[#2179] Improvement: Improve security when creating and dropping schemas and tables

[zivali]

What changes were proposed in this pull request?

Improve security when creating and dropping schemas and tables.

This PR adds the following checks for identifier names using the capability framework

• Regex check
  • As a best practice, it's generally advised to avoid including spaces in database names. In this PR, database names that include space will be considered illegal.
• String length check, since SQL injection usually requires using longer string
  • Mysql: at most 64 characters
  • Postgresql: at most 63 characters

We refer to specifications of the earliest version of DB that gravitino currently supports:

• Postgresql identifier rules: https://www.postgresql.org/docs/12/sql-syntax-lexical.html#SQL-SYNTAX-IDENTIFIERS
• Mysql identifier naming: https://dev.mysql.com/doc/refman/5.7/en/identifiers.html
• Mysql identifier length limit: https://dev.mysql.com/doc/refman/5.7/en/identifier-length.html

Why are the changes needed?

Fix: #2179

Does this PR introduce any user-facing change?

Add name identifier checks before attempting to create or drop schemas and tables.

How was this patch tested?

Add IT tests.

[yuqi1129]

@zivali
Can you also survey the table naming conventions besides the database name?

[zivali]

@zivali Can you also survey the table naming conventions besides the database name?

Absolutely! Do you mean we should apply similar checks in JdbcTableOperations (MysqlTableOperations / SqliteTableOperations / PostgreSqlTableOperations)?

p.s. I modified the PR per comments. Thanks for help reviewing!

[simarjeetss]

hey @justinmclean, is this improvement done? If not, may I look into this?

[justinmclean]

@simarjeetss IThanks for offering to help, but as this is almost complete, I woudl suggest you find another issue to work on.

[simarjeetss]

@simarjeetss IThanks for offering to help, but as this is almost complete, I woudl suggest you find another issue to work on.

Sure, thanks for letting me know!

[yuqi1129]

@jerryshao
Is this related to the issue #1652? If so, should we temporarily merge it?

[justinmclean]

I would say it is not related to #1652. Might consider merging this as it is an overall improvement to the existing code?

[justinmclean]

@zivali Are you still interested in working on this? No issue if you can't, it would just be good to know.

[zivali]

@justinmclean Hi, I am still working on it. Will update here when finished. Thank you!

[mchades]

I'm introducing a catalog capability framework(#2819), I think this should be one of the catalog capabilities - name specification capability.

If you want, I think you can continue to work based on #2819 or after it is merged

[zivali]

@mchades Got it. Will integrate this PR to #2819 Thanks for the info!

[mchades]

Is this a rule from experience? Or is it an official MySQL constraint?

[mchades]

Oh, I just saw the description in your PR, it's a limitation of MySQL official.

[zivali]

Yes, this is the most basic permitted characters in unquoted identifiers for MySQL. I think most DB users uses only these characters. But other characters can also be used with quoted identifiers. Do you think we should include those characters as well?

[mchades]

I think we can start with stricter restrictions and gradually relax them as needed.

[mchades]

The name specification capability of catalog is now available, you can rebase the main branch and proceed with the PR

[zivali]

@mchades @justinmclean Could you help review again when you have time? Thank you!

[mchades]

after these changes, can I drop a Mysql table named a&b by Gravitino?

[zivali]

No, as the current regex pattern in this PR does not try to match the character &.
Should we add & to the regex pattern?

[mchades]

No, this is just my assumption.

We can gradually relax the strategy after encountering real needs, or make this rule configurable when the demand is frequent.

[mchades]

LGTM, thanks for your contributions!