Add support for joining tables in anonymizing queries.

cristianberneanu · cristianberneanu · commit f41c108b9280 · 2022-09-20T15:06:46.000+03:00
diff --git a/src/query/validation.c b/src/query/validation.c
@@ -29,7 +29,7 @@
   } while (0)
 
 static void verify_where(Query *query);
-static void verify_rtable(Query *query);
+static void verify_select_targets(Query *query);
 static void verify_aggregators(Query *query);
 static void verify_non_system_column(Var *var);
 static bool option_matches(DefElem *option, char *name, bool value);
@@ -106,24 +106,64 @@ void verify_anonymization_requirements(Query *query)
 
   verify_where(query);
   verify_aggregators(query);
-  verify_rtable(query);
+  verify_select_targets(query);
 }
 
-static void verify_rtable(Query *query)
+static void verify_select_targets(Query *query)
 {
-  NOT_SUPPORTED(list_length(query->rtable) > 1, "JOINs in anonymizing queries");
-
   ListCell *cell = NULL;
+
   foreach (cell, query->rtable)
   {
     RangeTblEntry *range_table = lfirst_node(RangeTblEntry, cell);
-    NOT_SUPPORTED(range_table->rtekind == RTE_SUBQUERY, "Subqueries in anonymizing queries");
-    NOT_SUPPORTED(range_table->rtekind == RTE_JOIN, "JOINs in anonymizing queries");
 
-    if (range_table->rtekind == RTE_RELATION)
-      NOT_SUPPORTED(has_subclass(range_table->relid) || has_superclass(range_table->relid), "Inheritance in anonymizing queries.");
-    else
-      FAILWITH("Unsupported FROM clause.");
+    switch (range_table->rtekind)
+    {
+    case RTE_RELATION:
+      NOT_SUPPORTED(has_subclass(range_table->relid) || has_superclass(range_table->relid), "Inheritance in anonymizing queries");
+      break;
+
+    case RTE_JOIN:
+      NOT_SUPPORTED(range_table->jointype == JOIN_SEMI || range_table->jointype == JOIN_ANTI, "SEMI JOIN in anonymizing queries");
+      break;
+
+    case RTE_SUBQUERY:
+      FAILWITH_CODE(ERRCODE_FEATURE_NOT_SUPPORTED, "Subqueries in anonymizing queries are not supported.");
+      break;
+
+    default:
+      FAILWITH_CODE(ERRCODE_FEATURE_NOT_SUPPORTED, "Unsupported FROM clause.");
+      break;
+    }
+  }
+
+  foreach (cell, query->jointree->fromlist)
+  {
+    if (list_length(query->jointree->fromlist) == 1 && IsA(lfirst(cell), RangeTblRef))
+      break;
+
+    NOT_SUPPORTED(IsA(lfirst(cell), RangeTblRef) || IsA(lfirst(cell), FromExpr), "CROSS JOIN in anonymizing queries");
+
+    Assert(IsA(lfirst(cell), JoinExpr));
+    JoinExpr *join_expr = lfirst_node(JoinExpr, cell);
+
+    List *subjects = NIL, *targets = NIL;
+    collect_equalities_from_filters(join_expr->quals, &subjects, &targets);
+
+    ListCell *subject_cell = NULL, *target_cell = NULL;
+    forboth(subject_cell, subjects, target_cell, targets)
+    {
+      Node *subject_expression = unwrap_cast(lfirst(subject_cell));
+      Node *target_expression = unwrap_cast(lfirst(target_cell));
+
+      if (!IsA(subject_expression, Var))
+        FAILWITH_CODE(ERRCODE_FEATURE_NOT_SUPPORTED, "Left side of equality in pre-anonymization JOIN filter has to be a simple column reference.");
+      if (!IsA(target_expression, Var))
+        FAILWITH_CODE(ERRCODE_FEATURE_NOT_SUPPORTED, "Right side of equality in pre-anonymization JOIN filter has to be a simple column reference.");
+    }
+
+    list_free(subjects);
+    list_free(targets);
   }
 }
 
@@ -422,7 +462,7 @@ void collect_equalities_from_filters(Node *node, List **subjects, List **targets
     }
   }
 
-  FAILWITH("Only equalities between generalization expressions and constants are allowed as pre-anonymization filters.");
+  FAILWITH("Only equalities are allowed in pre-anonymization filters.");
 }
 
 static Var *get_bucket_expression_column_ref(Node *bucket_expression)
diff --git a/test/expected/noisy.out b/test/expected/noisy.out
@@ -303,3 +303,15 @@ UNION
      7
 (1 row)
 
