Firebird

On Monday 17 November 2008 08:16, Mark O'Donohue wrote:

Mark (and others)!

Generic functions that can perform various crypt/hast/etc. will be very much 
needed in FB3. But before starting to write programs - please take into an 
account that it's highly desired (up to required) to be flexible. Different 
installations require different methods for crypting, and hardcoding of 
single (even let it be very good) library is wrong solution. We meed plugins 
for this purporse.

Looks like time is coming to think about 'how should plugins look in 
firebird?'  To all the rest which was already said and discussed here I want 
to add one little requirement - any plugin (shared library) should be with 
minimum efforts linkable with firebird statically. The primary reason for 
such a requirement is our undocumented, but used and loved by people, single 
file copy client install on windows. I.e. each client-side plugin should be 
easily linked statically inside fbclient.dll.

There are many details to be takent into an account in plugins' loading 
design, among them: where are from and when are plugins loaded, how to detect 
default plugin (should we have generic procedure for it?), how do we decide 
with plugin type (it tells itself or some other way). But the primary problem 
on my mind now is to have interface, making it easy to change linkage 
(static/dynamic) of plugins.

One simple suggestion is to change the active side when plugin is loaded. 
Typically some function with fixed name (like getPlugins()) is searched for 
in loaded dynamic library and is invoked to get list of plugins available in 
this dynamic library. For statically linked plugins we will have to in some 
artificial way build the list of such functions in them. But if we instead 
make plugins self-registering (i.e. each one after load calls API function 
fb_register_plugin()), this will happen absolutely in the same way for both 
static and dynamic cases. And as the result we will get the same in-memory 
structures, describing loaded plugins. 

I think we must decide - can we use such solution or not before moving on with 
plugins.


What about other questions:

1) what makeXXXX functions do you mean here? There is too much of them. Please 
be more specific.

2) As far as I remember, CVT_get_string_ptr() will always convert field 
content to string. Do not think this is what we want for encryption purporse. 
And once more the question come - what are we crypting? Data on disk? Network 
traffic? Etc?

3) A good sample of assigning values can be found in 
ExecuteStatement::fetch().

A.

1) Do you remember we already discussed plugins and there is an 
implementation in B2_5_ExtEngines branch? May you say what's wrong with it?

2) We already need DLLs for INTL, for ICU, for MSVC runtime, so why we 
need statically linkable plugins?

3) Plugins in fbclient?


Adriano


Alex Peshkov escreveu:
> On Monday 17 November 2008 08:16, Mark O'Donohue wrote:
>
> Mark (and others)!
>
> Generic functions that can perform various crypt/hast/etc. will be very much 
> needed in FB3. But before starting to write programs - please take into an 
> account that it's highly desired (up to required) to be flexible. Different 
> installations require different methods for crypting, and hardcoding of 
> single (even let it be very good) library is wrong solution. We meed plugins 
> for this purporse.
>
> Looks like time is coming to think about 'how should plugins look in 
> firebird?'  To all the rest which was already said and discussed here I want 
> to add one little requirement - any plugin (shared library) should be with 
> minimum efforts linkable with firebird statically. The primary reason for 
> such a requirement is our undocumented, but used and loved by people, single 
> file copy client install on windows. I.e. each client-side plugin should be 
> easily linked statically inside fbclient.dll.
>
> There are many details to be takent into an account in plugins' loading 
> design, among them: where are from and when are plugins loaded, how to detect 
> default plugin (should we have generic procedure for it?), how do we decide 
> with plugin type (it tells itself or some other way). But the primary problem 
> on my mind now is to have interface, making it easy to change linkage 
> (static/dynamic) of plugins.
>
> One simple suggestion is to change the active side when plugin is loaded. 
> Typically some function with fixed name (like getPlugins()) is searched for 
> in loaded dynamic library and is invoked to get list of plugins available in 
> this dynamic library. For statically linked plugins we will have to in some 
> artificial way build the list of such functions in them. But if we instead 
> make plugins self-registering (i.e. each one after load calls API function 
> fb_register_plugin()), this will happen absolutely in the same way for both 
> static and dynamic cases. And as the result we will get the same in-memory 
> structures, describing loaded plugins. 
>
> I think we must decide - can we use such solution or not before moving on with 
> plugins.
>
>
> What about other questions:
>
> 1) what makeXXXX functions do you mean here? There is too much of them. Please 
> be more specific.
>
> 2) As far as I remember, CVT_get_string_ptr() will always convert field 
> content to string. Do not think this is what we want for encryption purporse. 
> And once more the question come - what are we crypting? Data on disk? Network 
> traffic? Etc?
>
> 3) A good sample of assigning values can be found in 
> ExecuteStatement::fetch().
>
> A.
>
> -------------------------------------------------------------------------
> This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
> Build the coolest Linux based applications with Moblin SDK & win great prizes
> Grand prize is a trip for two to an Open Source event anywhere in the world
> http://moblin-contest.org/redirect.php?banner_id=100&url=/
> Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
>

> 1) Do you remember we already discussed plugins and there is an 
> implementation in B2_5_ExtEngines branch? May you say what's wrong with it?

