Merge pull request #22

chore: multichecker & build ldflags

Author: srg-bnd

README.md

@@ -29,6 +29,12 @@ To startup the server, run in the terminal:
 ./cmd/server/server # in the root directory of the project
 ```
 
+Build and compilation flags (ldflags):
+
+- buildVersion: any string (example, `-X 'main.buildVersion=v0.0.1'`)
+- buildDate: `$(date -u '+%Y/%m/%d %H:%M:%S')'`
+- buildCommit: `$(git rev-parse --short HEAD || echo 'unknown')'`
+
 ##### Envs & flags
 
 * `ADDRESS` | `-a` – address and port to run server. Default `:8080`
@@ -52,6 +58,12 @@ To startup the agent, run in the terminal:
 ./cmd/server/agent # in the root directory of the project
 ```
 
+Build and compilation flags (-ldflags):
+
+- buildVersion: any string (example, `-X 'main.buildVersion=v0.0.1'`)
+- buildDate: `$(date -u '+%Y/%m/%d %H:%M:%S')'`
+- buildCommit: `$(git rev-parse --short HEAD || echo 'unknown')'`
+
 ##### Envs & flags
 
 * `ADDRESS` | `-a` – address and port to run agent. Default `localhost:8080`

cmd/agent/main.go

@@ -2,6 +2,7 @@
 package main
 
 import (
+	"fmt"
 	"log"
 
 	config "github.com/srg-bnd/observator/config/agent"
@@ -10,7 +11,31 @@ import (
 	"github.com/srg-bnd/observator/internal/storage"
 )
 
+var (
+	buildVersion string
+	buildDate    string
+	buildCommit  string
+)
+
+func buildInfo() {
+	strOrNA := func(str string) string {
+		if str == "" {
+			return "N/A"
+		}
+
+		return str
+	}
+
+	fmt.Printf(
+		"Build version: %s\nBuild date: %s\nBuild commit: %s\n",
+		strOrNA(buildVersion),
+		strOrNA(buildDate),
+		strOrNA(buildCommit),
+	)
+}
+
 func init() {
+	buildInfo()
 	config.Flags.ParseFlags()
 }
 

cmd/server/main.go

@@ -2,6 +2,7 @@
 package main
 
 import (
+	"fmt"
 	"log"
 
 	config "github.com/srg-bnd/observator/config/server"
@@ -14,7 +15,31 @@ import (
 	"github.com/srg-bnd/observator/internal/storage"
 )
 
+var (
+	buildVersion string
+	buildDate    string
+	buildCommit  string
+)
+
+func buildInfo() {
+	strOrNA := func(str string) string {
+		if str == "" {
+			return "N/A"
+		}
+
+		return str
+	}
+
+	fmt.Printf(
+		"Build version: %s\nBuild date: %s\nBuild commit: %s\n",
+		strOrNA(buildVersion),
+		strOrNA(buildDate),
+		strOrNA(buildCommit),
+	)
+}
+
 func init() {
+	buildInfo()
 	config.Flags.ParseFlags()
 }
 

