containers
/
podman
mirror of https://github.com/containers/podman.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enable more golangci-lint linters 

Cleanup the golangci.yml file and enable more linters.

`pkg/spec` and `iopodman.io` is history. The vendor directory
is excluded by default. The dependencies dir was listed twice.

Fix the reported problems in `pkg/specgen` because that was also
excluded by `pkg/spec`.

Enable the structcheck, typecheck, varcheck, deadcode and depguard
linters.

[NO TESTS NEEDED]

Signed-off-by: Paul Holzinger <paul.holzinger@web.de>
This commit is contained in:
Paul Holzinger 2021-02-12 17:59:50 +01:00
parent 78c8a87362
commit 78b419909b
9 changed files with 8 additions and 23 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
.golangci.yml
View File

@ -4,14 +4,10 @@ run:
deadline: 5m deadline: 5m
skip-dirs-use-default: true skip-dirs-use-default: true
skip-dirs: skip-dirs:
- dependencies
- contrib - contrib
- dependencies - dependencies
- test - test
- pkg/spec
- vendor
skip-files: skip-files:
- iopodman.go
- swagger.go - swagger.go
modules-download-mode: readonly modules-download-mode: readonly
linters: linters:
@ -51,12 +47,7 @@ linters:
- goconst - goconst
- gocyclo - gocyclo
- lll - lll
- structcheck
- typecheck
- unconvert - unconvert
- varcheck
- deadcode
- depguard
- errcheck - errcheck
- gocritic - gocritic
- gosec - gosec

1
pkg/specgen/container_validate.go
View File

@ -29,7 +29,6 @@ func exclusiveOptions(opt1, opt2 string) error {
// Validate verifies that the given SpecGenerator is valid and satisfies required // Validate verifies that the given SpecGenerator is valid and satisfies required
// input for creating a container. // input for creating a container.
func (s *SpecGenerator) Validate() error { func (s *SpecGenerator) Validate() error {
if rootless.IsRootless() && len(s.CNINetworks) == 0 { if rootless.IsRootless() && len(s.CNINetworks) == 0 {
if s.StaticIP != nil || s.StaticIPv6 != nil { if s.StaticIP != nil || s.StaticIPv6 != nil {
return ErrNoStaticIPRootless return ErrNoStaticIPRootless

1
pkg/specgen/generate/config_linux.go
View File

@ -113,7 +113,6 @@ func DevicesFromPath(g *generate.Generator, devicePath string) error {
// mount the internal devices recursively // mount the internal devices recursively
if err := filepath.Walk(resolvedDevicePath, func(dpath string, f os.FileInfo, e error) error { if err := filepath.Walk(resolvedDevicePath, func(dpath string, f os.FileInfo, e error) error {
if f.Mode()&os.ModeDevice == os.ModeDevice { if f.Mode()&os.ModeDevice == os.ModeDevice {
found = true found = true
device := fmt.Sprintf("%s:%s", dpath, filepath.Join(dest, strings.TrimPrefix(dpath, src))) device := fmt.Sprintf("%s:%s", dpath, filepath.Join(dest, strings.TrimPrefix(dpath, src)))

1
pkg/specgen/generate/kube/kube.go
View File

@ -384,7 +384,6 @@ func getPodPorts(containers []v1.Container) []specgen.PortMapping {
if p.HostPort != 0 { if p.HostPort != 0 {
infraPorts = append(infraPorts, portBinding) infraPorts = append(infraPorts, portBinding)
} }
} }
} }
return infraPorts return infraPorts

1
pkg/specgen/generate/kube/seccomp.go
View File

@ -11,6 +11,7 @@ import (
// KubeSeccompPaths holds information about a pod YAML's seccomp configuration // KubeSeccompPaths holds information about a pod YAML's seccomp configuration
// it holds both container and pod seccomp paths // it holds both container and pod seccomp paths
// nolint:golint
type KubeSeccompPaths struct { type KubeSeccompPaths struct {
containerPaths map[string]string containerPaths map[string]string
podPath string podPath string

2
pkg/specgen/generate/kube/volume.go
View File

@ -17,6 +17,7 @@ const (
kubeFilePermission = 0644 kubeFilePermission = 0644
) )
// nolint:golint
type KubeVolumeType int type KubeVolumeType int
const ( const (
@ -24,6 +25,7 @@ const (
KubeVolumeTypeNamed KubeVolumeType = iota KubeVolumeTypeNamed KubeVolumeType = iota
) )
// nolint:golint
type KubeVolume struct { type KubeVolume struct {
// Type of volume to create // Type of volume to create
Type KubeVolumeType Type KubeVolumeType

