refactor(cubesql): logging sanitized query (cube-js#5094)

gandronchik · web-flow · commit f4150cc8d1c7 · 2022-09-16T21:12:48.000+08:00
diff --git a/rust/cubesql/cubesql/src/compile/mod.rs b/rust/cubesql/cubesql/src/compile/mod.rs
@@ -69,7 +69,8 @@ use crate::{
         dataframe,
         session::DatabaseProtocol,
         statement::{
-            CastReplacer, RedshiftDatePartReplacer, ToTimestampReplacer, UdfWildcardArgReplacer,
+            CastReplacer, RedshiftDatePartReplacer, SensitiveDataSanitizer, ToTimestampReplacer,
+            UdfWildcardArgReplacer,
         },
         types::{CommandCompletion, StatusFlags},
         ColumnFlags, ColumnType, Session, SessionManager, SessionState,
@@ -349,7 +350,7 @@ impl QueryPlanner {
     }
 
     pub async fn plan(&self, stmt: &ast::Statement) -> CompilationResult<QueryPlan> {
-        match (stmt, &self.state.protocol) {
+        let plan = match (stmt, &self.state.protocol) {
             (ast::Statement::Query(q), _) => self.select_to_plan(stmt, q).await,
             (ast::Statement::SetTransaction { .. }, _) => Ok(QueryPlan::MetaTabular(
                 StatusFlags::empty(),
@@ -462,6 +463,21 @@ impl QueryPlanner {
                 "Unsupported query type: {}",
                 stmt.to_string()
             ))),
+        };
+
+        match plan {
+            Err(err) => {
+                let meta = Some(HashMap::from([
+                    ("query".to_string(), stmt.to_string()),
+                    (
+                        "sanitizedQuery".to_string(),
+                        SensitiveDataSanitizer::new().replace(stmt).to_string(),
+                    ),
+                ]));
+                let msg = err.message();
+                Err(err.with_message(msg).with_meta(meta))
+            }
+            _ => plan,
         }
     }
 
@@ -1173,7 +1189,16 @@ WHERE `TABLE_SCHEMA` = '{}'",
         let plan = df_query_planner
             .statement_to_plan(DFStatement::Statement(Box::new(stmt.clone())))
             .map_err(|err| {
-                CompilationError::internal(format!("Initial planning error: {}", err))
+                let message = format!("Initial planning error: {}", err,);
+                let meta = Some(HashMap::from([
+                    ("query".to_string(), stmt.to_string()),
+                    (
+                        "sanitizedQuery".to_string(),
+                        SensitiveDataSanitizer::new().replace(&stmt).to_string(),
+                    ),
+                ]));
+
+                CompilationError::internal(message).with_meta(meta)
             })?;
 
         let optimized_plan = plan;
@@ -1196,12 +1221,27 @@ WHERE `TABLE_SCHEMA` = '{}'",
                         e.message
                     ),
                     e.to_backtrace().unwrap_or_else(|| Backtrace::capture()),
-                    None,
+                    Some(HashMap::from([
+                        ("query".to_string(), stmt.to_string()),
+                        (
+                            "sanitizedQuery".to_string(),
+                            SensitiveDataSanitizer::new().replace(&stmt).to_string(),
+                        ),
+                    ])),
+                ),
+                CubeErrorCauseType::User(_) => CompilationError::User(
+                    format!(
+                        "Error during rewrite: {}. Please check logs for additional information.",
+                        e.message
+                    ),
+                    Some(HashMap::from([
+                        ("query".to_string(), stmt.to_string()),
+                        (
+                            "sanitizedQuery".to_string(),
+                            SensitiveDataSanitizer::new().replace(&stmt).to_string(),
+                        ),
+                    ])),
                 ),
-                CubeErrorCauseType::User(_) => CompilationError::user(format!(
-                    "Error during rewrite: {}. Please check logs for additional information.",
-                    e.message
-                )),
             });
 
