opentf

jprdonnelly/opentf

Fork 0

mirror of https://github.com/opentffoundation/opentf.git synced 2025-12-19 17:59:05 -05:00

Commit Graph

Author	SHA1	Message	Date
Christian Mesh	b2bf39802a	Implement the first part of RFC 20250303-linter-policy (#2577 ) Signed-off-by: Christian Mesh <christianmesh1@gmail.com>	2025-03-10 13:16:27 -04:00
Martin Atkins	9d9c1486fa	ipaddr: Exempt from all lint rules The code in this package is all snapshot from the Go codebase in older versions, inlined here to allow OpenTofu's cidr-calculation-related functions to preserve their original behavior despite upstream changing the parsing rules in a breaking way. This code is intentionally modified as little as possible from the upstream code it was derived from. We are imposing on ourselves considerably stricter style conventions than the Go project follows and so we need to disable various linters for this package to allow this code to remain written in the Go idiomatic style, rather than in OpenTofu's stricter local style. In particular, we've chosen to prohibit ourselves from using named return values or package-global variables, despite those both being typical in the standard library and in other codebases. Signed-off-by: Martin Atkins <mart@degeneration.co.uk>	2025-01-06 08:36:42 -08:00
Martin Atkins	c23a7fce4e	lang/funcs: Preserve IP address leading zero behavior from Go 1.16 Go 1.17 includes a breaking change to both net.ParseIP and net.ParseCIDR functions to reject IPv4 address octets written with leading zeros. Our use of these functions as part of the various CIDR functions in the Terraform language doesn't have the same security concerns that the Go team had in evaluating this change to the standard library, and so we can't justify an exception to our v1.0 compatibility promises on the same sort of security grounds that the Go team used to justify their compatibility exception. For that reason, we'll now use our own fork of the Go library functions which has the new check disabled in order to preserve the prior behavior. We're taking this path, rather than pre-normalizing the IP address before calling into the standard library, because an additional normalization layer would be entirely new code and additional complexity, whereas this fork is relatively minor in terms of code size and avoids any significant changes to our own calls to these functions. Thanks to the Kubernetes team for their prior work on carving out a subset of the "net" package for their similar backward-compatibility concern. Our "ipaddr" package here is a lightly-modified fork of their fork, with only the comments changed to talk about Terraform instead of Kubernetes. This fork is not intended for use in any other future feature implementations, because they wouldn't be subject to the same compatibility constraints as our existing functions. We will use these forked implementations for new callers only if consistency with the behavior of the existing functions is a key requirement.	2021-08-17 15:20:05 -07:00

Author

SHA1

Message

Date

Christian Mesh

b2bf39802a

Implement the first part of RFC 20250303-linter-policy (#2577 )

Signed-off-by: Christian Mesh <christianmesh1@gmail.com>

2025-03-10 13:16:27 -04:00

Martin Atkins

9d9c1486fa

ipaddr: Exempt from all lint rules

The code in this package is all snapshot from the Go codebase in older
versions, inlined here to allow OpenTofu's cidr-calculation-related
functions to preserve their original behavior despite upstream changing
the parsing rules in a breaking way.

This code is intentionally modified as little as possible from the upstream
code it was derived from. We are imposing on ourselves considerably
stricter style conventions than the Go project follows and so we need
to disable various linters for this package to allow this code to remain
written in the Go idiomatic style, rather than in OpenTofu's stricter
local style.

In particular, we've chosen to prohibit ourselves from using named return
values or package-global variables, despite those both being typical in the
standard library and in other codebases.

Signed-off-by: Martin Atkins <mart@degeneration.co.uk>

2025-01-06 08:36:42 -08:00

Martin Atkins

c23a7fce4e

lang/funcs: Preserve IP address leading zero behavior from Go 1.16

Go 1.17 includes a breaking change to both net.ParseIP and net.ParseCIDR
functions to reject IPv4 address octets written with leading zeros.

Our use of these functions as part of the various CIDR functions in the
Terraform language doesn't have the same security concerns that the Go
team had in evaluating this change to the standard library, and so we
can't justify an exception to our v1.0 compatibility promises on the same
sort of security grounds that the Go team used to justify their
compatibility exception.

For that reason, we'll now use our own fork of the Go library functions
which has the new check disabled in order to preserve the prior behavior.
We're taking this path, rather than pre-normalizing the IP address before
calling into the standard library, because an additional normalization
layer would be entirely new code and additional complexity, whereas this
fork is relatively minor in terms of code size and avoids any significant
changes to our own calls to these functions.

Thanks to the Kubernetes team for their prior work on carving out a subset
of the "net" package for their similar backward-compatibility concern.
Our "ipaddr" package here is a lightly-modified fork of their fork, with
only the comments changed to talk about Terraform instead of Kubernetes.

This fork is not intended for use in any other future feature
implementations, because they wouldn't be subject to the same
compatibility constraints as our existing functions. We will use these
forked implementations for new callers only if consistency with the
behavior of the existing functions is a key requirement.

2021-08-17 15:20:05 -07:00

3 Commits