Update linter

pkg/provider/acme/account.go

@@ -12,7 +12,7 @@ import (
 	"github.com/go-acme/lego/v3/registration"
 )
 
-// Account is used to store lets encrypt registration info
+// Account is used to store lets encrypt registration info.
 type Account struct {
 	Email        string
 	Registration *registration.Resource
@@ -21,11 +21,11 @@ type Account struct {
 }
 
 const (
-	// RegistrationURLPathV1Regexp is a regexp which match ACME registration URL in the V1 format
+	// RegistrationURLPathV1Regexp is a regexp which match ACME registration URL in the V1 format.
 	RegistrationURLPathV1Regexp = `^.*/acme/reg/\d+$`
 )
 
-// NewAccount creates an account
+// NewAccount creates an account.
 func NewAccount(ctx context.Context, email string, keyTypeValue string) (*Account, error) {
 	keyType := GetKeyType(ctx, keyTypeValue)
 
@@ -42,17 +42,17 @@ func NewAccount(ctx context.Context, email string, keyTypeValue string) (*Accoun
 	}, nil
 }
 
-// GetEmail returns email
+// GetEmail returns email.
 func (a *Account) GetEmail() string {
 	return a.Email
 }
 
-// GetRegistration returns lets encrypt registration resource
+// GetRegistration returns lets encrypt registration resource.
 func (a *Account) GetRegistration() *registration.Resource {
 	return a.Registration
 }
 
-// GetPrivateKey returns private key
+// GetPrivateKey returns private key.
 func (a *Account) GetPrivateKey() crypto.PrivateKey {
 	privateKey, err := x509.ParsePKCS1PrivateKey(a.PrivateKey)
 	if err != nil {
@@ -64,7 +64,7 @@ func (a *Account) GetPrivateKey() crypto.PrivateKey {
 	return privateKey
 }
 
-// GetKeyType used to determine which algo to used
+// GetKeyType used to determine which algo to used.
 func GetKeyType(ctx context.Context, value string) certcrypto.KeyType {
 	logger := log.FromContext(ctx)
 

pkg/provider/acme/local_store.go

@@ -13,7 +13,7 @@ import (
 
 var _ Store = (*LocalStore)(nil)
 
-// LocalStore Stores implementation for local file
+// LocalStore Stores implementation for local file.
 type LocalStore struct {
 	saveDataChan chan map[string]*StoredData
 	filename     string
@@ -22,7 +22,7 @@ type LocalStore struct {
 	storedData map[string]*StoredData
 }
 
-// NewLocalStore initializes a new LocalStore with a file name
+// NewLocalStore initializes a new LocalStore with a file name.
 func NewLocalStore(filename string) *LocalStore {
 	store := &LocalStore{filename: filename, saveDataChan: make(chan map[string]*StoredData)}
 	store.listenSaveAction()
@@ -93,7 +93,7 @@ func (s *LocalStore) get(resolverName string) (*StoredData, error) {
 	return s.storedData[resolverName], nil
 }
 
-// listenSaveAction listens to a chan to store ACME data in json format into LocalStore.filename
+// listenSaveAction listens to a chan to store ACME data in json format into `LocalStore.filename`.
 func (s *LocalStore) listenSaveAction() {
 	safe.Go(func() {
 		logger := log.WithoutContext().WithField(log.ProviderName, "acme")
@@ -111,7 +111,7 @@ func (s *LocalStore) listenSaveAction() {
 	})
 }
 
-// GetAccount returns ACME Account
+// GetAccount returns ACME Account.
 func (s *LocalStore) GetAccount(resolverName string) (*Account, error) {
 	storedData, err := s.get(resolverName)
 	if err != nil {
@@ -121,7 +121,7 @@ func (s *LocalStore) GetAccount(resolverName string) (*Account, error) {
 	return storedData.Account, nil
 }
 
-// SaveAccount stores ACME Account
+// SaveAccount stores ACME Account.
 func (s *LocalStore) SaveAccount(resolverName string, account *Account) error {
 	storedData, err := s.get(resolverName)
 	if err != nil {
@@ -134,7 +134,7 @@ func (s *LocalStore) SaveAccount(resolverName string, account *Account) error {
 	return nil
 }
 
-// GetCertificates returns ACME Certificates list
+// GetCertificates returns ACME Certificates list.
 func (s *LocalStore) GetCertificates(resolverName string) ([]*CertAndStore, error) {
 	storedData, err := s.get(resolverName)
 	if err != nil {
@@ -144,7 +144,7 @@ func (s *LocalStore) GetCertificates(resolverName string) ([]*CertAndStore, erro
 	return storedData.Certificates, nil
 }
 
-// SaveCertificates stores ACME Certificates list
+// SaveCertificates stores ACME Certificates list.
 func (s *LocalStore) SaveCertificates(resolverName string, certificates []*CertAndStore) error {
 	storedData, err := s.get(resolverName)
 	if err != nil {
@@ -173,7 +173,7 @@ func NewLocalChallengeStore() *LocalChallengeStore {
 	}
 }
 
