cipherstash · tobyhede · Jan 27, 2025 · Jan 27, 2025 · Jan 30, 2025 · Jan 30, 2025
diff --git a/.github/workflows/test-eql.yml b/.github/workflows/test-eql.yml
@@ -41,6 +41,15 @@ jobs:
     steps:
       - uses: actions/checkout@v4
 
+      - name: Install rust
+        shell: /bin/bash -l {0}
+        run: rustup toolchain install stable --profile minimal --no-self-update
+
+      - name: Setup Rust cache
+        uses: Swatinem/rust-cache@v2
+        with:
+          cache-all-crates: true
+
       - uses: jdx/mise-action@v2
         with:
           version: 2025.1.6 # [default: latest] mise version to install

diff --git a/.gitignore b/.gitignore
@@ -206,7 +206,4 @@ release/
 __pycache__
 
 # dbdev
-eql--*.sql
-
-# Generated SQLx migration (built from src/, never commit)
-tests/sqlx/migrations/001_install_eql.sql
+eql--*.sql
diff --git a/2025-10-27-phase-4-review.md b/2025-10-27-phase-4-review.md
@@ -0,0 +1,81 @@
+# Code Review - Phase 4 Documentation (2025-10-27)
+
+## Status: APPROVED
+
+## BLOCKING (Must Fix Before Merge)
+
+None
+
+## NON-BLOCKING (May Be Deferred)
+
+**Minor: version.sql file header inconsistency:**
+- Description: The file header says "AUTOMATICALLY GENERATED FILE" but we manually added Doxygen comments to it. The comments should clarify that while the version string is auto-generated, the documentation is maintained manually.
+- Location: src/version.sql:1-12
+- Action: Consider adding a note: `@note Version string auto-generated at build time, documentation maintained manually`
+
+## Highlights
+
+**Comprehensive and Systematic Documentation:**
+- What: Added Doxygen documentation to 32 files across Phase 4 with consistent structure and formatting. Every function includes `@brief`, appropriate parameter documentation, return value description, and relevant notes.
+- Location: All Phase 4 files (encrypted/, config/, jsonb/, encryptindex/, root utilities)
+
+**Excellent Use of Cross-References:**
+- What: Documentation includes `@see` tags linking related functions, creating a navigable documentation graph
+- Location: Examples in src/config/constraints.sql:151-154 (comprehensive CHECK constraint with @see references to all validation functions)
+
+**Clear Distinction of Internal vs Public APIs:**
+- What: Consistent use of `@internal` tags to mark implementation details vs customer-facing functions
+- Location: All constraint validation functions properly marked internal (src/config/constraints.sql), while customer-facing functions like `jsonb_path_query` include examples
+
+**Practical Examples for Customer-Facing Functions:**
+- What: Customer-facing functions include concrete `@example` sections showing actual usage
+- Location: src/jsonb/functions.sql:117-119 (jsonb_path_query example), src/config/constraints.sql:121-123 (check_encrypted constraint example)
+
+**Context-Rich Documentation:**
+- What: `@note` tags provide important context about behavior, usage patterns, and edge cases
+- Location: src/common.sql:24 (constant-time comparison security note), src/config/indexes.sql:12 (explains partial index efficiency)
+
+**File-Level Documentation:**
+- What: Each module includes comprehensive `@file` documentation explaining the module's purpose and what it contains
+- Location: src/jsonb/functions.sql:4-14, src/encryptindex/functions.sql:1-11
+
+## Test Results
+- Status: **PASS** ✅
+- Details: All 40+ test files passed successfully. Build completed without errors.
