*: support password validation options and variables

[CbcWestwolf]

What problem does this PR solve?

Issue Number: close #38928 #38924

Problem Summary:

We need to improve the compatibility with MySQL in password validation.

What is changed and how it works?

Most of the feature is the same as MySQL's, except that:

1. Since TiDB does not have a mechanism like components in MySQL, we add a new global variable validate_password.enable to turn on/off the validation.
2. We introduce validate_password.dictionary instead of validate_password.dictionary_file, since it is hard to upload the dictionary file to the tidb-servers's local file systems.

Check List

Tests

• Unit test
• Integration test
• Manual test (add detailed scripts or steps below)
• No code

Side effects

• Performance regression: Consumes more CPU
• Performance regression: Consumes more Memory
• Breaking backward compatibility

Documentation

• Affects user behaviors
• Contains syntax changes
• Contains variable changes
• Contains experimental features
• Changes MySQL compatibility

Release note

Please refer to Release Notes Language Style Guide to write a quality release note.

1. support password validation when `create user`, `alter user` and `set password`
3. introduce system variables about password validation
4. support system function `validate_password_strength`

[ti-chi-bot]

[REVIEW NOTIFICATION]

This pull request has been approved by:

• bb7133
• wjhuang2016

To complete the pull request process, please ask the reviewers in the list to review by filling /cc @reviewer in the comment.
After your PR has acquired the required number of LGTMs, you can assign this pull request to the committer in the list by filling /assign @committer in the comment to help you merge this pull request.

The full list of commands accepted by this bot can be found here.

Reviewer can indicate their review by submitting an approval review.
Reviewer can cancel approval by submitting a request changes review.

[CbcWestwolf]

/cc wjhuang2016 xhebox

[CbcWestwolf]

/cc xiongjiwei

[xiongjiwei]

Suggested change

	func (e *SimpleExec) enableValidatePassword() bool {
	func (e *SimpleExec) isValidatePasswordenabled() bool {

[xiongjiwei]

Suggested change

	pwdLength := len(pwd)
	if err != nil {
	return false, err
	}
	if err != nil {
	return false, err
	}
	pwdLength := len(pwd)

[xiongjiwei]

Suggested change

	cache := make(map[string]interface{}, len(words))
	cache := make(map[string]struct{}, len(words))

[xiongjiwei]

Suggested change

	cache[word] = nil
	cache[word] = struct{}{}

[bb7133]

LGTM

[xiongjiwei]

this variable is still noop in tidb

[xiongjiwei]

strconv.FormatInt(PasswordValidtaionNumberCount.Load(), 10) has better performance

[CbcWestwolf]

Modified :-)

[xiongjiwei]

/merge

[ti-chi-bot]

This pull request has been accepted and is ready to merge.

Commit hash: 9b7e323

[CbcWestwolf]

/run-unit-test

[sre-bot]

TiDB MergeCI notify

✅ Well Done! New fixed [2] after this pr merged.

CI Name	Result	Duration	Compare with Parent commit
idc-jenkins-ci-tidb/mybatis-test	🔴 failed 1, success 0, total 1	11 min	Existing failure
idc-jenkins-ci-tidb/integration-ddl-test	🔴 failed 1, success 5, total 6	4 min 59 sec	Existing failure
idc-jenkins-ci/integration-cdc-test	✅ all 39 tests passed	19 min	Fixed
idc-jenkins-ci-tidb/common-test	✅ all 11 tests passed	13 min	Fixed
idc-jenkins-ci-tidb/sqllogic-test-2	🟢 all 28 tests passed	32 min	Existing passed
idc-jenkins-ci-tidb/integration-common-test	🟢 all 17 tests passed	14 min	Existing passed
idc-jenkins-ci-tidb/tics-test	🟢 all 1 tests passed	5 min 39 sec	Existing passed
idc-jenkins-ci-tidb/sqllogic-test-1	🟢 all 26 tests passed	5 min 9 sec	Existing passed
idc-jenkins-ci-tidb/integration-compatibility-test	🟢 all 1 tests passed	2 min 40 sec	Existing passed
idc-jenkins-ci-tidb/plugin-test	🟢 build success, plugin test success	4min	Existing passed