         if let Err(_) = &result {
diff --git a/rust/cubesql/cubesql/src/compile/parser.rs b/rust/cubesql/cubesql/src/compile/parser.rs
@@ -1,3 +1,5 @@
+use std::collections::HashMap;
+
 use sqlparser::{
     ast::Statement,
     dialect::{Dialect, PostgreSqlDialect},
@@ -41,6 +43,8 @@ pub fn parse_sql_to_statements(
     query: &String,
     protocol: DatabaseProtocol,
 ) -> CompilationResult<Vec<Statement>> {
+    let original_query = query.clone();
+
     log::debug!("Parsing SQL: {}", query);
     // @todo Support without workarounds
     // metabase
@@ -241,7 +245,10 @@ pub fn parse_sql_to_statements(
         DatabaseProtocol::PostgreSQL => Parser::parse_sql(&PostgreSqlDialect {}, query.as_str()),
     };
 
-    parse_result.map_err(|err| CompilationError::user(format!("Unable to parse: {:?}", err)))
+    parse_result.map_err(|err| {
+        CompilationError::user(format!("Unable to parse: {:?}", err))
+            .with_meta(Some(HashMap::from([("query".to_string(), original_query)])))
+    })
 }
 
 pub fn parse_sql_to_statement(
@@ -265,7 +272,7 @@ pub fn parse_sql_to_statement(
                     ))
                 };
 
-                Err(err)
+                Err(err.with_meta(Some(HashMap::from([("query".to_string(), query.clone())]))))
             }
         }
     }
diff --git a/rust/cubesql/cubesql/src/sql/mysql/service.rs b/rust/cubesql/cubesql/src/sql/mysql/service.rs
@@ -22,7 +22,6 @@ use tokio::{
 use crate::{
     compile::{convert_sql_to_cube_query, parser::parse_sql_to_statement},
     config::processing_loop::ProcessingLoop,
-    sql::statement::SensitiveDataSanitizer,
     telemetry::{ContextLogger, SessionLogger},
     CubeErrorCauseType,
 };
@@ -81,20 +80,7 @@ impl MySqlConnection {
                     }
                 };
 
-                let query = query.to_string();
-                let mut props = props.unwrap_or_default();
-                if let Ok(statement) = parse_sql_to_statement(&query, DatabaseProtocol::PostgreSQL)
-                {
-                    props.insert(
-                        "sanitizedQuery".to_string(),
-                        SensitiveDataSanitizer::new()
-                            .replace(&statement)
-                            .to_string(),
-                    );
-                }
-                props.insert("query".to_string(), query);
-
-                self.logger.error(message.as_str(), Some(props));
+                self.logger.error(message.as_str(), props);
 
                 if let Some(bt) = e.backtrace() {
                     trace!("{}", bt);
diff --git a/rust/cubesql/cubesql/src/sql/postgres/shim.rs b/rust/cubesql/cubesql/src/sql/postgres/shim.rs
@@ -11,9 +11,7 @@ use crate::{
         df_type_to_pg_tid,
         extended::{Cursor, Portal, PortalFrom},
         session::DatabaseProtocol,
-        statement::{
-            PostgresStatementParamsFinder, SensitiveDataSanitizer, StatementPlaceholderReplacer,
-        },
+        statement::{PostgresStatementParamsFinder, StatementPlaceholderReplacer},
         types::CommandCompletion,
         writer::BatchWriter,
         AuthContextRef, Session, StatusFlags,
@@ -241,62 +239,56 @@ impl AsyncPostgresShim {
         // When an error is detected while processing any extended-query message, the backend issues ErrorResponse,
         // then reads and discards messages until a Sync is reached, then issues ReadyForQuery and returns to normal message processing.
         let mut tracked_error: Option<ConnectionError> = None;
-        let mut tracked_error_query: Option<String> = None;
 
         loop {
             let mut doing_extended_query_message = false;
 