    There was no agreement, IIRC
 
> 2) We already need DLLs for INTL

    BTW, do we really need fbintl.dll as plugin ?

> for ICU, for MSVC runtime, so why we 
> need statically linkable plugins?
> 
> 3) Plugins in fbclient?

    For encryption purposes - yes, it may be the case.

Regards,
Vlad

Vlad Khorsun escreveu:
>> 1) Do you remember we already discussed plugins and there is an 
>> implementation in B2_5_ExtEngines branch? May you say what's wrong with it?
>>     
>
>     There was no agreement, IIRC
>   
Please point me out the points, because AFAIK, all the things on this 
branch was completely discussed* and I have nothing pending to discuss 
before commit it. I just wait for official v3 branch open.

(*) With a reasonable agreement, no 100% of course, as all others 
discussions. :-)

>  
>   
>> 2) We already need DLLs for INTL
>>     
>
>     BTW, do we really need fbintl.dll as plugin ?
>   
On the client? I don't think so.

On the server? It would be great as a cleanup, but nothing more. And 
will break a public interface.

When I created the new Plugin classes I just wanted this, i.e., no 
proliferation of individual public APIs.


>   
>> for ICU, for MSVC runtime, so why we 
>> need statically linkable plugins?
>>
>> 3) Plugins in fbclient?
>>     
>
>     For encryption purposes - yes, it may be the case.
>   
I don't see the plugin classes as a problem for it. And we may create 
functions to register statically linked plugins.


Adriano

> Vlad Khorsun escreveu:
>>> 1) Do you remember we already discussed plugins and there is an 
>>> implementation in B2_5_ExtEngines branch? May you say what's wrong with it?
>>>     
>>
>>     There was no agreement, IIRC
>>   
> Please point me out the points, because AFAIK, all the things on this 
> branch was completely discussed* and I have nothing pending to discuss 
> before commit it. I just wait for official v3 branch open.
> 
> (*) With a reasonable agreement, no 100% of course, as all others 
> discussions. :-)

    There was no agreement in generic plugin interface. And there was minor issue with
0- or 1- based indices for parameters of external functions\procedures, also not agreed.

>>> 2) We already need DLLs for INTL
>>>     
>>
>>     BTW, do we really need fbintl.dll as plugin ?
>>   
> On the client? I don't think so.

    Of course not at client side ;)
 
> On the server? It would be great as a cleanup, but nothing more. And 
> will break a public interface.

    It seems its a time to ask if that public interface was used by someone and if current
built-in abilities is preferred over custom INTL plugins.
 
> When I created the new Plugin classes I just wanted this, i.e., no 
> proliferation of individual public APIs.

    Understand.

>>> for ICU, for MSVC runtime, so why we 
>>> need statically linkable plugins?
>>>
>>> 3) Plugins in fbclient?
>>>     
>>
>>     For encryption purposes - yes, it may be the case.
>>   
> I don't see the plugin classes as a problem for it. And we may create 
> functions to register statically linked plugins.

    Alex asked to create such functions in a way that dynamically and statically linked 
plugins used the same binding code, AFAIU.

Regards,
Vlad

Vlad Khorsun escreveu:
>> Vlad Khorsun escreveu:
>>     
>>>> 1) Do you remember we already discussed plugins and there is an 
>>>> implementation in B2_5_ExtEngines branch? May you say what's wrong with it?
>>>>     
>>>>         
>>>     There was no agreement, IIRC
>>>   
>>>       
>> Please point me out the points, because AFAIK, all the things on this 
>> branch was completely discussed* and I have nothing pending to discuss 
>> before commit it. I just wait for official v3 branch open.
>>
>> (*) With a reasonable agreement, no 100% of course, as all others 
>> discussions. :-)
>>     
>
>     There was no agreement in generic plugin interface.
AFAIR, it was just I matter of style and not architecture. We had two 
different ways to call/ask external engines (re. factories) and nobody 
pointed wrong things with the approaches.

