kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add verify-cloudformation script 

This is an official AWS linter for cloudformation.
It has already caught a few bugs in our cloudformation json generation logic
This commit is contained in:
Peter Rifel 2020-10-28 09:56:49 -05:00
parent 877e71f55a
commit b3cdca7908
No known key found for this signature in database
GPG Key ID: BC6469E5B16DB2B6
3 changed files with 55 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
Makefile
View File

@ -459,6 +459,10 @@ verify-shellcheck:
verify-terraform:
hack/verify-terraform.sh
.PHONE: verify-cloudformation
verify-cloudformation:
hack/verify-cloudformation.sh
.PHONY: verify-bindata
verify-bindata:
hack/verify-bindata.sh

3
hack/.cfnlintrc.yaml Normal file
View File

@ -0,0 +1,3 @@
ignore_checks:
- W3010 # Don't hardcode AZs
- E2510 # us-test-1a is not a valid AZ

48
hack/verify-cloudformation.sh Executable file
View File

@ -0,0 +1,48 @@
#!/usr/bin/env bash
# Copyright 2020 The Kubernetes Authors.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
set -o errexit
set -o nounset
set -o pipefail
. "$(dirname "${BASH_SOURCE[0]}")/common.sh"
TAG=v0.39.0
IMAGE="cfn-python-lint:${TAG}"
# There is no official docker image so build it locally
# https://github.com/aws-cloudformation/cfn-python-lint/issues/1025
function docker_build() {
echo "Building cfn-python-lint image"
TMP=$(mktemp -d)
git clone -q -b "${TAG}" https://github.com/aws-cloudformation/cfn-python-lint "${TMP}"
pushd "${TMP}"
docker build --tag "${IMAGE}" .
popd
rm -rf "${TMP}"
}
docker image inspect "${IMAGE}" >/dev/null 2>&1 || docker_build
docker run --rm -v "${KOPS_ROOT}:/${KOPS_ROOT}" -v "${KOPS_ROOT}/hack/.cfnlintrc.yaml:/root/.cfnlintrc" "${IMAGE}" "/${KOPS_ROOT}/tests/integration/update_cluster/**/cloudformation.json"
RC=$?
if [ $RC != 0 ]; then
echo -e "\nCloudformation linting failed\n"
exit 0 # TODO: exit $RC once issues have been addressed to make this a blocking check
else
echo -e "\nCloudformation linting succeeded\n"
fi