Fix a category of confusing scoping related bugs in access policies #4994
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The edgeql->IR compiler has a notion of "weak namespaces" in which scope tree nodes are tagged with namespaces, and those namespaces will be dropped from a path if it refers to a node bound above that node. The pg side doesn't understand any of this, though, so we have a _rewrite_weak_namespaces that rewrites all affected path ids to reference their targets directly. Unfortunately we neglect to call it on our type rewrite expressions. Fix that. Also refactor `fini_expression` to try to make this category of bug less likely by having more things driven by a list of expressions to process.
aljazerzen
approved these changes
Feb 8, 2023
Comment on lines
+145
to
+155
| extra_exprs = [] | ||
| extra_exprs += [ | ||
| rw for rw in ctx.env.type_rewrites.values() | ||
| if isinstance(rw, irast.Set) | ||
| ] | ||
| extra_exprs += [ | ||
| p.sub_params.decoder_ir for p in ctx.env.query_parameters.values() | ||
| if p.sub_params and p.sub_params.decoder_ir | ||
| ] | ||
|
|
||
| all_exprs = [ir] + extra_exprs |
There was a problem hiding this comment.
Suggested change
| extra_exprs = [] | |
| extra_exprs += [ | |
| rw for rw in ctx.env.type_rewrites.values() | |
| if isinstance(rw, irast.Set) | |
| ] | |
| extra_exprs += [ | |
| p.sub_params.decoder_ir for p in ctx.env.query_parameters.values() | |
| if p.sub_params and p.sub_params.decoder_ir | |
| ] | |
| all_exprs = [ir] + extra_exprs | |
| all_exprs = [ir] + [ | |
| rw for rw in ctx.env.type_rewrites.values() | |
| if isinstance(rw, irast.Set) | |
| ] + [ | |
| p.sub_params.decoder_ir for p in ctx.env.query_parameters.values() | |
| if p.sub_params and p.sub_params.decoder_ir | |
| ] |
There was a problem hiding this comment.
We can't get rid of extra_exprs, since we need to use that. We could build extra_exprs in one go, but I kind of like having each case more clearly specified, since it to me emphasizes that more things will be added
msullivan
force-pushed
the
rewrite-namespaces
branch
from
5c5818e
to
5543e8c
Compare
msullivan
added a commit
that referenced
this pull request
Feb 8, 2023
More follow up from #4994 * We didn't call `infer_group_aggregates` on the policy expressions. * _rewrite_weak_namespaces actually *already* used a different method to iterate over "all sets" (looking at the map of sets to types), and only used the passed in set to produce its binding map. Avoid redoing the main pass repeatedly. While trying to test the `infer_group_aggregates` thing, I discovered: * Query normalization was busted and would copy a GROUP statement's `using` clause to be a `with` binding in front of the GROUP!
msullivan
added a commit
that referenced
this pull request
Feb 9, 2023
More follow up from #4994 * We didn't call `infer_group_aggregates` on the policy expressions. * _rewrite_weak_namespaces actually *already* used a different method to iterate over "all sets" (looking at the map of sets to types), and only used the passed in set to produce its binding map. Avoid redoing the main pass repeatedly. While trying to test the `infer_group_aggregates` thing, I discovered: * Query normalization was busted and would copy a GROUP statement's `using` clause to be a `with` binding in front of the GROUP!
msullivan
added a commit
that referenced
this pull request
Feb 9, 2023
…4994) The edgeql->IR compiler has a notion of "weak namespaces" in which scope tree nodes are tagged with namespaces, and those namespaces will be dropped from a path if it refers to a node bound above that node. The pg side doesn't understand any of this, though, so we have a _rewrite_weak_namespaces that rewrites all affected path ids to reference their targets directly. Unfortunately we neglect to call it on our type rewrite expressions. Fix that. Also refactor `fini_expression` to try to make this category of bug less likely by having more things driven by a list of expressions to process.
msullivan
added a commit
that referenced
this pull request
Feb 9, 2023
More follow up from #4994 * We didn't call `infer_group_aggregates` on the policy expressions. * _rewrite_weak_namespaces actually *already* used a different method to iterate over "all sets" (looking at the map of sets to types), and only used the passed in set to produce its binding map. Avoid redoing the main pass repeatedly. While trying to test the `infer_group_aggregates` thing, I discovered: * Query normalization was busted and would copy a GROUP statement's `using` clause to be a `with` binding in front of the GROUP!
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The edgeql->IR compiler has a notion of "weak namespaces" in which
scope tree nodes are tagged with namespaces, and those namespaces will
be dropped from a path if it refers to a node bound above that node.
The pg side doesn't understand any of this, though, so we have a
_rewrite_weak_namespaces that rewrites all affected path ids to
reference their targets directly.
Unfortunately we neglect to call it on our type rewrite expressions.
Fix that.
Also refactor
fini_expressionto try to make this category of bugless likely by having more things driven by a list of expressions to
process.