Fix lint issues with golangci-lint@v2

Author: JoTurk

cipher_suite.go

@@ -23,40 +23,40 @@ type CipherSuiteID = ciphersuite.ID
 // Supported Cipher Suites.
 const (
 	// AES-128-CCM
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_ECDSA_WITH_AES_128_CCM CipherSuiteID = ciphersuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8 CipherSuiteID = ciphersuite.TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8
 
 	// AES-128-GCM-SHA256
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 CipherSuiteID = ciphersuite.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 CipherSuiteID = ciphersuite.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
 
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 CipherSuiteID = ciphersuite.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 CipherSuiteID = ciphersuite.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
 
 	// AES-256-CBC-SHA
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA CipherSuiteID = ciphersuite.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA CipherSuiteID = ciphersuite.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
 
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_PSK_WITH_AES_128_CCM CipherSuiteID = ciphersuite.TLS_PSK_WITH_AES_128_CCM
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_PSK_WITH_AES_128_CCM_8 CipherSuiteID = ciphersuite.TLS_PSK_WITH_AES_128_CCM_8
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_PSK_WITH_AES_256_CCM_8 CipherSuiteID = ciphersuite.TLS_PSK_WITH_AES_256_CCM_8
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_PSK_WITH_AES_128_GCM_SHA256 CipherSuiteID = ciphersuite.TLS_PSK_WITH_AES_128_GCM_SHA256
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_PSK_WITH_AES_128_CBC_SHA256 CipherSuiteID = ciphersuite.TLS_PSK_WITH_AES_128_CBC_SHA256
 
-	//nolint:revive,stylecheck
+	//nolint:staticcheck
 	TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256 CipherSuiteID = ciphersuite.TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256
 )
 

conn_test.go

@@ -578,7 +578,7 @@ func TestPSK(t *testing.T) {
 				conf := &Config{
 					PSK: func(hint []byte) ([]byte, error) {
 						if !bytes.Equal(test.ServerIdentity, hint) {
-							return nil, fmt.Errorf( //nolint:goerr113
+							return nil, fmt.Errorf( //nolint:err113
 								"TestPSK: Client got invalid identity expected(% 02x) actual(% 02x)",
 								test.ServerIdentity, hint,
 							)
@@ -1800,14 +1800,14 @@ func TestPSKConfiguration(t *testing.T) { //nolint:cyclop
 			test.ServerHasCertificate,
 		)
 		if err != nil || test.WantServerError != nil {
-			if !(err != nil && test.WantServerError != nil && err.Error() == test.WantServerError.Error()) {
+			if err == nil || test.WantServerError == nil || err.Error() != test.WantServerError.Error() {
 				assert.Failf(t, "TestPSKConfiguration", "Server Error Mismatch '%s'", test.Name)
 			}
 		}
 
 		res := <-resultCh
 		if res.err != nil || test.WantClientError != nil {
-			if !(res.err != nil && test.WantClientError != nil && res.err.Error() == test.WantClientError.Error()) {
+			if res.err == nil || test.WantClientError == nil && res.err.Error() != test.WantClientError.Error() {
 				assert.Failf(t, "TestPSKConfiguration", "Client Error Mismatch '%s'", test.Name)
 			}
 		}

e2e/e2e_lossy_test.go

@@ -193,11 +193,7 @@ func TestPionE2ELossy(t *testing.T) { //nolint:cyclop
 				}
 			}()
 
-			for {
-				if serverConn != nil && clientConn != nil {
-					break
-				}
-
+			for serverConn == nil || clientConn == nil {
 				br.Tick()
 				select {
 				case serverResult := <-serverDone:

errors.go

@@ -17,122 +17,122 @@ import (
 
 // Typed errors.
 var (
-	ErrConnClosed = &FatalError{Err: errors.New("conn is closed")} //nolint:goerr113
+	ErrConnClosed = &FatalError{Err: errors.New("conn is closed")} //nolint:err113
 
 	errDeadlineExceeded   = &TimeoutError{Err: fmt.Errorf("read/write timeout: %w", context.DeadlineExceeded)}
-	errInvalidContentType = &TemporaryError{Err: errors.New("invalid content type")} //nolint:goerr113
+	errInvalidContentType = &TemporaryError{Err: errors.New("invalid content type")} //nolint:err113
 
