Module security

Expand description

Security controls for query execution

This module provides the security infrastructure for CD queries, enforcing NON-NEGOTIABLE limits specified in the security requirements:

Timeout: 30s hard ceiling (spec AC-8)
Result cap: 10k default results (spec AC-9)
Memory limit: 512MB default (spec AC-10)

§Architecture

┌─────────────────────────────────────────────────────────────────┐
│                    QuerySecurityConfig                          │
│  - timeout: Duration (max 30s)                                  │
│  - result_cap: usize (default 10k)                              │
│  - memory_limit: usize (default 512MB)                          │
└─────────────────────────────────────────────────────────────────┘
                             │
                             ▼
┌─────────────────────────────────────────────────────────────────┐
│                        QueryGuard                               │
│  - Tracks elapsed time, result count, memory usage              │
│  - should_continue() -> Result<(), QuerySecurityError>          │
│  - record_result(estimated_size)                                │
└─────────────────────────────────────────────────────────────────┘
                             │
                             ▼
┌─────────────────────────────────────────────────────────────────┐
│                    QueryResultSet<T>                            │
│  - results: Vec<T>                                              │
│  - status: QueryCompletionStatus                                │
│  - Returns partial results when limits exceeded                 │
└─────────────────────────────────────────────────────────────────┘

§Example

use sqry_core::query::security::{QuerySecurityConfig, QueryGuard};
use std::time::Duration;

// Create security config (30s timeout is capped automatically)
let config = QuerySecurityConfig::default()
    .with_timeout(Duration::from_secs(10))
    .with_result_cap(1000);

// Create guard for query execution
let guard = QueryGuard::new(config);

// Check limits during query execution
assert!(guard.should_continue().is_ok());

// Record results with estimated memory footprint
guard.record_result(128);  // 128 bytes per result
guard.record_result(128);

// Check current state
assert_eq!(guard.result_count(), 2);
assert_eq!(guard.memory_usage(), 256);

For a complete usage example with partial results, see the integration pattern in QueryGuard documentation.

Structs§

AppliedLimits: Applied security limits recorded in audit entry
AuditLogConfig: Audit logger configuration
ExprFuelCounter: Expression fuel counter for limiting expression evaluation complexity
QueryAuditEntry: Query audit log entry
QueryAuditLogger: Query audit logger with durability guarantees
QueryGuard: Query execution guard with timeout, memory, and resource limits
QueryResultSet: Result set with completion status (per Codex iter10)
QuerySecurityConfig: Security controls for CD queries
RecursionGuard: Recursion depth guard for AST traversal and file operations

Enums§

PathValidationError: Path validation errors for early CLI feedback (per Codex iter10)
QueryCompletionStatus: Completion status for query results (per Codex iter10)
QueryOutcome: Query outcome for audit logging (per Codex iter10)
QuerySecurityError: Security errors from query execution
RecursionError: Errors from recursion guards

Module security

Module security Copy item path

§Architecture

§Example

Structs§

Enums§

Module security