SlideShare une entreprise Scribd logo

Static Analysis in Go

Takuya Ueda
Takuya Ueda

The slides are for GolangUK Conference 2017. https://www.golanguk.com/

Technologie
1  sur  45
Télécharger pour lire hors ligne
The Go gopher was designed by Renée French. The gopher stickers was made by Takuya Ueda. Licensed under the Creative Commons 3.0 Attributions license. Static Analysis in Go @GolangUK Conference 18th Aug. 2017 1
Who am I? Takuya Ueda @tenntenn ➔ Work for ➔ Communities & Go Beginners in Tokyo Go Conference in Tokyo 2
Mercari Europe 3 https://www.mercari.com/uk/
Who am I? Takuya Ueda @tenntenn ➔ Work for ➔ Communities & Go Beginners in Tokyo Go Conference in Tokyo 4
Agenda ➔ Where’s Gopher? ➔ Static Analysis ➔ Static Analysis in Go ➔ Static Analysis for Products 5
Where’s Gopher? Find Me!! Powered by https://gopherize.me 6
Where’s Gopher? Find Me!! Powered by https://gopherize.me 7
Where’s “Gopher”? type Gopher struct { Gopher string `json:"gopher"` } func main() { const gopher = "GOPHER" gogopher := GOPHER() gogopher.Gopher = gopher fmt.Println(gogopher) } func GOPHER() (gopher *Gopher) { gopher = &Gopher{ Gopher: "gopher" } return } 8
We love grep $ grep Gopher main.go type Gopher struct { Gopher string `json:"gopher"` } gogopher.Gopher = gopher func GOPHER() (gopher *Gopher) { gopher = &Gopher{ Gopher: "gopher" } We can search “Gopher” with grep. 9
Where’s “Gopher” TYPE? type Gopher struct { Gopher string `json:"gopher"` } func main() { const gopher = "GOPHER" gogopher := GOPHER() gogopher.Gopher = gopher fmt.Println(gogopher) } func GOPHER() (gopher *Gopher) { gopher = &Gopher{ Gopher: "gopher" } return } 10
How to search “Gopher” type ➔ grep can search only by text ➔ The text must be understood as Go source code ➔ We need “Static Analysis” 11
Static Analysis 12
Static Analysis & Dynamic Analysis ➔ Static Analysis ◆ Analyzing a program WITHOUT execution ◆ Analyzing structure of a program from source codes ◆ e.g. linter, code complement, code formatter ➔ Dynamic Analysis ◆ Analyzing a program WITH execution ◆ Investigating variables and result of functions ◆ e.g. race detector 13
Reflection ➔ Reflection ◆ Analyzing values and types at runtime. ➔ Reflection in Go ◆ reflect package ◆ It is only way to get struct tags at runtime ◆ encoding package uses reflection to encode/decode JSONs, XMLs and so on. 14
Static Analysis Tools for Go ➔ There are many static analysis tools for Go gofmt/goimports code formatter go vet/golint code checker, linter guru code comprehension tool gocode code complement tool errcheck error handlings checker gorename/gomvpkg refactoring tools 15
Go for Static Analysis ➔ Go is easy to static analyze ◆ Static typing ◆ Simple syntax ◆ Type inference ◆ No Implicit type conversion ◆ go package is provided as a standard package Static Analysis gives a lot of information 16
Sub packages of go package ast Package ast declares the types used to represent syntax trees for Go packages. build Package build gathers information about Go packages. constant Package constant implements Values representing untyped Go constants and their corresponding operations. doc Package doc extracts source code documentation from a Go AST. format Package format implements standard formatting of Go source. importer Package importer provides access to export data importers. parser Package parser implements a parser for Go source files. printer Package printer implements printing of AST nodes. scanner Package scanner implements a scanner for Go source text. token Package token defines constants representing the lexical tokens of the Go programming language and basic operations on tokens (printing, predicates). types Package types declares the data types and implements the algorithms for type-checking of Go packages. 17
Static Analysis in Go 18
Flow of Static Analysis Source Code Token Abstract Syntax Tree (AST) Type Info Parse Tokenize Type Check go/scanner go/token go/parser go/ast go/types go/constant 19
Tokenization - go/scanner,go/token IDENT ADD INT Tokens Source Code: v + 1 ➔ Dividing input string into tokens 20
Parsing - go/parser,go/ast ➔ Converting tokens to abstract syntax tree v + 1 IDENT ADD INT Source Code: + v 1 BinaryExpr Ident BasicLit Tokens: Abstract Syntax Tree: (AST) 21
AST of “Hello, World” package main import "fmt" func main() { fmt.Println("Hello, 世界") } Run on Playground *ast.File []ast.Decl *ast.GenDecl *ast.FuncDecl 22
Type Check - go/types,go/constant ➔ Extract type infomation from AST ◆ Identifier Resolution ◆ Type Detection ◆ Constant Evalution n := 100 + 200 m := n + 300 Constant Evalution = 300 Type Detection -> int Identifier Resolution 23
Getting AST from source code ➔ Use parser.Parse* function ◆ ParseExpr,ParseExprFrom ● Parsing expression ● ParseExpr is simple version of ParseExprFrom ◆ ParseFile ● Parsing a file ◆ ParseDir ● Parsing files in a directory ● Calling ParseFile in the function 24
