunnel
SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)

Group: General Forum Members
Points: 4311 Visits: 2411
An excellent point there Chris. I would want this set on any development machine but probably not on production machines. This is the same issue as we get in choosing between debug and release builds for the code.
Steve Jones
Steve Jones
SSC Guru
SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)SSC Guru (686K reputation)

Group: Administrators
Points: 686486 Visits: 21594
I wouldn't think data is the issue, as error trapping should handle this if you have concerned. You can look for the error and redact the message.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
crmitchell
crmitchell
SSCarpal Tunnel
SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)SSCarpal Tunnel (4.3K reputation)

Group: General Forum Members
Points: 4311 Visits: 2411
Steve Jones - SSC Editor - Friday, September 28, 2018 7:07 AM
I wouldn't think data is the issue, as error trapping should handle this if you have concerned. You can look for the error and redact the message.


You can, but a lot of legacy software (if not most of it) will display the full error message if its not explicitly caught and ensuring you have identified everywhere in the code this could happen may not be practical - at least in the short term and may not be an option at all for 3rd party software.
webrunner
webrunner
One Orange Chip
One Orange Chip (29K reputation)One Orange Chip (29K reputation)One Orange Chip (29K reputation)One Orange Chip (29K reputation)One Orange Chip (29K reputation)One Orange Chip (29K reputation)One Orange Chip (29K reputation)One Orange Chip (29K reputation)

Group: General Forum Members
Points: 29171 Visits: 4533
Yes! This is a great addition by Microsoft.

I've seen some people state some valid concerns about whether the more informative error message could inadvertently leak info. That's certainly something to check for from a security perspective. But that's the case with any system that reports errors.

At least now it is up to the organizations to enable or disable the more detailed string truncation error depending on their needs. Before the error was a little maddening with no simple way to find out the offending column or data.

- webrunner

-------------------
A SQL query walks into a bar and sees two tables. He walks up to them and says Can I join you?
Ref.: http://tkyte.blogspot.com/2009/02/sql-joke.html
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum









































































































































































SQLServerCentral


Search