-// GetHTTPChallengeToken Get the http challenge token from the store
+// GetHTTPChallengeToken Get the http challenge token from the store.
 func (s *LocalChallengeStore) GetHTTPChallengeToken(token, domain string) ([]byte, error) {
 	s.lock.RLock()
 	defer s.lock.RUnlock()
@@ -193,7 +193,7 @@ func (s *LocalChallengeStore) GetHTTPChallengeToken(token, domain string) ([]byt
 	return result, nil
 }
 
-// SetHTTPChallengeToken Set the http challenge token in the store
+// SetHTTPChallengeToken Set the http challenge token in the store.
 func (s *LocalChallengeStore) SetHTTPChallengeToken(token, domain string, keyAuth []byte) error {
 	s.lock.Lock()
 	defer s.lock.Unlock()
@@ -210,7 +210,7 @@ func (s *LocalChallengeStore) SetHTTPChallengeToken(token, domain string, keyAut
 	return nil
 }
 
-// RemoveHTTPChallengeToken Remove the http challenge token in the store
+// RemoveHTTPChallengeToken Remove the http challenge token in the store.
 func (s *LocalChallengeStore) RemoveHTTPChallengeToken(token, domain string) error {
 	s.lock.Lock()
 	defer s.lock.Unlock()
@@ -228,7 +228,7 @@ func (s *LocalChallengeStore) RemoveHTTPChallengeToken(token, domain string) err
 	return nil
 }
 
-// AddTLSChallenge Add a certificate to the ACME TLS-ALPN-01 certificates storage
+// AddTLSChallenge Add a certificate to the ACME TLS-ALPN-01 certificates storage.
 func (s *LocalChallengeStore) AddTLSChallenge(domain string, cert *Certificate) error {
 	s.lock.Lock()
 	defer s.lock.Unlock()
@@ -241,7 +241,7 @@ func (s *LocalChallengeStore) AddTLSChallenge(domain string, cert *Certificate)
 	return nil
 }
 
-// GetTLSChallenge Get a certificate from the ACME TLS-ALPN-01 certificates storage
+// GetTLSChallenge Get a certificate from the ACME TLS-ALPN-01 certificates storage.
 func (s *LocalChallengeStore) GetTLSChallenge(domain string) (*Certificate, error) {
 	s.lock.Lock()
 	defer s.lock.Unlock()
@@ -253,7 +253,7 @@ func (s *LocalChallengeStore) GetTLSChallenge(domain string) (*Certificate, erro
 	return s.storedData.TLSChallenges[domain], nil
 }
 
-// RemoveTLSChallenge Remove a certificate from the ACME TLS-ALPN-01 certificates storage
+// RemoveTLSChallenge Remove a certificate from the ACME TLS-ALPN-01 certificates storage.
 func (s *LocalChallengeStore) RemoveTLSChallenge(domain string) error {
 	s.lock.Lock()
 	defer s.lock.Unlock()

pkg/provider/acme/local_store_unix.go

@@ -7,7 +7,7 @@ import (
 	"os"
 )
 
-// CheckFile checks file permissions and content size
+// CheckFile checks file permissions and content size.
 func CheckFile(name string) (bool, error) {
 	f, err := os.Open(name)
 	if err != nil {

pkg/provider/acme/provider.go

@@ -28,11 +28,11 @@ import (
 )
 
 var (
-	// oscpMustStaple enables OSCP stapling as from https://github.com/go-acme/lego/issues/270
+	// oscpMustStaple enables OSCP stapling as from https://github.com/go-acme/lego/issues/270.
 	oscpMustStaple = false
 )
 
-// Configuration holds ACME configuration provided by users
+// Configuration holds ACME configuration provided by users.
 type Configuration struct {
 	Email         string         `description:"Email address used for registration." json:"email,omitempty" toml:"email,omitempty" yaml:"email,omitempty"`
 	CAServer      string         `description:"CA server to use." json:"caServer,omitempty" toml:"caServer,omitempty" yaml:"caServer,omitempty"`
@@ -56,14 +56,14 @@ type CertAndStore struct {
 	Store string
 }
 
-// Certificate is a struct which contains all data needed from an ACME certificate
+// Certificate is a struct which contains all data needed from an ACME certificate.
 type Certificate struct {
 	Domain      types.Domain `json:"domain,omitempty" toml:"domain,omitempty" yaml:"domain,omitempty"`
 	Certificate []byte       `json:"certificate,omitempty" toml:"certificate,omitempty" yaml:"certificate,omitempty"`
 	Key         []byte       `json:"key,omitempty" toml:"key,omitempty" yaml:"key,omitempty"`
 }
 
-// DNSChallenge contains DNS challenge Configuration
+// DNSChallenge contains DNS challenge Configuration.
 type DNSChallenge struct {
 	Provider                string         `description:"Use a DNS-01 based challenge provider rather than HTTPS." json:"provider,omitempty" toml:"provider,omitempty" yaml:"provider,omitempty"`
 	DelayBeforeCheck        types.Duration `description:"Assume DNS propagates after a delay in seconds rather than finding and querying nameservers." json:"delayBeforeCheck,omitempty" toml:"delayBeforeCheck,omitempty" yaml:"delayBeforeCheck,omitempty"`
@@ -71,12 +71,12 @@ type DNSChallenge struct {
 	DisablePropagationCheck bool           `description:"Disable the DNS propagation checks before notifying ACME that the DNS challenge is ready. [not recommended]" json:"disablePropagationCheck,omitempty" toml:"disablePropagationCheck,omitempty" yaml:"disablePropagationCheck,omitempty"`
 }
 
