Ur/Web: src/iflow.sml comparison

comparison src/iflow.sml @ 1217:4d206e603300

Abstract type for evalExp state; handle WHERE conditions soundly

author	Adam Chlipala <adamc@hcoop.net>
date	Sat, 10 Apr 2010 10:24:13 -0400
parents	09caa8c780e5
children	48d2ca496d2c

comparison

equal deleted inserted replaced

-:09caa8c780e5
+:4d206e603300
 in
 decomp
 end
 fun imply (p1, p2) =
-(reset ();
+decomp true (fn (e1, e2) => e1 andalso e2 ()) p1
-(*Print.prefaces "Bigger go" [("p1", p_prop p1),
+(fn hyps =>
-("p2", p_prop p2)];*)
+decomp false (fn (e1, e2) => e1 orelse e2 ()) p2
-decomp true (fn (e1, e2) => e1 andalso e2 ()) p1
+(fn goals =>
-(fn hyps =>
+let
-decomp false (fn (e1, e2) => e1 orelse e2 ()) p2
+fun gls goals onFail acc =
-(fn goals =>
+case goals of
-let
+[] =>
-fun gls goals onFail acc =
+(let
-case goals of
+val cc = Cc.database ()
-[] =>
+val () = app (fn a => Cc.assert (cc, a)) hyps
-(let
+in
-val cc = Cc.database ()
+(List.all (fn a =>
-val () = app (fn a => Cc.assert (cc, a)) hyps
+if Cc.check (cc, a) then
-in
+true
-(List.all (fn a =>
+else
-if Cc.check (cc, a) then
+((*Print.prefaces "Can't prove"
-true
+[("a", p_atom a),
+("hyps", Print.p_list p_atom hyps),
+("db", Cc.p_database cc)];*)
+false)) acc)
+handle Cc.Contradiction => false
+end handle Cc.Undetermined => false)
+orelse onFail ()
+| (g as AReln (Sql gf, [ge])) :: goals =>
+let
+fun hps hyps =
+case hyps of
+[] => gls goals onFail (g :: acc)
+| (h as AReln (Sql hf, [he])) :: hyps =>
+if gf = hf then
+let
+val saved = save ()
+in
+if eq (ge, he) then
+let
+val changed = IM.numItems (!unif)
+<> IM.numItems saved
+in
+gls goals (fn () => (restore saved;
+changed
+andalso hps hyps))
+acc
+end
 else
-((*Print.prefaces "Can't prove"
+hps hyps
-[("a", p_atom a),
+end
-("hyps", Print.p_list p_atom hyps),
+else
-("db", Cc.p_database cc)];*)
+hps hyps
-false)) acc
+| _ :: hyps => hps hyps
-orelse onFail ())
+in
-handle Cc.Contradiction => onFail ()
+hps hyps
-end handle Cc.Undetermined => ((*print "Undetermined\n";*) onFail ()))
+end
-| (g as AReln (Sql gf, [ge])) :: goals =>
+| g :: goals => gls goals onFail (g :: acc)
-let
+in
-fun hps hyps =
+reset ();
-case hyps of
+(*Print.prefaces "Big go" [("hyps", Print.p_list p_atom hyps),
-[] => gls goals onFail (g :: acc)
+("goals", Print.p_list p_atom goals)];*)
-| AReln (Sql hf, [he]) :: hyps =>
+gls goals (fn () => false) []
-if gf = hf then
+end handle Cc.Contradiction => true))
-let
-val saved = save ()
-in
-if eq (ge, he) then
-let
-val changed = IM.numItems (!unif)
-<> IM.numItems saved
-in
-gls goals (fn () => (restore saved;
-changed
-andalso hps hyps))
-acc
-end
-else
-hps hyps
-end
-else
-hps hyps
-| _ :: hyps => hps hyps
-in
-hps hyps
-end
-| g :: goals => gls goals onFail (g :: acc)
-in
-(*Print.prefaces "Big go" [("hyps", Print.p_list p_atom hyps),
