Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: support for testing invalid rule schemas and runtime exceptions #103

Merged
merged 9 commits into from
Mar 20, 2023
Merged

feat: support for testing invalid rule schemas and runtime exceptions #103

Changes from 2 commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
7aa4b94
feat: support for testing invalid rule schemas and runtime exceptions
bmish Jan 2, 2023
beab520
switch to separate array of test cases
bmish Jan 19, 2023
96a5940
errorType property
bmish Jan 20, 2023
8359bad
switch to error object with message and name
bmish Jan 21, 2023
eebb1eb
simplify implementation section based on learnings from draft PR
bmish Jan 25, 2023
e11432d
clarify name/message property types and constraints
bmish Feb 7, 2023
ce4bc70
tweak name source
bmish Feb 8, 2023
5d0746b
ajv text is subject to change
bmish Mar 15, 2023
ce405bc
code empty string
bmish Mar 15, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
311 changes: 311 additions & 0 deletions designs/2023-test-rule-errors/README.md
View file
Open in desktop
@@ -0,0 +1,311 @@
- Repo: eslint/eslint
- Start Date: 2023-01-01
- RFC PR: <https://github.com/eslint/rfcs/pull/103>
- Authors: [bmish](https://github.com/bmish)

# Support for testing invalid rule schemas and runtime exceptions in rules

## Summary

<!-- One-paragraph explanation of the feature. -->

Enable rule authors to write unit tests for invalid rule schemas and runtime exceptions in rules.

## Motivation

<!-- Why are we doing this? What use cases does it support? What is the expected
outcome? -->

In certain situations, an exception can be thrown when running an ESLint rule, including:

1. ESLint throws an exception because a rule is configured incorrectly. That is, the user-provided options did not conform to a rule's schema (`meta.schema`).
2. A rule implementation (in the `create()` function) throws an exception. Examples of why this could happen:
- The rule threw a custom exception when additional input validation failed (typically used for a constraint that couldn't be represented/enforced by the schema).
- The rule threw a custom exception because an unhandled or unexpected situation occurred, such as a type of node the rule wasn't expecting to occur in a particular position, perhaps due an oversight, or due to a new JavaScript language feature that the rule doesn't support yet.
- The rule implementation has an unknown bug that causes it to unintentionally crash.

Other than for unanticipated cases like an unknown bug in the rule, the user may want to write tests for these situations, but is unable to do so today. It's currently only possible to write passing test cases (rule runs successfully and does not report violations) or failing test cases (rule runs successfully and reports violations).

As a result of this limitation, users wanting to promote rule quality by ensuring their rules have complete test coverage, i.e. all of the logic is exercised in tests, may be unable to do so.

### Rule schemas

Today, unit tests for a rule will ideally ensure that the rule behavior is correct for all possible combinations of valid rule options, but it is not currently possible to test that a rule correctly disallows invalid rules schemas.

For simple schemas, testing might not be as critical, but testing becomes more important when rule schemas grow more complex. Some schemas can even reach 100 lines long, and often allow various formats, such as in [no-restricted-imports](https://eslint.org/docs/rules/no-restricted-imports) which allows either an array of strings or an array of objects.

For example, with the rule [no-restricted-imports](https://eslint.org/docs/rules/no-restricted-imports), one might want to test that the rule schema fails validation when passed:

- Something that isn't an array
- An empty array
- An array containing an item that isn't a string nor object
- An array containing an object that is missing required properties like `name`, or has unknown properties
- Any other invalid combinations of input

Note that the goal is not to test that [ajv](https://github.com/ajv-validator/ajv) (which performs the validation using JSON Schema) itself works properly, as we can treat that third-party dependency as a blackbox, but instead to test that the rule author has written out their schema correctly.

It can be tricky to get schemas to perfectly represent what the allowed input should be, especially when no automated testing exists around this today. Schemas are often too lenient, allowing extra input that the rule implementation ignores or doesn't handle properly. This can result in rules silently misbehaving, not respecting the wishes or intentions of the user's configuration, or just crashing.

By enabling testing of schemas, we'll make it easier to write higher-quality schemas and rules, thus improving the user experience.

## Detailed Design

<!--
This is the bulk of the RFC.

