[chore] Upgrade golangci-lint, ignore existing int overflow warnings #3420

untitaker · 2024-10-12T08:31:45Z

There is a new lint for unchecked int casts. Integer overflows are bad,
but the old code that triggers this lint seems to be perfectly fine.
Instead of disabling the lint entirely for new code as well, grandfather
in existing code. Maybe new code can be written in such a way to avoid
excessive casting.

Also fix a broken link in CONTRIBUTING

There is a new lint for unchecked int casts. Integer overflows are bad, but the old code that triggers this lint seems to be perfectly fine. Instead of disabling the lint entirely for new code as well, grandfather in existing code.

untitaker · 2024-10-12T08:37:59Z

oops, this is a duplicate of #3258 -- though that one is stuck. can port over the nolint annotations from there.

tsmethurst · 2024-10-12T08:38:35Z

Porting over the nolint annotations and math.MaxWhatever checks is probably a good idea 👍

NyaaaWhatsUpDoc · 2024-10-12T10:38:38Z

having this linter is a good idea, though replacing api model ints with uints i'm not sure about. the reason that go returns signed integer types for lengths, silces, capacities etc is that a signed integer overflow specifically causes a panic as a negative length is invalid. but an unsigned integer just silently overflows to a valid result which makes hunting down bugs much harder.

NyaaaWhatsUpDoc · 2024-10-12T10:41:24Z

internal/processing/account/update.go

-	if avatar.Size > int64(maxsz) {
-		text := fmt.Sprintf("media exceeds configured max size: %s", maxsz)
+	if avatar.Size > maxsz {
+		text := fmt.Sprintf("media exceeds configured max size: %d", maxsz)


bytesize.Size specifically implements String() for nicer log output, this will only make error responses harder to read by returning a number bytes in the order of millions vs simplified size output.

leaving it as it was ensures we keep that nicer log output both here and below.

I'll revert those things then. I suggest to change go-bytesize to use the same type as file sizes in the rest of std. this conversion shouldn't be necessary at all if everybody just agrees on a type.

internal/processing/admin/emoji.go

internal/processing/media/create.go

internal/media/ffmpeg.go

NyaaaWhatsUpDoc · 2024-10-12T10:56:43Z

just realized these changes are from the go1.23 PR, but i hadn't gotten around to reading that one yet 😅

given these weren't your changes either myself or @tsmethurst can make them (though totally i'm happy to), if so just let me know :)

untitaker · 2024-10-12T10:57:38Z

np im doing it

internal/processing/media/create.go

untitaker · 2024-10-15T15:28:45Z

this is also ready to review IMO

tsmethurst · 2024-10-15T18:32:44Z

Hell yeah nice, thanks! I'll take a look tomorrow :)

tsmethurst · 2024-10-16T12:14:06Z

Squerged, thank you very much!

tsmethurst and others added 9 commits September 1, 2024 17:35

[chore] Bump tooling versions, bump go -> v1.23.0

c1543c0

undo silly change

bd4c4d7

sign

75d3fca

bump go version in go.mod

7c6c742

Merge branch 'main' into go_123

666b8bc

allow overflow in imaging

8db3d6b

goreleaser deprecation notices

4be1f78

fix golangci-lint documentation link

fe5849f

untitaker added 5 commits October 12, 2024 10:41

Merge branch 'go_123' into golangci-lint-upgrade

2693b88

revert unrelated changes

a4f6f14

revert another unrelated change

7773695

get rid of remaining nolint:gosec

bd9ce66

swagger updates

9b1683b