-	//nolint:goerr113
+	//nolint:err113
 	errBufferTooSmall = &TemporaryError{Err: errors.New("buffer is too small")}
-	//nolint:goerr113
+	//nolint:err113
 	errContextUnsupported = &TemporaryError{Err: errors.New("context is not supported for ExportKeyingMaterial")}
-	//nolint:goerr113
+	//nolint:err113
 	errHandshakeInProgress = &TemporaryError{Err: errors.New("handshake is in progress")}
-	//nolint:goerr113
+	//nolint:err113
 	errReservedExportKeyingMaterial = &TemporaryError{
 		Err: errors.New("ExportKeyingMaterial can not be used with a reserved label"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errApplicationDataEpochZero = &TemporaryError{Err: errors.New("ApplicationData with epoch of 0")}
-	//nolint:goerr113
+	//nolint:err113
 	errUnhandledContextType = &TemporaryError{Err: errors.New("unhandled contentType")}
 
-	//nolint:goerr113
+	//nolint:err113
 	errCertificateVerifyNoCertificate = &FatalError{
 		Err: errors.New("client sent certificate verify but we have no certificate to verify"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errCipherSuiteNoIntersection = &FatalError{Err: errors.New("client+server do not support any shared cipher suites")}
-	//nolint:goerr113
+	//nolint:err113
 	errClientCertificateNotVerified = &FatalError{Err: errors.New("client sent certificate but did not verify it")}
-	//nolint:goerr113
+	//nolint:err113
 	errClientCertificateRequired = &FatalError{Err: errors.New("server required client verification, but got none")}
-	//nolint:goerr113
+	//nolint:err113
 	errClientNoMatchingSRTPProfile = &FatalError{Err: errors.New("server responded with SRTP Profile we do not support")}
-	//nolint:goerr113
+	//nolint:err113
 	errClientRequiredButNoServerEMS = &FatalError{
 		Err: errors.New("client required Extended Master Secret extension, but server does not support it"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errCookieMismatch = &FatalError{Err: errors.New("client+server cookie does not match")}
-	//nolint:goerr113
+	//nolint:err113
 	errIdentityNoPSK = &FatalError{Err: errors.New("PSK Identity Hint provided but PSK is nil")}
-	//nolint:goerr113
+	//nolint:err113
 	errInvalidCertificate = &FatalError{Err: errors.New("no certificate provided")}
-	//nolint:goerr113
+	//nolint:err113
 	errInvalidCipherSuite = &FatalError{Err: errors.New("invalid or unknown cipher suite")}
-	//nolint:goerr113
+	//nolint:err113
 	errInvalidECDSASignature = &FatalError{Err: errors.New("ECDSA signature contained zero or negative values")}
-	//nolint:goerr113
+	//nolint:err113
 	errInvalidPrivateKey = &FatalError{Err: errors.New("invalid private key type")}
-	//nolint:goerr113
+	//nolint:err113
 	errInvalidSignatureAlgorithm = &FatalError{Err: errors.New("invalid signature algorithm")}
-	//nolint:goerr113
+	//nolint:err113
 	errKeySignatureMismatch = &FatalError{Err: errors.New("expected and actual key signature do not match")}
-	//nolint:goerr113
+	//nolint:err113
 	errNilNextConn = &FatalError{Err: errors.New("Conn can not be created with a nil nextConn")}
-	//nolint:goerr113
+	//nolint:err113
 	errNoAvailableCipherSuites = &FatalError{
 		Err: errors.New("connection can not be created, no CipherSuites satisfy this Config"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errNoAvailablePSKCipherSuite = &FatalError{
 		Err: errors.New("connection can not be created, pre-shared key present but no compatible CipherSuite"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errNoAvailableCertificateCipherSuite = &FatalError{
 		Err: errors.New("connection can not be created, certificate present but no compatible CipherSuite"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errNoAvailableSignatureSchemes = &FatalError{
 		Err: errors.New("connection can not be created, no SignatureScheme satisfy this Config"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errNoCertificates = &FatalError{Err: errors.New("no certificates configured")}
-	//nolint:goerr113
+	//nolint:err113
 	errNoConfigProvided = &FatalError{Err: errors.New("no config provided")}
-	//nolint:goerr113
+	//nolint:err113
 	errNoSupportedEllipticCurves = &FatalError{
 		Err: errors.New("client requested zero or more elliptic curves that are not supported by the server"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errUnsupportedProtocolVersion = &FatalError{Err: errors.New("unsupported protocol version")}
-	//nolint:goerr113
+	//nolint:err113
 	errPSKAndIdentityMustBeSetForClient = &FatalError{
 		Err: errors.New("PSK and PSK Identity Hint must both be set for client"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errRequestedButNoSRTPExtension = &FatalError{
 		Err: errors.New("SRTP support was requested but server did not respond with use_srtp extension"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errServerNoMatchingSRTPProfile = &FatalError{Err: errors.New("client requested SRTP but we have no matching profiles")}
-	//nolint:goerr113
+	//nolint:err113
 	errServerRequiredButNoClientEMS = &FatalError{
 		Err: errors.New("server requires the Extended Master Secret extension, but the client does not support it"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errVerifyDataMismatch = &FatalError{Err: errors.New("expected and actual verify data does not match")}
-	//nolint:goerr113
+	//nolint:err113
 	errNotAcceptableCertificateChain = &FatalError{Err: errors.New("certificate chain is not signed by an acceptable CA")}
 
