Merge pull request #2443 from dolthub/daylon/dolt_branch_control

Added proper dolt_branch_control functionality

Author: Hydrocharged

server/analyzer/assign_insert_casts.go

@@ -49,7 +49,8 @@ func AssignInsertCasts(ctx *sql.Context, a *analyzer.Analyzer, node sql.Node, sc
 	for _, col := range insertInto.Destination.Schema() {
 		colType, ok := col.Type.(*pgtypes.DoltgresType)
 		if !ok {
-			return nil, transform.NewTree, errors.Errorf("INSERT: non-Doltgres type found in destination: %s", col.Type.String())
+			// Only non-Doltgres destination tables will have GMS types (such as system tables), so we don't error here
+			colType = pgtypes.FromGmsType(col.Type)
 		}
 		destinationNameToType[strings.ToLower(col.Name)] = colType
 	}

server/analyzer/assign_update_casts.go

@@ -113,7 +113,8 @@ func assignUpdateFieldCasts(updateExprs []sql.Expression) ([]sql.Expression, err
 		}
 		toType, ok := setField.LeftChild.Type().(*pgtypes.DoltgresType)
 		if !ok {
-			return nil, errors.Errorf("UPDATE: non-Doltgres type found in destination: %s", setField.LeftChild.String())
+			// Only non-Doltgres destination tables will have GMS types (such as system tables), so we don't error here
+			toType = pgtypes.FromGmsType(setField.LeftChild.Type())
 		}
 		// We only assign the existing expression if the types perfectly match (same parameters), otherwise we'll cast
 		if fromType.Equals(toType) {

