package staticcheck import "honnef.co/go/tools/lint" var Docs = map[string]*lint.Documentation{ "SA1000": { Title: `Invalid regular expression`, Since: "2017.1", }, "SA1001": { Title: `Invalid template`, Since: "2017.1", }, "SA1002": { Title: `Invalid format in time.Parse`, Since: "2017.1", }, "SA1003": { Title: `Unsupported argument to functions in encoding/binary`, Text: `The encoding/binary package can only serialize types with known sizes. This precludes the use of the int and uint types, as their sizes differ on different architectures. Furthermore, it doesn't support serializing maps, channels, strings, or functions. Before Go 1.8, bool wasn't supported, either.`, Since: "2017.1", }, "SA1004": { Title: `Suspiciously small untyped constant in time.Sleep`, Text: `The time.Sleep function takes a time.Duration as its only argument. Durations are expressed in nanoseconds. Thus, calling time.Sleep(1) will sleep for 1 nanosecond. This is a common source of bugs, as sleep functions in other languages often accept seconds or milliseconds. The time package provides constants such as time.Second to express large durations. These can be combined with arithmetic to express arbitrary durations, for example '5 * time.Second' for 5 seconds. If you truly meant to sleep for a tiny amount of time, use 'n * time.Nanosecond' to signal to Staticcheck that you did mean to sleep for some amount of nanoseconds.`, Since: "2017.1", }, "SA1005": { Title: `Invalid first argument to exec.Command`, Text: `os/exec runs programs directly (using variants of the fork and exec system calls on Unix systems). This shouldn't be confused with running a command in a shell. The shell will allow for features such as input redirection, pipes, and general scripting. The shell is also responsible for splitting the user's input into a program name and its arguments. For example, the equivalent to ls / /tmp would be exec.Command("ls", "/", "/tmp") If you want to run a command in a shell, consider using something like the following – but be aware that not all systems, particularly Windows, will have a /bin/sh program: exec.Command("/bin/sh", "-c", "ls | grep Awesome")`, Since: "2017.1", }, "SA1006": { Title: `Printf with dynamic first argument and no further arguments`, Text: `Using fmt.Printf with a dynamic first argument can lead to unexpected output. The first argument is a format string, where certain character combinations have special meaning. If, for example, a user were to enter a string such as Interest rate: 5% and you printed it with fmt.Printf(s) it would lead to the following output: Interest rate: 5%!(NOVERB). Similarly, forming the first parameter via string concatenation with user input should be avoided for the same reason. When printing user input, either use a variant of fmt.Print, or use the %s Printf verb and pass the string as an argument.`, Since: "2017.1", }, "SA1007": { Title: `Invalid URL in net/url.Parse`, Since: "2017.1", }, "SA1008": { Title: `Non-canonical key in http.Header map`, Text: `Keys in http.Header maps are canonical, meaning they follow a specific combination of uppercase and lowercase letters. Methods such as http.Header.Add and http.Header.Del convert inputs into this canonical form before manipulating the map. When manipulating http.Header maps directly, as opposed to using the provided methods, care should be taken to stick to canonical form in order to avoid inconsistencies. The following piece of code demonstrates one such inconsistency: h := http.Header{} h["etag"] = []string{"1234"} h.Add("etag", "5678") fmt.Println(h) // Output: // map[Etag:[5678] etag:[1234]] The easiest way of obtaining the canonical form of a key is to use http.CanonicalHeaderKey.`, Since: "2017.1", }, "SA1010": { Title: `(*regexp.Regexp).FindAll called with n == 0, which will always return zero results`, Text: `If n >= 0, the function returns at most n matches/submatches. To return all results, specify a negative number.`, Since: "2017.1", }, "SA1011": { Title: `Various methods in the strings package expect valid UTF-8, but invalid input is provided`, Since: "2017.1", }, "SA1012": { Title: `A nil context.Context is being passed to a function, consider using context.TODO instead`, Since: "2017.1", }, "SA1013": { Title: `io.Seeker.Seek is being called with the whence constant as the first argument, but it should be the second`, Since: "2017.1", }, "SA1014": { Title: `Non-pointer value passed to Unmarshal or Decode`, Since: "2017.1", }, "SA1015": { Title: `Using time.Tick in a way that will leak. Consider using time.NewTicker, and only use time.Tick in tests, commands and endless functions`, Since: "2017.1", }, "SA1016": { Title: `Trapping a signal that cannot be trapped`, Text: `Not all signals can be intercepted by a process. Speficially, on UNIX-like systems, the syscall.SIGKILL and syscall.SIGSTOP signals are never passed to the process, but instead handled directly by the kernel. It is therefore pointless to try and handle these signals.