Skip to content

Analyzer Draft #111

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
tagyieh wants to merge 88 commits into
base: main
Choose a base branch
from
Draft

Analyzer Draft #111

tagyieh wants to merge 88 commits into from

Conversation

@tagyieh
Copy link

@tagyieh tagyieh commented Feb 4, 2025
edited
Loading

Analyzer Draft

This PR is a work in progress to implement an analyzer for the existing MAL compiler, described in this issue. It is a continuation of the previous analyzer draft, which can be found here.

Implementation

malVisitor in mal_visitor.py will use an analyzer malAnalyzerInterface. The visit method is overridden in malVisitor in order to call the checker-methods in the malAnalyzerInterface (if defined).

Analyzer Implementation

Language Constituents

Constituent Implemented Tested Reviewed
Define
Include
Category
Asset
Extends
Abstract asset
User info
Developer info
Modeler info
Let
Association
Field
Step

MAL Symbols

Constituent Implemented Tested Reviewed
Leads to (->)
Append (+>)
OR-step (|)
AND-step (&)
Defense (#)
Existence (E)
Non-existence (!E)
Require (<-)
TypeOf ([])
Union (\/)
Intersection (\/)
Difference (-)
Collect Operator (X.A)
Transitive Operator (X*.A)
Let Substitution (X().A)
Hidden Step (@​hidden) - -
Debug Step (@​debug) - -
Trace Origin (@​trace) - -
Risk Type (AS {C, I, A})
Time to Compromise (TTC)

Notes/Possible checks

  • Can an Asset with the same name be defined twice?
  • Can we use a same include more then once? (Risk of circular dependency) Can "id" or "version" be defined more than once/with different values?
  • Should the state of the analyzer be synchronous between all files when using include?
  • Should we allow two detectors on the same asset with the same name?
  • Should we allow an empty detector context?
  • Should we allow assets in the detector context that do not exist?
  • Should we a class that extends another belong to the same category as the parent?
  • Can a category be defined more than once?
  • Given the documentation, the only allowed metas are 'developer', 'users' and 'modelers'. Should we check if the metas fall under one of these three categories?

WLUB and others added 26 commits February 12, 2024 18:54
@WLUB
Analyzer/Checker draft
08c32e8
@WLUB
Redesign of analyzer (Draft) (WIP)
a81c5e2
@WLUB
Draft update, added tests
3330a06
@WLUB
Generate calls to analyzers-method via visit-method.
dfa716f
@WLUB
[WIP]
c591539
@WLUB
[WIP]
b883e66
@tagyieh
fix: Corrected implementation of _checkToStep
36dd1ee 
Deleted support for union, intersection and difference. These are operations usdo to create a set of assets, meaning that they could never appear in a reaches, unless in an expr. Therefore, this check_to_step should only take care of the case collect, where it will return the asset pointed by the lhs (where the set operation can be) and checks if the rhs is indeed a step for the specified asset.

Deleted support for subType. This is used to denote a subclass, so in the context of an attack step can only be used inside a collect, where the lhs is the subType and the rhs is the associated step.

Added comments.
@tagyieh
fix: Corrected implementation of field checking.
a79abd4 
Previously, checking for field and variable was done in the same place. To keep the code manageable and similar to its Java counterpart, this was split into separate functions.

Added logging message in case the user mentioned an existing variable but forgot to call it.

Added comments.
@tagyieh
fix: Corrected variable check.
65d3bb3 
Previously, variable was not considered a case in _check_to_asset, but it should be.

Added comments.
@tagyieh
chore: Commented and changed function name to verify collect operation.
30dd5c7
@tagyieh
chore: Commented _check_set_expr function and subfunctions.
48ee983
@tagyieh
chore: Commented _check_transitive_expr.
f8b2b90
@tagyieh
chore: Commented _check_subtype_expr.
500c247
@tagyieh
chore: Commented _analyse_reaches.
6ea4044 
This concludes the verification of all subfunctions as well.
@tagyieh
fix: Corrected _analyse_defines.
e72d7d3 
Added verification to ensure repeated defines does not happen.

Added comments.
@tagyieh
chore: Commented _analyse_extends
bfcdd50
@tagyieh
chore: Commented _analyse_abstract.
0382212
@tagyieh
fix: Corrected _analyse_parents.
4b157ad 
Instead of verifying if an error was found and then setting the class error as True, set it as soon as an error is found.

Added comments.
@tagyieh
fix: Corrected _analyse_association.
8788227 
Deleted a raise instruction which wasn't raising anything.

Added comments.
@tagyieh
chore: Commented checkDefine.
3f1ab4b
@tagyieh
chore: Commented checkMal.
3532b38
@tagyieh
chore: Commented checkCategory.
9f69606
@tagyieh
chore: Commented checkAsset.
15c195f
@tagyieh
chore: Commented checkMeta.
f9108c0
@tagyieh
fix: Corrected checkStep and subfunctions.
3ed2624 
The previous implementation, when given a step, would verify if this step was defined by another asset. However, according to the Java check, we should verify the step hierarchy, i.e. if a step is properly extended from the assets parents. For this, when analysing a single step we only check if it is already defined in the asset. In the post analysis, we verify if the steps are properly inherited.

