recursive schemas not supported

Question

recursive schemas not supported

alexzielenski opened this issue 2 years ago · 6 comments

The schema validator used by Kubernetes server and kubectl-validate does not support recursively defined schemas. This can be fixed but it would be a fairly big modification.

CRDs cannot be recursive, so this is not a concern for them.
There may be some native types that have a recursive schema. One example of this is CustomResourceDefinition itself. n this single case, we workaround this by using the handwritten validation code for CRDs since they are so common.

In general, we should detect and block validation of recursive schemas.

swastik959 commented a year ago

/assign

Answer 1 · 2024-02-05T13:57:38.000Z

hi @alexzielenski I want to work on this issue and wanted to know if we need to block the validation of the resources against recursive schema or do we need to block the validation of the schema itself

Answer 2 · 2024-02-05T18:17:43.000Z

We would want to block validation of resources against a recursive schema. I think the tool should show a warning rather than fail the entire operation

Answer 3 · 2024-02-06T10:51:02.000Z

@alexzielenski if I am not wrong the schema to recursive it should have a $ref right ?

Answer 4 · 2024-02-06T16:50:58.000Z

Thats correct. CRDs have all inline schemas, so there are no $ref allowed.

Native types sometimes use $ref in their schemas to refer to other types' schemas. If we have a circular $ref dependency anywhere then the schema is recursive.

Answer 5 · 2024-02-08T10:05:22.000Z

hi @alexzielenski I have made a pr please can you review it