-("goals", Print.p_list p_atom goals)];*)
-gls goals (fn () => false) []
-end handle Cc.Contradiction => true)))
 fun patCon pc =
 case pc of
 PConVar n => "C" ^ Int.toString n
 | PConFfi {mod = m, datatyp = d, con = c, ...} => m ^ "." ^ d ^ "." ^ c
 fun queryProp env rvN rv oe e =
 let
 fun default () = (print ("Warning: Information flow checker can't parse SQL query at "
 ^ ErrorMsg.spanToString (#2 e) ^ "\n");
-(rvN, Unknown, []))
+(rvN, Unknown, Unknown, []))
 in
 case parse query e of
 NONE => default ()
 | SOME r =>
 let
 case expIn e of
 inr p' => And (p, p')
 | _ => p
 fun normal () =
-(rvN,
+(And (p, case oe of
-And (p, case oe of
 SomeCol oe =>
 foldl (fn (si, p) =>
 let
 val p' = case si of
 SqField (v, f) => Reln (Eq, [oe, Proj (rvOf v, f)])
 | inl e => Reln (Eq, [Proj (oe, f), e])
 in
 And (p, p')
 end)
 True (#Select r)),
-case #Where r of
+True)
-NONE => []
-| SOME e => map (fn (v, f) => Proj (rvOf v, f)) (usedFields e))
+val (p, wp) =
-in
+case #Select r of
-case #Select r of
+[SqExp (Binop (Exps bo, Count, SqConst (Prim.Int 0)), f)] =>
-[SqExp (Binop (Exps bo, Count, SqConst (Prim.Int 0)), f)] =>
+(case bo (Const (Prim.Int 1), Const (Prim.Int 2)) of
-(case bo (Const (Prim.Int 1), Const (Prim.Int 2)) of
+Reln (Gt, [Const (Prim.Int 1), Const (Prim.Int 2)]) =>
-Reln (Gt, [Const (Prim.Int 1), Const (Prim.Int 2)]) =>
+let
-let
+val oe = case oe of
-val oe = case oe of
+SomeCol oe => oe
-SomeCol oe => oe
+| AllCols oe => Proj (oe, f)
-| AllCols oe => Proj (oe, f)
+in
-in
+(Or (Reln (Eq, [oe, Func (DtCon0 "Basis.bool.False", [])]),
-(rvN,
+And (Reln (Eq, [oe, Func (DtCon0 "Basis.bool.True", [])]),
-Or (Reln (Eq, [oe, Func (DtCon0 "Basis.bool.False", [])]),
+p)),
-And (Reln (Eq, [oe, Func (DtCon0 "Basis.bool.True", [])]),
+Reln (Eq, [oe, Func (DtCon0 "Basis.bool.True", [])]))
-p)),
+end
-[])
+| _ => normal ())
-end
+| _ => normal ()
-| _ => normal ())
+in
-| _ => normal ()
+(rvN, p, wp, case #Where r of
+NONE => []
+| SOME e => map (fn (v, f) => Proj (rvOf v, f)) (usedFields e))
 end
 handle Default => default ()
 end
 fun evalPat env e (pt, _) =
 | _ => p2
 in
 rr
 end
-fun evalExp env (e as (_, loc), st as (nv, p, sent)) =
+structure St :> sig
+type t
+val create : {Var : int,
+Ambient : prop} -> t
+val curVar : t -> int
+val nextVar : t -> t * int
+val ambient : t -> prop
+val setAmbient : t * prop -> t
+type check = ErrorMsg.span * exp * prop
+val path : t -> check list
+val addPath : t * check -> t
+val sent : t -> check list
+val addSent : t * check -> t
+val setSent : t * check list -> t
+end = struct
+type check = ErrorMsg.span * exp * prop
+type t = {Var : int,
+Ambient : prop,
+Path : check list,
+Sent : check list}
+fun create {Var = v, Ambient = p} = {Var = v,
+Ambient = p,
+Path = [],
+Sent = []}
