Skip to content

feat: smithy for virtual fields #71

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 8 commits into from
Mar 27, 2023
Merged

feat: smithy for virtual fields #71

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
54ad3b9
feat: smithy for virtual fields
ajewellamz Mar 24, 2023
c612c97
use union for Transform
ajewellamz Mar 25, 2023
f01e3e4
m
ajewellamz Mar 25, 2023
60c3f68
m
ajewellamz Mar 25, 2023
e882e1b
PR feedback
ajewellamz Mar 27, 2023
61a60ca
zero-based plus GetSegments
ajewellamz Mar 27, 2023
91243ad
m
ajewellamz Mar 27, 2023
d28b4d2
m
ajewellamz Mar 27, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
64 changes: 62 additions & 2 deletions DynamoDbEncryptionMiddlewareInternal/Model/AwsCryptographyDynamoDbEncryptionTypes.dfy
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,8 @@ include "../../private-aws-encryption-sdk-dafny-staging/StandardLibrary/src/Inde
nameonly version: VersionNumber ,
nameonly keyring: AwsCryptographyMaterialProvidersTypes.IKeyring ,
nameonly standardBeacons: Option<StandardBeaconList> ,
nameonly compoundBeacons: Option<CompoundBeaconList>
nameonly compoundBeacons: Option<CompoundBeaconList> ,
nameonly virtualFields: Option<VirtualFieldList>
)
type BeaconVersionList = x: seq<BeaconVersion> | IsValid_BeaconVersionList(x) witness *
predicate method IsValid_BeaconVersionList(x: seq<BeaconVersion>) {
Expand Down Expand Up @@ -771,6 +772,31 @@ include "../../private-aws-encryption-sdk-dafny-staging/StandardLibrary/src/Inde
)
datatype GetItemOutputTransformOutput = | GetItemOutputTransformOutput (
nameonly transformedOutput: ComAmazonawsDynamodbTypes.GetItemOutput
)
datatype GetPrefix = | GetPrefix (
nameonly length: int32
)
datatype GetSegment = | GetSegment (
nameonly split: Char ,
nameonly index: int32
)
datatype GetSegments = | GetSegments (
nameonly split: Char ,
nameonly low: int32 ,
nameonly high: int32
)
datatype GetSubstring = | GetSubstring (
nameonly low: int32 ,
nameonly high: int32
)
datatype GetSuffix = | GetSuffix (
nameonly length: int32
)
datatype Insert = | Insert (
nameonly literal: string
)
datatype Lower = | Lower (

)
datatype NonSensitivePart = | NonSensitivePart (
nameonly name: string ,
Expand Down Expand Up @@ -902,10 +928,42 @@ include "../../private-aws-encryption-sdk-dafny-staging/StandardLibrary/src/Inde
)
datatype UpdateTableOutputTransformOutput = | UpdateTableOutputTransformOutput (
nameonly transformedOutput: ComAmazonawsDynamodbTypes.UpdateTableOutput
)
datatype Upper = | Upper (

