kal

package module
v0.0.0-...-e8da2ea Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 6, 2025 License: Apache-2.0 Imports: 7 Imported by: 0

README

KAL - The Kubernetes API Linter

KAL is a Golang based linter for Kubernetes API types. It checks for common mistakes and enforces best practices. The rules implemented by KAL, are based on the Kubernetes API Conventions.

KAL is aimed at being an assistant to API review, by catching the mechanical elements of API review, and allowing reviewers to focus on the more complex aspects of API design.

Installation

KAL currently comes in two flavours, a standalone binary, and a golangci-lint plugin.

Standalone Binary

To install the standalone binary, run the following command:

go install github.com/JoelSpeed/kal/cmd/kal@latest

The standalone binary can be run with the following command:

kal path/to/api/types

kal currently accepts no complex configuration, and will run all checks considered to be default.

Individual linters can be disabled with the flag corresponding to the linter name. For example, to disable the commentstart linter, run the following command:

kal -commentstart=false path/to/api/types

Where fixes are available, these can be applied automatically with the -fix flag. Note, automatic fixing is currently only available via the standalone binary, and is not available via the golangci-lint plugin.

kal -fix path/to/api/types

Other standard Golang linter flags implemented by multichecker based linters are also supported.

Golangci-lint Plugin

To install the golangci-lint plugin, first you must have golangci-lint installed. If you do not have golangci-lint installed, review the golangci-lint install guide.

You will need to create a .custom-gcl.yml file to describe the custom linters you want to run. The following is an example of a .custom-gcl.yml file:

version:  v1.62.0
name: golangci-kal
destination: ./bin
plugins:
- module: 'github.com/JoelSpeed/kal'
  version: 'v0.0.0' # Replace with the latest version

Once you have created the custom configuration file, you can run the following command to build the custom golangci-kal binary:

golangci-lint custom

The output binary will be a combination of the initial golangci-lint binary and the KAL linters. This means that you can use any of the standard golangci-lint configuration or flags to run the binary, but may also include the KAL linters.

If you wish to only use the KAL linters, you can configure your .golangci.yml file to only run the KAL linters:

linters-settings:
  custom:
    kal:
      type: "module"
      description: KAL is the Kube-API-Linter and lints Kube like APIs based on API conventions and best practices.
      settings:
        linters: {}
        lintersConfig: {}
linters:
  disable-all: true
  enable:
    - kal

The settings for KAL are based on the GolangCIConfig struct and allow for finer control over the linter rules. The finer control over linter rules is not currently avaialable outside of the plugin based version of KAL.

If you wish to use the KAL linters in conjunction with other linters, you can enable the KAL linters in the .golangci.yml file by ensuring that kal is in the linters.enabled list. To provide further configuration, add the custom.kal section to your linter-settings as per the example above.

VSCode integration

Since VSCode already integrates with golangci-lint via the Go extension, you can use the golangci-kal binary as a linter in VSCode. If your project authors are already using VSCode and have the configuration to lint their code when saving, this can be a seamless integration.

Ensure that your project setup includes building the golangci-kal binary, and then configure the go.lintTool and go.alternateTools settings in your project .vscode/settings.json file.

{
    "go.lintTool": "golangci-lint",
    "go.alternateTools": {
        "golangci-lint": "${workspaceFolder}/bin/golangci-kal",
    }
}

Alternatively, you can also replace the binary with a script that runs the golangci-kal binary, allowing for customisation or automatic copmilation of the project should it not already exist.

{
    "go.lintTool": "golangci-lint",
    "go.alternateTools": {
        "golangci-lint": "${workspaceFolder}/hack/golangci-lint.sh",
    }
}

Linters

Conditions

The conditions linter checks that Conditions fields in the API types are correctly formatted. The Conditions field should be a slice of metav1.Condition with the following tags and markers:

// +listType=map
// +listMapKey=type
// +patchStrategy=merge
// +patchMergeKey=type
// +optional
Conditions []metav1.Condition `json:"conditions,omitempty" patchStrategy:"merge" patchMergeKey:"type" protobuf:"bytes,1,opt,name=conditions"`

Conditions are idiomatically the first field within the status struct, and the linter will highlight when the Conditions are not the first field.