+```
+###############################################
+# ✅ALL TESTS PASSED
+###############################################
+```
+
+## Check Results
+- Status: Not run (no `mise run check` task in this project)
+- Details: N/A - project uses tests only for verification
+
+## Summary
+
+Phase 4 documentation work adds 718 lines of high-quality Doxygen comments (+555 net lines) across 13 critical SQL files:
+
+**Documented Modules:**
+- **Operators Infrastructure** (3 files): compare.sql, order_by.sql, operator_class.sql
+- **Encrypted Supporting Files** (4 files): aggregates.sql, casts.sql, compare.sql, constraints.sql
+- **JSONB Functions** (15 functions): Path query operations and array manipulation
+- **Config Schema** (4 files): types.sql, tables.sql, indexes.sql, constraints.sql
+- **Encryptindex Functions** (7 functions): Configuration lifecycle management
+- **Root Utilities** (4 files): common.sql, crypto.sql, schema.sql, version.sql
+
+**Quality Indicators:**
+- ✅ Consistent Doxygen formatting across all files
+- ✅ Appropriate use of tags (@brief, @param, @return, @throws, @note, @see, @internal, @example)
+- ✅ Clear distinction between internal and public APIs
+- ✅ Practical examples for customer-facing functions
+- ✅ Cross-references create navigable documentation
+- ✅ File-level documentation provides module context
+- ✅ All tests pass - documentation doesn't break functionality
+- ✅ No security or correctness issues introduced
+
+## Next Steps
+
+1. ✅ Review complete - APPROVED
+2. Commit Phase 4 documentation with conventional commit message
+3. Continue to Phase 5 (if applicable) or complete documentation project
diff --git a/CLAUDE.md b/CLAUDE.md
@@ -0,0 +1,148 @@
+# CLAUDE.md
+
+This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
+
+## Development Commands
+
+This project uses `mise` for task management. Common commands:
+
+- `mise run build` (alias: `mise r b`) - Build SQL into single release file
+- `mise run test` (alias: `mise r test`) - Build, reset and run tests
+- `mise run postgres:up` - Start PostgreSQL container
+- `mise run postgres:down` - Stop PostgreSQL containers
+- `mise run reset` - Reset database state
+- `mise run clean` (alias: `mise r k`) - Clean release files
+- `mise run docs:generate` - Generate API documentation (requires doxygen)
+- `mise run docs:validate` - Validate documentation coverage and tags
+
+### Testing
+- Run all tests: `mise run test`
+- Run specific test: `mise run test --test <test_name>`
+- Run tests against specific PostgreSQL version: `mise run test --postgres 14|15|16|17`
+- Tests are located in `*_test.sql` files alongside source code
+
+### Build System
+- Dependencies are resolved using `-- REQUIRE:` comments in SQL files
+- Build outputs to `release/` directory:
+  - `cipherstash-encrypt.sql` - Main installer
+  - `cipherstash-encrypt-supabase.sql` - Supabase-compatible installer
+  - `cipherstash-encrypt-uninstall.sql` - Uninstaller
+
+## Project Architecture
+
+This is the **Encrypt Query Language (EQL)** - a PostgreSQL extension for searchable encryption. Key architectural components:
+
+### Core Structure
+- **Schema**: All EQL functions/types are in `eql_v2` PostgreSQL schema
+- **Main Type**: `eql_v2_encrypted` - composite type for encrypted columns (stored as JSONB)
+- **Configuration**: `eql_v2_configuration` table tracks encryption configs
+- **Index Types**: Various encrypted index types (blake3, hmac_256, bloom_filter, ore variants)
+
+### Directory Structure
+- `src/` - Modular SQL components with dependency management
+- `src/encrypted/` - Core encrypted column type implementation
+- `src/operators/` - SQL operators for encrypted data comparisons
+- `src/config/` - Configuration management functions
+- `src/blake3/`, `src/hmac_256/`, `src/bloom_filter/`, `src/ore_*` - Index implementations
+- `tasks/` - mise task scripts
+- `tests/` - Test files (PostgreSQL 14-17 support)
+- `release/` - Generated SQL installation files
+
+### Key Concepts
+- **Dependency System**: SQL files declare dependencies via `-- REQUIRE:` comments
+- **Encrypted Data**: Stored as JSONB payloads with metadata
+- **Index Terms**: Transient types for search operations (blake3, hmac_256, etc.)