-            let (result, query) = match buffer::read_message(&mut self.socket).await? {
-                protocol::FrontendMessage::Query(body) => {
-                    let query = body.query.clone();
-                    (self.process_query(body.query).await, Some(query))
-                }
-                protocol::FrontendMessage::Flush => (self.flush().await, None),
+            let result = match buffer::read_message(&mut self.socket).await? {
+                protocol::FrontendMessage::Query(body) => self.process_query(body.query).await,
+                protocol::FrontendMessage::Flush => self.flush().await,
                 protocol::FrontendMessage::Terminate => return Ok(()),
                 // Extended
                 protocol::FrontendMessage::Parse(body) => {
                     if tracked_error.is_none() {
                         doing_extended_query_message = true;
-                        let query = body.query.clone();
-                        (self.parse(body).await, Some(query))
+                        self.parse(body).await
                     } else {
                         continue;
                     }
                 }
                 protocol::FrontendMessage::Bind(body) => {
                     if tracked_error.is_none() {
                         doing_extended_query_message = true;
-                        (self.bind(body).await, None)
+                        self.bind(body).await
                     } else {
                         continue;
                     }
                 }
                 protocol::FrontendMessage::Execute(body) => {
                     if tracked_error.is_none() {
                         doing_extended_query_message = true;
-                        (self.execute(body).await, None)
+                        self.execute(body).await
                     } else {
                         continue;
                     }
                 }
                 protocol::FrontendMessage::Close(body) => {
                     if tracked_error.is_none() {
-                        (self.close(body).await, None)
+                        self.close(body).await
                     } else {
                         continue;
                     }
                 }
                 protocol::FrontendMessage::Describe(body) => {
                     if tracked_error.is_none() {
-                        (self.describe(body).await, None)
+                        self.describe(body).await
                     } else {
                         continue;
                     }
                 }
                 protocol::FrontendMessage::Sync => {
                     if let Some(err) = tracked_error.take() {
-                        self.handle_connection_error(err, tracked_error_query.take())
-                            .await?;
+                        self.handle_connection_error(err).await?;
                     };
 
                     self.write_ready().await?;
@@ -316,9 +308,8 @@ impl AsyncPostgresShim {
             if let Err(err) = result {
                 if doing_extended_query_message {
                     tracked_error = Some(err);
-                    tracked_error_query = query;
                 } else {
-                    self.handle_connection_error(err, query).await?;
+                    self.handle_connection_error(err).await?;
                 }
             }
         }
@@ -327,7 +318,6 @@ impl AsyncPostgresShim {
     pub async fn handle_connection_error(
         &mut self,
         err: ConnectionError,
-        query: Option<String>,
     ) -> Result<(), ConnectionError> {
         let (message, props) = match &err {
             ConnectionError::CompilationError(err) => match err {
@@ -349,32 +339,28 @@ impl AsyncPostgresShim {
             ),
         };
 
-        let mut props = props.unwrap_or_default();
-        match query {
-            Some(query) => {
-                if let Ok(statement) = parse_sql_to_statement(&query, DatabaseProtocol::PostgreSQL)
-                {
-                    props.insert(
-                        "sanitizedQuery".to_string(),
-                        SensitiveDataSanitizer::new()
-                            .replace(&statement)
-                            .to_string(),
-                    );
-                }
-                props.insert("query".to_string(), query);
-            }
-            _ => (),
-        }
-
-        self.logger.error(message.as_str(), Some(props));
-
         if let Some(bt) = err.backtrace() {
             trace!("{}", bt);
         } else {
             trace!("Backtrace: not found");
         }
 
-        self.write(err.to_error_response()).await?;
+        let err_response = match &props {
+            Some(props) => {
+                let query = props.get(&"query".to_string());
+                let mut err_response = err.to_error_response();
+                if let Some(query) = query {
+                    err_response.message = format!("{}\nQUERY: {}", message, query);
+                }
+
+                err_response
+            }
+            None => err.to_error_response(),
+        };
+
+        self.logger.error(message.as_str(), props);
+
+        self.write(err_response).await?;
 
         Ok(())
     }
@@ -1394,7 +1380,7 @@ impl AsyncPostgresShim {
         debug!("Query: {}", query);
 
         if let Err(err) = self.execute_query(&query).await {
-            self.handle_connection_error(err, Some(query)).await?;
+            self.handle_connection_error(err).await?;
         };
 
         self.write_ready().await
