fix: change expression evaluation logic.

Author: divy9881

casbin/model/Function.h

@@ -30,16 +30,18 @@ class FunctionMap {
 
         FunctionMap();
 
+        void ProcessFunctions(string expression);
+
         int GetRLen();
 
-        void Eval(string expression);
+        bool Evaluate(string expression);
 
         bool GetBooleanResult();
 
         // AddFunction adds an expression function.
-        void AddFunction(string func_name, Function f, Index nargs = VARARGS);
+        void AddFunction(string func_name, Function f, Index nargs);
 
-        void AddFunctionPropToR(string identifier, Function func, unsigned int nargs = VARARGS);
+        void AddFunctionPropToR(string identifier, Function func, Index nargs);
 
         void AddBooleanPropToR(string identifier, bool val);
 
@@ -60,7 +62,7 @@ class FunctionMap {
         void AddObjectPropToR(string identifier);
 
         // LoadFunctionMap loads an initial function map.
-        static FunctionMap LoadFunctionMap();
+        void LoadFunctionMap();
 
 };
 

casbin/model/function.cpp

@@ -19,20 +19,49 @@
 #include "pch.h"
 
 #include "./function.h"
+#include "../util/util.h"
 
 FunctionMap :: FunctionMap(){
     scope = InitializeScope();
 }
 
+void FunctionMap :: ProcessFunctions(string expression){
+    for(unordered_map<string, Function> :: iterator it = this->func_map.begin() ; it != this->func_map.end() ; it++){
+        int index = int(expression.find((it->first)+"("));
+
+        if(index != string::npos){
+            int close_index = expression.find(")", index);
+            int start = index + ((it->first)+"(").length();
+
+            string function_params = expression.substr(start, close_index-start);
+            FetchIdentifier(this->scope, it->first);
+            vector<string> params = Split(function_params, ",");
+
+            for(int i=0;i<params.size();i++){
+                int quote_index = params[i].find("\"");
+                if(quote_index == string::npos)
+                    Get(this->scope, Trim(params[i]));
+                else{
+                    params[i] = params[i].replace(quote_index, 1, "'");
+                    int second_quote_index = params[i].find("\"", quote_index+1);
+                    params[i] = params[i].replace(second_quote_index, 1, "'");
+                    Get(this->scope, Trim(params[i]));
+                }
+            }
+        }
+    }
+}
+
 int FunctionMap :: GetRLen(){
     bool found = FetchIdentifier(scope, "rlen");
     if(found)
         return GetInt(scope);
     return -1;
 }
 
-void FunctionMap :: Eval(string expression){
-    duk_eval_string(scope, expression.c_str());
+bool FunctionMap :: Evaluate(string expression){
+    ProcessFunctions(expression);
+    return Eval(scope, expression);
 }
 
 bool FunctionMap :: GetBooleanResult(){
@@ -42,11 +71,11 @@ bool FunctionMap :: GetBooleanResult(){
 // AddFunction adds an expression function.
 void FunctionMap :: AddFunction(string func_name, Function f, Index nargs) {
     func_map[func_name] = f;
-    PushFunction(this->scope, f, nargs, func_name);
+    PushFunction(this->scope, f, func_name, nargs);
 }
 
-void FunctionMap :: AddFunctionPropToR(string identifier, Function func, unsigned int nargs){
-    PushFunctionPropToObject(scope, "r", func, nargs, identifier);
+void FunctionMap :: AddFunctionPropToR(string identifier, Function func, Index nargs){
+    PushFunctionPropToObject(scope, "r", func, identifier, nargs);
 }
 
 void FunctionMap :: AddBooleanPropToR(string identifier, bool val){
@@ -86,14 +115,10 @@ void FunctionMap :: AddObjectPropToR(string identifier){
 }
 
 // LoadFunctionMap loads an initial function map.
-FunctionMap FunctionMap :: LoadFunctionMap() {
-    FunctionMap func_map;
-
-    func_map.AddFunction("keyMatch", KeyMatch);
-    func_map.AddFunction("keyMatch2", KeyMatch2);
-    func_map.AddFunction("keyMatch3", KeyMatch3);
-    func_map.AddFunction("regexMatch", RegexMatch);
-    func_map.AddFunction("ipMatch", IPMatch);
-
-    return func_map;
+void FunctionMap :: LoadFunctionMap() {
+    AddFunction("keyMatch", KeyMatch, 2);
+    AddFunction("keyMatch2", KeyMatch2, 2);
+    AddFunction("keyMatch3", KeyMatch3, 2);
+    AddFunction("regexMatch", RegexMatch, 2);
+    AddFunction("ipMatch", IPMatch, 2);
 }

