Ur/Web: src/iflow.sml comparison

comparison src/iflow.sml @ 1282:a9a500d22ebc

Roll back WHERE checking

author	Adam Chlipala <adam@chlipala.net>
date	Tue, 27 Jul 2010 14:04:09 -0400
parents	60e19545841b
children	acabf3935060

comparison

equal deleted inserted replaced

-:60e19545841b
+:a9a500d22ebc
 val addPath : check -> unit
 val allowSend : atom list * exp list -> unit
 val send : check -> unit
-val allowEqual : { table : string, field : string, known : bool } -> unit
-val mayTest : prop -> bool
 val allowInsert : atom list -> unit
 val insert : ErrorMsg.span -> unit
 val allowDelete : atom list -> unit
 val delete : ErrorMsg.span -> unit
 val deletable = ref ([] : atom list list)
 fun allowDelete v = deletable := v :: !deletable
 val delete = doable deletable
-val testable = ref ([] : { table : string, field : string, known : bool } list)
-fun allowEqual v = testable := v :: !testable
-fun mayTest p =
-case p of
-Reln (Eq, [e1, e2]) =>
-let
-val (_, hs, _) = !hyps
-fun tableInHyps (tab, x) = List.exists (fn AReln (Sql tab', [Var x']) => tab' = tab andalso x' = x
-| _ => false) hs
-fun allowed (tab, v) =
-case tab of
-Proj (Var tab, fd) =>
-List.exists (fn {table = tab', field = fd', known} =>
-fd' = fd
-andalso tableInHyps (tab', tab)
-andalso (not known orelse Cc.check (db, AReln (Known, [v])))) (!testable)
-| _ => false
-in
-if allowed (e1, e2) orelse allowed (e2, e1) then
-(assert [AReln (Eq, [e1, e2])];
-true)
-else
-false
-end
-| _ => false
 fun reset () = (Cc.clear db;
 path := [];
 hyps := (0, [], ref false);
 nvar := 0;
 sendable := [];
-testable := [];
 insertable := [];
 updatable := [];
 deletable := [])
 fun havocReln r =
 Env : exp list,
 NextVar : unit -> exp,
 Add : atom -> unit,
 Save : unit -> 'a,
 Restore : 'a -> unit,
-Cont : queryMode,
+Cont : queryMode
-Send : exp -> unit
 }
 fun doQuery (arg : 'a doQuery) (e as (_, loc)) =
 let
 fun default () = ErrorMsg.errorAt loc "Information flow checker can't parse SQL query"
 val expIn = expIn (#NextVar arg) (#Env arg) rvOf
 val saved = #Save arg ()
 fun addFrom () = app (fn (t, v) => #Add arg (AReln (Sql t, [rvOf v]))) (#From r)
-fun leavesE e =
+fun usedFields e =
 case e of
-Const _ => []
+SqConst _ => []
-| Var _ => []
+| SqTrue => []
-| Lvar _ => []
+| SqFalse => []
-| Func (_, es) => List.concat (map leavesE es)
+| Null => []
-| Recd xes => List.concat (map (leavesE o #2) xes)
+| SqNot e => usedFields e
-| Proj _ => [e]
+| Field (v, f) => [(false, Proj (rvOf v, f))]
+| Computed _ => []
-fun leavesP p =
+| Binop (_, e1, e2) => usedFields e1 @ usedFields e2
-case p of
+| SqKnown _ => []
-True => []
+| Inj e =>
-| False => []
+(case deinj (#Env arg) e of
-| Unknown => []
+NONE => (ErrorMsg.errorAt loc "Expression injected into SQL is too complicated";
-| And (p1, p2) => leavesP p1 @ leavesP p2
+[])
-| Or (p1, p2) => leavesP p1 @ leavesP p2
+| SOME e => [(true, e)])
-| Reln (_, es) => List.concat (map leavesE es)
+| SqFunc (_, e) => usedFields e
-| Cond (e, p) => e :: leavesP p
+| Unmodeled => []
 fun normal' () =
 case #Cont arg of
 SomeCol k =>
 let
 let
 val p = case expIn e of
 inl e => Reln (Eq, [e, Func (DtCon0 "Basis.bool.True", [])])
 | inr p => p
-fun getConjuncts p =
-case p of
-And (p1, p2) => getConjuncts p1 @ getConjuncts p2
-| _ => [p]
 val saved = #Save arg ()
-val conjs = getConjuncts p
-val conjs = List.filter (not o St.mayTest) conjs
 in
-app (fn p => app (#Send arg) (leavesP p)) conjs;
 decomp {Save = #Save arg, Restore = #Restore arg, Add = #Add arg}
 p (fn () => final () handle Cc.Contradiction => ());
 #Restore arg saved
 end)
 handle Cc.Contradiction => ()
 doQuery {Env = env,
 NextVar = Var o St.nextVar,
 Add = fn a => St.assert [a],
 Save = St.stash,
 Restore = St.reinstate,
-Send = fn e => St.send (e, loc),
 Cont = AllCols (fn x =>
 (St.assert [AReln (Eq, [r, x])];
 evalExp (acc :: r :: env) b k))} q
 end)
 | EDml e =>
 fun doQ k = doQuery {Env = [],
 NextVar = rv,
 Add = fn a => atoms := a :: !atoms,
 Save = fn () => !atoms,
 Restore = fn ls => atoms := ls,
-Send = fn _ => (),
 Cont = SomeCol (fn r => k (rev (!atoms), r))}
 fun untab (tab, nams) = List.filter (fn AReln (Sql tab', [Lvar lv]) =>
 tab' <> tab
 orelse List.all (fn Lvar lv' => lv' <> lv
 val outs = [Lvar 0]
 in
 St.allowSend ([p], outs)
 end
 | _ => ())
-| PolEqual {table = tab, field = nm, known} =>
-(case #1 tab of
-EPrim (Prim.String tab) => St.allowEqual {table = String.extract (tab, 3, NONE),
-field = nm,
-known = known}
-| _ => ErrorMsg.errorAt loc "Table for 'equalKnown' policy isn't fully resolved.")
 end
 | _ => ()
 in
 app decl file

Mercurial > urweb

comparison src/iflow.sml @ 1282:a9a500d22ebc