-// HTTPChallenge contains HTTP challenge Configuration
+// HTTPChallenge contains HTTP challenge Configuration.
 type HTTPChallenge struct {
 	EntryPoint string `description:"HTTP challenge EntryPoint" json:"entryPoint,omitempty" toml:"entryPoint,omitempty" yaml:"entryPoint,omitempty"`
 }
 
-// TLSChallenge contains TLS challenge Configuration
+// TLSChallenge contains TLS challenge Configuration.
 type TLSChallenge struct{}
 
 // Provider holds configurations of the provider.
@@ -98,22 +98,22 @@ type Provider struct {
 	resolvingDomainsMutex  sync.RWMutex
 }
 
-// SetTLSManager sets the tls manager to use
+// SetTLSManager sets the tls manager to use.
 func (p *Provider) SetTLSManager(tlsManager *traefiktls.Manager) {
 	p.tlsManager = tlsManager
 }
 
-// SetConfigListenerChan initializes the configFromListenerChan
+// SetConfigListenerChan initializes the configFromListenerChan.
 func (p *Provider) SetConfigListenerChan(configFromListenerChan chan dynamic.Configuration) {
 	p.configFromListenerChan = configFromListenerChan
 }
 
-// ListenConfiguration sets a new Configuration into the configFromListenerChan
+// ListenConfiguration sets a new Configuration into the configFromListenerChan.
 func (p *Provider) ListenConfiguration(config dynamic.Configuration) {
 	p.configFromListenerChan <- config
 }
 
-// Init for compatibility reason the BaseProvider implements an empty Init
+// Init for compatibility reason the BaseProvider implements an empty Init.
 func (p *Provider) Init() error {
 	ctx := log.With(context.Background(), log.Str(log.ProviderName, p.ResolverName+".acme"))
 	logger := log.FromContext(ctx)
@@ -125,7 +125,7 @@ func (p *Provider) Init() error {
 	var err error
 	p.account, err = p.Store.GetAccount(p.ResolverName)
 	if err != nil {
-		return fmt.Errorf("unable to get ACME account: %v", err)
+		return fmt.Errorf("unable to get ACME account: %w", err)
 	}
 
 	// Reset Account if caServer changed, thus registration URI can be updated
@@ -136,7 +136,7 @@ func (p *Provider) Init() error {
 
 	p.certificates, err = p.Store.GetCertificates(p.ResolverName)
 	if err != nil {
-		return fmt.Errorf("unable to get ACME certificates : %v", err)
+		return fmt.Errorf("unable to get ACME certificates : %w", err)
 	}
 
 	// Init the currently resolved domain map
@@ -442,7 +442,7 @@ func (p *Provider) resolveCertificate(ctx context.Context, domain types.Domain,
 
 	client, err := p.getClient()
 	if err != nil {
-		return nil, fmt.Errorf("cannot get ACME client %v", err)
+		return nil, fmt.Errorf("cannot get ACME client %w", err)
 	}
 
 	request := certificate.ObtainRequest{
@@ -453,7 +453,7 @@ func (p *Provider) resolveCertificate(ctx context.Context, domain types.Domain,
 
 	cert, err := client.Certificate.Obtain(request)
 	if err != nil {
-		return nil, fmt.Errorf("unable to generate a certificate for the domains %v: %v", uncheckedDomains, err)
+		return nil, fmt.Errorf("unable to generate a certificate for the domains %v: %w", uncheckedDomains, err)
 	}
 	if cert == nil {
 		return nil, fmt.Errorf("domains %v do not generate a certificate", uncheckedDomains)
@@ -498,7 +498,7 @@ func (p *Provider) addCertificateForDomain(domain types.Domain, certificate []by
 
 // deleteUnnecessaryDomains deletes from the configuration :
 // - Duplicated domains
-// - Domains which are checked by wildcard domain
+// - Domains which are checked by wildcard domain.
 func deleteUnnecessaryDomains(ctx context.Context, domains []types.Domain) []types.Domain {
 	var newDomains []types.Domain
 
@@ -657,7 +657,7 @@ func (p *Provider) renewCertificates(ctx context.Context) {
 }
 
 // Get provided certificate which check a domains list (Main and SANs)
-// from static and dynamic provided certificates
+// from static and dynamic provided certificates.
 func (p *Provider) getUncheckedDomains(ctx context.Context, domainsToCheck []string, tlsStore string) []string {
 	p.resolvingDomainsMutex.RLock()
 	defer p.resolvingDomainsMutex.RUnlock()
@@ -716,7 +716,7 @@ func getX509Certificate(ctx context.Context, cert *Certificate) (*x509.Certifica
 	return crt, err
 }
 