casbin/model/model.cpp

@@ -57,8 +57,9 @@ bool Model :: HasSection(string sec) {
 void Model :: LoadSection(Model* model, ConfigInterface* cfg, string sec) {
     int i = 1;
     while(true) {
-        if (!LoadAssertion(model, cfg, sec, sec+GetKeySuffix(i)))
+        if (!LoadAssertion(model, cfg, sec, sec+GetKeySuffix(i))){
             break;
+        }
         else
             i++;
     }
@@ -91,14 +92,14 @@ bool Model :: AddDef(string sec, string key, string value) {
         ast->tokens = Split(ast->value, ",");
         for (int i = 0; i < ast->tokens.size() ; i++)
             ast->tokens[i] = key + "_" + Trim(ast->tokens[i]);
-    } else if(sec == "m")
-        ast->value = RemoveComments(ast->value);
+    }
     else
-        ast->value = RemoveComments(EscapeAssertion(ast->value));
+        ast->value = RemoveComments(ast->value);
 
-    if (m.find(sec) != m.end())
+    if (m.find(sec) == m.end())
         m[sec] = AssertionMap();
     ast->policy = vector<vector<string>>{};
+
     m[sec].assertion_map[key] = ast;
 
     return true;
@@ -161,9 +162,8 @@ void Model :: BuildIncrementalRoleLinks(RoleManager* rm, policy_op op, string se
 
 // BuildRoleLinks initializes the roles in RBAC.
 void Model :: BuildRoleLinks(RoleManager* rm) {
-    for (unordered_map<string, Assertion*> :: iterator it = this->m["g"].assertion_map.begin() ; it != this->m["g"].assertion_map.end() ; it++) {
+    for (unordered_map<string, Assertion*> :: iterator it = this->m["g"].assertion_map.begin() ; it != this->m["g"].assertion_map.end() ; it++)
         (it->second)->BuildRoleLinks(rm);
-    }
 }
 
 // PrintPolicy prints the policy to log.
@@ -187,13 +187,15 @@ void Model :: PrintPolicy() {
 
 // ClearPolicy clears all current policy.
 void Model :: ClearPolicy() {
-    for (unordered_map<string, Assertion*> :: iterator it = this->m["p"].assertion_map.begin() ; it != this->m["p"].assertion_map.end() ; it++)
+    for (unordered_map<string, Assertion*> :: iterator it = this->m["p"].assertion_map.begin() ; it != this->m["p"].assertion_map.end() ; it++){
         if((it->second)->policy.size() > 0)
             (it->second)->policy.clear();
+    }
 
-    for (unordered_map<string, Assertion*> :: iterator it = this->m["g"].assertion_map.begin() ; it != this->m["g"].assertion_map.end() ; it++)
+    for (unordered_map<string, Assertion*> :: iterator it = this->m["g"].assertion_map.begin() ; it != this->m["g"].assertion_map.end() ; it++){
         if((it->second)->policy.size() > 0)
             (it->second)->policy.clear();
+    }
 }
 
 // GetPolicy gets all rules in a policy.
@@ -222,7 +224,7 @@ vector<vector<string>> Model :: GetFilteredPolicy(string sec, string p_type, int
 
 // HasPolicy determines whether a model has the specified policy rule.
 bool Model :: HasPolicy(string sec, string p_type, vector<string> rule) {
-    vector<vector<string>> policy(m[sec].assertion_map[p_type]->policy);
+    vector<vector<string>> policy = m[sec].assertion_map[p_type]->policy;
     for(int i=0 ; i < policy.size() ; i++)
         if (ArrayEquals(rule, policy[i]))
             return true;
@@ -236,6 +238,7 @@ bool Model :: AddPolicy(string sec, string p_type, vector<string> rule) {
         m[sec].assertion_map[p_type]->policy.push_back(rule);
         return true;
     }
+
     return false;
 }
 
@@ -266,17 +269,19 @@ bool Model :: RemovePolicy(string sec, string p_type, vector<string> rule) {
 // RemovePolicies removes policy rules from the model.
 bool Model :: RemovePolicies(string sec, string p_type, vector<vector<string>> rules) {
     OUTER: for (int j = 0; j < rules.size(); j++) {
-        for (int i = 0; i < this->m[sec].assertion_map[p_type]->policy.size(); i++)
-            if (ArrayEquals(rules[j], this->m[sec].assertion_map[p_type]->policy[i])) {
+        for (int i = 0; i < this->m[sec].assertion_map[p_type]->policy.size(); i++){
+            if (ArrayEquals(rules[j], this->m[sec].assertion_map[p_type]->policy[i]))
                 goto OUTER;
         }
         return false;
     }
 