Explain the design with enough detail that someone familiar with ESLint
can implement it by reading this document. Please get into specifics
of your approach, corner cases, and examples of how the change will be
used. Be sure to define any new terms in this section.
-->

Add support to the rule tester for a new `fatal` test case array in addition to `valid` and `invalid`.

Example with a schema validation error because a non-existent option is passed:

```json
{
"fatal": [
{
"code": "foo();",
"options": [{ "checkFoo": true, "nonExistentOption": true }],
"message": "Value {\"checkFoo\":true,\"nonExistentOption\":true} should NOT have additional properties."
}
]
}
```

To test a custom exception thrown by a rule, simply use the exception text as the message: `"message": "Some custom exception message from the rule."`.

A convenience feature to go along with this is to allow an alternative property `source: 'SCHEMA_VALIDATION' | 'RULE_IMPLEMENTATION'` to be specified indicating the type of exception without indicating the exception text.
This would be useful since most of the time, the user may not care about the exact text of the exception, but only that the particular type of exception was thrown.
This also makes it easier to update the exception text without having to update the messages in all the test cases.
Alternate names for this property to consider: `messageType`, `errorType`.
bmish marked this conversation as resolved.
Show resolved Hide resolved

Differences between fatal test cases and invalid test cases:

- `code` is not required (the code may be irrelevant when testing options)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

code is indeed irrelevant when testing whether the options will fail schema validations as these validations are run before using Linter.

However, when testing anything else, if code is not provided (i.e., it's undefined), Linter will throw:

TypeError: Cannot read properties of undefined (reading 'text')
      at Linter._verifyWithoutProcessors (lib\linter\linter.js:1307:37)
      at Linter.verify (lib\linter\linter.js:1496:57)
      at runRuleForItem (lib\rule-tester\rule-tester.js:748:35)
      at testFatalTemplate (lib\rule-tester\rule-tester.js:1116:28)
      at Context.<anonymous> (lib\rule-tester\rule-tester.js:1175:29)
      at processImmediate (node:internal/timers:466:21)

Perhaps the code property should be required when error.name in the test case is not set to "SchemaValidationError"?

Copy link
Sponsor Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In my draft PR (https://github.com/eslint/eslint/pull/16823/files#diff-1d5e36429b1a08e3baa8311c3c702f2edf5e3c5e542771dcd6a6bef4c43727f5R1173), I solved this issue by using a placeholder (Test Case #x) when there's no name nor code.

fatal.name || fatal.code || `(Test Case #${index + 1})`

I prefer this over requiring the user to come up with a name anytime they want to omit code, which feels like it would be a burden.

Is that okay?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This solves the test case name (first argument of it). I was thinking about the code we are passing to linter.verify.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think code can be an empty string.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think code can be an empty string.

If code property isn't specified, we'll pass an empty string to linter.verify? Sounds good to me.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yup, exactly.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this is the last open question we have for this RFC.

@bmish what do you think about this? If you agree with passing an empty string to linter.verify() when the code property is not provided in the test case, can you update the RFC document with this detail?

Copy link
Sponsor Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Will address remaining issues in the next week.

Copy link
Sponsor Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I added a note about using an empty string for code.

- There's a required `message` property instead of an `errors` property

This feature can only be used for testing the following user-facing exceptions:

- ESLint-generated exception during schema validation
- Rule-generated exceptions

Note that this feature cannot be used for testing exceptions thrown by the rule tester itself, nor for testing syntax/parsing errors.

This design is similar to the [API](https://github.com/ember-template-lint/ember-template-lint/blob/master/docs/plugins.md#rule-tests) that the linter [ember-template-lint](https://github.com/ember-template-lint/ember-template-lint) uses for testing rule exceptions, which could be referred to as prior art.

Pros of this design vs. the [reuse `invalid` test cases](#reuse-invalid-test-cases) alternative:

- Avoid overloading existing invalid test cases to serve additional purposes which could complicate the usage, documentation, and implementation logic
- Avoid confusing third-party tooling that may be analyzing (e.g. linting in the case of [eslint-plugin-eslint-plugin](https://github.com/eslint-community/eslint-plugin-eslint-plugin)) or running invalid test cases with the assumption that they all report violations

Cons vs. the [reusing `invalid` test cases](#reuse-invalid-test-cases) alternative:

- Not able to share as much code with invalid test cases
- Large change / addition to the API of rule tester, as opposed to just adding a single `error: true` property

### Implementation

This will require changes to:

- lib/rule-tester/rule-tester.js
- lib/rule-tester/flat-rule-tester.js

And new tests in:

- tests/lib/rule-tester/rule-tester.js
- tests/lib/rule-tester/flat-rule-tester.js

First, we'll follow the pattern of the existing `valid` and `invalid` test case arrays to add support for a new `fatal` test case array in the rule tester.