server/auth/gms_privilege_set.go

@@ -0,0 +1,206 @@
+// Copyright 2026 Dolthub, Inc.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package auth
+
+import "github.com/dolthub/go-mysql-server/sql"
+
+// PrivilegeSetLayer is used to allow some functions that inspect the GMS privilege set (such as branch control) to
+// interface with Doltgres' auth system.
+type PrivilegeSetLayer struct {
+	Role RoleID
+}
+
+var _ sql.PrivilegeSet = (*PrivilegeSetLayer)(nil)
+
+// NewPrivilegeSetLayer creates a new PrivilegeSetLayer for the user in the given context's session.
+func NewPrivilegeSetLayer(ctx *sql.Context) *PrivilegeSetLayer {
+	return &PrivilegeSetLayer{
+		Role: GetRole(ctx.Client().User).id,
+	}
+}
+
+// Has implements the interface sql.PrivilegeSet.
+func (privSet *PrivilegeSetLayer) Has(privileges ...sql.PrivilegeType) bool {
+	return IsSuperUser(privSet.Role)
+}
+
+// HasPrivileges implements the interface sql.PrivilegeSet.
+func (privSet *PrivilegeSetLayer) HasPrivileges() bool {
+	return IsSuperUser(privSet.Role)
+}
+
+// Count implements the interface sql.PrivilegeSet.
+func (privSet *PrivilegeSetLayer) Count() int {
+	if IsSuperUser(privSet.Role) {
+		return 31 // The current number in GMS
+	}
+	return 0
+}
+
+// Database implements the interface sql.PrivilegeSet.
+func (privSet *PrivilegeSetLayer) Database(dbName string) sql.PrivilegeSetDatabase {
+	return &PrivilegeSetLayerDatabase{
+		Db:   dbName,
+		Role: privSet.Role,
+	}
+}
+
+// GetDatabases implements the interface sql.PrivilegeSet.
+func (privSet *PrivilegeSetLayer) GetDatabases() []sql.PrivilegeSetDatabase {
+	return nil
+}
+
+// Equals implements the interface sql.PrivilegeSet.
+func (privSet *PrivilegeSetLayer) Equals(otherPs sql.PrivilegeSet) bool {
+	if other, ok := otherPs.(*PrivilegeSetLayer); ok {
+		return privSet.Role == other.Role
+	}
+	return false
+}
+
+// ToSlice implements the interface sql.PrivilegeSet.
+func (privSet *PrivilegeSetLayer) ToSlice() []sql.PrivilegeType {
+	if IsSuperUser(privSet.Role) {
+		return []sql.PrivilegeType{sql.PrivilegeType_Select,
+			sql.PrivilegeType_Insert,
+			sql.PrivilegeType_Update,
+			sql.PrivilegeType_Delete,
+			sql.PrivilegeType_Create,
+			sql.PrivilegeType_Drop,
+			sql.PrivilegeType_Reload,
+			sql.PrivilegeType_Shutdown,
+			sql.PrivilegeType_Process,
+			sql.PrivilegeType_File,
+			sql.PrivilegeType_GrantOption,
+			sql.PrivilegeType_References,
+			sql.PrivilegeType_Index,
+			sql.PrivilegeType_Alter,
+			sql.PrivilegeType_ShowDB,
+			sql.PrivilegeType_Super,
+			sql.PrivilegeType_CreateTempTable,
+			sql.PrivilegeType_LockTables,
+			sql.PrivilegeType_Execute,
+			sql.PrivilegeType_ReplicationSlave,
+			sql.PrivilegeType_ReplicationClient,
+			sql.PrivilegeType_CreateView,
+			sql.PrivilegeType_ShowView,
+			sql.PrivilegeType_CreateRoutine,
+			sql.PrivilegeType_AlterRoutine,
+			sql.PrivilegeType_CreateUser,
+			sql.PrivilegeType_Event,
+			sql.PrivilegeType_Trigger,
+			sql.PrivilegeType_CreateTablespace,
+			sql.PrivilegeType_CreateRole,
+			sql.PrivilegeType_DropRole}
+	}
+	return nil
+}
+
+// PrivilegeSetLayerDatabase is the database portion of PrivilegeSetLayer.
+type PrivilegeSetLayerDatabase struct {
+	Db   string
+	Role RoleID
+}
+
+var _ sql.PrivilegeSetDatabase = (*PrivilegeSetLayerDatabase)(nil)
+
+// Name implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) Name() string {
+	return privSet.Db
+}
+
+// Has implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) Has(privileges ...sql.PrivilegeType) bool {
+	return IsSuperUser(privSet.Role)
+}
+
+// HasPrivileges implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) HasPrivileges() bool {
+	return IsSuperUser(privSet.Role)
+}
+
+// Count implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) Count() int {
+	if IsSuperUser(privSet.Role) {
+		return 31 // The current number in GMS
+	}
+	return 0
+}
+
+// Table implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) Table(tblName string) sql.PrivilegeSetTable {
+	panic("Table is not yet implemented for the Doltgres privilege layer")
+}
+
+// GetTables implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) GetTables() []sql.PrivilegeSetTable {
+	return nil
+}
+
+// Routine implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) Routine(routineName string, isProcedure bool) sql.PrivilegeSetRoutine {
+	panic("Routine is not yet implemented for the Doltgres privilege layer")
+}
+
+// GetRoutines implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) GetRoutines() []sql.PrivilegeSetRoutine {
+	return nil
+}
+
+// Equals implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) Equals(otherPs sql.PrivilegeSetDatabase) bool {
+	if other, ok := otherPs.(*PrivilegeSetLayerDatabase); ok {
+		return privSet.Role == other.Role && privSet.Db == other.Db
+	}
+	return false
+}
+
+// ToSlice implements the interface sql.PrivilegeSetDatabase.
+func (privSet *PrivilegeSetLayerDatabase) ToSlice() []sql.PrivilegeType {
+	if IsSuperUser(privSet.Role) {
+		return []sql.PrivilegeType{sql.PrivilegeType_Select,
+			sql.PrivilegeType_Insert,
+			sql.PrivilegeType_Update,
+			sql.PrivilegeType_Delete,
+			sql.PrivilegeType_Create,
+			sql.PrivilegeType_Drop,
+			sql.PrivilegeType_Reload,
+			sql.PrivilegeType_Shutdown,
+			sql.PrivilegeType_Process,
+			sql.PrivilegeType_File,
+			sql.PrivilegeType_GrantOption,
+			sql.PrivilegeType_References,
+			sql.PrivilegeType_Index,
+			sql.PrivilegeType_Alter,
+			sql.PrivilegeType_ShowDB,
+			sql.PrivilegeType_Super,
+			sql.PrivilegeType_CreateTempTable,
+			sql.PrivilegeType_LockTables,
+			sql.PrivilegeType_Execute,
+			sql.PrivilegeType_ReplicationSlave,
+			sql.PrivilegeType_ReplicationClient,
+			sql.PrivilegeType_CreateView,
+			sql.PrivilegeType_ShowView,
+			sql.PrivilegeType_CreateRoutine,
+			sql.PrivilegeType_AlterRoutine,
+			sql.PrivilegeType_CreateUser,
+			sql.PrivilegeType_Event,
+			sql.PrivilegeType_Trigger,
+			sql.PrivilegeType_CreateTablespace,
+			sql.PrivilegeType_CreateRole,
+			sql.PrivilegeType_DropRole}
+	}
+	return nil
+}

server/doltgres_handler.go

@@ -46,6 +46,7 @@ import (
 
 	"github.com/dolthub/doltgresql/core/id"
 	"github.com/dolthub/doltgresql/postgres/parser/uuid"
+	"github.com/dolthub/doltgresql/server/auth"
 	pgexprs "github.com/dolthub/doltgresql/server/expression"
 	pgtransform "github.com/dolthub/doltgresql/server/transform"
 	pgtypes "github.com/dolthub/doltgresql/server/types"
@@ -447,6 +448,7 @@ func (h *DoltgresHandler) doQuery(ctx context.Context, c *mysql.Conn, query stri
 	if err != nil {
 		return err
 	}
+	sqlCtx.SetPrivilegeSet(auth.NewPrivilegeSetLayer(sqlCtx), 1)
 
 	start := time.Now()
 	var queryStrToLog string

server/expression/gms_cast.go

@@ -98,7 +98,7 @@ func (c *GMSCast) Eval(ctx *sql.Context, row sql.Row) (any, error) {
 		fallthrough
 		// In Postgres, Int32 is generally the smallest value returned. But we convert int8 and int16 to this type during
 		// schema conversion, which means we must do so here as well to avoid runtime panics.
-	case query.Type_INT16, query.Type_INT24, query.Type_INT32, query.Type_YEAR, query.Type_ENUM:
+	case query.Type_INT16, query.Type_INT24, query.Type_INT32, query.Type_YEAR:
 		newVal, _, err := types.Int32.Convert(ctx, val)
 		if err != nil {
 			return nil, err
@@ -107,7 +107,7 @@ func (c *GMSCast) Eval(ctx *sql.Context, row sql.Row) (any, error) {
 			return nil, errors.Errorf("GMSCast expected type `int32`, got `%T`", val)
 		}
 		return newVal, nil
-	case query.Type_INT64, query.Type_SET, query.Type_BIT, query.Type_UINT8, query.Type_UINT16, query.Type_UINT24, query.Type_UINT32:
+	case query.Type_INT64, query.Type_BIT, query.Type_UINT8, query.Type_UINT16, query.Type_UINT24, query.Type_UINT32:
 		newVal, _, err := types.Int64.Convert(ctx, val)
 		if err != nil {
 			return nil, err
@@ -163,7 +163,7 @@ func (c *GMSCast) Eval(ctx *sql.Context, row sql.Row) (any, error) {
 			return val.String(), nil
 		}
 		return nil, errors.Errorf("GMSCast expected type `Timespan`, got `%T`", val)
-	case query.Type_CHAR, query.Type_VARCHAR, query.Type_TEXT, query.Type_BINARY, query.Type_VARBINARY, query.Type_BLOB:
+	case query.Type_CHAR, query.Type_VARCHAR, query.Type_TEXT, query.Type_BINARY, query.Type_VARBINARY, query.Type_BLOB, query.Type_SET, query.Type_ENUM:
 		newVal, _, err := types.LongText.Convert(ctx, val)
 		if err != nil {
 			return nil, err

server/types/utils.go

@@ -76,9 +76,9 @@ func FromGmsTypeToDoltgresType(typ sql.Type) (*DoltgresType, error) {
 			return Bool, nil
 		}
 		return Int32, nil
-	case query.Type_INT16, query.Type_INT24, query.Type_INT32, query.Type_YEAR, query.Type_ENUM:
+	case query.Type_INT16, query.Type_INT24, query.Type_INT32, query.Type_YEAR:
 		return Int32, nil
-	case query.Type_INT64, query.Type_SET, query.Type_BIT, query.Type_UINT8, query.Type_UINT16, query.Type_UINT24, query.Type_UINT32:
+	case query.Type_INT64, query.Type_BIT, query.Type_UINT8, query.Type_UINT16, query.Type_UINT24, query.Type_UINT32:
 		return Int64, nil
 	case query.Type_UINT64:
 		return Numeric, nil
@@ -94,7 +94,7 @@ func FromGmsTypeToDoltgresType(typ sql.Type) (*DoltgresType, error) {
 		return Text, nil
 	case query.Type_DATETIME, query.Type_TIMESTAMP:
 		return Timestamp, nil
-	case query.Type_CHAR, query.Type_VARCHAR, query.Type_TEXT, query.Type_BINARY, query.Type_VARBINARY, query.Type_BLOB:
+	case query.Type_CHAR, query.Type_VARCHAR, query.Type_TEXT, query.Type_BINARY, query.Type_VARBINARY, query.Type_BLOB, query.Type_SET, query.Type_ENUM:
 		return Text, nil
 	case query.Type_JSON:
 		return Json, nil