cmd/staticlint/.keep

@@ -0,0 +1,140 @@
+package main
+
+import (
+	"golang.org/x/tools/go/analysis"
+	"golang.org/x/tools/go/analysis/passes/asmdecl"
+	"golang.org/x/tools/go/analysis/passes/assign"
+	"golang.org/x/tools/go/analysis/passes/atomic"
+	"golang.org/x/tools/go/analysis/passes/atomicalign"
+	"golang.org/x/tools/go/analysis/passes/bools"
+	"golang.org/x/tools/go/analysis/passes/buildtag"
+	"golang.org/x/tools/go/analysis/passes/cgocall"
+	"golang.org/x/tools/go/analysis/passes/composite"
+	"golang.org/x/tools/go/analysis/passes/copylock"
+	"golang.org/x/tools/go/analysis/passes/ctrlflow"
+	"golang.org/x/tools/go/analysis/passes/deepequalerrors"
+	"golang.org/x/tools/go/analysis/passes/defers"
+	"golang.org/x/tools/go/analysis/passes/directive"
+	"golang.org/x/tools/go/analysis/passes/errorsas"
+	"golang.org/x/tools/go/analysis/passes/fieldalignment"
+	"golang.org/x/tools/go/analysis/passes/findcall"
+	"golang.org/x/tools/go/analysis/passes/httpresponse"
+	"golang.org/x/tools/go/analysis/passes/ifaceassert"
+	"golang.org/x/tools/go/analysis/passes/loopclosure"
+	"golang.org/x/tools/go/analysis/passes/lostcancel"
+	"golang.org/x/tools/go/analysis/passes/nilfunc"
+	"golang.org/x/tools/go/analysis/passes/nilness"
+	"golang.org/x/tools/go/analysis/passes/pkgfact"
+	"golang.org/x/tools/go/analysis/passes/printf"
+	"golang.org/x/tools/go/analysis/passes/reflectvaluecompare"
+	"golang.org/x/tools/go/analysis/passes/shadow"
+	"golang.org/x/tools/go/analysis/passes/shift"
+	"golang.org/x/tools/go/analysis/passes/sortslice"
+	"golang.org/x/tools/go/analysis/passes/stdmethods"
+	"golang.org/x/tools/go/analysis/passes/stringintconv"
+	"golang.org/x/tools/go/analysis/passes/structtag"
+	"golang.org/x/tools/go/analysis/passes/testinggoroutine"
+	"golang.org/x/tools/go/analysis/passes/tests"
+	"golang.org/x/tools/go/analysis/passes/unmarshal"
+	"golang.org/x/tools/go/analysis/passes/unreachable"
+	"golang.org/x/tools/go/analysis/passes/unsafeptr"
+	"golang.org/x/tools/go/analysis/passes/unusedresult"
+	"golang.org/x/tools/go/analysis/passes/unusedwrite"
+	"golang.org/x/tools/go/analysis/passes/usesgenerics"
+	"honnef.co/go/tools/staticcheck"
+
+	"github.com/kisielk/errcheck/errcheck"
+	custom "github.com/srg-bnd/observator/cmd/staticlint/multichecker/custom/exitcheckanalyser"
+	// TODO: Update Go version
+	// "github.com/securego/gosec/v2/loader"
+)
+
+func standardAnalyzers() []*analysis.Analyzer {
+	return []*analysis.Analyzer{
+		printf.Analyzer,
+		shadow.Analyzer,
+		shift.Analyzer,
+		structtag.Analyzer,
+		asmdecl.Analyzer,
+		assign.Analyzer,
+		atomic.Analyzer,
+		atomicalign.Analyzer,
+		bools.Analyzer,
+		buildtag.Analyzer,
+		cgocall.Analyzer,
+		composite.Analyzer,
+		copylock.Analyzer,
+		ctrlflow.Analyzer,
+		deepequalerrors.Analyzer,
+		defers.Analyzer,
+		directive.Analyzer,
+		errorsas.Analyzer,
+		fieldalignment.Analyzer,
+		findcall.Analyzer,
+		httpresponse.Analyzer,
+		ifaceassert.Analyzer,
+		loopclosure.Analyzer,
+		lostcancel.Analyzer,
+		nilfunc.Analyzer,
+		nilness.Analyzer,
+		pkgfact.Analyzer,
+		reflectvaluecompare.Analyzer,
+		sortslice.Analyzer,
+		stdmethods.Analyzer,
+		stringintconv.Analyzer,
+		testinggoroutine.Analyzer,
+		tests.Analyzer,
+		unmarshal.Analyzer,
+		unreachable.Analyzer,
+		unsafeptr.Analyzer,
+		unusedresult.Analyzer,
+		unusedwrite.Analyzer,
+		usesgenerics.Analyzer,
+	}
+}
+
+func staticcheckAnalyzers(checks []string) []*analysis.Analyzer {
+	var analyzers []*analysis.Analyzer
+
+	checkMap := make(map[string]bool)
+	for _, check := range checks {
+		checkMap[check] = true
+	}
+
+	for _, analyzer := range staticcheck.Analyzers {
+		if analyzer.Analyzer.Name[:2] == "SA" {
+			analyzers = append(analyzers, analyzer.Analyzer)
+		}
+
+		if checkMap[analyzer.Analyzer.Name] {
+			analyzers = append(analyzers, analyzer.Analyzer)
+		}
+	}
+
+	return analyzers
+}
+
+func vendorAnalyzers() []*analysis.Analyzer {
+	var analyzers []*analysis.Analyzer
+
+	// TODO: Update Go version
+	// linters, err := loader.LoadAnalyzers([]string{"--include=G101,G201,G301"})
+	// if err != nil {
+	// 	panic(err)
+	// }
+	// Checks the code for vulnerabilities
+	// analyzers = append(analyzers, linters...)
+
+	// Checks that all returned errors are handled
+	analyzers = append(analyzers, errcheck.Analyzer)
+
+	return analyzers
+}
+
+func customAnalyzers() []*analysis.Analyzer {
+	var analyzers []*analysis.Analyzer
+
+	analyzers = append(analyzers, custom.NewNoOsExitInMain())
+
+	return analyzers
+}