-    for (int j = 0; j < rules.size(); j++)
-        for (int i = 0; i < this->m[sec].assertion_map[p_type]->policy.size(); i++)
+    for (int j = 0; j < rules.size(); j++){
+        for (int i = 0; i < this->m[sec].assertion_map[p_type]->policy.size(); i++){
             if (ArrayEquals(rules[j], this->m[sec].assertion_map[p_type]->policy[i]))
                 this->m[sec].assertion_map[p_type]->policy.erase(this->m[sec].assertion_map[p_type]->policy.begin() + i);
+        }
+    }
 
     return true;
 }
@@ -289,8 +294,8 @@ pair<bool, vector<vector<string>>> Model :: RemoveFilteredPolicy(string sec, str
     bool res = false;
     for(int i = 0 ; i < policy.size() ; i++){
         bool matched = true;
-        for (int i = 0 ; i < field_values.size() ; i++) {
-            if (field_values[i] != "" && (policy[i])[field_index+i] != field_values[i]) {
+        for (int j = 0 ; j < field_values.size() ; j++) {
+            if (field_values[j] != "" && (policy[i])[field_index+j] != field_values[j]) {
                 matched = false;
                 break;
             }

casbin/model/scope_config.cpp

@@ -64,7 +64,7 @@ void PushObjectValue(Scope scope){
     duk_push_global_object(scope);
 }
 
-void PushFunction(Scope scope, Function f, int nargs, string fname) {
+void PushFunction(Scope scope, Function f, string fname, int nargs) {
     duk_push_c_function(scope, f, (Index)nargs);
     duk_put_global_string(scope, fname.c_str());
 }
@@ -116,7 +116,7 @@ void PushObject(Scope scope, string identifier){
     duk_put_global_string(scope, (identifier+"len").c_str());
 }
 
-void PushFunctionPropToObject(Scope scope, string obj, Function f, int nargs, string fname) {
+void PushFunctionPropToObject(Scope scope, string obj, Function f, string fname, int nargs) {
     duk_get_global_string(scope, obj.c_str());
     duk_push_c_function(scope, f, nargs);
     duk_put_prop_string(scope, -2, fname.c_str());
@@ -223,4 +223,17 @@ string GetString(Scope scope, int id){
 
 void* GetPointer(Scope scope, int id){
     return (void *)duk_to_pointer(scope, (Index)id);
+}
+
+void Get(Scope scope, string identifier){
+    Eval(scope, identifier);
+}
+
+bool Eval(Scope scope, string expression){
+    PushStringValue(scope, expression);
+    return duk_peval(scope)==0;
+}
+
+void EvalNoResult(Scope scope, string expression){
+    duk_eval_string_noresult(scope, expression.c_str());
 }

casbin/model/scope_config.h

@@ -50,7 +50,7 @@ void PushDoubleValue(Scope scope, double d);
 void PushStringValue(Scope scope, string s);
 void PushPointerValue(Scope scope, void * ptr);
 void PushObjectValue(Scope scope);
-void PushFunction(Scope scope, Function f, int nargs, string fname);
+void PushFunction(Scope scope, Function f, string fname, int nargs);
 void PushBoolean(Scope scope, bool expression, string identifier);
 void PushTrue(Scope scope, string identifier);
 void PushFalse(Scope scope, string identifier);
@@ -60,7 +60,7 @@ void PushDouble(Scope scope, double d, string identifier);
 void PushString(Scope scope, string s, string identifier);
 void PushPointer(Scope scope, void * ptr, string identifier);
 void PushObject(Scope scope, string identifier = "r");
-void PushFunctionPropToObject(Scope scope, string obj, Function f, int nargs, string fname);
+void PushFunctionPropToObject(Scope scope, string obj, Function f, string fname, int nargs);
 void PushBooleanPropToObject(Scope scope, string obj, bool expression, string identifier);
 void PushTruePropToObject(Scope scope, string obj, string identifier);
 void PushFalsePropToObject(Scope scope, string obj, string identifier);
@@ -79,5 +79,8 @@ float GetFloat(Scope scope, int id = -1);
 double GetDouble(Scope scope, int id = -1);
 string GetString(Scope scope, int id = -1);
 void* GetPointer(Scope scope, int id = -1);
+void Get(Scope scope, string identifier);
+bool Eval(Scope scope, string expression);
+void EvalNoResult(Scope scope, string expression);
 
 #endif