Getting AST from an expression expr, err := parser.ParseExpr(`v + 1`) if err != nil { /* handling the error */ } /* use expr */ ➔ Parsing an expression 25
Getting AST from a file const src = ` package main var v = 100 func main() { fmt.Println(v+1) }` fs := token.NewFileSet() f, err := parser.ParseFile(fs, "my.go", src, 0) if err != nil { /* handling the error */ } /* use f */ file name which is opened when src is nil Source Code Parsing Mode 26
token.FileSet ➔ Recording positions on files ◆ The position (token.Pos) is represented by integer ◆ The value is unique among multiple files ◆ token.FileSet holds offset of each files ◆ The offsets are recorded at parsing ◆ token.FileSet is passed to parsing function as an output parameter type Pos int 27
Demo 1: Parse and Dump an AST 28 https://youtu.be/lM1Pj6xYxZs
Traversing AST - ast.Inspect ➔ Using ast.Inspect expr, _ := parser.ParseExpr(`v + 1`) ast.Inspect(expr, func(n ast.Node) bool { if n != nil { fmt.Printf("%Tn", n) } return true }) Traverse the AST *ast.BinaryExpr *ast.Ident *ast.BasicLit Run on Playground ast.Walk is more powerful and complex + v 1 BinaryExpr Ident BasicLit 29
Traversing AST - Recursively func traverse(n ast.Node) { switch n := n.(type) { case *ast.Ident: fmt.Println(n.Name) case *ast.BinaryExpr: traverse(n.X) traverse(n.Y) case *ast.UnaryExpr: traverse(n.X) default: fmt.Println(n) } } print idetifyer’s name traverse each terms recursively switching by types Run on Playground traverse a term recursively 30
Demo 2: Inspect identifiers 31 https://youtu.be/mpUgaaASvHo
Type Checking /* initialize configs for type checking */ cfg := &types.Config{Importer: importer.Default()} info := &types.Info{ /* TODO: initialize maps which will hold results */ } pkg,err := cfg.Check("main", fs, []*ast.File{f}, info) if err != nil { /* handling the error */ } /* TODO: use pkg or info */ ➔ (*types.Config).Check do a type checking 32
types.Info holds results of type checking type Info struct { // Types maps expressions to their types, and for constant // expressions, also their values. Types map[ast.Expr]TypeAndValue // Defs maps identifiers to the objects they define. Defs map[*ast.Ident]Object // Uses maps identifiers to the objects they denote. Uses map[*ast.Ident]Object // Implicits maps nodes to their implicitly declared objects, if any. Implicits map[ast.Node]Object // Selections maps selector expressions (excluding qualified identifiers) // to their corresponding selections. Selections map[*ast.SelectorExpr]*Selection // Scopes maps ast.Nodes to the scopes they define. Scopes map[ast.Node]*Scope // InitOrder is the list of package-level initializers in the order in which // they must be executed. InitOrder []*Initializer } 33
Demo 3: Inspect Gopher type 34 https://youtu.be/AuSDtmiMaXI
Static Analysis for Products Case 1: gpath,go-httpdoc 35
go.mercari.io/go-httpdoc ➔ Generate API Docs from tests of handlers ◆ Just write tests of HTTP handlers ◆ gRPC and JSON RPC are supported 36
Tests for requests and responses ➔ Requests (Responses) can be test by specifying fields and expected values, document for each fields validator.RequestBody(t, []httpdoc.TestCase{ {"Name", "tenntenn", "User Name"}, {"Attribute.Email", "tenntenn@example.com", "e-mail address"}, }, &createUserRequest{}) 37
github.com/tenntenn/gpath ➔ Simplefy reflection of struct fields ◆ Reflecting by expression of selectors ◆ Easy to reflect complex struct value ◆ Supports maps and slices (but restricted) type Bar struct { N []int } type Foo struct { Bar *Bar } f := &Foo{ Bar: &Bar{ N: []int{100} }} v, _ := At(f, `Bar.N[0]`) fmt.Println(v) $ go run main.go 100 38
Create own static analysis tools ➔ Reduce costs of code reviews by own tools ◆ Custimized linter for your project ◆ Detecting typical bugs with own tools ◆ You should pay your time for more important things ● algorithm, design, performance and so on 39
Static Analysis in Production Case 2: Banner Tool 40
Banner Tool ➔ A management tool of in-app banners In-App Banner A screenshot of our app (Mercari Atte) 41
Banner Tool ➔ A management tool of in-app banners Banner Tool ● Delivery Conditions ● Response Getting Banners w/ OS, API Version List of Delivered Banners w/ Image URL, Destination URL, etc... Apps 42
Evaluation of Delivery Conditions Getting Banners GET /banner/?os=1 String(os) == "1" Banner Image, etc... Delivery Condition: Banner Tool "1" == "1" true BIND EVAL ➔ Describing delivery conditions by a Go like expression ◆ Eval expressions with go package ◆ Using a function calling for describing a variable with a type 43
Conclutions ➔ Static Analysis is EASY in Go ◆ static typing, simple syntax, go package, etc... ➔ go package can ◆ tokenize, parse and type check ➔ Static analysis in production ◆ own static analysis tools (e.g. gpath, go-httpdoc) ◆ web apps (e.g. Banner Tool) 44
Thank you! twitter: @tenntenn Qiita: tenntenn connpass: tenntenn 45