-// getValidDomains checks if given domain is allowed to generate a ACME certificate and return it
+// getValidDomains checks if given domain is allowed to generate a ACME certificate and return it.
 func (p *Provider) getValidDomains(ctx context.Context, domain types.Domain) ([]string, error) {
 	domains := domain.ToStrArray()
 	if len(domains) == 0 {

pkg/provider/aggregator/aggregator.go

@@ -94,12 +94,12 @@ func (p *ProviderAggregator) AddProvider(provider provider.Provider) error {
 	return nil
 }
 
-// Init the provider
+// Init the provider.
 func (p ProviderAggregator) Init() error {
 	return nil
 }
 
-// Provide calls the provide method of every providers
+// Provide calls the provide method of every providers.
 func (p ProviderAggregator) Provide(configurationChan chan<- dynamic.Message, pool *safe.Pool) error {
 	if p.fileProvider != nil {
 		launchProvider(configurationChan, pool, p.fileProvider)

pkg/provider/constraints/constraints_labels.go

@@ -18,7 +18,7 @@ type constraintLabelFunc func(map[string]string) bool
 // The expression must match any logical boolean combination of:
 // - `Label(labelName, labelValue)`
 // - `LabelRegex(labelName, regexValue)`
-// - `MarathonConstraint(field:operator:value)`
+// - `MarathonConstraint(field:operator:value)`.
 func MatchLabels(labels map[string]string, expr string) (bool, error) {
 	if expr == "" {
 		return true, nil

pkg/provider/constraints/constraints_tags.go

@@ -12,7 +12,7 @@ type constraintTagFunc func([]string) bool
 // MatchTags reports whether the expression matches with the given tags.
 // The expression must match any logical boolean combination of:
 // - `Tag(tagValue)`
-// - `TagRegex(regexValue)`
+// - `TagRegex(regexValue)`.
 func MatchTags(tags []string, expr string) (bool, error) {
 	if expr == "" {
 		return true, nil

pkg/provider/consulcatalog/consul_catalog.go

@@ -89,7 +89,7 @@ func (p *Provider) SetDefaults() {
 func (p *Provider) Init() error {
 	defaultRuleTpl, err := provider.MakeDefaultRuleTemplate(p.DefaultRule, nil)
 	if err != nil {
-		return fmt.Errorf("error while parsing default rule: %v", err)
+		return fmt.Errorf("error while parsing default rule: %w", err)
 	}
 
 	p.defaultRuleTpl = defaultRuleTpl
@@ -107,7 +107,7 @@ func (p *Provider) Provide(configurationChan chan<- dynamic.Message, pool *safe.
 
 			p.client, err = createClient(p.Endpoint)
 			if err != nil {
-				return fmt.Errorf("error create consul client, %v", err)
+				return fmt.Errorf("error create consul client, %w", err)
 			}
 
 			ticker := time.NewTicker(time.Duration(p.RefreshInterval))

pkg/provider/docker/docker.go

@@ -73,7 +73,7 @@ func (p *Provider) SetDefaults() {
 func (p *Provider) Init() error {
 	defaultRuleTpl, err := provider.MakeDefaultRuleTemplate(p.DefaultRule, nil)
 	if err != nil {
-		return fmt.Errorf("error while parsing default rule: %v", err)
+		return fmt.Errorf("error while parsing default rule: %w", err)
 	}
 
 	p.defaultRuleTpl = defaultRuleTpl

pkg/provider/docker/label.go

@@ -11,7 +11,8 @@ const (
 	labelDockerComposeService = "com.docker.compose.service"
 )
 
-// configuration Contains information from the labels that are globals (not related to the dynamic configuration) or specific to the provider.
+// configuration Contains information from the labels that are globals (not related to the dynamic configuration)
+// or specific to the provider.
 type configuration struct {
 	Enable bool
 	Docker specificConfiguration
@@ -38,8 +39,8 @@ func (p *Provider) getConfiguration(container dockerData) (configuration, error)
 	return conf, nil
 }
 
-// getStringMultipleStrict get multiple string values associated to several labels
-// Fail if one label is missing
+// getStringMultipleStrict get multiple string values associated to several labels.
+// Fail if one label is missing.
 func getStringMultipleStrict(labels map[string]string, labelNames ...string) (map[string]string, error) {
 	foundLabels := map[string]string{}
 	for _, name := range labelNames {
@@ -53,7 +54,7 @@ func getStringMultipleStrict(labels map[string]string, labelNames ...string) (ma
 	return foundLabels, nil
 }
 
-// getStringValue get string value associated to a label
+// getStringValue get string value associated to a label.
 func getStringValue(labels map[string]string, labelName string, defaultValue string) string {
 	if value, ok := labels[labelName]; ok && len(value) > 0 {
 		return value

pkg/provider/file/file.go

@@ -40,7 +40,7 @@ func (p *Provider) SetDefaults() {
 	p.Filename = ""
 }
 
-// Init the provider
+// Init the provider.
 func (p *Provider) Init() error {
 	return nil
 }
@@ -75,8 +75,8 @@ func (p *Provider) Provide(configurationChan chan<- dynamic.Message, pool *safe.
 	return nil
 }
 
