rpm-spec-analyzer 0.1.1

Visitor-based static analyzer library for RPM .spec files
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141

//! RPM312 `spec-filename-mismatch` — the on-disk file name should be
//! `<Name>.spec`.
//!
//! Most build systems (`fedpkg`, `rpmbuild -ba`, `osc build`, Mock,
//! Koji) look up the package's `.spec` file by the package name plus
//! the `.spec` suffix. A mismatch between `Name:` and the file name
//! either breaks discovery outright or causes subtle pairing bugs
//! when one source directory hosts multiple specs.
//!
//! The check stays silent when:
//!
//! - The source is stdin / an in-memory string (no file name to
//!   compare against).
//! - `Name:` is missing or contains macros — comparison would be a
//!   guess.
//! - The file name is not valid UTF-8 (rare; would also be unusable as
//!   a package name).
//!
//! ## Case sensitivity
//!
//! The comparison is **byte-exact**, matching RPM's own filename
//! handling on Linux (the canonical target). On case-insensitive file
//! systems (macOS HFS+/APFS, Windows NTFS by default) a file called
//! `Hello.spec` will be flagged when `Name: hello`, even though the
//! shell would resolve the path successfully. This is intentional:
//! `fedpkg`/`koji`/`rpmbuild` workflows are case-sensitive regardless
//! of the developer's checkout filesystem, and silently masking the
//! mismatch on macOS would let a wrong name slip into the source RPM.

use std::path::{Path, PathBuf};

use rpm_spec::ast::{Span, SpecFile};

use crate::diagnostic::{Diagnostic, LintCategory, Severity};
use crate::lint::{Lint, LintMetadata};
use crate::rules::util::{package_name, spec_span};
use crate::visit::Visit;

pub static METADATA: LintMetadata = LintMetadata {
    id: "RPM312",
    name: "spec-filename-mismatch",
    description: "Spec file name differs from `<Name>.spec` — most RPM tooling pairs specs to \
                  package names by filename.",
    default_severity: Severity::Warn,
    category: LintCategory::Packaging,
};

#[derive(Debug, Default)]
pub struct SpecFilenameMismatch {
    diagnostics: Vec<Diagnostic>,
    source_path: Option<PathBuf>,
}

impl SpecFilenameMismatch {
    pub fn new() -> Self {
        Self::default()
    }
}

impl<'ast> Visit<'ast> for SpecFilenameMismatch {
    fn visit_spec(&mut self, spec: &'ast SpecFile<Span>) {
        let Some(path) = self.source_path.as_ref() else {
            return;
        };
        let Some(file_name) = path.file_name().and_then(|s| s.to_str()) else {
            return;
        };
        let Some(name) = package_name(spec) else {
            return;
        };
        let expected = format!("{name}.spec");
        if file_name != expected {
            self.diagnostics.push(Diagnostic::new(
                &METADATA,
                Severity::Warn,
                format!(
                    "spec file is named `{file_name}` but `Name:` is `{name}`; expected \
                     `{expected}` so RPM tooling can pair them by filename"
                ),
                spec_span(spec),
            ));
        }
    }
}

impl Lint for SpecFilenameMismatch {
    fn metadata(&self) -> &'static LintMetadata {
        &METADATA
    }
    fn take_diagnostics(&mut self) -> Vec<Diagnostic> {
        std::mem::take(&mut self.diagnostics)
    }
    fn set_source_path(&mut self, path: Option<&std::path::Path>) {
        self.source_path = path.map(Path::to_path_buf);
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::session::parse;

    fn run(src: &str, path: Option<&Path>) -> Vec<Diagnostic> {
        let outcome = parse(src);
        let mut lint = SpecFilenameMismatch::new();
        lint.set_source_path(path);
        lint.visit_spec(&outcome.spec);
        lint.take_diagnostics()
    }

    #[test]
    fn flags_filename_mismatch() {
        let diags = run("Name: hello\n", Some(Path::new("/tmp/world.spec")));
        assert_eq!(diags.len(), 1);
        assert_eq!(diags[0].lint_id, "RPM312");
        assert!(diags[0].message.contains("hello.spec"));
        assert!(diags[0].message.contains("world.spec"));
    }

    #[test]
    fn silent_when_filename_matches() {
        assert!(run("Name: hello\n", Some(Path::new("/tmp/hello.spec"))).is_empty());
    }

    #[test]
    fn silent_when_no_path() {
        // stdin / in-memory: skip the check.
        assert!(run("Name: hello\n", None).is_empty());
    }

    #[test]
    fn silent_when_name_missing() {
        assert!(run("Version: 1\n", Some(Path::new("/tmp/world.spec"))).is_empty());
    }

    #[test]
    fn silent_when_name_is_macro() {
        // `Name: %{base_name}` — can't compare.
        assert!(run("Name: %{base_name}\n", Some(Path::new("/tmp/world.spec"))).is_empty());
    }
}