Hi Aditya,
thanks for the update!
Let me clarify Levels 2 and 3 a bit:
- Level 2 was to provide a Tainting Checker variant that can be
customized by the tainting annotations, similarly to how the Subtyping
Checker can be customized with annotations. This already allows the
user to define custom annotations (like @SqlTrusted and @SqlUntrusted)
and additionally allows to have a finer-grained hierarchy (e.g.
@Public, @Confidential, and @TopSecret).
- Level 3 is to introduce a custom checker, built on top of the
qualifiers defined before. This progression is similar to how
initially one can just define the type hierarchy and use the Subtyping
Checker. Once that is not enough, a developer can write their own
Checker subclass to also customize rules. Similarly, this should make
it easy to provide a custom Tainting Checker subclass.
I'm not sure what you mean with "in the form of a comment line" in the
Level 2 description. Can you clarify?
I was thinking that the normal @SubtypeOf meta-annotations should be
enough to declare the hierarchy of custom tainting annotations.
Do make sure you read through the "Create your own Checker" section
https://checkerframework.org/manual/#creating-a-checker
Best,
cu, WMD.
> --
> You received this message because you are subscribed to the Google Groups "checker-framework-gsoc" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to
checker-framework...@googlegroups.com.
> To view this discussion on the web visit
https://groups.google.com/d/msgid/checker-framework-gsoc/c03f8fe4-bfb6-400b-a541-1154d56c41aao%40googlegroups.com.
--
https://ece.uwaterloo.ca/~wdietl/