)
type VersionNumber = x: int32 | IsValid_VersionNumber(x) witness *
predicate method IsValid_VersionNumber(x: int32) {
( 1 <= x )
}
datatype VirtualField = | VirtualField (
nameonly name: string ,
nameonly parts: VirtualPartList
)
type VirtualFieldList = x: seq<VirtualField> | IsValid_VirtualFieldList(x) witness *
predicate method IsValid_VirtualFieldList(x: seq<VirtualField>) {
( 1 <= |x| )
}
datatype VirtualPart = | VirtualPart (
nameonly loc: TerminalLocation ,
nameonly trans: Option<VirtualTransformList>
)
type VirtualPartList = x: seq<VirtualPart> | IsValid_VirtualPartList(x) witness *
predicate method IsValid_VirtualPartList(x: seq<VirtualPart>) {
( 1 <= |x| )
}
datatype VirtualTransform =
| upper(upper: Upper)
| lower(lower: Lower)
| insert(insert: Insert)
| prefix(prefix: GetPrefix)
| suffix(suffix: GetSuffix)
| substring(substring: GetSubstring)
| segment(segment: GetSegment)
| segments(segments: GetSegments)
type VirtualTransformList = x: seq<VirtualTransform> | IsValid_VirtualTransformList(x) witness *
predicate method IsValid_VirtualTransformList(x: seq<VirtualTransform>) {
( 1 <= |x| )
}
datatype Error =
// Local Error structures are listed here
Expand Down Expand Up @@ -955,7 +1013,9 @@ include "../../private-aws-encryption-sdk-dafny-staging/StandardLibrary/src/Inde
function method DefaultDynamoDbEncryptionConfig(): DynamoDbEncryptionConfig
method DynamoDbEncryption(config: DynamoDbEncryptionConfig := DefaultDynamoDbEncryptionConfig())
returns (res: Result<DynamoDbEncryptionClient, Error>)
// TODO smithy->Dafny needs to generate the following
// TODO smithy->Dafny correctly generates something equivalent the following
// but as a result DynamoDbEncryption.DynamoDbEncryption and TestFixtures.GetDynamoDbEncryption
// take too long to verify
///// MANUAL UPDATE STARTS HERE
requires
var cmms := set cfg | cfg in config.tableEncryptionConfigs.Values && cfg.cmm.Some? :: cfg.cmm.value;
Expand Down
103 changes: 103 additions & 0 deletions DynamoDbEncryptionMiddlewareInternal/Model/DynamoDbEncryptionMiddlewareInternal.smithy
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -124,6 +124,21 @@ list BeaconVersionList {
member: BeaconVersion
}

@length(min: 1)
list VirtualFieldList {
member: VirtualField
}

@length(min: 1)
list VirtualPartList {
member: VirtualPart
}

@length(min: 1)
list VirtualTransformList {
member: VirtualTransform
}

@length(min: 1)
list StandardBeaconList {
member: StandardBeacon
Expand Down Expand Up @@ -154,6 +169,93 @@ list ConstructorPartList {
member: ConstructorPart
}

structure VirtualField {
@required
name : String,
@required
parts : VirtualPartList,
}

structure VirtualPart {
@required
loc : TerminalLocation,
trans : VirtualTransformList,
}

// Convert ASCII characters to upper case
structure Upper {}

// Convert ASCII characters to lower case
structure Lower {}

// Append this literal string
structure Insert {
@required
literal : String
}

// return the first part of the string
// Positive length : return that many characters from the front
// Negative length : exclude -length characters from the end
// e.g. GetPrefix(-1) returns all but the last character
structure GetPrefix {
@required
length : Integer
}

// return the last part of the string
// Positive length : return that many characters from the end
// Negative length : exclude -length characters from the front
// e.g. GetSuffix(-1) returns all but the first character
structure GetSuffix {
@required
length : Integer
}

// return range of characters, 0-based counting
// low is inclusive, high is exclusive
// negative numbers count from the end, -1 is the end of string
// i.e. the whole string is GetSubstring(0, -1)
// e.g. for "123456789"
// GetSubstring(2, 6) == GetSubstring(2, -4) == "3456"
structure GetSubstring {
@required
low : Integer,
@required
high : Integer,
}

// split string on character, then return one piece.
// 'index' has the same semantics as 'low' in GetSubstring
structure GetSegment {
@required
split : Char,
@required
index : Integer
}

// split string on character, then return range of pieces.
// 'low' and 'high' have the same semantics as GetSubstring
structure GetSegments {
@required
split : Char,
@required
low : Integer,
@required
high : Integer,
}

union VirtualTransform {
upper: Upper,
lower: Lower,
insert: Insert,
prefix: GetPrefix,
suffix: GetSuffix,
substring : GetSubstring,
segment : GetSegment,
segments : GetSegments
}

structure SensitivePart {
@required
name : String,
Expand Down Expand Up @@ -210,6 +312,7 @@ structure BeaconVersion {
keyring: KeyringReference, // Must be Hierarchy Keyring
standardBeacons : StandardBeaconList,
compoundBeacons : CompoundBeaconList,
virtualFields : VirtualFieldList,
}

structure SearchConfig {
Expand Down
Loading