mirror of
				https://github.com/k3s-io/kubernetes.git
				synced 2025-10-24 17:10:44 +00:00 
			
		
		
		
	
		
			
				
	
	
		
			93 lines
		
	
	
		
			3.2 KiB
		
	
	
	
		
			Bash
		
	
	
		
			Executable File
		
	
	
	
	
			
		
		
	
	
			93 lines
		
	
	
		
			3.2 KiB
		
	
	
	
		
			Bash
		
	
	
		
			Executable File
		
	
	
	
	
| #!/usr/bin/env bash
 | |
| 
 | |
| # Copyright 2019 The Kubernetes Authors.
 | |
| #
 | |
| # Licensed under the Apache License, Version 2.0 (the "License");
 | |
| # you may not use this file except in compliance with the License.
 | |
| # You may obtain a copy of the License at
 | |
| #
 | |
| #     http://www.apache.org/licenses/LICENSE-2.0
 | |
| #
 | |
| # Unless required by applicable law or agreed to in writing, software
 | |
| # distributed under the License is distributed on an "AS IS" BASIS,
 | |
| # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 | |
| # See the License for the specific language governing permissions and
 | |
| # limitations under the License.
 | |
| 
 | |
| # This script checks version dependencies of modules. It checks whether all
 | |
| # pinned versions of checked dependencies match their preferred version or not.
 | |
| # Usage: `hack/lint-dependencies.sh`.
 | |
| 
 | |
| set -o errexit
 | |
| set -o nounset
 | |
| set -o pipefail
 | |
| 
 | |
| KUBE_ROOT=$(dirname "${BASH_SOURCE[0]}")/..
 | |
| source "${KUBE_ROOT}/hack/lib/init.sh"
 | |
| 
 | |
| # Explicitly opt into go modules, even though we're inside a GOPATH directory
 | |
| export GO111MODULE=on
 | |
| # Explicitly set GOFLAGS to ignore vendor, since GOFLAGS=-mod=vendor breaks dependency resolution while rebuilding vendor
 | |
| export GOFLAGS=-mod=mod
 | |
| # Detect problematic GOPROXY settings that prevent lookup of dependencies
 | |
| if [[ "${GOPROXY:-}" == "off" ]]; then
 | |
|   kube::log::error "Cannot run with \$GOPROXY=off"
 | |
|   exit 1
 | |
| fi
 | |
| 
 | |
| kube::golang::verify_go_version
 | |
| kube::util::require-jq
 | |
| 
 | |
| # let us log all errors before we exit
 | |
| rc=0
 | |
| 
 | |
| # List of dependencies we need to avoid dragging back into kubernetes/kubernetes
 | |
| forbidden_repos=(
 | |
|   "k8s.io/klog"  # we have switched to klog v2, so avoid klog v1
 | |
| )
 | |
| for forbidden_repo in "${forbidden_repos[@]}"; do
 | |
|   deps_on_forbidden=$(go mod graph | grep " ${forbidden_repo}@" || echo "")
 | |
|   if [ -n "${deps_on_forbidden}" ]; then
 | |
|     kube::log::error "The following have transitive dependencies on ${forbidden_repo}, which is not allowed:"
 | |
|     echo "${deps_on_forbidden}"
 | |
|     echo ""
 | |
|     rc=1
 | |
|   fi
 | |
| done
 | |
| 
 | |
| outdated=$(go list -m -json all | jq -r "
 | |
|   select(.Replace.Version != null) |
 | |
|   select(.Version != .Replace.Version) |
 | |
|   select(.Path) |
 | |
|   \"\(.Path)
 | |
|     pinned:    \(.Replace.Version)
 | |
|     preferred: \(.Version)
 | |
|     hack/pin-dependency.sh \(.Path) \(.Version)\"
 | |
| ")
 | |
| if [[ -n "${outdated}" ]]; then
 | |
|   echo "These modules are pinned to versions different than the minimal preferred version."
 | |
|   echo "That means that without replace directives, a different version would be selected,"
 | |
|   echo "which breaks consumers of our published modules."
 | |
|   echo "1. Use hack/pin-dependency.sh to switch to the preferred version for each module"
 | |
|   echo "2. Run hack/update-vendor.sh to rebuild the vendor directory"
 | |
|   echo "3. Run hack/lint-dependencies.sh to verify no additional changes are required"
 | |
|   echo ""
 | |
|   echo "${outdated}"
 | |
| fi
 | |
| 
 | |
| unused=$(comm -23 \
 | |
|   <(go mod edit -json | jq -r '.Replace[] | select(.New.Version != null) | .Old.Path' | sort) \
 | |
|   <(go list -m -json all | jq -r .Path | sort))
 | |
| if [[ -n "${unused}" ]]; then
 | |
|   echo ""
 | |
|   echo "Use the given commands to remove pinned module versions that aren't actually used:"
 | |
|   echo "${unused}" | xargs -L 1 echo 'GO111MODULE=on go mod edit -dropreplace'
 | |
| fi
 | |
| 
 | |
| if [[ -n "${unused}${outdated}" ]]; then
 | |
|   rc=1
 | |
| fi
 | |
| 
 | |
| echo "All pinned versions of checked dependencies match their preferred version."
 | |
| exit $rc
 |