`, Since: "2017.1", }, "SA1017": { Title: `Channels used with os/signal.Notify should be buffered`, Text: `The os/signal package uses non-blocking channel sends when delivering signals. If the receiving end of the channel isn't ready and the channel is either unbuffered or full, the signal will be dropped. To avoid missing signals, the channel should be buffered and of the appropriate size. For a channel used for notification of just one signal value, a buffer of size 1 is sufficient.`, Since: "2017.1", }, "SA1018": { Title: `strings.Replace called with n == 0, which does nothing`, Text: `With n == 0, zero instances will be replaced. To replace all instances, use a negative number, or use strings.ReplaceAll.`, Since: "2017.1", }, "SA1019": { Title: `Using a deprecated function, variable, constant or field`, Since: "2017.1", }, "SA1020": { Title: `Using an invalid host:port pair with a net.Listen-related function`, Since: "2017.1", }, "SA1021": { Title: `Using bytes.Equal to compare two net.IP`, Text: `A net.IP stores an IPv4 or IPv6 address as a slice of bytes. The length of the slice for an IPv4 address, however, can be either 4 or 16 bytes long, using different ways of representing IPv4 addresses. In order to correctly compare two net.IPs, the net.IP.Equal method should be used, as it takes both representations into account.`, Since: "2017.1", }, "SA1023": { Title: `Modifying the buffer in an io.Writer implementation`, Text: `Write must not modify the slice data, even temporarily.`, Since: "2017.1", }, "SA1024": { Title: `A string cutset contains duplicate characters`, Text: `The strings.TrimLeft and strings.TrimRight functions take cutsets, not prefixes. A cutset is treated as a set of characters to remove from a string. For example, strings.TrimLeft("42133word", "1234")) will result in the string "word" – any characters that are 1, 2, 3 or 4 are cut from the left of the string. In order to remove one string from another, use strings.TrimPrefix instead.`, Since: "2017.1", }, "SA1025": { Title: `It is not possible to use (*time.Timer).Reset's return value correctly`, Since: "2019.1", }, "SA1026": { Title: `Cannot marshal channels or functions`, Since: "2019.2", }, "SA1027": { Title: `Atomic access to 64-bit variable must be 64-bit aligned`, Text: `On ARM, x86-32, and 32-bit MIPS, it is the caller's responsibility to arrange for 64-bit alignment of 64-bit words accessed atomically. The first word in a variable or in an allocated struct, array, or slice can be relied upon to be 64-bit aligned. You can use the structlayout tool to inspect the alignment of fields in a struct.`, Since: "2019.2", }, "SA1028": { Title: `sort.Slice can only be used on slices`, Text: `The first argument of sort.Slice must be a slice.`, Since: "2020.1", }, "SA1029": { Title: `Inappropriate key in call to context.WithValue`, Text: `The provided key must be comparable and should not be of type string or any other built-in type to avoid collisions between packages using context. Users of WithValue should define their own types for keys. To avoid allocating when assigning to an interface{}, context keys often have concrete type struct{}. Alternatively, exported context key variables' static type should be a pointer or interface.`, Since: "2020.1", }, "SA2000": { Title: `sync.WaitGroup.Add called inside the goroutine, leading to a race condition`, Since: "2017.1", }, "SA2001": { Title: `Empty critical section, did you mean to defer the unlock?`, Text: `Empty critical sections of the kind mu.Lock() mu.Unlock() are very often a typo, and the following was intended instead: mu.Lock() defer mu.Unlock() Do note that sometimes empty critical sections can be useful, as a form of signaling to wait on another goroutine. Many times, there are simpler ways of achieving the same effect. When that isn't the case, the code should be amply commented to avoid confusion. Combining such comments with a //lint:ignore directive can be used to suppress this rare false positive.`, Since: "2017.1", }, "SA2002": { Title: `Called testing.T.FailNow or SkipNow in a goroutine, which isn't allowed`, Since: "2017.1", }, "SA2003": { Title: `Deferred Lock right after locking, likely meant to defer Unlock instead`, Since: "2017.1", }, "SA3000": { Title: `TestMain doesn't call os.Exit, hiding test failures`, Text: `Test executables (and in turn 'go test') exit with a non-zero status code if any tests failed. When specifying your own TestMain function, it is your responsibility to arrange for this, by calling os.Exit with the correct code. The correct code is returned by (*testing.M).Run, so the usual way of implementing TestMain is to end it with os.Exit(m.Run()).