Then, when we are executing a test case with a fatal error, we need some way to convert any ESLint-generated exception during schema validation and any rule-generated exception during rule execution into a standard test error object with a `LintMessage` with `fatal: true`. This will allow the message to be compared against the expected error message in the test case.

We could approach this in one of two ways:

1. Approach #1: In `runRuleForItem()`, when executing a fatal test case, pass a new option to `validate()` and `linter.verify()` to instruct them to return a message for the relevant exceptions instead of throwing them. But `linter.verify()` is part of ESLint's public API and it's not clear this option would be useful for anyone else. So we're disqualifying this approach as of now.
2. Approach #2: In `runRuleForItem()`, when executing a fatal test case, surround the `validate()` and `linter.verify()` calls with a try/catch block, and convert the relevant exceptions to messages.

Approach #2 is promising, but there are still a number of issues to solve with it:

1. Issue #1: We need some way to determine which exceptions to convert to messages, and which exceptions to let bubble up, as there are many irrelevant exceptions that can be thrown by these functions which users shouldn't be testing.
2. Issue #2: We need to omit the superfluous ESLint helper text from the error message returned, as ESLint helper text is subject to change, not part of the original exception from the schema validation or rule, and unnecessarily including these extra lines forces the user to always write out a tedious, multi-line string with them for the message in their test case (unless they use a regexp to match part of the message). Example of exceptions with the ESLint helper text:

```pt
rule-tester:
Configuration for rule "no-foo" is invalid:
Value {"checkFoo":true,"nonExistentOption":true} should NOT have additional properties.
```

```pt
Some custom exception message from the rule...
Occurred while linting <input>:2
Rule: "no-foo"
```

A few ways we could solve these issues with approach #2:

1. Fix #1: Do string matching on the ESLint helper text in the exception message to determine if it's one of the relevant exceptions to convert and return as a message. It could help to prefix the exception message with an error code for easier and less-brittle string matching. Note that this fix requires manually stripping the ESLint helper text, which is also brittle, but workable. The code would be similar to Fix #2 but with string matching instead of relying on `err.messageForTest`.

2. Fix #2: Add a property to the relevant exceptions `err.messageForTest = '...';` at their source and then use this property to determine if it's one of the relevant exceptions to convert to a message and what the message should be. This is more robust than string matching, but the downside is we have to add a custom property to some exception objects, and it requires the source of these exceptions to have awareness of the rule tester, which is not ideal. Example code:

```js
// Inside the rule tester class.
function runRuleForItem(item) {
// ...

// Only surround these calls with a try/catch if the current test case is for a fatal error.
try {
validate(...);
// or
messages = linter.verify(...);
} catch (err) {
if (err.messageForTest) {
// Return a message so this exception can be tested.
return {
messages: [{
ruleId: ruleName,
fatal: true,
message: err.messageForTest,
}],
};
}

// Not one of the relevant exceptions for testing.
throw err;
}
}
```

I'm interested to gather feedback on these approaches and preferences about what the implementation should look like.

## Documentation

<!--
How will this RFC be documented? Does it need a formal announcement
on the ESLint blog to explain the motivation?
-->

We will document this change in the ESLint [RuleTester](https://eslint.org/docs/latest/developer-guide/nodejs-api#ruletester) section of the [Node.JS API](https://eslint.org/docs/latest/developer-guide/nodejs-api) page.

Ideally, we can also draw attention to it with a paragraph and example usage in the blog post / release notes for the version it ships in. This is the least we can do to raise awareness of it for rule authors who may be interested to take advantage of it in new or existing rules.

## Drawbacks

<!--
Why should we *not* do this? Consider why adding this into ESLint
might not benefit the project or the community. Attempt to think
about any opposing viewpoints that reviewers might bring up.

