increase validator precision in an edge case #615
Conversation
|
Unless I'm missing something, I don't think this does the same thing as #603 -- the |
|
|
|
Thanks, I was indeed missing something 🤦♀️ |
There was a problem hiding this comment.
Approving now that my confusion is resolved.
I agree that this change adjusts the precision as expected & only affects permissive validation. I prefer this PR over #603 because it's easier to audit, but I think we also want some of the changes from #603. In particular, returning TypecheckFail in type_of_var_in_entity_literals seems unintentional & I think we should change it to TypecheckSuccess with a general Bool type.
|
I will merge this, and iterate on #603 to keep only the changes that we want. |
Description of changes
This PR is an alternate way to address the problem in #603. Instead of changing
type_of_var_in_entity_literals()andtype_of_entity_literal_in_entity_literals(), we merely change the definition ofType::must_be_specified_entity(), which will cause cases ofX in []to be short-circuited out (here) and never reach those functions in the first place. This causesX in []to be typedFalsefor all X, including unspecified X. This matches the behavior of the Dafny as far as I understand it.The edge case where this changes validator behavior is only possible when
[]is a valid expression, which is only true under Permissive validation, which is only an experimental feature in Cedar 3.x, so this is not considered a breaking change from semver perspective, and could be released in a patch or minor of Cedar 3.x.Checklist for requesting a review
The change in this PR is (choose one, and delete the other options):
cedar-policy.I confirm that this PR (choose one, and delete the other options):
I confirm that
cedar-spec(choose one, and delete the other options):Disclaimer
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.