-	//nolint:goerr113
+	//nolint:err113
 	errInvalidFlight = &InternalError{Err: errors.New("invalid flight number")}
-	//nolint:goerr113
+	//nolint:err113
 	errKeySignatureGenerateUnimplemented = &InternalError{
 		Err: errors.New("unable to generate key signature, unimplemented"),
 	}
-	//nolint:goerr113
+	//nolint:err113
 	errKeySignatureVerifyUnimplemented = &InternalError{Err: errors.New("unable to verify key signature, unimplemented")}
-	//nolint:goerr113
+	//nolint:err113
 	errLengthMismatch = &InternalError{Err: errors.New("data length and declared length do not match")}
-	//nolint:goerr113
+	//nolint:err113
 	errSequenceNumberOverflow = &InternalError{Err: errors.New("sequence number overflow")}
-	//nolint:goerr113
+	//nolint:err113
 	errInvalidFSMTransition = &InternalError{Err: errors.New("invalid state machine transition")}
-	//nolint:goerr113
+	//nolint:err113
 	errFailedToAccessPoolReadBuffer = &InternalError{Err: errors.New("failed to access pool read buffer")}
-	//nolint:goerr113
+	//nolint:err113
 	errFragmentBufferOverflow = &InternalError{Err: errors.New("fragment buffer overflow")}
 )
 

handshaker.go

@@ -152,7 +152,7 @@ func (c *handshakeConfig) writeKeyLog(label string, clientRandom, secret []byte)
 	}
 	c.mu.Lock()
 	defer c.mu.Unlock()
-	_, err := c.keyLogWriter.Write([]byte(fmt.Sprintf("%s %x %x\n", label, clientRandom, secret)))
+	_, err := fmt.Fprintf(c.keyLogWriter, "%s %x %x\n", label, clientRandom, secret)
 	if err != nil {
 		c.log.Debugf("failed to write key log file: %s", err)
 	}

internal/ciphersuite/ciphersuite.go

@@ -13,7 +13,7 @@ import (
 	"github.com/pion/dtls/v3/pkg/protocol"
 )
 
-//nolint:goerr113
+//nolint:err113
 var errCipherSuiteNotInit = &protocol.TemporaryError{Err: errors.New("CipherSuite has not been initialized")}
 
 // ID is an ID for our supported CipherSuites.
@@ -57,26 +57,26 @@ func (i ID) String() string { //nolint:cyclop
 // Supported Cipher Suites.
 const (
 	// AES-128-CCM.
-	TLS_ECDHE_ECDSA_WITH_AES_128_CCM   ID = 0xc0ac //nolint:revive,stylecheck
-	TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8 ID = 0xc0ae //nolint:revive,stylecheck
+	TLS_ECDHE_ECDSA_WITH_AES_128_CCM   ID = 0xc0ac //nolint:staticcheck
+	TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8 ID = 0xc0ae //nolint:staticcheck
 
 	// AES-128-GCM-SHA256.
-	TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ID = 0xc02b //nolint:revive,stylecheck
-	TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ID = 0xc02f //nolint:revive,stylecheck
+	TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ID = 0xc02b //nolint:staticcheck
+	TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ID = 0xc02f //nolint:staticcheck
 