Recommandé

Southsea Golf Club History
Southsea Golf Club HistorySouthsea Golf Club History
Southsea Golf Club History
Purple-Chicken-Design
 
Kafka Migration for Satellite Event Streaming Data | Eric Velte, ASRC Federal
Kafka Migration for Satellite Event Streaming Data | Eric Velte, ASRC FederalKafka Migration for Satellite Event Streaming Data | Eric Velte, ASRC Federal
Kafka Migration for Satellite Event Streaming Data | Eric Velte, ASRC Federal
HostedbyConfluent
 
E twinning project plan 1
E twinning project plan 1E twinning project plan 1
E twinning project plan 1
cincin
 
Multilayer tutorial-netsci2014-slightlyupdated
Multilayer tutorial-netsci2014-slightlyupdatedMultilayer tutorial-netsci2014-slightlyupdated
Multilayer tutorial-netsci2014-slightlyupdated
Mason Porter
 
Capturing NIC and Kernel TX and RX Timestamps for Packets in Go
Capturing NIC and Kernel TX and RX Timestamps for Packets in GoCapturing NIC and Kernel TX and RX Timestamps for Packets in Go
Capturing NIC and Kernel TX and RX Timestamps for Packets in Go
ScyllaDB
 
Understanding lattice Boltzmann boundary conditions through moments
Understanding lattice Boltzmann boundary conditions through momentsUnderstanding lattice Boltzmann boundary conditions through moments
Understanding lattice Boltzmann boundary conditions through moments
Tim Reis
 
Network Attack Counter
Network Attack CounterNetwork Attack Counter
Network Attack Counter
KHNOG
 
Informatique CDC & la Suite Elastic : une seule suite pour de multiples usages
Informatique CDC & la Suite Elastic : une seule suite pour de multiples usagesInformatique CDC & la Suite Elastic : une seule suite pour de multiples usages
Informatique CDC & la Suite Elastic : une seule suite pour de multiples usages
Elasticsearch
 

Recommandé

Southsea Golf Club History
Southsea Golf Club HistorySouthsea Golf Club History
Southsea Golf Club History
Purple-Chicken-Design
 
Kafka Migration for Satellite Event Streaming Data | Eric Velte, ASRC Federal
Kafka Migration for Satellite Event Streaming Data | Eric Velte, ASRC FederalKafka Migration for Satellite Event Streaming Data | Eric Velte, ASRC Federal
Kafka Migration for Satellite Event Streaming Data | Eric Velte, ASRC Federal
HostedbyConfluent
 
E twinning project plan 1
E twinning project plan 1E twinning project plan 1
E twinning project plan 1
cincin
 
Multilayer tutorial-netsci2014-slightlyupdated
Multilayer tutorial-netsci2014-slightlyupdatedMultilayer tutorial-netsci2014-slightlyupdated
Multilayer tutorial-netsci2014-slightlyupdated
Mason Porter
 
Capturing NIC and Kernel TX and RX Timestamps for Packets in Go
Capturing NIC and Kernel TX and RX Timestamps for Packets in GoCapturing NIC and Kernel TX and RX Timestamps for Packets in Go
Capturing NIC and Kernel TX and RX Timestamps for Packets in Go
ScyllaDB
 
Understanding lattice Boltzmann boundary conditions through moments
Understanding lattice Boltzmann boundary conditions through momentsUnderstanding lattice Boltzmann boundary conditions through moments
Understanding lattice Boltzmann boundary conditions through moments
Tim Reis
 
Network Attack Counter
Network Attack CounterNetwork Attack Counter
Network Attack Counter
KHNOG
 
Informatique CDC & la Suite Elastic : une seule suite pour de multiples usages
Informatique CDC & la Suite Elastic : une seule suite pour de multiples usagesInformatique CDC & la Suite Elastic : une seule suite pour de multiples usages
Informatique CDC & la Suite Elastic : une seule suite pour de multiples usages
Elasticsearch
 
Что такое Big Data ?
Что такое Big Data ?Что такое Big Data ?
Что такое Big Data ?
Mikhail Alekseev
 
Transaction preview of Apache Pulsar
Transaction preview of Apache PulsarTransaction preview of Apache Pulsar
Transaction preview of Apache Pulsar
StreamNative
 
Collaboratively Creating the Knowledge Graph of Life
Collaboratively Creating the Knowledge Graph of LifeCollaboratively Creating the Knowledge Graph of Life
Collaboratively Creating the Knowledge Graph of Life
Chris Mungall
 
The Inside Story: How OPC UA and DDS Can Work Together in Industrial Systems
The Inside Story: How OPC UA and DDS Can Work Together in Industrial SystemsThe Inside Story: How OPC UA and DDS Can Work Together in Industrial Systems
The Inside Story: How OPC UA and DDS Can Work Together in Industrial Systems
Real-Time Innovations (RTI)
 
RedisConf17 - Geofencing using Redis Geospatial Queries
RedisConf17 - Geofencing using Redis Geospatial QueriesRedisConf17 - Geofencing using Redis Geospatial Queries
RedisConf17 - Geofencing using Redis Geospatial Queries
Redis Labs
 
Network automation with Ansible and Python
Network automation with Ansible and PythonNetwork automation with Ansible and Python
Network automation with Ansible and Python
Jisc
 
Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
QAware GmbH
 
Cap信令原理
Cap信令原理Cap信令原理
Cap信令原理
Bob Huang
 
Introduction à web assembly
Introduction à web assemblyIntroduction à web assembly
Introduction à web assembly
Jérémy Buget
 
Janus RTP forwarders @ FOSDEM 2020
Janus RTP forwarders @ FOSDEM 2020Janus RTP forwarders @ FOSDEM 2020
Janus RTP forwarders @ FOSDEM 2020
Lorenzo Miniero
 
2次遅れの積分要素の過渡応答性(MATLAB)
2次遅れの積分要素の過渡応答性(MATLAB)2次遅れの積分要素の過渡応答性(MATLAB)
2次遅れの積分要素の過渡応答性(MATLAB)
Tsuyoshi Horigome
 
Open Source Grid Middleware Packages
Open Source Grid Middleware PackagesOpen Source Grid Middleware Packages
Open Source Grid Middleware Packages
ShivaramBose
 