`, Since: "2017.1", }, "SA3001": { Title: `Assigning to b.N in benchmarks distorts the results`, Text: `The testing package dynamically sets b.N to improve the reliability of benchmarks and uses it in computations to determine the duration of a single operation. Benchmark code must not alter b.N as this would falsify results.`, Since: "2017.1", }, "SA4000": { Title: `Boolean expression has identical expressions on both sides`, Since: "2017.1", }, "SA4001": { Title: `&*x gets simplified to x, it does not copy x`, Since: "2017.1", }, "SA4002": { Title: `Comparing strings with known different sizes has predictable results`, Since: "2017.1", }, "SA4003": { Title: `Comparing unsigned values against negative values is pointless`, Since: "2017.1", }, "SA4004": { Title: `The loop exits unconditionally after one iteration`, Since: "2017.1", }, "SA4005": { Title: `Field assignment that will never be observed. Did you mean to use a pointer receiver?`, Since: "2017.1", }, "SA4006": { Title: `A value assigned to a variable is never read before being overwritten. Forgotten error check or dead code?`, Since: "2017.1", }, "SA4008": { Title: `The variable in the loop condition never changes, are you incrementing the wrong variable?`, Since: "2017.1", }, "SA4009": { Title: `A function argument is overwritten before its first use`, Since: "2017.1", }, "SA4010": { Title: `The result of append will never be observed anywhere`, Since: "2017.1", }, "SA4011": { Title: `Break statement with no effect. Did you mean to break out of an outer loop?`, Since: "2017.1", }, "SA4012": { Title: `Comparing a value against NaN even though no value is equal to NaN`, Since: "2017.1", }, "SA4013": { Title: `Negating a boolean twice (!!b) is the same as writing b. This is either redundant, or a typo.`, Since: "2017.1", }, "SA4014": { Title: `An if/else if chain has repeated conditions and no side-effects; if the condition didn't match the first time, it won't match the second time, either`, Since: "2017.1", }, "SA4015": { Title: `Calling functions like math.Ceil on floats converted from integers doesn't do anything useful`, Since: "2017.1", }, "SA4016": { Title: `Certain bitwise operations, such as x ^ 0, do not do anything useful`, Since: "2017.1", }, "SA4017": { Title: `A pure function's return value is discarded, making the call pointless`, Since: "2017.1", }, "SA4018": { Title: `Self-assignment of variables`, Since: "2017.1", }, "SA4019": { Title: `Multiple, identical build constraints in the same file`, Since: "2017.1", }, "SA4020": { Title: `Unreachable case clause in a type switch`, Text: `In a type switch like the following type T struct{} func (T) Read(b []byte) (int, error) { return 0, nil } var v interface{} = T{} switch v.(type) { case io.Reader: // ... case T: // unreachable } the second case clause can never be reached because T implements io.Reader and case clauses are evaluated in source order. Another example: type T struct{} func (T) Read(b []byte) (int, error) { return 0, nil } func (T) Close() error { return nil } var v interface{} = T{} switch v.(type) { case io.Reader: // ... case io.ReadCloser: // unreachable } Even though T has a Close method and thus implements io.ReadCloser, io.Reader will always match first. The method set of io.Reader is a subset of io.ReadCloser. Thus it is impossible to match the second case without matching the first case. Structurally equivalent interfaces A special case of the previous example are structurally identical interfaces. Given these declarations type T error type V error func doSomething() error { err, ok := doAnotherThing() if ok { return T(err) } return U(err) } the following type switch will have an unreachable case clause: switch doSomething().(type) { case T: // ... case V: // unreachable } T will always match before V because they are structurally equivalent and therefore doSomething()'s return value implements both.`, Since: "2019.2", }, "SA4021": { Title: `x = append(y) is equivalent to x = y`, Since: "2019.2", }, "SA4022": { Title: `Comparing the address of a variable against nil`, Text: `Code such as 'if &x == nil' is meaningless, because taking the address of a variable always yields a non-nil pointer.`, Since: "2020.1", }, "SA5000": { Title: `Assignment to nil map`, Since: "2017.1", }, "SA5001": { Title: `Defering Close before checking for a possible error`, Since: "2017.1", }, "SA5002": { Title: `The empty for loop (for {}) spins and can block the scheduler`, Since: "2017.1", }, "SA5003": { Title: `Defers in infinite loops will never execute`, Text: `Defers are scoped to the surrounding function, not the surrounding block. In a function that never returns, i.e. one containing an infinite loop, defers will never execute.