enable linter: revive (early-return)

crowdsecurity · Jun 5, 2024 · 790d4ac · 790d4ac
1 parent 9e859c0
commit 790d4ac
Show file tree

Hide file tree

Showing 8 changed files with 53 additions and 59 deletions.
diff --git a/.golangci.yml b/.golangci.yml
@@ -102,7 +102,6 @@ linters-settings:
           - "!**/pkg/csplugin/broker.go"
           - "!**/pkg/leakybucket/buckets_test.go"
           - "!**/pkg/leakybucket/manager_load.go"
-          - "!**/pkg/metabase/metabase.go"
           - "!**/pkg/parser/node.go"
           - "!**/pkg/parser/node_test.go"
           - "!**/pkg/parser/parsing_test.go"
@@ -132,8 +131,6 @@ linters-settings:
         disabled: true
       - name: defer
         disabled: true
-      - name: early-return
-        disabled: true
       - name: empty-block
         disabled: true
       - name: empty-lines
@@ -375,6 +372,7 @@ issues:
 
   exclude-dirs:
     - pkg/time/rate
+    - pkg/metabase
 
   exclude-files:
     - pkg/yamlpatch/merge.go

diff --git a/pkg/acquisition/modules/s3/s3.go b/pkg/acquisition/modules/s3/s3.go
@@ -251,16 +251,15 @@ func (s *S3Source) listPoll() error {
 				continue
 			}
 			for i := len(bucketObjects) - 1; i >= 0; i-- {
-				if bucketObjects[i].LastModified.After(lastObjectDate) {
-					newObject = true
-					logger.Debugf("Found new object %s", *bucketObjects[i].Key)
-					s.readerChan <- S3Object{
-						Bucket: s.Config.BucketName,
-						Key:    *bucketObjects[i].Key,
-					}
-				} else {
+				if !bucketObjects[i].LastModified.After(lastObjectDate) {
 					break
 				}
+				newObject = true
+				logger.Debugf("Found new object %s", *bucketObjects[i].Key)
+				s.readerChan <- S3Object{
+					Bucket: s.Config.BucketName,
+					Key:    *bucketObjects[i].Key,
+				}
 			}
 			if newObject {
 				lastObjectDate = *bucketObjects[len(bucketObjects)-1].LastModified

diff --git a/pkg/apiserver/papi.go b/pkg/apiserver/papi.go
@@ -141,17 +141,18 @@ func (p *Papi) handleEvent(event longpollclient.Event, sync bool) error {
 		return errors.New("no source user in header message, skipping")
 	}
 
-	if operationFunc, ok := operationMap[message.Header.OperationType]; ok {
-		logger.Debugf("Calling operation '%s'", message.Header.OperationType)
-
-		err := operationFunc(message, p, sync)
-		if err != nil {
-			return fmt.Errorf("'%s %s failed: %w", message.Header.OperationType, message.Header.OperationCmd, err)
-		}
-	} else {
+	operationFunc, ok := operationMap[message.Header.OperationType]
+	if !ok {
 		return fmt.Errorf("operation '%s' unknown, continue", message.Header.OperationType)
 	}
 
+	logger.Debugf("Calling operation '%s'", message.Header.OperationType)
+
+	err := operationFunc(message, p, sync)
+	if err != nil {
+		return fmt.Errorf("'%s %s failed: %w", message.Header.OperationType, message.Header.OperationCmd, err)
+	}
+
 	return nil
 }
 

diff --git a/pkg/appsec/appsec_rule/modsecurity.go b/pkg/appsec/appsec_rule/modsecurity.go
@@ -166,15 +166,15 @@ func (m *ModsecurityRule) buildRules(rule *CustomRule, appsecRuleName string, an
 	r.WriteByte(' ')
 
 	if rule.Match.Type != "" {
-		if match, ok := matchMap[rule.Match.Type]; ok {
-			prefix := ""
-			if rule.Match.Not {
-				prefix = "!"
-			}
-			r.WriteString(fmt.Sprintf(`"%s%s %s"`, prefix, match, rule.Match.Value))
-		} else {
+		match, ok := matchMap[rule.Match.Type]
+		if !ok {
 			return nil, fmt.Errorf("unknown match type '%s'", rule.Match.Type)
 		}
+		prefix := ""
+		if rule.Match.Not {
+			prefix = "!"
+		}
+		r.WriteString(fmt.Sprintf(`"%s%s %s"`, prefix, match, rule.Match.Value))
 	}
 
