How can I create a function which evaluate only strings which represent only mathematical functions?

6 Giu 2011
6 Risposte
Risposta accettata
5 Visualizzazioni (30 giorni)

0 voti

How can I create a function which evaluates only strings which represent only mathematical functions?
I have an inputdlg box and I insert string which represents a random mathematical function.for example exp(x)+log(x)/cos(2*pi*x). How can I make a function which evaluate this and ignore anything else which doesn't have to do with mathematics?

2 Commenti
Mostra Nessuno Nascondi Nessuno

Matt Fig
Matt Fig il 6 Giu 2011
I think that is a rather tall order. How will your system know whether or not an item in the string has to do with Mathematics, unless you exhaustively check for use of every possible function?
sadel
sadel il 6 Giu 2011
Yeah, you right but how can I avoid the fact that some user can insert a string like this 'delete(''*.*'')' or this 'cla' or something else which can be evaluated but it isn't what I want?

Accedi per commentare.

Accedi per rispondere a questa domanda.

 Risposta accettata

Walter Roberson
Walter Roberson il 8 Giu 2011

1 voto

I used to work in computer security. This is what decades of research in computer security has found:
When you are parsing something, *never* take the approach of rejecting things you know your code does not handle. There will almost always be something you overlooked, some way of slipping something by your rejection filters, perhaps something that was not previously known as being dangerous. Instead, for security, define specifically what you will *accept* and reject everything else.
For example, you want to reject delete('*.*') -- but how well do you know MuPad? Do you know all of the MuPad routines that can be convinced to take numeric input and convert it to character strings that are executed?
Accept only what you know to be safe.

1 Commento
Mostra -1 commenti meno recenti Nascondi -1 commenti meno recenti

sadel
sadel il 8 Giu 2011
I think I'll quit. This project is my bachelor thesis and I don't have enough time. Next week I have to present it. I will use my above code with a try-catch function and I will hope. :)

Accedi per commentare.

Più risposte (5)

Walter Roberson
Walter Roberson il 6 Giu 2011

1 voto

We already went through this. There is no way to do what you are asking. The sample string of symbols means different things under different interpretations. The "real" meaning of a string of symbols depends upon intent.
You can define meanings for all of the functions and operators that you intend to support, but you cannot determine whether a string represents a "mathematical function" or not.
Quoting myself from a week ago:
You haven't defined your requirements.
Paulo recommended symvar and that is likely a good place to start. Extract the variables from the expression, and if any of them in the expression are not on the approved list, veto the expression.
It is also possible to extract the names of all of the functions used and compare them to your approved list. Note, though, that the internal name of functions might not be the obvious one, so experiment to see what the names actually are. In Maple, you would use indets() with fairly specific parameters to extract the function names; I am not sure what the MuPad equivalent would be.

3 Commenti
Mostra 1 commento meno recente Nascondi 1 commento meno recente

Walter Roberson
Walter Roberson il 6 Giu 2011
You want to "ignore anything else which doesn't have to do with mathematics?"
Unfortunately, *everything* has to do with mathematics under some interpretation. There is no inherent meaning even to "+", only an interpreted meaning.
If you do not define your interpretation rules, then what you want to do has no possible answer.
sadel
sadel il 7 Giu 2011
Do you know FCNCHK function? Do you think that it can help me for my purpose?
sadel
sadel il 7 Giu 2011
If I could make symvar to identify the symbol 't' and not return it then I could create
a function which evaluate only strings which represent only mathematical functions
t=0:0.1:10;
insertfunction='cos(2*pi*t))'
gh=symvar(insertfunction)
if (gh is an empty cell array)
eval(['v =0*t+ ',vectorize(gh),';'])
plot(t,v)
end
Well,is this possible?

Accedi per commentare.

Matt Fig
Matt Fig il 6 Giu 2011

1 voto

Here is a radical idea, and I cannot guarantee it will work. But it might be worth a try..
str = '! dir &'; % Example of something you don't want the user to do.
try
F = figure('visible','off');
Ax = axes;
ezplot(str) % This will do the checking for you!
delete(F) % If you made it to here, the string is o.k.
catch
delete(F)
% Do something here, like notify the user that this is invalid.
end
% Now process your string....
F = str2func(['@(x)' ,str]);
Again, this may not be foolproof, but it might be worth a try with some known examples for str...
Robert Cumming
Robert Cumming il 6 Giu 2011

1 voto

Do you want a method of ensuring your end user can only generate valid matlab code which contains valid mathematical equations?
This commercial software has functionality which allows the generation of controlled matlab functions which contain equations. The code is still under development but the downloadable demo shows the main functionality.
For the matlab end user the output is controlable valid Matlab scripts, functions or class definitions.

4 Commenti
Mostra 2 commenti meno recenti Nascondi 2 commenti meno recenti

sadel
sadel il 7 Giu 2011
Sorry but I can't understand how this can help me. And I cannot download the demo, too.
Robert Cumming
Robert Cumming il 7 Giu 2011
I understood that you want to ensure that end users only generate equations which are valid m code? Thats one of the things that code does.
It provides a graphical user interface which creates equations which can be output as valid m code to fit into your own code as functions.
what do you get when you try the download?
sadel
sadel il 7 Giu 2011
I was doing something wrong. Now it's ok. What can I do now with this program?
Robert Cumming
Robert Cumming il 8 Giu 2011
there should be tutorials at the back of the user guide which show you how to create equations - which you can then check/verify before saving them as valid matlab code (using export)

Accedi per commentare.

Andrei Bobrov
Andrei Bobrov il 7 Giu 2011

1 voto

how Matt
insertfunction='cos(2*pi*t)';
gh=symvar(insertfunction);
f = str2func(['@(',gh{:},')',vectorize(insertfunction)]);
plot(t,f(t))
sadel
sadel il 7 Giu 2011

0 voti

Well, I think I found the answer. Tell me your opinion!!!
t=0:0.1:10;
insertfunction='cos(2*pi*t)';
gh=symvar(insertfunction);
if (isempty(gh)) | (strcmp(gh,'t')==1)
eval(['v =0*t+ ',vectorize(insertfunction),';']);
plot(t,v)
else
warn='Invalid variable'
end

Categorie

Scopri di più su Common Operations in Centro assistenza e File Exchange

Tag

Community Treasure Hunt

Find the treasures in MATLAB Central and discover how the community can help you!

Start Hunting!

Translated by