srprash
commented
3 years ago Hi @yngndrw
Currently we are only sanitizing the port number from the connection string, but as you pointed out in your case, if the data-source contains ( or ), it will be rejected by the X-Ray service since the segment/subsegment names can only contain these valid characters.
I looked into the X-Ray Python SDK and noticed that we sanitize all the segment and subsegment names within the SDK before sending them out to the Daemon. We can probably do the same here if it doesn't affect the performance.
yngndrw
Hello,
When using the EF6 XRay interceptor (
AWSXRayEntityFramework6.AddXRayInterceptor()), the subsegment name is based upon the database name and the connection data source.The port number is removed from the connection data source but no other sanitisation is performed.
It is valid for the connection data source to contain characters which are invalid for an XRay subsection name as there's a special alias for the current machine which includes parenthesis:
(local)https://docs.microsoft.com/en-us/dotnet/framework/data/adonet/connection-string-syntax#windows-authentication-with-sqlclientIn my case I end up with a section name which looks like this:
my_database_name@(local)...resulting in the daemon error:
Invalid subsegment. ErrorCode: InvalidName, Cause: nullI suspect the same issue also applies to the
DbCommandInterceptor, as the code is duplicated there.As the subsection name is generated from an uncontrolled source, I'd suggest fully sanitising it to ensure that only the valid characters are included.