`, Since: "2017.1", }, "SA5004": { Title: `for { select { ... with an empty default branch spins`, Since: "2017.1", }, "SA5005": { Title: `The finalizer references the finalized object, preventing garbage collection`, Text: `A finalizer is a function associated with an object that runs when the garbage collector is ready to collect said object, that is when the object is no longer referenced by anything. If the finalizer references the object, however, it will always remain as the final reference to that object, preventing the garbage collector from collecting the object. The finalizer will never run, and the object will never be collected, leading to a memory leak. That is why the finalizer should instead use its first argument to operate on the object. That way, the number of references can temporarily go to zero before the object is being passed to the finalizer.`, Since: "2017.1", }, "SA5006": { Title: `Slice index out of bounds`, Since: "2017.1", }, "SA5007": { Title: `Infinite recursive call`, Text: `A function that calls itself recursively needs to have an exit condition. Otherwise it will recurse forever, until the system runs out of memory. This issue can be caused by simple bugs such as forgetting to add an exit condition. It can also happen "on purpose". Some languages have tail call optimization which makes certain infinite recursive calls safe to use. Go, however, does not implement TCO, and as such a loop should be used instead.`, Since: "2017.1", }, "SA5008": { Title: `Invalid struct tag`, Since: "2019.2", }, "SA5009": { Title: `Invalid Printf call`, Since: "2019.2", }, "SA5010": { Title: `Impossible type assertion`, Text: `Some type assertions can be statically proven to be impossible. This is the case when the method sets of both arguments of the type assertion conflict with each other, for example by containing the same method with different signatures. The Go compiler already applies this check when asserting from an interface value to a concrete type. If the concrete type misses methods from the interface, or if function signatures don't match, then the type assertion can never succeed. This check applies the same logic when asserting from one interface to another. If both interface types contain the same method but with different signatures, then the type assertion can never succeed, either.`, Since: "2020.1", }, "SA5011": { Title: `Possible nil pointer dereference`, Text: `A pointer is being dereferenced unconditionally, while also being checked against nil in another place. This suggests that the pointer may be nil and dereferencing it may panic. This is commonly a result of improperly ordered code or missing return statements. Consider the following examples: func fn(x *int) { fmt.Println(*x) // This nil check is equally important for the previous dereference if x != nil { foo(*x) } } func TestFoo(t *testing.T) { x := compute() if x == nil { t.Errorf("nil pointer received") } // t.Errorf does not abort the test, so if x is nil, the next line will panic. foo(*x) } Staticcheck tries to deduce which functions abort control flow. For example, it is aware that a function will not continue execution after a call to panic or log.Fatal. However, sometimes this detection fails, in particular in the presence of conditionals. Consider the following example: func Log(msg string, level int) { fmt.Println(msg) if level == levelFatal { os.Exit(1) } } func Fatal(msg string) { Log(msg, levelFatal) } func fn(x *int) { if x == nil { Fatal("unexpected nil pointer") } fmt.Println(*x) } Staticcheck will flag the dereference of x, even though it is perfectly safe. Staticcheck is not able to deduce that a call to Fatal will exit the program. For the time being, the easiest workaround is to modify the definition of Fatal like so: func Fatal(msg string) { Log(msg, levelFatal) panic("unreachable") } We also hard-code functions from common logging packages such as logrus. Please file an issue if we're missing support for a popular package.`, Since: "2020.1", }, "SA6000": { Title: `Using regexp.Match or related in a loop, should use regexp.Compile`, Since: "2017.1", }, "SA6001": { Title: `Missing an optimization opportunity when indexing maps by byte slices`, Text: `Map keys must be comparable, which precludes the use of byte slices. This usually leads to using string keys and converting byte slices to strings. Normally, a conversion of a byte slice to a string needs to copy the data and causes allocations. The compiler, however, recognizes m[string(b)] and uses the data of b directly, without copying it, because it knows that the data can't change during the map lookup. This leads to the counter-intuitive situation that k := string(b) println(m[k]) println(m[k]) will be less efficient than println(m[string(b)]) println(m[string(b)]) because the first version needs to copy and allocate, while the second one does not. For some history on this optimization, check out commit f5f5a8b6209f84961687d993b93ea0d397f5d5bf in the Go repository.