>  And there was minor issue with
> 0- or 1- based indices for parameters of external functions\procedures, also not agreed.
>   
What about 2-based then? :-)

>> On the server? It would be great as a cleanup, but nothing more. And 
>> will break a public interface.
>>     
>
>     It seems its a time to ask if that public interface was used by someone and if current
> built-in abilities is preferred over custom INTL plugins.
>   
I would like to maintain it as a public API and having 
charsets/collations implemented as plugins. And if nobody is using it 
externally, I see no problem to reimplement it on a new interface.

>>>     For encryption purposes - yes, it may be the case.
>>>   
>>>       
>> I don't see the plugin classes as a problem for it. And we may create 
>> functions to register statically linked plugins.
>>     
>
>     Alex asked to create such functions in a way that dynamically and statically linked 
> plugins used the same binding code, AFAIU.
Current PluginManager is driven by config. file and config. file had the 
library path.

As I done in external engines internals, it's possible to export plugin 
functions even on executable files, and have config file reference them.

But if we want to avoid the config file, some internal code is needed to 
register plugins on the manager.


Adriano

Mark O'Donohue escreveu:
> 1) What are the purpose of the makeXXXX and evlXXXX functions, makeXXX
> seems to build space for the results,  evlXXX seems to do the
> evaluation, but that was only my rough interpretation, based on what I
> copied, and have stepped through in the debugger.
makeXXXX is to create descriptors to be used to describe XSQLVAR 
members. evlXXXX is the actual function evaluation.

For your others questions, I think it's better if you catch a specific 
similar function that receives/returns the data type you want and if 
necessary ask for details about them. These functions are documented on 
FB 2.1 release notes.


Adriano

Hi Alex

On Mon, Nov 17, 2008 at 11:35 PM, Alex Peshkov <peshkoff@...> wrote:
>
> Mark (and others)!
>
> Generic functions that can perform various crypt/hast/etc. will be very much
> needed in FB3. But before starting to write programs - please take into an
> account that it's highly desired (up to required) to be flexible. ....

Hi Alex, don't panic, I am well aware of all that  :-)  -  I've got a
few ideas,  but I need to learn to crawl before I can run, so I need
to learn some of these fb implementation basics first.   If what I do
never gets into fb tree, it will just be a learning exercise for me.
( but rest assured I am thinking as I tinker).

>
>
> What about other questions:
>
> 1) what makeXXXX functions do you mean here? There is too much of them. Please
> be more specific.

What purpose do the makeXXX functions perform, as distinct to the
evlXXX functions?

I wrote makeEncrypt() makeDecrypt(), by copying another makeXXX
function,  they seems to allocate a result object, the resulting
object is calculated again in evlEncrypt() as well.  But for instance,
all the other makeXXXX functions seems to know the exact size of their
resulting blob/string, but in my case, that is not quite possible,
although I can determine a max limit (which is what I have done).  But
is that right?, and how does that fit with the result type/size object
allocated in evlEncrypt?

>
> 2) As far as I remember, CVT_get_string_ptr() will always convert field
> content to string. Do not think this is what we want for encryption purporse.

I used it to get to the raw data in the string object, and with len,
used that to determine what to encrypt, from the other examples that
seemed to be correct, but thought it best to check it was.

          if (value->isText()) {
                  size_t len = CVT_get_string_ptr(value, &ttype,
&data_temp, NULL, 0, ERR_post);
          }
          else if (value->isBlob()) {
                // stuff for blobs
          else {
               // handle other types, numerics/dates etc or maybe
error at this stage.
           }

So presumably,  the if(value->isText()) block  will:
               a) work for all text character types ?
               b) including varchars ?
               c) but  presumably not text blobs ?


> And once more the question come - what are we crypting? Data on disk? Network
> traffic? Etc?

Currently I am trying a simple step, adding an encrypt and decrypt function:

   update test_data set field1 = encrypt('AES128','secretkey', field2) ;
   update test_data set field2 = decrypt('AES128','secretkey', field2) ;

thats too simple a name to survive, but basically the functions seem
to be working for string data input at the moment.

>
> 3) A good sample of assigning values can be found in
> ExecuteStatement::fetch().

