Fixes #98

This adds two new command line flags:

• -git: Which controls if paths are treated as versioned paths
• -repo: Which set the path to the git repository

Now all include paths are parsed to extract the version (git version) if present. If present we resolve the file with git show rather than opening the file directly

chose to use git cmd rather than an in memory git implementation because it is harder with authentication etc

Why? Falco (the go regexp pkg to be more accurate!) right now doesn't know how to parse PCRE regular expressions that Varnish uses. An example of that would be this file: https://github.com/varnishcache/varnish-devicedetect/blob/master/devicedetect.vcl

Edit1: I created a small repo that uses ccgo compiler to translate the PCRE2 source code to Go. https://github.com/shadialtarsha/go-pcre

Would love to hear your opinion about this

Edit2: CI is green. I added a build step for pullrequest.yaml and it passed, then I removed it.

Extends falco to support subroutines with return values

Fixes https://github.com/ysugimoto/falco/issues/8

Signed-off-by: Sotiris Nanopoulos [email protected]

As discussed in #42, setting the split depth to 3 causes variables such as client.geo.city.utf8 to not be recognized.

Signed-off-by: Sotiris Nanopoulos [email protected]

Fastly documents some curious behaviour for the req.backend variable:

Upon reading in a STRING context, req.backend is converted to a STRING and prepended with the backend's share_key property, which is your service ID (for backends created via the API, CLI, or web interface), the string "fastlyshield" (for shield backends), or whatever you defined (for backends defined in VCL).

So req.backend is typically a BACKEND but it can be cast to a STRING as well, unlike other BACKEND values! We make use of this behaviour in our code to track what backend has been used for debugging purposes, i.e.:

set resp.http.Debug-Fastly-Backend = req.backend;

Currently falco (understandably) prints a linter error when encountering this code

🔥 [ERROR] resp.http.Debug-Fastly-Backend wants type STRING but assign BACKEND (operator/assignment)

I'm honestly not sure what the best workaround for this would be. I think the big question is: do any other Fastly variables exhibit similar magical casting behaviour? If so, it would probably be worth expanding the predefined.yml specification to allow get and set fields to return an array or their different possible types.

For now, however, I'm assuming (or hoping) that this isn't the case and we can instead construct a specific hack for req.backend. I've started this off by adding an additional check in lintAssignOperator for whether you're reading the req.backend identifier. For this to work consistently we'll need to copy the check to all other places where a value is read, such as in lintFunctionArguments.

It's very messy work though and I'm wondering if anyone knows a better way to handle these values which can have multiple types. Is there anything in code already that supports this behaviour?

P.S. Thanks for giving me write access to the repository; I've made this change a branch in the repository rather than our fork!

Why? Falco (the go regexp pkg to be more accurate!) right now doesn't know how to parse PCRE regular expressions that Varnish uses. An example of that would be this file: https://github.com/varnishcache/varnish-devicedetect/blob/master/devicedetect.vcl

The current way we set annotations only allows for subroutines to be used in a single vcl state function.

Fastly is allows that and it also leads to copy-pasting functions with different annotations, which is not a good pattern.

I only implemented them as annotations in the form @<state_name> instead of supporting them in the function name because I think it will be weird to have sub foo_recv_miss_deliver

Fixes #84

Signed-off-by: Sotiris Nanopoulos [email protected]

Hey @ysugimoto

I wanted to see if we could decouple the release process from the pr merge process.

The way we consume Falco is by having an fork of main that has some of our own CI/release timbits. In general we would like to try to have the main branch of our internal repo and this repo be the same but we have some PRs:

• https://github.com/ysugimoto/falco/pull/75
• https://github.com/ysugimoto/falco/pull/74

That have been approved but not yet merged (presumably because you want to cut a release and that takes some time) but I think that we can decouple the two processes.

This would allow us to consume main as it is. Also that would also help with merge conflicts etc.

Hey,

We are interested in contributing support for https://developer.fastly.com/reference/vcl/declarations/ratecounter and all the other rate-limit variables that fastly offers.