(Paper Seminar detailed version) BART: Denoising Sequence-to-Sequence Pre-tra...
(Paper Seminar detailed version) BART: Denoising Sequence-to-Sequence Pre-tra...(Paper Seminar detailed version) BART: Denoising Sequence-to-Sequence Pre-tra...
(Paper Seminar detailed version) BART: Denoising Sequence-to-Sequence Pre-tra...
hyunyoung Lee
 
Data Structures in and on IPFS
Data Structures in and on IPFSData Structures in and on IPFS
Data Structures in and on IPFS
C4Media
 
Privacy Enhanced RTP Conferencing with WebRTC - PERC
Privacy Enhanced RTP Conferencing with WebRTC - PERCPrivacy Enhanced RTP Conferencing with WebRTC - PERC
Privacy Enhanced RTP Conferencing with WebRTC - PERC
Arnaud BUDKIEWICZ
 
Data Center TCP (DCTCP)
Data Center TCP (DCTCP)Data Center TCP (DCTCP)
Data Center TCP (DCTCP)
kato_t1988
 
Comparison of MQTT and DDS as M2M Protocols for the Internet of Things
Comparison of MQTT and DDS as M2M Protocols for the Internet of ThingsComparison of MQTT and DDS as M2M Protocols for the Internet of Things
Comparison of MQTT and DDS as M2M Protocols for the Internet of Things
Real-Time Innovations (RTI)
 
Open source Android 10 on Orange Pi: Meth or Reality?
Open source Android 10 on Orange Pi: Meth or Reality?Open source Android 10 on Orange Pi: Meth or Reality?
Open source Android 10 on Orange Pi: Meth or Reality?
GlobalLogic Ukraine
 
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Cisco DevNet
 
日本語の語彙平易化システムおよび評価セットの構築
日本語の語彙平易化システムおよび評価セットの構築日本語の語彙平易化システムおよび評価セットの構築
日本語の語彙平易化システムおよび評価セットの構築
Tomoyuki Kajiwara
 
GoによるiOSアプリの開発
GoによるiOSアプリの開発GoによるiOSアプリの開発
GoによるiOSアプリの開発
Takuya Ueda
 
Mobile Apps by Pure Go with Reverse Binding
Mobile Apps by Pure Go with Reverse BindingMobile Apps by Pure Go with Reverse Binding
Mobile Apps by Pure Go with Reverse Binding
Takuya Ueda
 

Contenu connexe

Tendances

Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
QAware GmbH
 
Cap信令原理
Cap信令原理Cap信令原理
Cap信令原理
Bob Huang
 
Privacy Enhanced RTP Conferencing with WebRTC - PERC
Privacy Enhanced RTP Conferencing with WebRTC - PERCPrivacy Enhanced RTP Conferencing with WebRTC - PERC
Privacy Enhanced RTP Conferencing with WebRTC - PERC
Arnaud BUDKIEWICZ
 
Data Center TCP (DCTCP)
Data Center TCP (DCTCP)Data Center TCP (DCTCP)
Data Center TCP (DCTCP)
kato_t1988
 

Tendances (20)

Что такое Big Data ?
Что такое Big Data ?Что такое Big Data ?
Что такое Big Data ?
 
Transaction preview of Apache Pulsar
Transaction preview of Apache PulsarTransaction preview of Apache Pulsar
Transaction preview of Apache Pulsar
 
Collaboratively Creating the Knowledge Graph of Life
Collaboratively Creating the Knowledge Graph of LifeCollaboratively Creating the Knowledge Graph of Life
Collaboratively Creating the Knowledge Graph of Life
 
The Inside Story: How OPC UA and DDS Can Work Together in Industrial Systems
The Inside Story: How OPC UA and DDS Can Work Together in Industrial SystemsThe Inside Story: How OPC UA and DDS Can Work Together in Industrial Systems
The Inside Story: How OPC UA and DDS Can Work Together in Industrial Systems
 
RedisConf17 - Geofencing using Redis Geospatial Queries
RedisConf17 - Geofencing using Redis Geospatial QueriesRedisConf17 - Geofencing using Redis Geospatial Queries
RedisConf17 - Geofencing using Redis Geospatial Queries
 
Network automation with Ansible and Python
Network automation with Ansible and PythonNetwork automation with Ansible and Python
Network automation with Ansible and Python
 
Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
Anwendungsübergreifende Authentifizierung: Integrations-Pattern für OpenID Co...
 
Cap信令原理
Cap信令原理Cap信令原理
Cap信令原理
 
Introduction à web assembly
Introduction à web assemblyIntroduction à web assembly
Introduction à web assembly
 
Janus RTP forwarders @ FOSDEM 2020
Janus RTP forwarders @ FOSDEM 2020Janus RTP forwarders @ FOSDEM 2020
Janus RTP forwarders @ FOSDEM 2020
 
2次遅れの積分要素の過渡応答性(MATLAB)
2次遅れの積分要素の過渡応答性(MATLAB)2次遅れの積分要素の過渡応答性(MATLAB)
2次遅れの積分要素の過渡応答性(MATLAB)
 
Open Source Grid Middleware Packages
Open Source Grid Middleware PackagesOpen Source Grid Middleware Packages
Open Source Grid Middleware Packages
 
(Paper Seminar detailed version) BART: Denoising Sequence-to-Sequence Pre-tra...
(Paper Seminar detailed version) BART: Denoising Sequence-to-Sequence Pre-tra...(Paper Seminar detailed version) BART: Denoising Sequence-to-Sequence Pre-tra...
(Paper Seminar detailed version) BART: Denoising Sequence-to-Sequence Pre-tra...
 