`, Since: "2017.1", }, "SA6002": { Title: `Storing non-pointer values in sync.Pool allocates memory`, Text: `A sync.Pool is used to avoid unnecessary allocations and reduce the amount of work the garbage collector has to do. When passing a value that is not a pointer to a function that accepts an interface, the value needs to be placed on the heap, which means an additional allocation. Slices are a common thing to put in sync.Pools, and they're structs with 3 fields (length, capacity, and a pointer to an array). In order to avoid the extra allocation, one should store a pointer to the slice instead. See the comments on https://go-review.googlesource.com/c/go/+/24371 that discuss this problem.`, Since: "2017.1", }, "SA6003": { Title: `Converting a string to a slice of runes before ranging over it`, Text: `You may want to loop over the runes in a string. Instead of converting the string to a slice of runes and looping over that, you can loop over the string itself. That is, for _, r := range s {} and for _, r := range []rune(s) {} will yield the same values. The first version, however, will be faster and avoid unnecessary memory allocations. Do note that if you are interested in the indices, ranging over a string and over a slice of runes will yield different indices. The first one yields byte offsets, while the second one yields indices in the slice of runes.`, Since: "2017.1", }, "SA6005": { Title: `Inefficient string comparison with strings.ToLower or strings.ToUpper`, Text: `Converting two strings to the same case and comparing them like so if strings.ToLower(s1) == strings.ToLower(s2) { ... } is significantly more expensive than comparing them with strings.EqualFold(s1, s2). This is due to memory usage as well as computational complexity. strings.ToLower will have to allocate memory for the new strings, as well as convert both strings fully, even if they differ on the very first byte. strings.EqualFold, on the other hand, compares the strings one character at a time. It doesn't need to create two intermediate strings and can return as soon as the first non-matching character has been found. For a more in-depth explanation of this issue, see https://blog.digitalocean.com/how-to-efficiently-compare-strings-in-go/`, Since: "2019.2", }, "SA9001": { Title: `Defers in range loops may not run when you expect them to`, Since: "2017.1", }, "SA9002": { Title: `Using a non-octal os.FileMode that looks like it was meant to be in octal.`, Since: "2017.1", }, "SA9003": { Title: `Empty body in an if or else branch`, Since: "2017.1", }, "SA9004": { Title: `Only the first constant has an explicit type`, Text: `In a constant declaration such as the following: const ( First byte = 1 Second = 2 ) the constant Second does not have the same type as the constant First. This construct shouldn't be confused with const ( First byte = iota Second ) where First and Second do indeed have the same type. The type is only passed on when no explicit value is assigned to the constant. When declaring enumerations with explicit values it is therefore important not to write const ( EnumFirst EnumType = 1 EnumSecond = 2 EnumThird = 3 ) This discrepancy in types can cause various confusing behaviors and bugs. Wrong type in variable declarations The most obvious issue with such incorrect enumerations expresses itself as a compile error: package pkg const ( EnumFirst uint8 = 1 EnumSecond = 2 ) func fn(useFirst bool) { x := EnumSecond if useFirst { x = EnumFirst } } fails to compile with ./const.go:11:5: cannot use EnumFirst (type uint8) as type int in assignment Losing method sets A more subtle issue occurs with types that have methods and optional interfaces. Consider the following: package main import "fmt" type Enum int func (e Enum) String() string { return "an enum" } const ( EnumFirst Enum = 1 EnumSecond = 2 ) func main() { fmt.Println(EnumFirst) fmt.Println(EnumSecond) } This code will output an enum 2 as EnumSecond has no explicit type, and thus defaults to int.`, Since: "2019.1", }, "SA9005": { Title: `Trying to marshal a struct with no public fields nor custom marshaling`, Text: `The encoding/json and encoding/xml packages only operate on exported fields in structs, not unexported ones. It is usually an error to try to (un)marshal structs that only consist of unexported fields. This check will not flag calls involving types that define custom marshaling behavior, e.g. via MarshalJSON methods. It will also not flag empty structs.`, Since: "2019.2", }, }