-// BuildConfiguration loads configuration either from file or a directory specified by 'Filename'/'Directory'
-// and returns a 'Configuration' object
+// BuildConfiguration loads configuration either from file or a directory
+// specified by 'Filename'/'Directory' and returns a 'Configuration' object.
 func (p *Provider) BuildConfiguration() (*dynamic.Configuration, error) {
 	ctx := log.With(context.Background(), log.Str(log.ProviderName, providerName))
 
@@ -94,12 +94,12 @@ func (p *Provider) BuildConfiguration() (*dynamic.Configuration, error) {
 func (p *Provider) addWatcher(pool *safe.Pool, directory string, configurationChan chan<- dynamic.Message, callback func(chan<- dynamic.Message, fsnotify.Event)) error {
 	watcher, err := fsnotify.NewWatcher()
 	if err != nil {
-		return fmt.Errorf("error creating file watcher: %s", err)
+		return fmt.Errorf("error creating file watcher: %w", err)
 	}
 
 	err = watcher.Add(directory)
 	if err != nil {
-		return fmt.Errorf("error adding file watcher: %s", err)
+		return fmt.Errorf("error adding file watcher: %w", err)
 	}
 
 	// Process events
@@ -201,7 +201,7 @@ func flattenCertificates(ctx context.Context, tlsConfig *dynamic.TLSConfiguratio
 func (p *Provider) loadFileConfigFromDirectory(ctx context.Context, directory string, configuration *dynamic.Configuration) (*dynamic.Configuration, error) {
 	fileList, err := ioutil.ReadDir(directory)
 	if err != nil {
-		return configuration, fmt.Errorf("unable to read directory %s: %v", directory, err)
+		return configuration, fmt.Errorf("unable to read directory %s: %w", directory, err)
 	}
 
 	if configuration == nil {
@@ -234,7 +234,7 @@ func (p *Provider) loadFileConfigFromDirectory(ctx context.Context, directory st
 		if item.IsDir() {
 			configuration, err = p.loadFileConfigFromDirectory(ctx, filepath.Join(directory, item.Name()), configuration)
 			if err != nil {
-				return configuration, fmt.Errorf("unable to load content configuration from subdirectory %s: %v", item, err)
+				return configuration, fmt.Errorf("unable to load content configuration from subdirectory %s: %w", item, err)
 			}
 			continue
 		}
@@ -249,7 +249,7 @@ func (p *Provider) loadFileConfigFromDirectory(ctx context.Context, directory st
 		var c *dynamic.Configuration
 		c, err = p.loadFileConfig(ctx, filepath.Join(directory, item.Name()), true)
 		if err != nil {
-			return configuration, fmt.Errorf("%s: %v", filepath.Join(directory, item.Name()), err)
+			return configuration, fmt.Errorf("%s: %w", filepath.Join(directory, item.Name()), err)
 		}
 
 		for name, conf := range c.HTTP.Routers {
@@ -354,7 +354,7 @@ func (p *Provider) loadFileConfigFromDirectory(ctx context.Context, directory st
 func (p *Provider) CreateConfiguration(ctx context.Context, filename string, funcMap template.FuncMap, templateObjects interface{}) (*dynamic.Configuration, error) {
 	tmplContent, err := readFile(filename)
 	if err != nil {
-		return nil, fmt.Errorf("error reading configuration file: %s - %s", filename, err)
+		return nil, fmt.Errorf("error reading configuration file: %s - %w", filename, err)
 	}
 
 	var defaultFuncMap = sprig.TxtFuncMap()
@@ -391,7 +391,7 @@ func (p *Provider) CreateConfiguration(ctx context.Context, filename string, fun
 func (p *Provider) DecodeConfiguration(filename string) (*dynamic.Configuration, error) {
 	content, err := readFile(filename)
 	if err != nil {
-		return nil, fmt.Errorf("error reading configuration file: %s - %s", filename, err)
+		return nil, fmt.Errorf("error reading configuration file: %s - %w", filename, err)
 	}
 
 	return p.decodeConfiguration(filename, content)

pkg/provider/file/file_test.go

@@ -280,7 +280,7 @@ func createProvider(t *testing.T, test ProvideTestCase, watch bool) (*Provider,
 	}
 }
 
-// createTempDir Helper
+// createTempDir Helper.
 func createTempDir(t *testing.T, dir string) string {
 	t.Helper()
 

pkg/provider/kubernetes/crd/client.go

@@ -101,7 +101,7 @@ func newClientImpl(csKube *kubernetes.Clientset, csCrd *versioned.Clientset) *cl
 func newInClusterClient(endpoint string) (*clientWrapper, error) {
 	config, err := rest.InClusterConfig()
 	if err != nil {
-		return nil, fmt.Errorf("failed to create in-cluster configuration: %v", err)
+		return nil, fmt.Errorf("failed to create in-cluster configuration: %w", err)
 	}
 
 	if endpoint != "" {
@@ -135,7 +135,7 @@ func newExternalClusterClient(endpoint, token, caFilePath string) (*clientWrappe
 	if caFilePath != "" {
 		caData, err := ioutil.ReadFile(caFilePath)
 		if err != nil {
-			return nil, fmt.Errorf("failed to read CA file %s: %v", caFilePath, err)
+			return nil, fmt.Errorf("failed to read CA file %s: %w", caFilePath, err)
 		}
 
 		config.TLSClientConfig = rest.TLSClientConfig{CAData: caData}

pkg/provider/kubernetes/crd/kubernetes.go

@@ -325,7 +325,7 @@ func createForwardAuthMiddleware(k8sClient Client, namespace string, auth *v1alp
 	if len(auth.TLS.CASecret) > 0 {
 		caSecret, err := loadCASecret(namespace, auth.TLS.CASecret, k8sClient)
 		if err != nil {
-			return nil, fmt.Errorf("failed to load auth ca secret: %v", err)
+			return nil, fmt.Errorf("failed to load auth ca secret: %w", err)
 		}
 		forwardAuth.TLS.CA = caSecret
 	}
@@ -333,7 +333,7 @@ func createForwardAuthMiddleware(k8sClient Client, namespace string, auth *v1alp
 	if len(auth.TLS.CertSecret) > 0 {
 		authSecretCert, authSecretKey, err := loadAuthTLSSecret(namespace, auth.TLS.CertSecret, k8sClient)
 		if err != nil {
-			return nil, fmt.Errorf("failed to load auth secret: %v", err)
+			return nil, fmt.Errorf("failed to load auth secret: %w", err)
 		}
 		forwardAuth.TLS.Cert = authSecretCert
 		forwardAuth.TLS.Key = authSecretKey
@@ -345,7 +345,7 @@ func createForwardAuthMiddleware(k8sClient Client, namespace string, auth *v1alp
 func loadCASecret(namespace, secretName string, k8sClient Client) (string, error) {
 	secret, ok, err := k8sClient.GetSecret(namespace, secretName)
 	if err != nil {
-		return "", fmt.Errorf("failed to fetch secret '%s/%s': %v", namespace, secretName, err)
+		return "", fmt.Errorf("failed to fetch secret '%s/%s': %w", namespace, secretName, err)
 	}
 	if !ok {
 		return "", fmt.Errorf("secret '%s/%s' not found", namespace, secretName)
@@ -366,7 +366,7 @@ func loadCASecret(namespace, secretName string, k8sClient Client) (string, error
 func loadAuthTLSSecret(namespace, secretName string, k8sClient Client) (string, string, error) {
 	secret, exists, err := k8sClient.GetSecret(namespace, secretName)
 	if err != nil {
-		return "", "", fmt.Errorf("failed to fetch secret '%s/%s': %s", namespace, secretName, err)
+		return "", "", fmt.Errorf("failed to fetch secret '%s/%s': %w", namespace, secretName, err)
 	}
 	if !exists {
 		return "", "", fmt.Errorf("secret '%s/%s' does not exist", namespace, secretName)
@@ -424,7 +424,7 @@ func getAuthCredentials(k8sClient Client, authSecret, namespace string) ([]strin
 
 	auth, err := loadAuthCredentials(namespace, authSecret, k8sClient)
 	if err != nil {
-		return nil, fmt.Errorf("failed to load auth credentials: %v", err)
+		return nil, fmt.Errorf("failed to load auth credentials: %w", err)
 	}
 
 	return auth, nil
@@ -433,7 +433,7 @@ func getAuthCredentials(k8sClient Client, authSecret, namespace string) ([]strin
 func loadAuthCredentials(namespace, secretName string, k8sClient Client) ([]string, error) {
 	secret, ok, err := k8sClient.GetSecret(namespace, secretName)
 	if err != nil {
-		return nil, fmt.Errorf("failed to fetch secret '%s/%s': %v", namespace, secretName, err)
+		return nil, fmt.Errorf("failed to fetch secret '%s/%s': %w", namespace, secretName, err)
 	}
 	if !ok {
 		return nil, fmt.Errorf("secret '%s/%s' not found", namespace, secretName)
@@ -459,7 +459,7 @@ func loadAuthCredentials(namespace, secretName string, k8sClient Client) ([]stri
 		}
 	}
 	if err := scanner.Err(); err != nil {
-		return nil, fmt.Errorf("error reading secret for %s/%s: %v", namespace, secretName, err)
+		return nil, fmt.Errorf("error reading secret for %s/%s: %w", namespace, secretName, err)
 	}
 	if len(credentials) == 0 {
 		return nil, fmt.Errorf("secret '%s/%s' does not contain any credentials", namespace, secretName)
@@ -641,7 +641,7 @@ func shouldProcessIngress(ingressClass string, ingressClassAnnotation string) bo
 func getTLS(k8sClient Client, secretName, namespace string) (*tls.CertAndStores, error) {
 	secret, exists, err := k8sClient.GetSecret(namespace, secretName)
 	if err != nil {
-		return nil, fmt.Errorf("failed to fetch secret %s/%s: %v", namespace, secretName, err)
+		return nil, fmt.Errorf("failed to fetch secret %s/%s: %w", namespace, secretName, err)
 	}
 	if !exists {
 		return nil, fmt.Errorf("secret %s/%s does not exist", namespace, secretName)