Configuration
lintersConfig:
  conditions:
    isFirstField: Warn | Ignore # The policy for the Conditions field being the first field. Defaults to `Warn`.
    useProtobuf: SuggestFix | Warn | Ignore # The policy for the protobuf tag on the Conditions field. Defaults to `SuggestFix`.
Fixes (via standalone binary only)

The conditions linter can automatically fix the tags on the Conditions field. When they do not match the expected format, the linter will suggest to update the tags to match the expected format.

For CRDs, protobuf tags are not expected. By setting the useProtobuf configuration to Ignore, the linter will not suggest to add the protobuf tag to the Conditions field tags.

The linter will also suggest to add missing markers. If any of the 5 markers in the example above are missing, the linter will suggest to add them directly above the field.

CommentStart

The commentstart linter checks that all comments in the API types start with the serialized form of the type they are commenting on. This helps to ensure that generated documentation reflects the most common usage of the field, the serialized YAML form.

Fixes (via standalone binary only)

The commentstart linter can automatically fix comments that do not start with the serialized form of the type.

When the json tag is present, and matches the first word of the field comment in all but casing, the linter will suggest that the comment be updated to match the json tag.

Integers

The integers linter checks for usage of unsupported integer types. Only int32 and int64 types should be used in APIs, and other integer types, including unsigned integers are forbidden.

## JSONTags

The jsontags linter checks that all fields in the API types have a json tag, and that those tags are correctly formatted. The json tag for a field within a Kubernetes API type should use a camel case version of the field name.

The jsontags linter checks the tag name against the regex "^[a-z][a-z0-9]*(?:[A-Z][a-z0-9]*)*$" which allows consecutive upper case characters, to allow for acronyms, e.g. requestTTL.

Configuration
lintersConfig:
  jsonTags:
    jsonTagRegex: "^[a-z][a-z0-9]*(?:[A-Z][a-z0-9]*)*$" # Provide a custom regex, which the json tag must match.

NoBools

The nobools linter checks that fields in the API types do not contain a bool type.

Booleans are limited and do not evolve well over time. It is recommended instead to create a string alias with meaningful values, as an enum.

Nophase

The nophase linter checks that the fields in the API types don't contain a 'Phase', or any field which contains 'Phase' as a substring, e.g MachinePhase.

OptionalOrRequired

The optionalorrequired linter checks that all fields in the API types are either optional or required, and are marked explicitly as such.

The linter expects to find a comment marker // +optional or // +required within the comment for the field.

It also supports the // +kubebuilder:validation:Optional and // +kubebuilder:validation:Required markers, but will suggest to use the // +optional and // +required markers instead.

If you prefer to use the Kubebuilder markers instead, you can change the preference in the configuration.

Configuration
lintersConfig:
  optionalOrRequired:
    preferredOptionalMarker: optional | kubebuilder:validation:Optional # The preferred optional marker to use, fixes will suggest to use this marker. Defaults to `optional`.
    preferredRequiredMarker: required | kubebuilder:validation:Required # The preferred required marker to use, fixes will suggest to use this marker. Defaults to `required`.
Fixes (via standalone binary only)

The optionalorrequired linter can automatically fix fields that are using the incorrect form of either the optional or required marker.

It will also remove the secondary marker where both the preferred and secondary marker are present on a field.

RequiredFields

The requiredfields linter checks that fields that are marked as required, follow the convention of not being pointers, and not having an omitempty value in their json tag.

Configuration
lintersConfig:
  requiredFields:
    pointerPolicy: Warn | SuggestFix # The policy for pointers in required fields. Defaults to `SuggestFix`.
Fixes (via standalone binary only)

The requiredfields linter can automatically fix fields that are marked as required, but are pointers.

It will suggest to remove the pointer from the field, and update the json tag to remove the omitempty value.

If you prefer not to suggest fixes for pointers in required fields, you can change the pointerPolicy to Warn. The linter will then only suggest to remove the omitempty value from the json tag.