Any change has potential downsides, including increased maintenance
burden, incompatibility with other tools, breaking existing user
experience, etc. Try to identify as many potential problems with
implementing this RFC as possible.
-->

- A user testing that their rule schema catches invalid options may end up including the message from JSON Schema in their test case (e.g. `Value "bar" should be boolean.`). This could make it more difficult for ESLint to upgrade its version of ajv / JSON Schema in the future, as an upgraded version could tweak messages and necessitate updating any test cases that include the message. This is a relatively minor concern, as it's unlikely that messages will change often, and it's easy to update test cases if they do. Two factors that could mitigate this:
- If [snapshot testing](https://github.com/eslint/eslint/issues/14936) is implemented in the future, it would become possible to fix test cases with a single command.
- We can encourage the use of `source` property (discussed in [Detailed Design](#detailed-design)) for the majority of cases that don't care about including the exact exception text.

## Backwards Compatibility Analysis

<!--
How does this change affect existing ESLint users? Will any behavior
change for them? If so, how are you going to minimize the disruption
to existing users?
-->

This new feature is a non-breaking change and has no impact unless a user chooses to use it.

## Alternatives

<!--
What other designs did you consider? Why did you decide against those?

This section should also include prior art, such as whether similar
projects have already implemented a similar feature.
-->

### Reuse `invalid` test cases
bmish marked this conversation as resolved.
Show resolved Hide resolved

Augment the error objects of invalid test cases to support a `fatal: true` property. This will indicate that the test case triggered an exception with the given message.

Example with a schema validation error because a non-existent option is passed:

```json
{
"invalid": [
{
"code": "foo();",
"options": [{ "checkFoo": true, "nonExistentOption": true }],
"errors": [
{
"message": "Value {\"checkFoo\":true,\"nonExistentOption\":true} should NOT have additional properties.",
"fatal": true
}
]
}
]
}
```

New constraints on test cases with a fatal error:

- `code` is not required (the code may be irrelevant when testing options)
- Only one error object can be provided (can't have multiple exceptions at the same time)
- Cannot have `output` in the top-level object (no violation/autofix can result from a fatal error)
- Cannot have `suggestions` in the error object (suggestions are only for violations)

During the RFC discussion, we decided against this alternative because fatal test cases are sufficiently-different from invalid test cases that they deserve to have their own separate array to avoid confusion.

## Open Questions

<!--
This section is optional, but is suggested for a first draft.

What parts of this proposal are you unclear about? What do you
need to know before you can finalize this RFC?

List the questions that you'd like reviewers to focus on. When
you've received the answers and updated the design to reflect them,
you can remove this section.
-->

1. Have we come up with the ideal [implementation](#implementation)?
bmish marked this conversation as resolved.
Show resolved Hide resolved
2. Are there other kinds of exceptions we want to allow to be tested? The current approach essentially defines an allowlist of exceptions that are testable so that users can't test irrelevant exceptions (and so that we don't unnecessarily expose exceptions that are subject to change in our API). Note that we can add more exceptions later if we determine a need.
3. It's unlikely but worth considering whether this feature would make it more difficult to support [snapshot testing](https://github.com/eslint/eslint/issues/14936).
4. The property `fatal: true` is used internally to represent parsing errors. Could overloading that cause any problem or confusion? Note that we don't want to allow testing syntax/parsing errors. Also note that parsing errors and the exceptions being tested are both fatal exceptions, so it could make sense to use the same property name, as long as it doesn't cause problems. `error`, `exception`, `throws` are alternative names which mean the same thing, but having multiple property names that mean the same thing could also be confusing.

## Help Needed

<!--
This section is optional.

Are you able to implement this RFC on your own? If not, what kind
of help would you need from the team?
-->

I expect to implement this change.

## Frequently Asked Questions

<!--
This section is optional but suggested.

Try to anticipate points of clarification that might be needed by
the people reviewing this RFC. Include those questions and answers
in this section.
-->

## Related Discussions

<!--
This section is optional but suggested.

If there is an issue, pull request, or other URL that provides useful
context for this proposal, please include those links here.
-->

- <https://github.com/eslint/eslint/issues/13434> - the issue triggering this RFC
- <https://github.com/eslint/rfcs/tree/main/designs/2021-stricter-rule-test-validation> - related, recent RFC to make RuleTester more strict