Thanks, thats what I want, a good example to learn from :-)

But I am not so sure it helps, with fetch() the result types and
values are duplicated from the resultset:

		dsc& desc = resultSet->getDesc(i + 1);
                ....
                BLB_move(tdbb, from_desc, to_desc, to);

Whereas I, presumably, want to create a new blob from an existing
blob, the example I was using was:

    SysFunctions::evlPad()   - which, amongst others also does blobs,
creating a new padded blob from the original

It goes as follows:

   static dsc* evlPad(Jrd::thread_db* tdbb,
                                const SysFunction* function,
                                Jrd::jrd_nod* args,
                                Jrd::impure_value* impure)

Create a new blob

        ....
	blb* newBlob = NULL;

	if (value1->isBlob() || (value2 && value2->isBlob()))
	{
		EVL_make_value(tdbb, (value1->isBlob() ? value1 : value2), impure);
		impure->vlu_desc.setBlobSubType(value1->getBlobSubType());
		impure->vlu_desc.setTextType(ttype);
		newBlob = BLB_create(tdbb, tdbb->getRequest()->req_transaction,
&impure->vlu_misc.vlu_bid);
	}

Write some data into it.
        ....
	BLB_put_data(tdbb, newBlob, address1, length1);
        ....

Close it.
        BLB_close(tdbb, newBlob);
        ....

Return it as a result of the evlPad function

	return &impure->vlu_desc;

So was that a temporary blob or was it saved in the database?  Would
that seem to be the right prototype for me to follow in creating my
new return blob of encrypted data?

Now, I appreciate your busy, but do you mid explaining a little about
the steps in evlPad() above, for instance I don't even know what
impure means, or why its important.

Thanks in advance.

Cheers - Mark

Hi Adriano

On Tue, Nov 18, 2008 at 2:11 AM, Adriano dos Santos Fernandes
<adrianosf@...> wrote:
> makeXXXX is to create descriptors to be used to describe XSQLVAR
> members. evlXXXX is the actual function evaluation.
>

Thanks for that, I thought it might be what it was for, but two,
hopefullly quick follow up questions,


>From makeXXXX does size matter - If I return a varying or blob
datatype, is there any requirement on the size of the return type, ie
does it expect a max length possible or anything ?


In tracing with the debugger,  makeEncrypt was called twice then
evlEncrypt, was called, just curious, but any idea why?


> For your others questions, I think it's better if you catch a specific
> similar function that receives/returns the data type you want and if
> necessary ask for details about them.
Thanks, I did so :-)

Cheers - Mark

Mark O'Donohue escreveu:
> Hi Adriano
>
> On Tue, Nov 18, 2008 at 2:11 AM, Adriano dos Santos Fernandes
> <adrianosf@...> wrote:
>   
>> makeXXXX is to create descriptors to be used to describe XSQLVAR
>> members. evlXXXX is the actual function evaluation.
>>
>>     
>
> Thanks for that, I thought it might be what it was for, but two,
> hopefullly quick follow up questions,
>
>
> >From makeXXXX does size matter - If I return a varying or blob
> datatype, is there any requirement on the size of the return type, ie
> does it expect a max length possible or anything ?
>   
For strings, yes. This is limitation of our API. The same for input 
parameters (question marks).

When you had function(xxx, yyy) you need to use the parameters types to 
declare a return type. When you had function(xxx, ?) you need to do the 
same thing with the parameter.

>
> In tracing with the debugger,  makeEncrypt was called twice then
> evlEncrypt, was called, just curious, but any idea why?
>   
 From ISQL? I remember to see statements (or pieces) being prepared two 
times...


Adriano

Hi Alex

Ok, now I have both encrypt and decrypt working with blobs and text,

On Tue, Nov 18, 2008 at 3:09 AM, Alex Peshkov <peshkoff@...> wrote:
>>
>>    update test_data set field1 = encrypt('AES128','secretkey', field2) ;
>>    update test_data set field2 = decrypt('AES128','secretkey', field2) ;
>

for other types I can encrypt other types using cast:

     select encrypt('AES128','something', cast(budget as varchar(20)))
               from department;

And on the decrypt I can use cast to reset the type back, for example.

      select budget,
                cast(decrypt('AES128', 'something',
                                   encrypt('AES128','something',
                                            cast(budget as varchar(20))))
                        as DECIMAL(12, 2))
                 from department;

Nicely displays budget in original form and one that has been through
the encrypt and decrypt loop.

I have a few similar functions, for base64 encoding, hashing and
certificate operations, and I am sure there are some problem, but all
looking positive so far.

The blob details were:

    EVL_make_value(tdbb, value, impure);
    impure->vlu_desc.setBlobSubType(0);
    impure->vlu_desc.setTextType(isc_blob_untyped);
    blb* newBlob = BLB_create(tdbb, tdbb->getRequest()->req_transaction,
                                             &impure->vlu_misc.vlu_bid);
    BLB_put_data(tdbb, newBlob, encResult.getBuffer(),
                          encResult.size());
    BLB_close(tdbb, newBlob);

Thanks for all the help - now to check that the code works on Windows :-)

Cheers - Mark