Describe the problem The parser errors on trying to parse the return restart; / return (restart); statement

VCL code that cause the problem return (restart);

Screenshots

💥  Undefined prefix expression parse of restart
in /home/ryanolee/projects/XXX/vcl/XXX.vcl at line 69, position 17
 [...]
 69|        return (restart);
                         ^^^^^^^

Expected behavior Fastly currently accepts the return (restart); syntax. Falco should probably accept this as equivalent of the restart; token if not

Desktop (please complete the following information):

• OS: Ubuntu 20.04
• Shell: zsh

Great job with is tool. It is really cool :raised_hands:

Is there a way to recursively lint all VCL files that belong to some repository, or directory? In my case, we don't care to lint the main.vcl file, as it does not exist.

At my company, we package VCL files into a VCL Package that is managed by a CI/CD plugin that I wrote. This plugin manages these VCL Packages. It is similar to NPM or pip. Because of this, these VCL Packages do not contain a main.vcl file, rather they contain multiple VCL files that get managed by said plugin. My goal here is to use Falco to lint these VCL packages. I have tried passing multiple files to the I flag, but that does not seem to work.

Fastly VCL supports some hidden features such as map and callback that are undocumented. Falco does not support these functions which causes the lint to fail every time. I think it could be beneficial to include some way to tell Falco to ignore the next line, sub-routine, or file.

For example, if you use the prettier linter for JS, you can tell prettier to ignore the next line like such:

// prettier-ignore
let positiveInts = test.map((value) => {
    if (value > 0) {
        return value
    }
})

We could potentially do the same with Falco:

// falco-ignore
map(var.test, test_callback, ",");

This can also act as a bandaid to any unexpected bugs a developer might run into while using Falco. If a developer is experiencing some other linting issues that is causing their lint to fail, they can always tell Falco to skip the next like, sub-routine or file to resolve said issues until the linting bug can be patched.

The way we use VCL and manage dependencies at $company is by having them versioned in a separate git repository and I would like to build a git file resolver that allows you to resolve paths based on path:version and then use git show $REV:$FILE to get the file rather than just reading it from disk

So the proposed changes are:

• GitFileResolver that implements the Resolver interface
• func NewGitFileResolvers(main string, c *Config) ([]Resolver, error) and switch between the two implementations based on the command line flag

Addition of two command line flags:

• -repo : Path to the git repo that contains the modules
• -git : Use git to read versioned files that in the form of path/to/file/:version

WDYT?

Describe the problem

When I make a new release, accidentally CI process failed. I'm guessing our code includes platform dependency since https://github.com/ysugimoto/falco/pull/66 has been merged.

On CI, use ubuntu-latest, linux-amd64:

• linux: success
• darwin-amd64: fail
• darwin-arm64: fail

It should be fixed to release successfully.

VCL code that cause the problem N/A Screenshots

Expected behavior All platform binaries should be compiled and release successfully. A clear and concise description of what you expected to happen.

Desktop (please complete the following information):

• OS: Ubuntu (GitHub Actions)
• Shell bash

Additional context Add any other context about the problem here.

This PR supports parsing/linting VCL snippets managed in Fastly.

I'm guessing VCL snippets behavior in Faslty activate phase:

1. Extract macros of "#FASTLY xxx" with VCL snippets corresponds to phase (recv, init, etc...)
2. resolve include "snippet::<snippet_name>" statement with registered snippets (regular or dynamic)
3. Build integrated VCL file

Therefore, I modified the CLI process:

1. Factory all VCL snippets if remote flag is provided
2. Parse main VCL file
3. Visit AST recursively, find include statement and resolve it (include from a local file or fetched VCL snippets)
4. Extract macro, find #FASTLY xxx comments and embed snippets that correspond to the exact phase
5. Integrate to single VCL file (as main VCL), and lint it

I marked TODO comment due to duplicated declaration in other packages, but I'll solve in another PR.