cmd/staticlint/multichecker/analyzers.go

@@ -0,0 +1,6 @@
+{
+    "staticcheck": [
+        "S1011",
+        "S1012"
+    ]
+}

cmd/staticlint/multichecker/config.json

@@ -0,0 +1,19 @@
+// Custom Analyzers
+package custom
+
+import (
+	"golang.org/x/tools/go/analysis"
+)
+
+// An analyzer that prohibits the use of a direct call to `os.Exit` in the main function of the main package
+func NewNoOsExitInMain() *analysis.Analyzer {
+	return &analysis.Analyzer{
+		Name: "noosexitinmain",
+		Doc:  "forbids direct calls to os.Exit in main.main function",
+		Run:  runNoOsExitInMain,
+	}
+}
+
+func runNoOsExitInMain(pass *analysis.Pass) (interface{}, error) {
+	return nil, nil
+}

cmd/staticlint/multichecker/custom/exitcheckanalyser/exitcheckanalyser.go

@@ -0,0 +1,52 @@
+package main
+
+import (
+	"encoding/json"
+	"os"
+	"path/filepath"
+
+	"golang.org/x/tools/go/analysis"
+	"golang.org/x/tools/go/analysis/multichecker"
+)
+
+// Config is the name of the configuration file
+const Config = `config.json`
+
+// ConfigData describes the structure of the configuration file
+type ConfigData struct {
+	Staticheck []string
+}
+
+func getConfig() *ConfigData {
+	appfile, err := os.Executable()
+	if err != nil {
+		panic(err)
+	}
+	data, err := os.ReadFile(filepath.Join(filepath.Dir(appfile), Config))
+	if err != nil {
+		panic(err)
+	}
+	var cfg ConfigData
+	if err = json.Unmarshal(data, &cfg); err != nil {
+		panic(err)
+	}
+
+	return &cfg
+}
+
+func main() {
+	cfg := getConfig()
+	var analyzers []*analysis.Analyzer
+
+	// Adds standard analyzers
+	analyzers = append(analyzers, standardAnalyzers()...)
+	// Adds staticcheck analyzers
+	analyzers = append(analyzers, staticcheckAnalyzers(cfg.Staticheck)...)
+	// Adds vendor analyzers
+	analyzers = append(analyzers, vendorAnalyzers()...)
+	// Adds custom analyzers
+	analyzers = append(analyzers, customAnalyzers()...)
+
+	// Runs multichecker
+	multichecker.Main(analyzers...)
+}

cmd/staticlint/multichecker/main.go

@@ -7,10 +7,13 @@ require (
 	github.com/go-chi/chi v1.5.5
 	github.com/go-resty/resty/v2 v2.16.5
 	github.com/jackc/pgx/v5 v5.7.5
+	github.com/kisielk/errcheck v1.9.0
 	github.com/pressly/goose/v3 v3.24.3
 	github.com/shirou/gopsutil/v4 v4.25.7
 	github.com/stretchr/testify v1.10.0
 	go.uber.org/zap v1.27.0
+	golang.org/x/tools v0.35.0
+	honnef.co/go/tools v0.6.1
 )
 
 require (
@@ -30,9 +33,12 @@ require (
 	github.com/yusufpapurcu/wmi v1.2.4 // indirect
 	go.uber.org/multierr v1.11.0 // indirect
 	golang.org/x/crypto v0.41.0 // indirect
+	golang.org/x/exp/typeparams v0.0.0-20231108232855-2478ac86f678 // indirect
+	golang.org/x/mod v0.26.0 // indirect
 	golang.org/x/net v0.43.0 // indirect
 	golang.org/x/sync v0.16.0 // indirect
 	golang.org/x/sys v0.35.0 // indirect
 	golang.org/x/text v0.28.0 // indirect
+	golang.org/x/tools/go/expect v0.1.1-deprecated // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )