iamrole, internetgateway: use awsclient err wrapper #571

chlunde · 2021-03-02T21:03:45Z

Using semgrep I found som additional places where awsclient.Wrap was not
used on an error from the AWS API.

docker run --rm -v "${PWD}:/src" returntocorp/semgrep --force-color -f ./err.yaml --lang=go ./pkg/controller/

err.yaml:

rules:
  - id: unclean-aws-err
    patterns:
	- pattern-either:
	    - patterns:
		- pattern: |
		    return managed.ExternalCreation{}, errors.Wrap(err, ...);

		- pattern-inside: |-
		    func ($T $TYPE) Create(...) {
			...
		    }
	      patterns:
		- pattern: |
		    return managed.ExternalUpdate{}, errors.Wrap(err, ...);

		- pattern-inside: |-
		    func ($T $TYPE) Update(...) {
			...
		    }
	      patterns:
		- pattern: |
		    return errors.Wrap(...);

		- pattern-inside: |-
		    func ($T $TYPE) Delete(...)  {
			...
		    }
	- pattern-not-inside: |
	    if err := $X.preCreate(...); err != nil {
	       ...
	    }

	- pattern-not-inside: |
	    if err := $X.preUpdate(...); err != nil {
	       ...
	    }

	- pattern-not-inside: |
	    if err := $X.preDelete(...); err != nil {
	       ...
	    }

	- pattern-not-inside: |
	    if err := e.kube.Status().Update(ctx, ...); err != nil {
		...
	    }

	- pattern-not-inside: |
	    if err := e.kube.Update(ctx, ...); err != nil {
		...
	    }

	- pattern-not: |
	    err = retry.OnError(..., func() error {
		...
	    })
	    if err != nil {
	       return ..., errors.Wrap(...)
	    }

	- pattern-not: |
	    return errors.Wrap(..., "pre-delete failed")

	- pattern-not: |
	    return ..., errors.Wrap(err, errPatchCreationFailed)

	- pattern-not: |
	    return ..., errors.Wrap(err, errCreatePatch)

    message: "errors.Wrap should be awsclient.Wrap with error from AWS API"
    languages: [go]
    severity: ERROR

Signed-off-by: Carl Henrik Lunde chlunde@ifi.uio.no

Description of your changes

Fixes #

I have:

Read and followed Crossplane's contribution process.
Run make reviewable test to ensure this PR is ready for review.

How has this code been tested

Using semgrep I found som additional places where awsclient.Wrap was not used on an error from the AWS API. docker run --rm -v "${PWD}:/src" returntocorp/semgrep --force-color -f ./err.yaml --lang=go ./pkg/controller/ err.yaml: rules: - id: unclean-aws-err patterns: - pattern-either: - patterns: - pattern: | return managed.ExternalCreation{}, errors.Wrap(err, ...); - pattern-inside: |- func ($T $TYPE) Create(...) { ... } patterns: - pattern: | return managed.ExternalUpdate{}, errors.Wrap(err, ...); - pattern-inside: |- func ($T $TYPE) Update(...) { ... } patterns: - pattern: | return errors.Wrap(...); - pattern-inside: |- func ($T $TYPE) Delete(...) { ... } - pattern-not-inside: | if err := $X.preCreate(...); err != nil { ... } - pattern-not-inside: | if err := $X.preUpdate(...); err != nil { ... } - pattern-not-inside: | if err := $X.preDelete(...); err != nil { ... } - pattern-not-inside: | if err := e.kube.Status().Update(ctx, ...); err != nil { ... } - pattern-not-inside: | if err := e.kube.Update(ctx, ...); err != nil { ... } - pattern-not: | err = retry.OnError(..., func() error { ... }) if err != nil { return ..., errors.Wrap(...) } - pattern-not: | return errors.Wrap(..., "pre-delete failed") - pattern-not: | return ..., errors.Wrap(err, errPatchCreationFailed) - pattern-not: | return ..., errors.Wrap(err, errCreatePatch) message: "errors.Wrap should be awsclient.Wrap with error from AWS API" languages: [go] severity: ERROR Signed-off-by: Carl Henrik Lunde <chlunde@ifi.uio.no>

hasheddan

@muvaf this looks like one we should get in 👍

muvaf

Thanks @chlunde !

muvaf · 2021-03-03T08:04:33Z

It was in draft but I wanted to merge it before the release since it looks like a fairly contained and known change.

iamrole, internetgateway: use awsclient err wrapper

chlunde force-pushed the awsclient-wrap branch from 9cc0a0b to 85c09f7 Compare March 2, 2021 21:04

hasheddan approved these changes Mar 2, 2021

View reviewed changes

muvaf approved these changes Mar 3, 2021

View reviewed changes

muvaf marked this pull request as ready for review March 3, 2021 08:03

muvaf merged commit a9baa23 into crossplane-contrib:master Mar 3, 2021

chlunde deleted the awsclient-wrap branch March 3, 2021 08:04

namku pushed a commit to namku/provider-aws that referenced this pull request Mar 9, 2021

Merge pull request crossplane-contrib#571 from chlunde/awsclient-wrap

1db8add

iamrole, internetgateway: use awsclient err wrapper

chlunde mentioned this pull request Aug 20, 2021

MEMBERSHIP: chlunde crossplane/org#16

Closed

6 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

iamrole, internetgateway: use awsclient err wrapper #571

iamrole, internetgateway: use awsclient err wrapper #571

chlunde commented Mar 2, 2021

hasheddan left a comment •

edited

muvaf left a comment

muvaf commented Mar 3, 2021

iamrole, internetgateway: use awsclient err wrapper #571

iamrole, internetgateway: use awsclient err wrapper #571

Conversation

chlunde commented Mar 2, 2021

Description of your changes

How has this code been tested

hasheddan left a comment • edited

Choose a reason for hiding this comment

muvaf left a comment

Choose a reason for hiding this comment

muvaf commented Mar 3, 2021

hasheddan left a comment •

edited