+fun curVar (t : t) = #Var t
+fun nextVar (t : t) = ({Var = #Var t + 1,
+Ambient = #Ambient t,
+Path = #Path t,
+Sent = #Sent t}, #Var t)
+fun ambient (t : t) = #Ambient t
+fun setAmbient (t : t, p) = {Var = #Var t,
+Ambient = p,
+Path = #Path t,
+Sent = #Sent t}
+fun path (t : t) = #Path t
+fun addPath (t : t, c) = {Var = #Var t,
+Ambient = #Ambient t,
+Path = c :: #Path t,
+Sent = #Sent t}
+fun sent (t : t) = #Sent t
+fun addSent (t : t, c) = {Var = #Var t,
+Ambient = #Ambient t,
+Path = #Path t,
+Sent = c :: #Sent t}
+fun setSent (t : t, cs) = {Var = #Var t,
+Ambient = #Ambient t,
+Path = #Path t,
+Sent = cs}
+end
+fun evalExp env (e as (_, loc), st) =
 let
 fun default () =
-((*Print.preface ("Default" ^ Int.toString nv,
+let
-MonoPrint.p_exp MonoEnv.empty e);*)
+val (st, nv) = St.nextVar st
-(Var nv, (nv+1, p, sent)))
+in
+(Var nv, st)
-fun addSent (p, e, sent) =
+end
+fun addSent (p, e, st) =
 if isKnown e then
-sent
+st
 else
-(loc, e, p) :: sent
+St.addSent (st, (loc, e, p))
 in
 case #1 e of
 EPrim p => (Const p, st)
 | ERel n => (List.nth (env, n), st)
 | ENamed _ => default ()
 | EFfiApp (m, s, es) =>
 if m = "Basis" andalso SS.member (writers, s) then
 let
 val (es, st) = ListUtil.foldlMap (evalExp env) st es
 in
-(Recd [], (#1 st, p, foldl (fn (e, sent) => addSent (#2 st, e, sent)) sent es))
+(Recd [], foldl (fn (e, st) => addSent (St.ambient st, e, st)) st es)
 end
 else if Settings.isEffectful (m, s) andalso not (Settings.isBenignEffectful (m, s)) then
 default ()
 else
 let
 (Proj (e, s), st)
 end
 | ECase (e, pes, _) =>
 let
 val (e, st) = evalExp env (e, st)
-val r = #1 st
+val (st, r) = St.nextVar st
-val st = (r + 1, #2 st, #3 st)
+val orig = St.ambient st
-val orig = #2 st
 val st = foldl (fn ((pt, pe), st) =>
 let
 val (env, pp) = evalPat env e pt
-val (pe, st') = evalExp env (pe, (#1 st, And (orig, pp), #3 st))
+val (pe, st') = evalExp env (pe, St.setAmbient (st, And (orig, pp)))
 (*val () = Print.prefaces "Case" [("loc", Print.PD.string
 (ErrorMsg.spanToString (#2 pt))),
 ("env", Print.p_list p_exp env),
 ("sent", Print.p_list_sep Print.PD.newline
 (fn (loc, e, p) =>
 Print.space,
 p_prop p])
 (List.take (#3 st', length (#3 st')
 - length (#3 st))))]*)
-val this = And (removeRedundant orig (#2 st'), Reln (Eq, [Var r, pe]))
+val this = And (removeRedundant orig (St.ambient st'),
+Reln (Eq, [Var r, pe]))
 in
-(#1 st', Or (#2 st, this), #3 st')
+St.setAmbient (st', Or (St.ambient st, this))
-end) (#1 st, False, #3 st) pes
+end) (St.setAmbient (st, False)) pes
 in
-(Var r, (#1 st, And (orig, #2 st), #3 st))
+(Var r, St.setAmbient (st, And (orig, St.ambient st)))
 end
 | EStrcat (e1, e2) =>
 let
 val (e1, st) = evalExp env (e1, st)
 val (e2, st) = evalExp env (e2, st)
 | EReturnBlob {blob = b, mimeType = m, ...} =>
 let
 val (b, st) = evalExp env (b, st)
 val (m, st) = evalExp env (m, st)
 in
-(Finish, (#1 st, p, addSent (#2 st, b, addSent (#2 st, m, sent))))
+(Finish, addSent (St.ambient st, b, addSent (St.ambient st, m, st)))
 end
 | ERedirect (e, _) =>
 let
 val (e, st) = evalExp env (e, st)
 in
-(Finish, (#1 st, p, addSent (#2 st, e, sent)))
+(Finish, addSent (St.ambient st, e, st))
 end
 | EWrite e =>
 let
 val (e, st) = evalExp env (e, st)
 in
-(Recd [], (#1 st, p, addSent (#2 st, e, sent)))
+(Recd [], addSent (St.ambient st, e, st))
 end
 | ESeq (e1, e2) =>
 let
 val (_, st) = evalExp env (e1, st)
 in
 | EQuery {query = q, body = b, initial = i, ...} =>
 let
 val (_, st) = evalExp env (q, st)
 val (i, st) = evalExp env (i, st)
-val r = #1 st
+val (st', r) = St.nextVar st
-val acc = #1 st + 1
+val (st', acc) = St.nextVar st'
-val st' = (#1 st + 2, #2 st, #3 st)
 val (b, st') = evalExp (Var acc :: Var r :: env) (b, st')
-val (rvN, qp, used) =
+val (st', qp, qwp, used) =
 queryProp env
-(#1 st') (fn rvN => (rvN + 1, Var rvN))
+st' (fn st' =>
+let
+val (st', rv) = St.nextVar st'
+in
+(st', Var rv)
+end)
 (AllCols (Var r)) q
-val p' = And (qp, #2 st')
+val p' = And (qp, St.ambient st')
-val (nvs, p, res) = if varInP acc (#2 st') then
+val (st, res) = if varInP acc (St.ambient st') then
-(#1 st + 1, #2 st, Var r)
+let
-else
+val (st, r) = St.nextVar st
-let
+in
-val out = rvN
+(st, Var r)
+end
-val p = Or (Reln (Eq, [Var out, i]),
+else
-And (Reln (Eq, [Var out, b]),
+let
-p'))
+val (st, out) = St.nextVar st'
-in
-(out + 1, p, Var out)
+val p = Or (Reln (Eq, [Var out, i]),
-end
+And (Reln (Eq, [Var out, b]),
+p'))
-val sent = map (fn (loc, e, p) => (loc, e, And (qp, p))) (#3 st')
+in
+(St.setAmbient (st, p), Var out)
+end
+val sent = map (fn (loc, e, p) => (loc, e, And (qp, p))) (St.sent st')
+val p' = And (p', qwp)
 val sent = map (fn e => (loc, e, p')) used @ sent
 in
-(res, (nvs, p, sent))
+(res, St.setSent (st, sent))
 end
 | EDml _ => default ()
 | ENextval _ => default ()
 | ESetval _ => default ()
 | EUnurlify ((EFfiApp ("Basis", "get_cookie", _), _), _, _) =>
-(Var nv, (nv + 1, And (p, Reln (Known, [Var nv])), sent))
+let
+val (st, nv) = St.nextVar st
+in
+(Var nv, St.setAmbient (st, And (St.ambient st, Reln (Known, [Var nv]))))
+end
 | EUnurlify _ => default ()
 | EJavaScript _ => default ()
 | ESignalReturn _ => default ()
 | ESignalBind _ => default ()
 p)
 | _ => (e, env, nv, p)
 val (e, env, nv, p) = deAbs (e, [], 1, True)
-val (e, (_, p, sent)) = evalExp env (e, (nv, p, []))
+val (_, st) = evalExp env (e, St.create {Var = nv,
+Ambient = p})
 in
-(sent @ vals, pols)
+(St.sent st @ vals, pols)
 end
 | DPolicy (PolClient e) => (vals, #2 (queryProp [] 0 (fn rvN => (rvN + 1, Lvar rvN))
 (SomeCol (Var 0)) e) :: pols)

Mercurial > urweb

comparison src/iflow.sml @ 1217:4d206e603300