Data Structures in and on IPFS
Data Structures in and on IPFSData Structures in and on IPFS
Data Structures in and on IPFS
 
Privacy Enhanced RTP Conferencing with WebRTC - PERC
Privacy Enhanced RTP Conferencing with WebRTC - PERCPrivacy Enhanced RTP Conferencing with WebRTC - PERC
Privacy Enhanced RTP Conferencing with WebRTC - PERC
 
Data Center TCP (DCTCP)
Data Center TCP (DCTCP)Data Center TCP (DCTCP)
Data Center TCP (DCTCP)
 
Comparison of MQTT and DDS as M2M Protocols for the Internet of Things
Comparison of MQTT and DDS as M2M Protocols for the Internet of ThingsComparison of MQTT and DDS as M2M Protocols for the Internet of Things
Comparison of MQTT and DDS as M2M Protocols for the Internet of Things
 
Open source Android 10 on Orange Pi: Meth or Reality?
Open source Android 10 on Orange Pi: Meth or Reality?Open source Android 10 on Orange Pi: Meth or Reality?
Open source Android 10 on Orange Pi: Meth or Reality?
 
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
 
日本語の語彙平易化システムおよび評価セットの構築
日本語の語彙平易化システムおよび評価セットの構築日本語の語彙平易化システムおよび評価セットの構築
日本語の語彙平易化システムおよび評価セットの構築
 

En vedette

En vedette (20)

GoによるiOSアプリの開発
GoによるiOSアプリの開発GoによるiOSアプリの開発
GoによるiOSアプリの開発
 
Mobile Apps by Pure Go with Reverse Binding
Mobile Apps by Pure Go with Reverse BindingMobile Apps by Pure Go with Reverse Binding
Mobile Apps by Pure Go with Reverse Binding
 
Go1.8 for Google App Engine
Go1.8 for Google App EngineGo1.8 for Google App Engine
Go1.8 for Google App Engine
 
HTTP2 RFC 発行記念祝賀会
HTTP2 RFC 発行記念祝賀会HTTP2 RFC 発行記念祝賀会
HTTP2 RFC 発行記念祝賀会
 
粗探しをしてGoのコントリビューターになる方法
粗探しをしてGoのコントリビューターになる方法粗探しをしてGoのコントリビューターになる方法
粗探しをしてGoのコントリビューターになる方法
 
条件式評価器の実装による管理ツールの抽象化
条件式評価器の実装による管理ツールの抽象化条件式評価器の実装による管理ツールの抽象化
条件式評価器の実装による管理ツールの抽象化
 
Cloud Functionsの紹介
Cloud Functionsの紹介Cloud Functionsの紹介
Cloud Functionsの紹介
 
Namespace API を用いたマルチテナント型 Web アプリの実践
Namespace API を用いたマルチテナント型 Web アプリの実践Namespace API を用いたマルチテナント型 Web アプリの実践
Namespace API を用いたマルチテナント型 Web アプリの実践
 
Goにおける静的解析と製品開発への応用
Goにおける静的解析と製品開発への応用Goにおける静的解析と製品開発への応用
Goにおける静的解析と製品開発への応用
 
Go静的解析ハンズオン
Go静的解析ハンズオンGo静的解析ハンズオン
Go静的解析ハンズオン
 
うしちゃん WebRTC Chat on SkyWayの開発コードw
うしちゃん WebRTC Chat on SkyWayの開発コードwうしちゃん WebRTC Chat on SkyWayの開発コードw
うしちゃん WebRTC Chat on SkyWayの開発コードw
 
Javaトラブルに備えよう #jjug_ccc #ccc_h2
Javaトラブルに備えよう #jjug_ccc #ccc_h2Javaトラブルに備えよう #jjug_ccc #ccc_h2
Javaトラブルに備えよう #jjug_ccc #ccc_h2
 
goパッケージで型情報を用いたソースコード検索を実現する
goパッケージで型情報を用いたソースコード検索を実現するgoパッケージで型情報を用いたソースコード検索を実現する
goパッケージで型情報を用いたソースコード検索を実現する
 
静的解析とUIの自動生成を駆使してモバイルアプリの運用コストを大幅に下げた話
静的解析とUIの自動生成を駆使してモバイルアプリの運用コストを大幅に下げた話静的解析とUIの自動生成を駆使してモバイルアプリの運用コストを大幅に下げた話
静的解析とUIの自動生成を駆使してモバイルアプリの運用コストを大幅に下げた話
 
Cloud functionsの紹介
Cloud functionsの紹介Cloud functionsの紹介
Cloud functionsの紹介
 
メルカリ・ソウゾウでは どうGoを活用しているのか?
メルカリ・ソウゾウでは どうGoを活用しているのか?メルカリ・ソウゾウでは どうGoを活用しているのか?
メルカリ・ソウゾウでは どうGoを活用しているのか?
 
HTTP2 時代の Web - web over http2
HTTP2 時代の Web - web over http2HTTP2 時代の Web - web over http2
HTTP2 時代の Web - web over http2
 
オススメの標準・準標準パッケージ20選
オススメの標準・準標準パッケージ20選オススメの標準・準標準パッケージ20選
オススメの標準・準標準パッケージ20選
 
Google Assistant関係のセッションまとめ
Google Assistant関係のセッションまとめGoogle Assistant関係のセッションまとめ
Google Assistant関係のセッションまとめ
 
WebRTC Browsers n Stacks Implementation differences
WebRTC Browsers n Stacks Implementation differencesWebRTC Browsers n Stacks Implementation differences
WebRTC Browsers n Stacks Implementation differences
 

Similaire à Static Analysis in Go

Python-GTK
Python-GTKPython-GTK
Python-GTK
Yuren Ju
 
Lex tool manual
Lex tool manualLex tool manual
Lex tool manual
Sami Said
 
Python GTK (Hacking Camp)
Python GTK (Hacking Camp)Python GTK (Hacking Camp)
Python GTK (Hacking Camp)
Yuren Ju
 
An Annotation Framework for Statically-Typed Syntax Trees
An Annotation Framework for Statically-Typed Syntax TreesAn Annotation Framework for Statically-Typed Syntax Trees
An Annotation Framework for Statically-Typed Syntax Trees
Ray Toal
 

Similaire à Static Analysis in Go (20)

Golang
GolangGolang
Golang
 
Go 1.10 Release Party - PDX Go
Go 1.10 Release Party - PDX GoGo 1.10 Release Party - PDX Go
Go 1.10 Release Party - PDX Go
 
Python-GTK
Python-GTKPython-GTK
Python-GTK
 
Lex tool manual
Lex tool manualLex tool manual
Lex tool manual
 
Python GTK (Hacking Camp)
Python GTK (Hacking Camp)Python GTK (Hacking Camp)
Python GTK (Hacking Camp)
 
Golang basics for Java developers - Part 1
Golang basics for Java developers - Part 1Golang basics for Java developers - Part 1
Golang basics for Java developers - Part 1
 
JavaZone 2014 - goto java;
JavaZone 2014 - goto java;JavaZone 2014 - goto java;
JavaZone 2014 - goto java;
 
Compact ordered dict__k_lab_meeting_
Compact ordered dict__k_lab_meeting_Compact ordered dict__k_lab_meeting_
Compact ordered dict__k_lab_meeting_
 
Golang 101
Golang 101Golang 101
Golang 101
 
The GO Language : From Beginners to Gophers
The GO Language : From Beginners to GophersThe GO Language : From Beginners to Gophers
The GO Language : From Beginners to Gophers
 
Vocabulary Types in C++17
Vocabulary Types in C++17Vocabulary Types in C++17
Vocabulary Types in C++17
 
Let's Go-lang
Let's Go-langLet's Go-lang
Let's Go-lang
 
An Annotation Framework for Statically-Typed Syntax Trees
An Annotation Framework for Statically-Typed Syntax TreesAn Annotation Framework for Statically-Typed Syntax Trees
An Annotation Framework for Statically-Typed Syntax Trees
 
The Swift Compiler and Standard Library
The Swift Compiler and Standard LibraryThe Swift Compiler and Standard Library
The Swift Compiler and Standard Library
 
Unleash your inner console cowboy
Unleash your inner console cowboyUnleash your inner console cowboy
Unleash your inner console cowboy
 
Pseudo dynamic immutable records in C++
Pseudo dynamic immutable records in C++Pseudo dynamic immutable records in C++
Pseudo dynamic immutable records in C++
 
Gunosy.go #4 go
Gunosy.go #4 goGunosy.go #4 go
Gunosy.go #4 go
 
Groovy AST Transformations
Groovy AST TransformationsGroovy AST Transformations
Groovy AST Transformations
 
Go Programming Language (Golang)
Go Programming Language (Golang)Go Programming Language (Golang)
Go Programming Language (Golang)
 
Python basic
Python basicPython basic
Python basic
 

Plus de Takuya Ueda

Plus de Takuya Ueda (15)

Goにおけるバージョン管理の必要性 − vgoについて −
Goにおけるバージョン管理の必要性 − vgoについて −Goにおけるバージョン管理の必要性 − vgoについて −
Goにおけるバージョン管理の必要性 − vgoについて −
 
WebAssembly with Go
WebAssembly with GoWebAssembly with Go
WebAssembly with Go
 
GAE/Goとsyncパッケージ
GAE/GoとsyncパッケージGAE/Goとsyncパッケージ
GAE/Goとsyncパッケージ
 
静的解析を使った開発ツールの開発
静的解析を使った開発ツールの開発静的解析を使った開発ツールの開発
静的解析を使った開発ツールの開発
 
そうだ、Goを始めよう
そうだ、Goを始めようそうだ、Goを始めよう
そうだ、Goを始めよう
 
マスター・オブ・goパッケージ
マスター・オブ・goパッケージマスター・オブ・goパッケージ
マスター・オブ・goパッケージ
 
メルカリ カウルのマスタデータの更新
メルカリ カウルのマスタデータの更新メルカリ カウルのマスタデータの更新
メルカリ カウルのマスタデータの更新
 
Go Friday 傑作選
Go Friday 傑作選Go Friday 傑作選
Go Friday 傑作選
 
エキスパートGo
エキスパートGoエキスパートGo
エキスパートGo
 
Gopher Fest 2017参加レポート
Gopher Fest 2017参加レポートGopher Fest 2017参加レポート
Gopher Fest 2017参加レポート
 
Goでかんたんソースコードの静的解析
Goでかんたんソースコードの静的解析Goでかんたんソースコードの静的解析
Goでかんたんソースコードの静的解析
 
Goでwebアプリを開発してみよう
Goでwebアプリを開発してみようGoでwebアプリを開発してみよう
Goでwebアプリを開発してみよう
 
GAE/GoでWebアプリ開発入門
GAE/GoでWebアプリ開発入門GAE/GoでWebアプリ開発入門
GAE/GoでWebアプリ開発入門
 
GAE/GoでLINE Messaging API を使う
GAE/GoでLINE Messaging API を使うGAE/GoでLINE Messaging API を使う
GAE/GoでLINE Messaging API を使う
 
