SQL refactor

[DJAndries]

Resolves #216

[AlexeyBarabash]

LGTM, great work

I left one question at spec discussion.

Tried locally - works fine, I saw TRANSIENT_ERROR/SQL rollout not ready - but then client status turned to SUCCESS.

[github-actions]

_{reported by reviewdog 🐶}
[semgrep] Service 'postgres' allows for privilege escalation via setuid or setgid binaries. Add 'no-new-privileges=true' in 'security_opt' to prevent this.

Source: https://github.com/brave/security-action/blob/main/assets/semgrep_rules/services/docker-compose-no-new-privileges.yaml


Cc @thypon kdenhartog

[kdenhartog]

The combination of this one with the additional one below do look like they'll present issues. Should be an easy fix to add the no-new-privileges=true configuration to this file. If there's a reason we intentionally haven't done this though @DJAndries let me know and we can determine together what the best way forward is.

[github-actions]

_{reported by reviewdog 🐶}
[semgrep] Service 'postgres' is running with a writable root filesystem. This may allow malicious applications to download and run additional payloads, or modify container files. If an application inside a container has to save something temporarily consider using a tmpfs. Add 'read_only: true' to this service to prevent this.

Source: https://semgrep.dev/r/yaml.docker-compose.security.writable-filesystem-service.writable-filesystem-service


Cc @thypon kdenhartog

[kdenhartog]

Same as above, seems like a simple solution to solve this is to add the read_only: true configuration. If you can't let me know and we'll figure out the best way forward @DJAndries.

[kdenhartog]

non blocking question: @DJAndries what's the purpose in this validation check? The logic is non-deterministic in the sense that rand could return a very large number forcing this to fail the migration. Is this intentional?

[DJAndries]

to reduce DB load, we only want to migrate chunks of data from ddb to pg on a certain percentage of "get update" requests from the client, which are sent every 30 seconds. the check enforces this requirement.

[DJAndries]

will add a comment for clarity

[kdenhartog]

If you want a more uniform randomness, crypto/rand can provide that guarantee, but based on that answer it doesn't seem like we really need that so feel free to ignore that sec-actions comment.

[github-actions]

_{reported by reviewdog 🐶}
[semgrep] Do not use math/rand. Use crypto/rand instead.

Source: https://semgrep.dev/r/go.lang.security.audit.crypto.math_random.math-random-used


Cc @thypon @kdenhartog

[github-actions]

[puLL-Merge] - brave/go-sync@287

Description

This PR introduces significant changes to the codebase, primarily focusing on adding support for SQL databases alongside the existing DynamoDB implementation. It also includes improvements to the data migration process, updates to the project structure, and enhancements to the testing suite.

Changes

Changes

1. Database Support:

   • Added SQL database support (datastore/sql.go, datastore/sync_entity_sql.go)
   • Created interfaces for DynamoDB and SQL datastores (datastore/interfaces.go)
   • Implemented migration functionality from DynamoDB to SQL (command/migrate_test.go)

2. Project Structure:

   • Separated DynamoDB-specific code (datastore/sync_entity_dynamo.go)
   • Added SQL migrations (datastore/migrations/)
   • Created new files for SQL-related functionality (datastore/sql_variations.go, datastore/item_count_sql.go)

3. Command Package:

   • Refactored command/command.go to support both DynamoDB and SQL operations
   • Added new helper functions in command/helpers.go
   • Implemented item count tracking (command/item_count.go)

4. Testing:

   • Updated existing tests to work with both DynamoDB and SQL
   • Added new tests for SQL functionality and migrations

5. Configuration and Environment:

   • Added support for SQL database connection strings
   • Introduced new environment variables for SQL configuration

6. Docker and Development:

   • Updated docker-compose.yml to include PostgreSQL service
   • Added pg.Dockerfile for custom PostgreSQL image with extensions

7. Dependencies:

   • Updated go.mod and go.sum with new dependencies, including SQL-related libraries

8. Rollout Management:

   • Implemented rollout configuration management (server/rollout.go)

Possible Issues

1. The migration process from DynamoDB to SQL might cause temporary inconsistencies during the transition period.
2. The new SQL implementation might introduce performance differences compared to the previous DynamoDB-only setup.
3. The additional complexity of supporting both databases could make future maintenance more challenging.

Security Hotspots

1. SQL query construction in datastore/sync_entity_sql.go should be carefully reviewed to prevent SQL injection vulnerabilities.
2. The new database connection strings and credentials management in datastore/sql.go should be audited for proper security practices.
3. The rollout confirmation mechanism in server/rollout.go should be reviewed to ensure it doesn't introduce any potential security weaknesses.

[NicholasFlamy]

Is this still alive?