add custom filter functions initial support #173
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
quasilyte
force-pushed
the
quasilyte/experimental_quasigo_ext
branch
from
d1d55f7
to
c81f921
Compare
cristaloleg
approved these changes
Jan 7, 2021
| return func(params *filterParams) matchFilterResult { | ||
| // TODO(quasilyte): what if bytecode function panics due to the programming error? | ||
| // We should probably catch the panic here, print trace and return "false" | ||
| // from the filter (or even propagate that panic to let it crash). |
There was a problem hiding this comment.
In other words: simple defer-recover routine?
There was a problem hiding this comment.
Yep. But I'm not sure yet what should that recovered panic do.
Silently ignoring them is a bad thing.
I think the panic trace won't show which byte-compiled function failed. It could be a good idea to annotate the panic with this information and re-panic with extra info.
ruleguard/gorule.go
Outdated
| `float32`: types.Typ[types.Float32], | ||
| `float64`: types.Typ[types.Float64], | ||
| `complex64`: types.Typ[types.Complex64], | ||
| `complex128`: types.Typ[types.Complex128], |
There was a problem hiding this comment.
do we need all this types? or we can limit to int64 and/or float64 ?
There was a problem hiding this comment.
These types are needed so you can write:
ctx.GetType(`float32`)
instead of
types.Typ[types.Float32]In other words, it's needed for the filter implementation on the user side.
It's not 100% necessary as we could just export the same types.Typ map and all type kind constants, but we'll still need GetType for more complex cases:
// may dynamically load "fmt" package, finds `Stringer` type in it, caches the result
ctx.GetType(`fmt.Stringer`)It also works for 3rd party packages with FQN:
// may dynamically load "github.com/foo/bar" package, finds `Baz` type in it, caches the result
ctx.GetType(`github.com/foo/bar.Baz`)
quasilyte
force-pushed
the
quasilyte/experimental_quasigo_ext
branch
5 times, most recently
from
a276b3f
to
beb322b
Compare
that can be used as Where clause predicates. They're compiled to a bytecode that is then interpreted when the matched rule needs to apply its filters. The performance is good enough for now (faster than `yaegi`) and can be further improved in the future. There are various limitations in what can be used in custom filters and what's not. It's not well-documented right now, but the compile errors try to be helpful. What can be compiled will be executed like a normal Go would. One use case for this new feature can be found in #129 Here is the solution to #129 which is not possible: ```go func implementsStringer(ctx *dsl.VarFilterContext) bool { stringer := ctx.GetInterface(`fmt.Stringer`) return types.Implements(ctx.Type, stringer) || types.Implements(types.NewPointer(ctx.Type), stringer) } func stringerLiteral(m dsl.Matcher) { m.Match(`$x{$*_}`). Where(m["x"].Filter(implementsStringer)). Report(`$x implements fmt.Stringer`) } ``` Custom filters are more flexible than predefined filters, but they generally require more coding. As a rule of thumb: they should be used only when there is no matching builtin filter. Note: right now many simple operations, like integer multiplication, are not implemented. They can be added trivially, but I wanted to present a working concept with a minimal amount of code for this first PR. Upcoming changes that extend the supported features set are going to be easier to review. It's also possible to allow calling byte-compiled functions from other byte-compiled functions. But it's not there yet (I also need examples where it can be applied to get a better understanding of the subject). Also fixes #167 and #170
quasilyte
force-pushed
the
quasilyte/experimental_quasigo_ext
branch
from
beb322b
to
13a35b8
Compare
This was referenced Jan 27, 2021
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Custom filters are simple Go functions defined in ruleguard rule files
that can be used as Where clause predicates.
They're compiled to a bytecode that is then interpreted when
the matched rule needs to apply its filters. The performance is
good enough for now (faster than
yaegi) and can be furtherimproved in the future.
There are various limitations in what can be used in custom
filters and what's not. It's not well-documented right now,
but the compile errors try to be helpful.
What can be compiled will be executed like a normal Go would.
One use case for this new feature can be found in #129
Here is the solution to #129 which is not possible:
Custom filters are more flexible than predefined filters, but they
generally require more coding. As a rule of thumb: they should be
used only when there is no matching builtin filter.
Note: right now many simple operations, like integer multiplication,
are not implemented. They can be added trivially, but I wanted to
present a working concept with a minimal amount of code for this first PR.
Upcoming changes that extend the supported features set are going
to be easier to review.
It's also possible to allow calling byte-compiled functions from other byte-compiled functions.
But it's not there yet (I also need examples where it can be applied to get a better
understanding of the subject).