メルカリアッテの実務で使えた、GAE/Goの開発を効率的にする方法
メルカリアッテの実務で使えた、GAE/Goの開発を効率的にする方法メルカリアッテの実務で使えた、GAE/Goの開発を効率的にする方法
メルカリアッテの実務で使えた、GAE/Goの開発を効率的にする方法
 

Dernier

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Victor Rentea
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Jeffrey Haguewood
 
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Angeliki Cooney
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 

Dernier (20)

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
 
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 

Static Analysis in Go

  • 1. The Go gopher was designed by Renée French. The gopher stickers was made by Takuya Ueda. Licensed under the Creative Commons 3.0 Attributions license. Static Analysis in Go @GolangUK Conference 18th Aug. 2017 1
  • 2. Who am I? Takuya Ueda @tenntenn ➔ Work for ➔ Communities & Go Beginners in Tokyo Go Conference in Tokyo 2
  • 4. Who am I? Takuya Ueda @tenntenn ➔ Work for ➔ Communities & Go Beginners in Tokyo Go Conference in Tokyo 4
  • 5. Agenda ➔ Where’s Gopher? ➔ Static Analysis ➔ Static Analysis in Go ➔ Static Analysis for Products 5
  • 6. Where’s Gopher? Find Me!! Powered by https://gopherize.me 6
  • 7. Where’s Gopher? Find Me!! Powered by https://gopherize.me 7
  • 8. Where’s “Gopher”? type Gopher struct { Gopher string `json:"gopher"` } func main() { const gopher = "GOPHER" gogopher := GOPHER() gogopher.Gopher = gopher fmt.Println(gogopher) } func GOPHER() (gopher *Gopher) { gopher = &Gopher{ Gopher: "gopher" } return } 8
  • 9. We love grep $ grep Gopher main.go type Gopher struct { Gopher string `json:"gopher"` } gogopher.Gopher = gopher func GOPHER() (gopher *Gopher) { gopher = &Gopher{ Gopher: "gopher" } We can search “Gopher” with grep. 9
  • 10. Where’s “Gopher” TYPE? type Gopher struct { Gopher string `json:"gopher"` } func main() { const gopher = "GOPHER" gogopher := GOPHER() gogopher.Gopher = gopher fmt.Println(gogopher) } func GOPHER() (gopher *Gopher) { gopher = &Gopher{ Gopher: "gopher" } return } 10
  • 11. How to search “Gopher” type ➔ grep can search only by text ➔ The text must be understood as Go source code ➔ We need “Static Analysis” 11
  • 13. Static Analysis & Dynamic Analysis ➔ Static Analysis ◆ Analyzing a program WITHOUT execution ◆ Analyzing structure of a program from source codes ◆ e.g. linter, code complement, code formatter ➔ Dynamic Analysis ◆ Analyzing a program WITH execution ◆ Investigating variables and result of functions ◆ e.g. race detector 13
  • 14. Reflection ➔ Reflection ◆ Analyzing values and types at runtime. ➔ Reflection in Go ◆ reflect package ◆ It is only way to get struct tags at runtime ◆ encoding package uses reflection to encode/decode JSONs, XMLs and so on. 14
  • 15. Static Analysis Tools for Go ➔ There are many static analysis tools for Go gofmt/goimports code formatter go vet/golint code checker, linter guru code comprehension tool gocode code complement tool errcheck error handlings checker gorename/gomvpkg refactoring tools 15
  • 16. Go for Static Analysis ➔ Go is easy to static analyze ◆ Static typing ◆ Simple syntax ◆ Type inference ◆ No Implicit type conversion ◆ go package is provided as a standard package Static Analysis gives a lot of information 16
  • 17. Sub packages of go package ast Package ast declares the types used to represent syntax trees for Go packages. build Package build gathers information about Go packages. constant Package constant implements Values representing untyped Go constants and their corresponding operations. doc Package doc extracts source code documentation from a Go AST. format Package format implements standard formatting of Go source. importer Package importer provides access to export data importers. parser Package parser implements a parser for Go source files. printer Package printer implements printing of AST nodes. scanner Package scanner implements a scanner for Go source text. token Package token defines constants representing the lexical tokens of the Go programming language and basic operations on tokens (printing, predicates). types Package types declares the data types and implements the algorithms for type-checking of Go packages. 17
  • 19. Flow of Static Analysis Source Code Token Abstract Syntax Tree (AST) Type Info Parse Tokenize Type Check go/scanner go/token go/parser go/ast go/types go/constant 19
  • 20. Tokenization - go/scanner,go/token IDENT ADD INT Tokens Source Code: v + 1 ➔ Dividing input string into tokens 20
  • 21. Parsing - go/parser,go/ast ➔ Converting tokens to abstract syntax tree v + 1 IDENT ADD INT Source Code: + v 1 BinaryExpr Ident BasicLit Tokens: Abstract Syntax Tree: (AST) 21
  • 22. AST of “Hello, World” package main import "fmt" func main() { fmt.Println("Hello, 世界") } Run on Playground *ast.File []ast.Decl *ast.GenDecl *ast.FuncDecl 22
  • 23. Type Check - go/types,go/constant ➔ Extract type infomation from AST ◆ Identifier Resolution ◆ Type Detection ◆ Constant Evalution n := 100 + 200 m := n + 300 Constant Evalution = 300 Type Detection -> int Identifier Resolution 23
  • 24. Getting AST from source code ➔ Use parser.Parse* function ◆ ParseExpr,ParseExprFrom ● Parsing expression ● ParseExpr is simple version of ParseExprFrom ◆ ParseFile ● Parsing a file ◆ ParseDir ● Parsing files in a directory ● Calling ParseFile in the function 24