+----------------------------------------------------------------
+-- JOIN queries
+----------------------------------------------------------------
+-- JOIN order doesn't affect results
+(SELECT COUNT(*) FROM test_customers AS c JOIN test_purchases ON c.id = cid WHERE city = 'Berlin')
+UNION
+(SELECT COUNT(*) FROM test_purchases JOIN test_customers AS c ON cid = c.id WHERE city = 'Berlin');
+ count 
+-------
+    44
+(1 row)
+
diff --git a/test/expected/validation.out b/test/expected/validation.out
@@ -327,6 +327,41 @@ EXECUTE prepared(1.0);
 ----------+-------
 (0 rows)
 
+-- Allow anonymizing JOINs
+SELECT COUNT(*) FROM test_validation AS c
+  INNER JOIN test_purchases ON c.id = cid;
+ count 
+-------
+     0
+(1 row)
+
+SELECT COUNT(*) FROM test_validation AS t1
+  INNER JOIN test_validation AS t2 ON t1.name = t2.name AND t1.city = t2.city;
+ count 
+-------
+     0
+(1 row)
+
+SELECT COUNT(c.city), COUNT(p.name) FROM test_validation AS c
+  LEFT JOIN test_purchases ON c.id = cid
+  LEFT JOIN test_products AS p ON pid = p.id;
+ count | count 
+-------+-------
+     0 |     0
+(1 row)
+
+SELECT COUNT(*) FROM test_validation NATURAL JOIN test_patients;
+ count 
+-------
+     0
+(1 row)
+
+SELECT COUNT(*) FROM test_validation JOIN test_patients USING (name);
+ count 
+-------
+     0
+(1 row)
+
 ----------------------------------------------------------------
 -- Unsupported queries
 ----------------------------------------------------------------
@@ -477,25 +512,20 @@ SELECT GREATEST(discount, 20) FROM test_validation;
 ERROR:  [PG_DIFFIX] Unsupported generalization expression.
 SELECT LEAST(discount, 20) FROM test_validation;
 ERROR:  [PG_DIFFIX] Unsupported generalization expression.
--- Get rejected because of JOINs
-SELECT COUNT(*), COUNT(DISTINCT id), COUNT(DISTINCT cid) FROM test_validation
-  INNER JOIN test_purchases tp ON id = cid;
-ERROR:  [PG_DIFFIX] Feature 'JOINs in anonymizing queries' is not currently supported.
-SELECT COUNT(c.city), COUNT(p.name) FROM test_validation c
-  LEFT JOIN test_purchases ON c.id = cid
-  LEFT JOIN test_products p ON pid = p.id;
-ERROR:  [PG_DIFFIX] Feature 'JOINs in anonymizing queries' is not currently supported.
-SELECT city, COUNT(price) FROM test_validation, test_products GROUP BY 1;
-ERROR:  [PG_DIFFIX] Feature 'JOINs in anonymizing queries' is not currently supported.
-SELECT city, COUNT(price) FROM test_products, test_validation GROUP BY 1;
-ERROR:  [PG_DIFFIX] Feature 'JOINs in anonymizing queries' is not currently supported.
-SELECT city, COUNT(price) FROM test_products CROSS JOIN test_validation GROUP BY 1;
-ERROR:  [PG_DIFFIX] Feature 'JOINs in anonymizing queries' is not currently supported.
+-- Get rejected because of invalid JOINs
+SELECT COUNT(*) FROM test_validation JOIN test_purchases ON id != cid;
+ERROR:  [PG_DIFFIX] Only equalities are allowed in pre-anonymization filters.
+SELECT COUNT(*) FROM test_validation JOIN test_purchases ON id = cid OR cid = id;
+ERROR:  [PG_DIFFIX] Only equalities are allowed in pre-anonymization filters.
+SELECT COUNT(*) FROM test_validation JOIN test_purchases ON true;
+ERROR:  [PG_DIFFIX] Only equalities are allowed in pre-anonymization filters.
+SELECT COUNT(*) FROM test_validation, test_purchases;
+ERROR:  [PG_DIFFIX] Feature 'CROSS JOIN in anonymizing queries' is not currently supported.
 -- Get rejected because of invalid WHERE clauses
 SELECT COUNT(*) FROM test_validation WHERE city <> 'London';
-ERROR:  [PG_DIFFIX] Only equalities between generalization expressions and constants are allowed as pre-anonymization filters.
+ERROR:  [PG_DIFFIX] Only equalities are allowed in pre-anonymization filters.
 SELECT COUNT(*) FROM test_validation WHERE city = 'London' OR discount = 10;
-ERROR:  [PG_DIFFIX] Only equalities between generalization expressions and constants are allowed as pre-anonymization filters.
+ERROR:  [PG_DIFFIX] Only equalities are allowed in pre-anonymization filters.
 SELECT COUNT(*) FROM test_validation WHERE diffix.round_by(id, 5) = 0;
 ERROR:  [PG_DIFFIX] AID columns can't be referenced by pre-anonymization filters.
 LINE 1: ...UNT(*) FROM test_validation WHERE diffix.round_by(id, 5) = 0...
@@ -563,9 +593,9 @@ SELECT * FROM pg_stat_activity LIMIT 10;
 ERROR:  permission denied for schema pg_catalog
 -- Get rejected because of inheritance
 SELECT x, y FROM subclass;
-ERROR:  [PG_DIFFIX] Feature 'Inheritance in anonymizing queries.' is not currently supported.
+ERROR:  [PG_DIFFIX] Feature 'Inheritance in anonymizing queries' is not currently supported.
 SELECT x FROM superclass;
-ERROR:  [PG_DIFFIX] Feature 'Inheritance in anonymizing queries.' is not currently supported.
+ERROR:  [PG_DIFFIX] Feature 'Inheritance in anonymizing queries' is not currently supported.
 -- Get rejected because attempt to use system columns
 SELECT ctid FROM test_validation;
 ERROR:  [PG_DIFFIX] System columns are not allowed in this context.
diff --git a/test/sql/noisy.sql b/test/sql/noisy.sql
@@ -110,3 +110,12 @@ UNION
 (SELECT count(*) FROM test_customers WHERE diffix.round_by(discount, 2) = 0 GROUP BY city HAVING city = 'Berlin')
 UNION
 (SELECT count(*) FROM test_customers WHERE city = 'Berlin' AND diffix.round_by(discount, 2) = 0);
+
+----------------------------------------------------------------
+-- JOIN queries
+----------------------------------------------------------------
+
+-- JOIN order doesn't affect results
+(SELECT COUNT(*) FROM test_customers AS c JOIN test_purchases ON c.id = cid WHERE city = 'Berlin')
+UNION
+(SELECT COUNT(*) FROM test_purchases JOIN test_customers AS c ON cid = c.id WHERE city = 'Berlin');
diff --git a/test/sql/validation.sql b/test/sql/validation.sql
@@ -172,6 +172,20 @@ SELECT * FROM diffix.show_labels() WHERE objname LIKE 'public.empty_test_custome
 PREPARE prepared(float) AS SELECT discount, count(*) FROM empty_test_customers WHERE discount = $1 GROUP BY 1;
 EXECUTE prepared(1.0);
 