1
pkg/specgen/generate/oci.go
View File

@ -219,7 +219,6 @@ func SpecGenToOCI(ctx context.Context, s *specgen.SpecGenerator, rt *libpod.Runt
if !mappingFound { if !mappingFound {
gid5Available = false gid5Available = false
} }
} }
if !gid5Available { if !gid5Available {
// If we have no GID mappings, the gid=5 default option would fail, so drop it. // If we have no GID mappings, the gid=5 default option would fail, so drop it.

14
pkg/specgen/generate/security.go
View File

@ -109,17 +109,15 @@ func securityConfigureGenerator(s *specgen.SpecGenerator, g *generate.Generator,
} }
} }
if !s.Privileged && len(capsRequiredRequested) > 0 { if !s.Privileged && len(capsRequiredRequested) > 0 {
// Pass capRequiredRequested in CapAdd field to normalize capabilities names // Pass capRequiredRequested in CapAdd field to normalize capabilities names
capsRequired, err := capabilities.MergeCapabilities(nil, capsRequiredRequested, nil) capsRequired, err := capabilities.MergeCapabilities(nil, capsRequiredRequested, nil)
if err != nil { if err != nil {
return errors.Wrapf(err, "capabilities requested by user or image are not valid: %q", strings.Join(capsRequired, ",")) return errors.Wrapf(err, "capabilities requested by user or image are not valid: %q", strings.Join(capsRequired, ","))
} else { }
// Verify all capRequired are in the capList // Verify all capRequired are in the capList
for _, cap := range capsRequired { for _, cap := range capsRequired {
if !util.StringInSlice(cap, caplist) { if !util.StringInSlice(cap, caplist) {
privCapsRequired = append(privCapsRequired, cap) privCapsRequired = append(privCapsRequired, cap)
}
} }
} }
if len(privCapsRequired) == 0 { if len(privCapsRequired) == 0 {
@ -189,7 +187,6 @@ func securityConfigureGenerator(s *specgen.SpecGenerator, g *generate.Generator,
return err return err
} }
for sysctlKey, sysctlVal := range defaultSysctls { for sysctlKey, sysctlVal := range defaultSysctls {
// Ignore mqueue sysctls if --ipc=host // Ignore mqueue sysctls if --ipc=host
if noUseIPC && strings.HasPrefix(sysctlKey, "fs.mqueue.") { if noUseIPC && strings.HasPrefix(sysctlKey, "fs.mqueue.") {
logrus.Infof("Sysctl %s=%s ignored in containers.conf, since IPC Namespace set to host", sysctlKey, sysctlVal) logrus.Infof("Sysctl %s=%s ignored in containers.conf, since IPC Namespace set to host", sysctlKey, sysctlVal)
@ -213,7 +210,6 @@ func securityConfigureGenerator(s *specgen.SpecGenerator, g *generate.Generator,
} }
for sysctlKey, sysctlVal := range s.Sysctl { for sysctlKey, sysctlVal := range s.Sysctl {
if s.IpcNS.IsHost() && strings.HasPrefix(sysctlKey, "fs.mqueue.") { if s.IpcNS.IsHost() && strings.HasPrefix(sysctlKey, "fs.mqueue.") {
return errors.Wrapf(define.ErrInvalidArg, "sysctl %s=%s can't be set since IPC Namespace set to host", sysctlKey, sysctlVal) return errors.Wrapf(define.ErrInvalidArg, "sysctl %s=%s can't be set since IPC Namespace set to host", sysctlKey, sysctlVal)
} }

1
pkg/specgen/pod_validate.go
View File

@ -19,7 +19,6 @@ func exclusivePodOptions(opt1, opt2 string) error {
// Validate verifies the input is valid // Validate verifies the input is valid
func (p *PodSpecGenerator) Validate() error { func (p *PodSpecGenerator) Validate() error {
if rootless.IsRootless() && len(p.CNINetworks) == 0 { if rootless.IsRootless() && len(p.CNINetworks) == 0 {
if p.StaticIP != nil { if p.StaticIP != nil {
return ErrNoStaticIPRootless return ErrNoStaticIPRootless