+- **Operators**: Support comparisons between encrypted and plain JSONB data
+- **CipherStash Proxy**: Required for encryption/decryption operations
+
+### Testing Infrastructure
+- Tests run against PostgreSQL 14, 15, 16, 17 using Docker containers
+- Container configuration in `tests/docker-compose.yml`
+- Test helpers in `tests/test_helpers.sql`
+- Database connection: `localhost:7432` (cipherstash/password)
+- **Rust/SQLx Tests**: Modern test framework in `tests/sqlx/` (see README there)
+
+## Project Learning & Retrospectives
+
+Valuable lessons and insights from completed work:
+
+- **SQLx Test Migration (2025-10-24)**: See `docs/retrospectives/2025-10-24-sqlx-migration-retrospective.md`
+  - Migrated 40 SQL assertions to Rust/SQLx (100% coverage)
+  - Key insights: Blake3 vs HMAC differences, batch-review pattern effectiveness, coverage metric definitions
+  - Lessons: TDD catches setup issues, infrastructure investment pays off, code review after each batch prevents compound errors
+
+## Documentation Standards
+
+### Doxygen Comments
+
+All SQL functions and types must be documented using Doxygen-style comments:
+
+- **Comment Style**: Use `--!` prefix for Doxygen comments (not `--`)
+- **Required Tags**:
+  - `@brief` - Short description (required for all functions/files)
+  - `@param` - Parameter description (required for functions with parameters)
+  - `@return` - Return value description (required for functions with non-void returns)
+- **Optional Tags**:
+  - `@throws` - Exception conditions
+  - `@note` - Important notes or caveats
+  - `@warning` - Warning messages (e.g., for DDL-executing functions)
+  - `@see` - Cross-references to related functions
+  - `@example` - Usage examples
+  - `@internal` - Mark internal/private functions
+  - `@file` - File-level documentation
+
+### Documentation Example
+
+```sql
+--! @brief Create encrypted index configuration
+--!
+--! Initializes a new encrypted index configuration for a table column.
+--! The configuration tracks encryption settings and index types.
+--!
+--! @param p_table_name text Table name (schema-qualified)
+--! @param p_column_name text Column name to encrypt
+--! @param p_index_type text Type of encrypted index (blake3, hmac_256, etc.)
+--!
+--! @return uuid Configuration ID for the created index
+--!
+--! @throws unique_violation If configuration already exists for this column
+--!
+--! @note This function executes DDL and modifies database schema
+--! @see eql_v2.activate_encrypted_index
+--!
+--! @example
+--! -- Create blake3 index configuration
+--! SELECT eql_v2.create_encrypted_index(
+--!   'public.users',
+--!   'email',
+--!   'blake3'
+--! );
+CREATE FUNCTION eql_v2.create_encrypted_index(...)
+```
+
+### Validation Tools
+
+Verify documentation quality:
+
+```bash
+# Using mise (recommended - validates coverage and tags)
+mise run docs:validate
+
+# Or run individual scripts directly
+tasks/check-doc-coverage.sh      # Check 100% coverage
+tasks/validate-required-tags.sh  # Verify @brief, @param, @return tags
+tasks/validate-documented-sql.sh # Validate SQL syntax (requires database)
+```
+
+### Template Files
+
+Template files (e.g., `version.template`) must be documented. The Doxygen comments are automatically included in generated files during build.
+
+## Development Notes
+
+- SQL files are modular - put operator wrappers in `operators.sql`, implementation in `functions.sql`
+- All SQL files must have `-- REQUIRE:` dependency declarations
+- Test files end with `_test.sql` and live alongside source files
+- Build system uses `tsort` to resolve dependency order
+- Supabase build excludes operator classes (not supported)
+- **Documentation**: All functions/types must have Doxygen comments (see Documentation Standards above)