refactor: log statement on error by Display (#3803)

* refactor: log statement on error by Display Signed-off-by: tison <wander4096@gmail.com> * Apply suggestions from code review Co-authored-by: Yingwen <realevenyag@gmail.com> Signed-off-by: tison <wander4096@gmail.com> --------- Signed-off-by: tison <wander4096@gmail.com> Co-authored-by: Yingwen <realevenyag@gmail.com>
2026-05-24 08:50:40 +00:00 · 2024-04-26 12:05:13 +08:00
parent 1ec595134d
commit 4eadd9f8a8
5 changed files with 8 additions and 68 deletions
--- a/src/sql/src/util.rs
+++ b/src/sql/src/util.rs
@@ -13,20 +13,11 @@
 // limitations under the License.

 use std::fmt::{Display, Formatter};
-use std::sync::LazyLock;

-use regex::Regex;
 use sqlparser::ast::{Expr, ObjectName, SqlOption, Value};

 use crate::error::{InvalidTableOptionValueSnafu, Result};

-static SQL_SECRET_PATTERNS: LazyLock<Vec<Regex>> = LazyLock::new(|| {
-    vec![
-        Regex::new(r#"(?i)access_key_id=["']([^"']*)["'].*"#).unwrap(),
-        Regex::new(r#"(?i)secret_access_key=["']([^"']*)["'].*"#).unwrap(),
-    ]
-});
-
 /// Format an [ObjectName] without any quote of its idents.
 pub fn format_raw_object_name(name: &ObjectName) -> String {
    struct Inner<'a> {
@@ -59,37 +50,3 @@ pub fn parse_option_string(option: SqlOption) -> Result<(String, String)> {
    let k = key.value.to_lowercase();
    Ok((k, v))
 }
-
-/// Use regex to match and replace common seen secret values in SQL.
-pub fn redact_sql_secrets(sql: &str) -> String {
-    let mut s = sql.to_string();
-    for p in SQL_SECRET_PATTERNS.iter() {
-        if let Some(captures) = p.captures(&s) {
-            if let Some(m) = captures.get(1) {
-                s = s.replace(m.as_str(), "******");
-            }
-        }
-    }
-    s
-}
-
-#[cfg(test)]
-mod test {
-    use super::*;
-
-    #[test]
-    fn test_redact_sql_secrets() {
-        assert_eq!(
-            redact_sql_secrets(
-                r#"COPY 'my_table' FROM '/test.orc' WITH (FORMAT = 'orc') CONNECTION(ENDPOINT = 's3.storage.site', REGION = 'hz', ACCESS_KEY_ID='my_key_id', SECRET_ACCESS_KEY="my_access_key");"#
-            ),
-            r#"COPY 'my_table' FROM '/test.orc' WITH (FORMAT = 'orc') CONNECTION(ENDPOINT = 's3.storage.site', REGION = 'hz', ACCESS_KEY_ID='******', SECRET_ACCESS_KEY="******");"#
-        );
-        assert_eq!(
-            redact_sql_secrets(
-                r#"COPY 'my_table' FROM '/test.orc' WITH (FORMAT = 'orc') CONNECTION(ENDPOINT = 's3.storage.site', REGION = 'hz', ACCESS_KEY_ID='@scoped/key_id', SECRET_ACCESS_KEY="@scoped/access_key");"#
-            ),
-            r#"COPY 'my_table' FROM '/test.orc' WITH (FORMAT = 'orc') CONNECTION(ENDPOINT = 's3.storage.site', REGION = 'hz', ACCESS_KEY_ID='******', SECRET_ACCESS_KEY="******");"#
-        );
-    }
-}