Contributing

New linters can be added by following the New Linter guide.

License

KAL is licensed under the Apache License, Version 2.0. See LICENSE for the full license text.

Documentation

Overview

KAL is a linter for Kubernetes API types, that implements API conventions and best practices.

This package provides a GolangCI-Lint plugin that can be used to build a custom linter for Kubernetes API types. The custom golangci-lint binary can be built by checking out the KAL repository and running `make build-golangci`. This will generate a custom golangci-lint binary in the `bin` directory.

The custom golangci-lint binary can be run with the `run` command, and the KAL linters can be enabled by setting the `kal` linter in the `.golangci.yml` configuration file.

Example `.golangci.yml` configuration file: 

linters-settings:
custom:
  kal:
  type: "module"
  description: KAL is the Kube-API-Linter and lints Kube like APIs based on API conventions and best practices.
  settings:
    linters:
      enabled: []
      disabled: []
    lintersConfig:
      jsonTags:
        jsonTagRegex: ""
      optionalOrRequired:
        preferredOptionalMarker: ""
        preferredRequiredMarker: ""
linters:
  disable-all: true
  enable:
    - kal

New linters can be added in the github.com/JoelSpeed/kal/pkg/analysis package.

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func New 

func New(settings any) (register.LinterPlugin, error)

New creates a new golangci-lint plugin based on the KAL analyzers.

Types

type GolangCIPlugin 

type GolangCIPlugin struct {
	// contains filtered or unexported fields
}

GolangCIPlugin constructs a new plugin for the golangci-lint plugin pattern. This allows golangci-lint to build a version of itself, containing all of the anaylzers included in KAL.

func (*GolangCIPlugin) BuildAnalyzers 

func (f *GolangCIPlugin) BuildAnalyzers() ([]*analysis.Analyzer, error)

BuildAnalyzers returns all of the analyzers to run, based on the configuration.

func (*GolangCIPlugin) GetLoadMode 

func (f *GolangCIPlugin) GetLoadMode() string

GetLoadMode implements the golangci-lint plugin interface.

Source Files

View all Source files

Directories

Path Synopsis
cmd
kal
pkg
analysis
analysis providers a linter registry and a set of linters that can be used to analyze Go code.
 analysis providers a linter registry and a set of linters that can be used to analyze Go code.
analysis/commentstart
commentstart is a simple analysis tool that checks if the first line of a comment is the same as the json tag.
 commentstart is a simple analysis tool that checks if the first line of a comment is the same as the json tag.
analysis/conditions
conditions is a linter that verifies that the conditions field within the struct is correctly defined.
 conditions is a linter that verifies that the conditions field within the struct is correctly defined.
analysis/helpers
helpers contains utility functions that are used by the analysis package.
 helpers contains utility functions that are used by the analysis package.
analysis/helpers/extractjsontags
extractjsontags is a helper package that extracts JSON tags from a struct field.
 extractjsontags is a helper package that extracts JSON tags from a struct field.
analysis/helpers/markers
markers is a helper used to extract marker information from types.
 markers is a helper used to extract marker information from types.
analysis/integers
integers is an analyzer that checks for usage of unsupported integer types.
 integers is an analyzer that checks for usage of unsupported integer types.
analysis/jsontags
jsontags provides a linter to ensure that JSON tags are present on struct fields, and that they match a given regex.
 jsontags provides a linter to ensure that JSON tags are present on struct fields, and that they match a given regex.
analysis/nobools
nobools is an analyzer that checks for usage of bool types.
 nobools is an analyzer that checks for usage of bool types.
analysis/nophase
analysis/optionalorrequired
optionalorrequired is a linter to ensure that all fields are marked as either optional or required.
 optionalorrequired is a linter to ensure that all fields are marked as either optional or required.
analysis/requiredfields
requiredFields is a linter to check that fields that are marked as required are not pointers, and do not have the omitempty tag.
 requiredFields is a linter to check that fields that are marked as required are not pointers, and do not have the omitempty tag.
analysis/utils
config
validation

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.