 	//Should phase:2 be configurable?
@@ -186,20 +186,20 @@ func (m *ModsecurityRule) buildRules(rule *CustomRule, appsecRuleName string, an
 				continue
 			}
 			r.WriteByte(',')
-			if mappedTransform, ok := transformMap[transform]; ok {
-				r.WriteString(mappedTransform)
-			} else {
+			mappedTransform, ok := transformMap[transform]
+			if !ok {
 				return nil, fmt.Errorf("unknown transform '%s'", transform)
 			}
+			r.WriteString(mappedTransform)
 		}
 	}
 
 	if rule.BodyType != "" {
-		if mappedBodyType, ok := bodyTypeMatch[rule.BodyType]; ok {
-			r.WriteString(fmt.Sprintf(",ctl:requestBodyProcessor=%s", mappedBodyType))
-		} else {
+		mappedBodyType, ok := bodyTypeMatch[rule.BodyType]
+		if !ok {
 			return nil, fmt.Errorf("unknown body type '%s'", rule.BodyType)
 		}
+		r.WriteString(fmt.Sprintf(",ctl:requestBodyProcessor=%s", mappedBodyType))
 	}
 
 	if and {

diff --git a/pkg/appsec/coraza_logger.go b/pkg/appsec/coraza_logger.go
@@ -90,14 +90,13 @@ func (e *crzLogEvent) Bool(key string, b bool) dbg.Event {
 
 func (e *crzLogEvent) Int(key string, i int) dbg.Event {
 	if e.muted {
-		// this allows us to have per-rule debug logging
-		if key == "rule_id" && GetRuleDebug(i) {
-			e.muted = false
-			e.fields = map[string]interface{}{}
-			e.level = log.DebugLevel
-		} else {
+		if key != "rule_id" || !GetRuleDebug(i) {
 			return e
 		}
+		// this allows us to have per-rule debug logging
+		e.muted = false
+		e.fields = map[string]interface{}{}
+		e.level = log.DebugLevel
 	}
 
 	e.fields[key] = i

diff --git a/pkg/csplugin/hclog_adapter.go b/pkg/csplugin/hclog_adapter.go
@@ -221,11 +221,10 @@ func merge(dst map[string]interface{}, k, v interface{}) {
 func safeString(str fmt.Stringer) (s string) {
 	defer func() {
 		if panicVal := recover(); panicVal != nil {
-			if v := reflect.ValueOf(str); v.Kind() == reflect.Ptr && v.IsNil() {
-				s = "NULL"
-			} else {
+			if v := reflect.ValueOf(str); v.Kind() != reflect.Ptr || !v.IsNil() {
 				panic(panicVal)
 			}
+			s = "NULL"
 		}
 	}()
 

diff --git a/pkg/exprhelpers/crowdsec_cti.go b/pkg/exprhelpers/crowdsec_cti.go
@@ -86,12 +86,11 @@ func CrowdsecCTI(params ...any) (any, error) {
 	if val, err := CTICache.Get(ip); err == nil && val != nil {
 		ctiClient.Logger.Debugf("cti cache fetch for %s", ip)
 		ret, ok := val.(*cticlient.SmokeItem)
-		if !ok {
-			ctiClient.Logger.Warningf("CrowdsecCTI: invalid type in cache, removing")
-			CTICache.Remove(ip)
-		} else {
+		if ok {
 			return ret, nil
 		}
+		ctiClient.Logger.Warningf("CrowdsecCTI: invalid type in cache, removing")
+		CTICache.Remove(ip)
 	}
 
 	if !CTIBackOffUntil.IsZero() && time.Now().Before(CTIBackOffUntil) {

diff --git a/pkg/parser/parsing_test.go b/pkg/parser/parsing_test.go
@@ -278,26 +278,25 @@ func matchEvent(expected types.Event, out types.Event, debug bool) ([]string, bo
 
 	for mapIdx := 0; mapIdx < len(expectMaps); mapIdx++ {
 		for expKey, expVal := range expectMaps[mapIdx] {
-			if outVal, ok := outMaps[mapIdx][expKey]; ok {
-				if outVal == expVal { //ok entry
-					if debug {
-						retInfo = append(retInfo, fmt.Sprintf("ok %s[%s] %s == %s", outLabels[mapIdx], expKey, expVal, outVal))
-					}
-					valid = true
-				} else { //mismatch entry
-					if debug {
-						retInfo = append(retInfo, fmt.Sprintf("mismatch %s[%s] %s != %s", outLabels[mapIdx], expKey, expVal, outVal))
-					}
-					valid = false
-					goto checkFinished
-				}
-			} else { //missing entry
+			outVal, ok := outMaps[mapIdx][expKey]
+			if !ok {
 				if debug {
 					retInfo = append(retInfo, fmt.Sprintf("missing entry %s[%s]", outLabels[mapIdx], expKey))
 				}
 				valid = false
 				goto checkFinished
 			}
+			if outVal != expVal { //ok entry
+				if debug {
+					retInfo = append(retInfo, fmt.Sprintf("mismatch %s[%s] %s != %s", outLabels[mapIdx], expKey, expVal, outVal))
+				}
+				valid = false
+				goto checkFinished
+			}
+			if debug {
+				retInfo = append(retInfo, fmt.Sprintf("ok %s[%s] %s == %s", outLabels[mapIdx], expKey, expVal, outVal))
+			}
+			valid = true
 		}
 	}
 checkFinished: