Ruby: Fix spurious flow through reverse stores #10574
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
hvitved
force-pushed
the
ruby/reverse-known-stores
branch
from
5740f22 to
212d112
Compare
hvitved
force-pushed
the
ruby/reverse-known-stores
branch
from
212d112 to
34fb0d3
Compare
The tests highlight the differences between `(With|Without)?Element[1]` and `(With|Without)?Element[1!]`.
hvitved
force-pushed
the
ruby/reverse-known-stores
branch
from
34fb0d3 to
31806b8
Compare
Thanks. Sorry for introducing yet another merge conflict on your PR. |
asgerf
added a commit
to asgerf/codeql
that referenced
this pull request
Sep 28, 2022
This only fixes superficial conflicts with github#10574 semantic conflicts will be addressed in later commits
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Commit-by-commit review is encouraged.
In Ruby, reads with known indices, such as
give rise to two read steps; one that reads
TSingletonContent(TKnownElementContent(0))and one that readsTSingletonContent(TUnknownElementContent())(if data is stored at an unknown index, it might be0).Since
[]is just a method call, it means we have two flow summaries for[]:This works well for reads, however for reverse stores
it means that we will get store steps into
awith bothTSingletonContent(TKnownElementContent(0))andTSingletonContent(TUnknownElementContent()), which allows for spurious flow:The solution in this PR is to add a new
ContentSetbranchwhich can read from both
TKnownElementContent(c)andTUnknownElementContent(), but which can only store intoTKnownElementContent(c). We can then reducea[0]to just a single read step, which reads fromTKnownOrUnknownElementContent(TKnownElementContent(0)).In order to distinguish
TKnownOrUnknownElementContent(c)fromTSingletonContent(TKnownElementContent(c))in models-as-data specifications, we use the following syntaxContentSetElement[0]TKnownOrUnknownElementContent(0)Element[0!]TSingletonContent(TKnownElementContent(0))and similarly for
With(out)Elementand rangesElement[0..]. This means that the flow summary for[]is just a single row:Note also that using
Element[0]vsElement[0!]in output specifications makes no differences, since the former also stores only intoTSingletonContent(TKnownElementContent(0)).