pkg/provider/kubernetes/crd/traefik/v1alpha1/middleware.go

@@ -55,7 +55,7 @@ type ErrorPage struct {
 
 // +k8s:deepcopy-gen=true
 
-// Chain holds a chain of middlewares
+// Chain holds a chain of middlewares.
 type Chain struct {
 	Middlewares []MiddlewareRef `json:"middlewares,omitempty"`
 }

pkg/provider/kubernetes/crd/traefik/v1alpha1/tlsoption.go

@@ -17,7 +17,7 @@ type TLSOption struct {
 
 // +k8s:deepcopy-gen=true
 
-// TLSOptionSpec configures TLS for an entry point
+// TLSOptionSpec configures TLS for an entry point.
 type TLSOptionSpec struct {
 	MinVersion               string     `json:"minVersion,omitempty"`
 	MaxVersion               string     `json:"maxVersion,omitempty"`

pkg/provider/kubernetes/ingress/client.go

@@ -64,7 +64,7 @@ type clientWrapper struct {
 func newInClusterClient(endpoint string) (*clientWrapper, error) {
 	config, err := rest.InClusterConfig()
 	if err != nil {
-		return nil, fmt.Errorf("failed to create in-cluster configuration: %s", err)
+		return nil, fmt.Errorf("failed to create in-cluster configuration: %w", err)
 	}
 
 	if endpoint != "" {
@@ -98,7 +98,7 @@ func newExternalClusterClient(endpoint, token, caFilePath string) (*clientWrappe
 	if caFilePath != "" {
 		caData, err := ioutil.ReadFile(caFilePath)
 		if err != nil {
-			return nil, fmt.Errorf("failed to read CA file %s: %s", caFilePath, err)
+			return nil, fmt.Errorf("failed to read CA file %s: %w", caFilePath, err)
 		}
 
 		config.TLSClientConfig = rest.TLSClientConfig{CAData: caData}
@@ -215,7 +215,7 @@ func (c *clientWrapper) UpdateIngressStatus(src *networkingv1beta1.Ingress, ip,
 
 	ing, err := c.factories[c.lookupNamespace(src.Namespace)].Networking().V1beta1().Ingresses().Lister().Ingresses(src.Namespace).Get(src.Name)
 	if err != nil {
-		return fmt.Errorf("failed to get ingress %s/%s: %v", src.Namespace, src.Name, err)
+		return fmt.Errorf("failed to get ingress %s/%s: %w", src.Namespace, src.Name, err)
 	}
 
 	if len(ing.Status.LoadBalancer.Ingress) > 0 {
@@ -231,7 +231,7 @@ func (c *clientWrapper) UpdateIngressStatus(src *networkingv1beta1.Ingress, ip,
 
 	_, err = c.clientset.NetworkingV1beta1().Ingresses(ingCopy.Namespace).UpdateStatus(ingCopy)
 	if err != nil {
-		return fmt.Errorf("failed to update ingress status %s/%s: %v", src.Namespace, src.Name, err)
+		return fmt.Errorf("failed to update ingress status %s/%s: %w", src.Namespace, src.Name, err)
 	}
 
 	log.Infof("Updated status on ingress %s/%s", src.Namespace, src.Name)
@@ -241,7 +241,7 @@ func (c *clientWrapper) UpdateIngressStatus(src *networkingv1beta1.Ingress, ip,
 func (c *clientWrapper) updateIngressStatusOld(src *networkingv1beta1.Ingress, ip, hostname string) error {
 	ing, err := c.factories[c.lookupNamespace(src.Namespace)].Extensions().V1beta1().Ingresses().Lister().Ingresses(src.Namespace).Get(src.Name)
 	if err != nil {
-		return fmt.Errorf("failed to get ingress %s/%s: %v", src.Namespace, src.Name, err)
+		return fmt.Errorf("failed to get ingress %s/%s: %w", src.Namespace, src.Name, err)
 	}
 
 	if len(ing.Status.LoadBalancer.Ingress) > 0 {
@@ -257,7 +257,7 @@ func (c *clientWrapper) updateIngressStatusOld(src *networkingv1beta1.Ingress, i
 
 	_, err = c.clientset.ExtensionsV1beta1().Ingresses(ingCopy.Namespace).UpdateStatus(ingCopy)
 	if err != nil {
-		return fmt.Errorf("failed to update ingress status %s/%s: %v", src.Namespace, src.Name, err)
+		return fmt.Errorf("failed to update ingress status %s/%s: %w", src.Namespace, src.Name, err)
 	}
 
 	log.Infof("Updated status on ingress %s/%s", src.Namespace, src.Name)

