feat(mask): mask funcs

[stephenkgu]

Description

Please briefly describe the code changes in this pull request.

Checklist

Please check the items in the checklist if applicable.

• Is the user manual updated?
• Are the test cases passed and automated?
• Is there no significant decrease in test coverage?

[gemini-code-assist]

Summary of Changes

Hello @stephenkgu, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request significantly expands the system's data manipulation capabilities by integrating new cryptographic hash functions (SHA-1, SHA-2) and a data masking feature. It also refines existing Base64 encoding/decoding, making these operations more accessible and robust, particularly within SQL insert statements. These changes enhance data security and flexibility for handling various data types.

Highlights

• New Cryptographic Hash Functions: Introduced support for SHA-1 and SHA-2 (SHA-224, SHA-256, SHA-384, SHA-512) hashing algorithms, adding FUNCTION_TYPE_SHA1 and FUNCTION_TYPE_SHA2.
• Data Masking Function: Added a new mask_full function (FUNCTION_TYPE_MASK_FULL) to facilitate data masking operations.
• Base64 Enhancements: Refactored and improved Base64 encoding and decoding functionalities, including a new from_base64 function for decoding.
• Integration with SQL Inserts: Modified the SQL parser to allow direct use of from_base64, to_base64, md5, sha, sha1, and sha2 functions within INSERT statements for binary columns.
• Internal Utility Updates: New tsha.h and tsha.c files were added for SHA algorithm implementations, and tutil.h was updated to expose new SHA hash creation utilities.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces new hashing (SHA1, SHA2) and masking functions, along with a refactoring of Base64 handling. The implementation is largely functional, but I have identified several areas for improvement concerning code quality, maintainability, and potential bugs. Notably, there's a critical issue with a main function included in a library file which will cause linker errors. I've also found a high-severity issue related to function type aliasing that could lead to incorrect behavior, and several medium-severity issues regarding code duplication, inefficiency, and inconsistent coding practices. Addressing these points will significantly improve the robustness and clarity of the codebase.

[gemini-code-assist]

This new library file tsha.c contains a main function and test vectors within an #ifdef TEST_VECTORS block. Including a main function in a library source file is a critical issue as it will lead to linker errors if another file in the project defines a main function. Test code should be kept separate from library code, in its own test file and target. Please move this entire test block to a dedicated test file.

[gemini-code-assist]

The from_base64 function is assigned FUNCTION_TYPE_BASE64, which is the same type used for the to_base64 function. Since these are inverse operations, they should have distinct function types to avoid confusion and potential bugs, especially if the function dispatch logic relies on the type. I recommend defining a new type, such as FUNCTION_TYPE_FROM_BASE64, in functionMgt.h and using it here.

    .type = FUNCTION_TYPE_FROM_BASE64,

[gemini-code-assist]

The custom integer type definitions uint8, uint32, and uint64 are inconsistent with the rest of the codebase, which appears to use standard stdint.h types like uint32_t (as seen in T_SHA1_CTX). Using unsigned int for uint32 is not portable as it's not guaranteed to be 32 bits on all platforms. Since os.h is already included and it provides <stdint.h>, it's better to use the standard fixed-width integer types (uint8_t, uint32_t, uint64_t) for portability and consistency.

Suggested change

	typedef unsigned char uint8;
	typedef unsigned int uint32;
	typedef unsigned long long uint64;
	typedef uint8_t uint8;
	typedef uint32_t uint32;
	typedef uint64_t uint64;

[gemini-code-assist]

The functions taosCreateMD5Hash, taosCreateSHA1Hash, and taosCreateSHA2Hash contain very long and hard-to-read sprintf calls to convert byte arrays to hexadecimal strings. This approach is error-prone and involves significant code duplication. I recommend creating a helper function to handle the hex conversion, which would make this code much cleaner, more maintainable, and less susceptible to errors. A similar refactoring should be applied to taosCreateMD5Hash and taosCreateSHA1Hash as well.

[gemini-code-assist]

The parseBinary function is over 200 lines long and contains a significant amount of duplicated code for parsing function calls with a single string argument (e.g., from_base64, to_base64, md5, sha1). This makes the function difficult to read and maintain. I suggest refactoring this by extracting the common logic for parsing a function with a single string argument into a helper function. This would greatly simplify parseBinary, reduce redundancy, and improve maintainability.

[gemini-code-assist]

The implementation of shaFunction (and similarly sha2Function) involves copying the input data into a buffer which is then used as both input and output by the taosCreateSHA1Hash function. This memcpy for every row is inefficient. While the taosCreate...Hash functions are designed to work in-place, a more efficient approach would be to modify them to accept separate input and output buffers. This would eliminate the need for the memcpy in this loop, improving performance, especially with a large number of small rows. As taosCreateSHA1Hash is an inline function in a header, changing its signature to taosCreateSHA1Hash(char *outBuf, const char *inBuf, int32_t len) and updating its callers would be a beneficial refactoring.