Detect broad configuration inputs from System.getenv() and System.getProperties()
#830
Conversation
| // A map from eager method name to the containing class of the method and the name of the | ||
| // replacement method, if there is a direct equivalent. | ||
| private val REPLACEMENTS = | ||
| private val REPLACEMENTS: Map<String, Replacement> = |
There was a problem hiding this comment.
The fact that we now combine the fully qualified class name, the method name, and optionally argument into a single thing makes the RELEVANT_METHOD_NAMES parameter construction fragile.
I think we should move to using a real class here to reduce changes of mess ups / typos, etc
There was a problem hiding this comment.
You mean something like this for the key?
data class SuspectMethod(
val klass: Class,
val method: ???,
val arguments: List<Type>? = null,
)There was a problem hiding this comment.
I've been spinning on a proper solution for this for an hour now :|
Ideally, when we do checking, we can go from relevant method to required parameter types to isInstanceOf for the relevant class. That would be best perf wise.
So maybe we want to go with Map< Map< Tuple<method name, requiredParams>, classname, Replacement>
WDYT?
There was a problem hiding this comment.
What about something like Map<String (method name), List<MethodDetails>> with
data class MethodDetails(
val containingClass: String,
val requiredParams: List<String>? = null,
val replacement: Replacement
)
The implementation could look mostly like the previous one, with an additional line in the potentialReplacements.forEach which checked the parameters.
This comment was marked as spam.
This comment was marked as spam.
Sorry, something went wrong.
|
|
||
| val expected = | ||
| """ | ||
| src/test.kt:4: Error: Avoid using method getenv [GradleConfigurationCacheInputs] |
There was a problem hiding this comment.
Does this message make sense, given that a different method with the same name is allowed? It seems like it would make sense to include the "()"
| """ | ||
| .trimIndent() | ||
| ) | ||
| check(input).expect("No warnings.") |
There was a problem hiding this comment.
This could use expectClean().
| val CONFIGURATION_CACHE_BROAD_INPUTS = | ||
| Issue.create( | ||
| "GradleConfigurationCacheInputs", | ||
| "Avoid using APIs that capture too much of the environment in the" + |
There was a problem hiding this comment.
There should be a space either before the closing " on this line or after the opening " on the next.
| // A map from eager method name to the containing class of the method and the name of the | ||
| // replacement method, if there is a direct equivalent. | ||
| private val REPLACEMENTS = | ||
| private val REPLACEMENTS: Map<String, Replacement> = |
There was a problem hiding this comment.
What about something like Map<String (method name), List<MethodDetails>> with
data class MethodDetails(
val containingClass: String,
val requiredParams: List<String>? = null,
val replacement: Replacement
)
The implementation could look mostly like the previous one, with an additional line in the potentialReplacements.forEach which checked the parameters.
| ?: return | ||
| val methodName = method.name | ||
| val paramSig = | ||
| method.parameterList.parameters.joinToString(",") { it.type.canonicalText } |
There was a problem hiding this comment.
One thing I'm concerned about for the parameter type strings is how they would work with generics, e.g. if we had
interface Interface<T> {
fun someMethod(t: T)
}
class StringClass: Interface<String> {
override fun someMethod(t: String) = Unit
}
and wanted to ban Interface.someMethod(T). When this is used as StringClass.someMethod(String), then I don't think matching against the parameter strings would work, and might require looking at the super methods to fully support that case.
|
Now that i've thought about this for a while, do we even want people to use System.getenv even for the parameter version? It seems to be strictly better to push folks to use WDYT? |
Proposed Changes
Add new issue ID for overly broad capture of configuration cache inputs based on the Gradle docs
I had to rework most of the bad method detection because the existing implementation assumes that any occurrence of a given method should be blocked regardless of arity.
System.getenv()is a new case where the no-arg version is bad butSystem.getenv(String)is fine. Those methods are also static and the existing code was not resolving them.Testing
Test: Added new integration tests for the new lint issue. All existing tests pass with no additional changes.
Issues Fixed
Fixes: https://issuetracker.google.com/issues/462234633