-	TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ID = 0xc02c //nolint:revive,stylecheck
-	TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ID = 0xc030 //nolint:revive,stylecheck
+	TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ID = 0xc02c //nolint:staticcheck
+	TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ID = 0xc030 //nolint:staticcheck
 	// AES-256-CBC-SHA.
-	TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ID = 0xc00a //nolint:revive,stylecheck
-	TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ID = 0xc014 //nolint:revive,stylecheck
+	TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ID = 0xc00a //nolint:staticcheck
+	TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ID = 0xc014 //nolint:staticcheck
 
-	TLS_PSK_WITH_AES_128_CCM        ID = 0xc0a4 //nolint:revive,stylecheck
-	TLS_PSK_WITH_AES_128_CCM_8      ID = 0xc0a8 //nolint:revive,stylecheck
-	TLS_PSK_WITH_AES_256_CCM_8      ID = 0xc0a9 //nolint:revive,stylecheck
-	TLS_PSK_WITH_AES_128_GCM_SHA256 ID = 0x00a8 //nolint:revive,stylecheck
-	TLS_PSK_WITH_AES_128_CBC_SHA256 ID = 0x00ae //nolint:revive,stylecheck
+	TLS_PSK_WITH_AES_128_CCM        ID = 0xc0a4 //nolint:staticcheck
+	TLS_PSK_WITH_AES_128_CCM_8      ID = 0xc0a8 //nolint:staticcheck
+	TLS_PSK_WITH_AES_256_CCM_8      ID = 0xc0a9 //nolint:staticcheck
+	TLS_PSK_WITH_AES_128_GCM_SHA256 ID = 0x00a8 //nolint:staticcheck
+	TLS_PSK_WITH_AES_128_CBC_SHA256 ID = 0x00ae //nolint:staticcheck
 
-	TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256 ID = 0xC037 //nolint:revive,stylecheck
+	TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA256 ID = 0xC037 //nolint:staticcheck
 )
 
 // AuthenticationType controls what authentication method is using during the handshake.

pkg/crypto/ciphersuite/ciphersuite.go

@@ -21,13 +21,13 @@ const (
 )
 
 var (
-	//nolint:goerr113
+	//nolint:err113
 	errNotEnoughRoomForNonce = &protocol.InternalError{Err: errors.New("buffer not long enough to contain nonce")}
-	//nolint:goerr113
+	//nolint:err113
 	errDecryptPacket = &protocol.TemporaryError{Err: errors.New("failed to decrypt packet")}
-	//nolint:goerr113
+	//nolint:err113
 	errInvalidMAC = &protocol.TemporaryError{Err: errors.New("invalid mac")}
-	//nolint:goerr113
+	//nolint:err113
 	errFailedToCast = &protocol.FatalError{Err: errors.New("failed to cast")}
 )
 

pkg/crypto/prf/prf.go

@@ -40,7 +40,7 @@ type EncryptionKeys struct {
 	ServerWriteIV  []byte
 }
 
-var errInvalidNamedCurve = &protocol.FatalError{Err: errors.New("invalid named curve")} //nolint:goerr113
+var errInvalidNamedCurve = &protocol.FatalError{Err: errors.New("invalid named curve")} //nolint:err113
 
 func (e *EncryptionKeys) String() string {
 	return fmt.Sprintf(`encryptionKeys:

pkg/protocol/alert/alert.go

@@ -11,7 +11,7 @@ import (
 	"github.com/pion/dtls/v3/pkg/protocol"
 )
 
-var errBufferTooSmall = &protocol.TemporaryError{Err: errors.New("buffer is too small")} //nolint:goerr113
+var errBufferTooSmall = &protocol.TemporaryError{Err: errors.New("buffer is too small")} //nolint:err113
 
 // Level is the level of the TLS Alert.
 type Level byte

pkg/protocol/errors.go

@@ -10,8 +10,8 @@ import (
 )
 
 var (
-	errBufferTooSmall    = &TemporaryError{Err: errors.New("buffer is too small")} //nolint:goerr113
-	errInvalidCipherSpec = &FatalError{Err: errors.New("cipher spec invalid")}     //nolint:goerr113
+	errBufferTooSmall    = &TemporaryError{Err: errors.New("buffer is too small")} //nolint:err113
+	errInvalidCipherSpec = &FatalError{Err: errors.New("cipher spec invalid")}     //nolint:err113
 )
 
 // FatalError indicates that the DTLS connection is no longer available.