feat(linter): enable errcheck linter in golangci-lint

Also, bump the linter version to the latest available version. Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
2025-09-17 15:50:20 +00:00 · 2023-11-18 06:50:40 +00:00
parent 9610a1e618
commit 7ce129d63b
36 changed files with 243 additions and 66 deletions
--- a/registry/auth/htpasswd/access.go
+++ b/registry/auth/htpasswd/access.go
@@ -20,6 +20,7 @@ import (

 	"github.com/distribution/distribution/v3/internal/dcontext"
 	"github.com/distribution/distribution/v3/registry/auth"
+	"github.com/sirupsen/logrus"
 )

 type accessController struct {
@@ -151,5 +152,7 @@ func createHtpasswdFile(path string) error {
 }

 func init() {
-	auth.Register("htpasswd", auth.InitFunc(newAccessController))
+	if err := auth.Register("htpasswd", auth.InitFunc(newAccessController)); err != nil {
+		logrus.Errorf("failed to register htpasswd auth: %v", err)
+	}
 }
--- a/registry/auth/htpasswd/htpasswd.go
+++ b/registry/auth/htpasswd/htpasswd.go
@@ -33,7 +33,9 @@ func (htpasswd *htpasswd) authenticateUser(username string, password string) err
 	credentials, ok := htpasswd.entries[username]
 	if !ok {
 		// timing attack paranoia
-		bcrypt.CompareHashAndPassword([]byte{}, []byte(password))
+		if err := bcrypt.CompareHashAndPassword([]byte{}, []byte(password)); err != nil {
+			return auth.ErrAuthenticationFailure
+		}

 		return auth.ErrAuthenticationFailure
 	}
--- a/registry/auth/silly/access.go
+++ b/registry/auth/silly/access.go
@@ -13,6 +13,7 @@ import (
 	"strings"

 	"github.com/distribution/distribution/v3/registry/auth"
+	"github.com/sirupsen/logrus"
 )

 // accessController provides a simple implementation of auth.AccessController
@@ -87,5 +88,7 @@ func (ch challenge) Error() string {

 // init registers the silly auth backend.
 func init() {
-	auth.Register("silly", auth.InitFunc(newAccessController))
+	if err := auth.Register("silly", auth.InitFunc(newAccessController)); err != nil {
+		logrus.Errorf("failed to register silly auth: %v", err)
+	}
 }
--- a/registry/auth/token/accesscontroller.go
+++ b/registry/auth/token/accesscontroller.go
@@ -14,6 +14,7 @@ import (

 	"github.com/distribution/distribution/v3/registry/auth"
 	"github.com/go-jose/go-jose/v3"
+	"github.com/sirupsen/logrus"
 )

 // accessSet maps a typed, named resource to
@@ -339,5 +340,7 @@ func (ac *accessController) Authorized(req *http.Request, accessItems ...auth.Ac

 // init handles registering the token auth backend.
 func init() {
-	auth.Register("token", auth.InitFunc(newAccessController))
+	if err := auth.Register("token", auth.InitFunc(newAccessController)); err != nil {
+		logrus.Errorf("tailed to register token auth: %v", err)
+	}
 }
--- a/registry/auth/token/fuzz_test.go
+++ b/registry/auth/token/fuzz_test.go
@@ -22,7 +22,10 @@ func FuzzToken1(f *testing.F) {
 		if err != nil {
 			return
 		}
-		token.Verify(verifyOps)
+		_, err = token.Verify(verifyOps)
+		if err != nil {
+			return
+		}
 		_, _ = token.VerifySigningKey(verifyOps)
 	})
 }
@@ -40,7 +43,10 @@ func FuzzToken2(f *testing.F) {
 		if err != nil {
 			return
 		}
-		token.Verify(verifyOps)
+		_, err = token.Verify(verifyOps)
+		if err != nil {
+			return
+		}
 		_, _ = token.VerifySigningKey(verifyOps)
 	})
 }