  • 25. Getting AST from an expression expr, err := parser.ParseExpr(`v + 1`) if err != nil { /* handling the error */ } /* use expr */ ➔ Parsing an expression 25
  • 26. Getting AST from a file const src = ` package main var v = 100 func main() { fmt.Println(v+1) }` fs := token.NewFileSet() f, err := parser.ParseFile(fs, "my.go", src, 0) if err != nil { /* handling the error */ } /* use f */ file name which is opened when src is nil Source Code Parsing Mode 26
  • 27. token.FileSet ➔ Recording positions on files ◆ The position (token.Pos) is represented by integer ◆ The value is unique among multiple files ◆ token.FileSet holds offset of each files ◆ The offsets are recorded at parsing ◆ token.FileSet is passed to parsing function as an output parameter type Pos int 27
  • 28. Demo 1: Parse and Dump an AST 28 https://youtu.be/lM1Pj6xYxZs
  • 29. Traversing AST - ast.Inspect ➔ Using ast.Inspect expr, _ := parser.ParseExpr(`v + 1`) ast.Inspect(expr, func(n ast.Node) bool { if n != nil { fmt.Printf("%Tn", n) } return true }) Traverse the AST *ast.BinaryExpr *ast.Ident *ast.BasicLit Run on Playground ast.Walk is more powerful and complex + v 1 BinaryExpr Ident BasicLit 29
  • 30. Traversing AST - Recursively func traverse(n ast.Node) { switch n := n.(type) { case *ast.Ident: fmt.Println(n.Name) case *ast.BinaryExpr: traverse(n.X) traverse(n.Y) case *ast.UnaryExpr: traverse(n.X) default: fmt.Println(n) } } print idetifyer’s name traverse each terms recursively switching by types Run on Playground traverse a term recursively 30
  • 31. Demo 2: Inspect identifiers 31 https://youtu.be/mpUgaaASvHo
  • 32. Type Checking /* initialize configs for type checking */ cfg := &types.Config{Importer: importer.Default()} info := &types.Info{ /* TODO: initialize maps which will hold results */ } pkg,err := cfg.Check("main", fs, []*ast.File{f}, info) if err != nil { /* handling the error */ } /* TODO: use pkg or info */ ➔ (*types.Config).Check do a type checking 32
  • 33. types.Info holds results of type checking type Info struct { // Types maps expressions to their types, and for constant // expressions, also their values. Types map[ast.Expr]TypeAndValue // Defs maps identifiers to the objects they define. Defs map[*ast.Ident]Object // Uses maps identifiers to the objects they denote. Uses map[*ast.Ident]Object // Implicits maps nodes to their implicitly declared objects, if any. Implicits map[ast.Node]Object // Selections maps selector expressions (excluding qualified identifiers) // to their corresponding selections. Selections map[*ast.SelectorExpr]*Selection // Scopes maps ast.Nodes to the scopes they define. Scopes map[ast.Node]*Scope // InitOrder is the list of package-level initializers in the order in which // they must be executed. InitOrder []*Initializer } 33
  • 34. Demo 3: Inspect Gopher type 34 https://youtu.be/AuSDtmiMaXI
  • 35. Static Analysis for Products Case 1: gpath,go-httpdoc 35
  • 36. go.mercari.io/go-httpdoc ➔ Generate API Docs from tests of handlers ◆ Just write tests of HTTP handlers ◆ gRPC and JSON RPC are supported 36
  • 37. Tests for requests and responses ➔ Requests (Responses) can be test by specifying fields and expected values, document for each fields validator.RequestBody(t, []httpdoc.TestCase{ {"Name", "tenntenn", "User Name"}, {"Attribute.Email", "tenntenn@example.com", "e-mail address"}, }, &createUserRequest{}) 37
  • 38. github.com/tenntenn/gpath ➔ Simplefy reflection of struct fields ◆ Reflecting by expression of selectors ◆ Easy to reflect complex struct value ◆ Supports maps and slices (but restricted) type Bar struct { N []int } type Foo struct { Bar *Bar } f := &Foo{ Bar: &Bar{ N: []int{100} }} v, _ := At(f, `Bar.N[0]`) fmt.Println(v) $ go run main.go 100 38
  • 39. Create own static analysis tools ➔ Reduce costs of code reviews by own tools ◆ Custimized linter for your project ◆ Detecting typical bugs with own tools ◆ You should pay your time for more important things ● algorithm, design, performance and so on 39
  • 40. Static Analysis in Production Case 2: Banner Tool 40
  • 41. Banner Tool ➔ A management tool of in-app banners In-App Banner A screenshot of our app (Mercari Atte) 41
  • 42. Banner Tool ➔ A management tool of in-app banners Banner Tool ● Delivery Conditions ● Response Getting Banners w/ OS, API Version List of Delivered Banners w/ Image URL, Destination URL, etc... Apps 42
  • 43. Evaluation of Delivery Conditions Getting Banners GET /banner/?os=1 String(os) == "1" Banner Image, etc... Delivery Condition: Banner Tool "1" == "1" true BIND EVAL ➔ Describing delivery conditions by a Go like expression ◆ Eval expressions with go package ◆ Using a function calling for describing a variable with a type 43
  • 44. Conclutions ➔ Static Analysis is EASY in Go ◆ static typing, simple syntax, go package, etc... ➔ go package can ◆ tokenize, parse and type check ➔ Static analysis in production ◆ own static analysis tools (e.g. gpath, go-httpdoc) ◆ web apps (e.g. Banner Tool) 44
  • 45. Thank you! twitter: @tenntenn Qiita: tenntenn connpass: tenntenn 45