+-- Allow anonymizing JOINs
+SELECT COUNT(*) FROM test_validation AS c
+  INNER JOIN test_purchases ON c.id = cid;
+
+SELECT COUNT(*) FROM test_validation AS t1
+  INNER JOIN test_validation AS t2 ON t1.name = t2.name AND t1.city = t2.city;
+
+SELECT COUNT(c.city), COUNT(p.name) FROM test_validation AS c
+  LEFT JOIN test_purchases ON c.id = cid
+  LEFT JOIN test_products AS p ON pid = p.id;
+
+SELECT COUNT(*) FROM test_validation NATURAL JOIN test_patients;
+SELECT COUNT(*) FROM test_validation JOIN test_patients USING (name);
+
 ----------------------------------------------------------------
 -- Unsupported queries
 ----------------------------------------------------------------
@@ -242,19 +256,11 @@ SELECT NULLIF(discount, 20) FROM test_validation;
 SELECT GREATEST(discount, 20) FROM test_validation;
 SELECT LEAST(discount, 20) FROM test_validation;
 
--- Get rejected because of JOINs
-SELECT COUNT(*), COUNT(DISTINCT id), COUNT(DISTINCT cid) FROM test_validation
-  INNER JOIN test_purchases tp ON id = cid;
-
-SELECT COUNT(c.city), COUNT(p.name) FROM test_validation c
-  LEFT JOIN test_purchases ON c.id = cid
-  LEFT JOIN test_products p ON pid = p.id;
-
-SELECT city, COUNT(price) FROM test_validation, test_products GROUP BY 1;
-
-SELECT city, COUNT(price) FROM test_products, test_validation GROUP BY 1;
-
-SELECT city, COUNT(price) FROM test_products CROSS JOIN test_validation GROUP BY 1;
+-- Get rejected because of invalid JOINs
+SELECT COUNT(*) FROM test_validation JOIN test_purchases ON id != cid;
+SELECT COUNT(*) FROM test_validation JOIN test_purchases ON id = cid OR cid = id;
+SELECT COUNT(*) FROM test_validation JOIN test_purchases ON true;
+SELECT COUNT(*) FROM test_validation, test_purchases;
 
 -- Get rejected because of invalid WHERE clauses
 SELECT COUNT(*) FROM test_validation WHERE city <> 'London';