Added comments.
@tagyieh
chore: Commented _validate_CIA.
bf00a41
@nkakouros nkakouros mentioned this pull request Feb 4, 2025
Closed
30 tasks
@nkakouros
Copy link
Contributor

nkakouros commented Feb 4, 2025 

Can an Asset with the same name be defined twice?

Isn't there a check in the java analyzer? I think in MAL it does not make sense to allow the same labels to be used twice, either in associations, assets or let-variables.

Can we use a same include more then once? (Risk of circular dependency)

Probably yes, we want to support this. Circular dependencies may be possible to capture and report to the user as error.

Can "id" or "version" be defined more than once/with different values?

Isn't there a check in the java analyzer? In this case, I think yes, as that would make possible to extend a whole language (that has its own version and id).

Should the state of the analyzer be synchronous between all files when using include?

What do you mean here? I think the analyzer should keep track of assets, etc across all files (starting from main.mal) so that it can properly check things. Also, check my changes on the visitor class, moving it to __init__.py and the loading of files here. Compare it with what is in the main branch and your branch. It would be nice if you could extract the relevant bits from there into a separate commit that you push here. The detector stuff, disregard for the time being.

Should we allow two detectors on the same asset with the same name?
Should we allow an empty detector context?
Should we allow assets in the detector context that do not exist?

Don't care about detectors for the time being.

Should we a class that extends another belong to the same category as the parent?

@andrewbwm Do you have any input here?

Can a category be defined more than once?

I think yes, and we should merge. @andrewbwm

Given the documentation, the only allowed metas are 'developer', 'users' and 'modelers'. Should we check if the metas fall under one of these three categories?

Probably not, there are lots of custom metas that we don't want to break.

@nkakouros
Copy link
Contributor

nkakouros commented Feb 4, 2025

@tagyieh Resolve the conflicts too.

tagyieh added 30 commits February 21, 2025 18:48
@tagyieh
feat: Raise error for asset redeclaration.
45d5424 
Also changed test verification. If a test fails, it is not relevant to know what components of the language are stored in the analyzer; we should only verify that to guarantee that the analyzer correctly processes everything in case of success.
@tagyieh
feat: Raise exception for wrong extend.
483ffc8
@tagyieh
Chore: Deleted irrelevant tests.
92ac7a7 
Since we allow for multiple metadata (not only user, modeler and developer), it does not make sense to have specific tests for them.
@tagyieh
feat: Raise exception when info is wrong.
04d0725
@tagyieh
feat: Raise exception when let is wrongly defined.
9b11c94 
Tests in operation and in transitive are temporarily altered to ensure all tests pass.
@tagyieh
feat: Moved exception raising to its own functoin for clarity.
35d4e48 
This funciton shall log the error and raise the exception.
@tagyieh
feat: Raise exception when association is wrong.
efce721
@tagyieh
feat: Raise exception when fields are improperly defined.
2e4cbe6
@tagyieh
feat: Raise error when step is improperly defined.
dad2d0c
@tagyieh
feat: Raise error when reaches does not point to a step.
bed289b
@tagyieh
feat: Raise exception when existence step is defined without requires.
58a53e0
@tagyieh
feat: Raise exception when existence step is defined with TTC.
fee0eb0
@tagyieh
feat: Raise exception when normal step is defined with requires.
36ddc40
@tagyieh
feat: Raise exception when last step of a reaches is not an attack step.
13a235b
@tagyieh
feat: Raise exception in more cases.
93f74cb
@tagyieh
feat: Raise error in more cases.
848b13f
@tagyieh
feat: Circular includes are now detected.
ca3be8a
@tagyieh
feat: Raise exception when defining the same key twice.
bcc84e4
@tagyieh
feat: Deleted analyzer interface.
25996e6
@tagyieh
feat: Implemented and tested Bernoulli TTC.
2827a99
@tagyieh
chore: Refactored code for TTC validation.
e9ceeec
@tagyieh
feat: Implemented and tested Binomial TTC.
0e26ca1
@tagyieh
feat: Implemented and tested Exponential TTC.
ad092ce
@tagyieh
feat: Implemented and tested Gamma TTC.
8210cac
@tagyieh
feat: Implemented and tested LogNormal TTC.
2184770
@tagyieh
feat: Implemented and tested Pareto TTC.
5600ca9
@tagyieh
feat: Implemented and tested TruncatedNormal TTC.
fa2d4bb
@tagyieh
feat: Implemented and tested Uniform TTC.
9e45df9
@tagyieh
feat: Implemented and tested Combination TTC in all its possible forms.
b6075b8
@tagyieh
feat: Implemented and tested complex TTC operations.
416e152
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@tagyieh @nkakouros @WLUB