sql-splitter 1.13.1

High-performance CLI tool for splitting large SQL dump files into individual table files
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188

//! Redaction strategies for anonymizing data.
//!
//! Each strategy implements a different approach to redacting values:
//! - `null`: Replace with NULL
//! - `constant`: Replace with a fixed value
//! - `hash`: One-way hash (deterministic)
//! - `mask`: Partial masking with pattern
//! - `shuffle`: Redistribute values within column
//! - `fake`: Generate realistic fake data
//! - `skip`: No redaction (passthrough)

mod constant;
mod fake;
mod hash;
mod mask;
mod null;
mod shuffle;
mod skip;

pub use constant::ConstantStrategy;
pub use fake::FakeStrategy;
pub use hash::HashStrategy;
pub use mask::MaskStrategy;
pub use null::NullStrategy;
#[allow(unused_imports)] // Public API re-export
pub use shuffle::ShuffleStrategy;
#[allow(unused_imports)] // Public API re-export
pub use skip::SkipStrategy;

use serde::{Deserialize, Serialize};

/// Redaction strategy kind with associated configuration
#[derive(Debug, Clone, Default, Serialize, Deserialize)]
#[serde(tag = "strategy", rename_all = "snake_case")]
pub enum StrategyKind {
    /// Replace value with NULL
    Null,

    /// Replace with a constant value
    Constant {
        /// The constant value to use
        value: String,
    },

    /// One-way hash (SHA256)
    Hash {
        /// Preserve email domain (user@domain.com → hash@domain.com)
        #[serde(default)]
        preserve_domain: bool,
    },

    /// Partial masking with pattern
    Mask {
        /// Pattern: * = asterisk, X = keep, # = random digit
        pattern: String,
    },

    /// Shuffle values within the column
    Shuffle,

    /// Generate fake data
    Fake {
        /// Generator name: email, name, phone, address, etc.
        generator: String,
    },

    /// No redaction (passthrough)
    #[default]
    Skip,
}

impl StrategyKind {
    /// Validate the strategy configuration
    pub fn validate(&self) -> anyhow::Result<()> {
        match self {
            StrategyKind::Null => Ok(()),
            StrategyKind::Constant { value } => {
                if value.is_empty() {
                    anyhow::bail!("Constant strategy requires a non-empty value");
                }
                Ok(())
            }
            StrategyKind::Hash { .. } => Ok(()),
            StrategyKind::Mask { pattern } => {
                if pattern.is_empty() {
                    anyhow::bail!("Mask strategy requires a non-empty pattern");
                }
                // Validate pattern characters
                for c in pattern.chars() {
                    if !matches!(c, '*' | 'X' | '#' | '-' | ' ' | '.' | '@' | '(' | ')') {
                        // Allow common separator chars
                    }
                }
                Ok(())
            }
            StrategyKind::Shuffle => Ok(()),
            StrategyKind::Fake { generator } => {
                if !is_valid_generator(generator) {
                    anyhow::bail!("Unknown fake generator: {}. Use: email, name, first_name, last_name, phone, address, city, zip, company, ip, uuid, date, etc.", generator);
                }
                Ok(())
            }
            StrategyKind::Skip => Ok(()),
        }
    }
}

/// Check if a fake generator name is valid
fn is_valid_generator(name: &str) -> bool {
    matches!(
        name.to_lowercase().as_str(),
        "email"
            | "safe_email"
            | "name"
            | "first_name"
            | "last_name"
            | "full_name"
            | "phone"
            | "phone_number"
            | "address"
            | "street_address"
            | "city"
            | "state"
            | "zip"
            | "zip_code"
            | "postal_code"
            | "country"
            | "company"
            | "company_name"
            | "job_title"
            | "username"
            | "user_name"
            | "url"
            | "ip"
            | "ip_address"
            | "ipv4"
            | "ipv6"
            | "uuid"
            | "date"
            | "date_time"
            | "datetime"
            | "time"
            | "credit_card"
            | "iban"
            | "lorem"
            | "paragraph"
            | "sentence"
            | "word"
            | "ssn"
    )
}

/// Value representation for redaction
#[derive(Debug, Clone)]
pub enum RedactValue {
    /// NULL value
    Null,
    /// String value (may contain SQL escaping)
    String(String),
    /// Integer value
    Integer(i64),
    /// Raw bytes (for binary data)
    Bytes(Vec<u8>),
}

impl RedactValue {
    /// Check if this is a NULL value
    pub fn is_null(&self) -> bool {
        matches!(self, RedactValue::Null)
    }

    /// Get as string, or None if NULL
    pub fn as_str(&self) -> Option<&str> {
        match self {
            RedactValue::String(s) => Some(s),
            _ => None,
        }
    }
}

/// Trait for redaction strategies
pub trait Strategy: Send + Sync {
    /// Apply the strategy to redact a value
    fn apply(&self, value: &RedactValue, rng: &mut dyn rand::RngCore) -> RedactValue;

    /// Get the strategy kind
    fn kind(&self) -> StrategyKind;
}