pkg/provider/kubernetes/ingress/kubernetes.go

@@ -46,7 +46,7 @@ type Provider struct {
 	lastConfiguration      safe.Safe
 }
 
-// EndpointIngress holds the endpoint information for the Kubernetes provider
+// EndpointIngress holds the endpoint information for the Kubernetes provider.
 type EndpointIngress struct {
 	IP               string `description:"IP used for Kubernetes Ingress endpoints." json:"ip,omitempty" toml:"ip,omitempty" yaml:"ip,omitempty"`
 	Hostname         string `description:"Hostname used for Kubernetes Ingress endpoints." json:"hostname,omitempty" toml:"hostname,omitempty" yaml:"hostname,omitempty"`
@@ -306,7 +306,7 @@ func (p *Provider) updateIngressStatus(ing *v1beta1.Ingress, k8sClient Client) e
 
 	service, exists, err := k8sClient.GetService(serviceNamespace, serviceName)
 	if err != nil {
-		return fmt.Errorf("cannot get service %s, received error: %s", p.IngressEndpoint.PublishedService, err)
+		return fmt.Errorf("cannot get service %s, received error: %w", p.IngressEndpoint.PublishedService, err)
 	}
 
 	if exists && service.Status.LoadBalancer.Ingress == nil {
@@ -346,7 +346,7 @@ func getCertificates(ctx context.Context, ingress *v1beta1.Ingress, k8sClient Cl
 		if _, tlsExists := tlsConfigs[configKey]; !tlsExists {
 			secret, exists, err := k8sClient.GetSecret(ingress.Namespace, t.SecretName)
 			if err != nil {
-				return fmt.Errorf("failed to fetch secret %s/%s: %v", ingress.Namespace, t.SecretName, err)
+				return fmt.Errorf("failed to fetch secret %s/%s: %w", ingress.Namespace, t.SecretName, err)
 			}
 			if !exists {
 				return fmt.Errorf("secret %s/%s does not exist", ingress.Namespace, t.SecretName)

pkg/provider/kv/consul/consul.go

@@ -19,7 +19,7 @@ func (p *Provider) SetDefaults() {
 	p.Endpoints = []string{"127.0.0.1:8500"}
 }
 
-// Init the provider
+// Init the provider.
 func (p *Provider) Init() error {
 	return p.Provider.Init(store.CONSUL, "consul")
 }

pkg/provider/kv/etcd/etcd.go

@@ -19,7 +19,7 @@ func (p *Provider) SetDefaults() {
 	p.Endpoints = []string{"127.0.0.1:2379"}
 }
 
-// Init the provider
+// Init the provider.
 func (p *Provider) Init() error {
 	return p.Provider.Init(store.ETCDV3, "etcd")
 }

pkg/provider/kv/kv.go

@@ -41,7 +41,7 @@ func (p *Provider) SetDefaults() {
 	p.RootKey = "traefik"
 }
 
-// Init the provider
+// Init the provider.
 func (p *Provider) Init(storeType store.Backend, name string) error {
 	ctx := log.With(context.Background(), log.Str(log.ProviderName, name))
 

pkg/provider/kv/kv_mock_test.go

@@ -14,13 +14,13 @@ func newProviderMock(kvPairs []*store.KVPair) *Provider {
 	}
 }
 
-// Override Get/List to return a error
+// Override Get/List to return a error.
 type KvError struct {
 	Get  error
 	List error
 }
 
-// Extremely limited mock store so we can test initialization
+// Extremely limited mock store so we can test initialization.
 type Mock struct {
 	Error           KvError
 	KVPairs         []*store.KVPair
@@ -61,7 +61,7 @@ func (s *Mock) Delete(key string) error {
 	return errors.New("method Delete not supported")
 }
 
-// Exists mock
+// Exists mock.
 func (s *Mock) Exists(key string, options *store.ReadOptions) (bool, error) {
 	if err := s.Error.Get; err != nil {
 		return false, err
@@ -74,22 +74,22 @@ func (s *Mock) Exists(key string, options *store.ReadOptions) (bool, error) {
 	return false, store.ErrKeyNotFound
 }
 
-// Watch mock
+// Watch mock.
 func (s *Mock) Watch(key string, stopCh <-chan struct{}, options *store.ReadOptions) (<-chan *store.KVPair, error) {
 	return nil, errors.New("method Watch not supported")
 }
 
-// WatchTree mock
+// WatchTree mock.
 func (s *Mock) WatchTree(prefix string, stopCh <-chan struct{}, options *store.ReadOptions) (<-chan []*store.KVPair, error) {
 	return s.WatchTreeMethod(), nil
 }
 
-// NewLock mock
+// NewLock mock.
 func (s *Mock) NewLock(key string, options *store.LockOptions) (store.Locker, error) {
 	return nil, errors.New("method NewLock not supported")
 }
 
-// List mock
+// List mock.
 func (s *Mock) List(prefix string, options *store.ReadOptions) ([]*store.KVPair, error) {
 	if err := s.Error.List; err != nil {
 		return nil, err
@@ -103,20 +103,20 @@ func (s *Mock) List(prefix string, options *store.ReadOptions) ([]*store.KVPair,
 	return kv, nil
 }
 
-// DeleteTree mock
+// DeleteTree mock.
 func (s *Mock) DeleteTree(prefix string) error {
 	return errors.New("method DeleteTree not supported")
 }
 
-// AtomicPut mock
+// AtomicPut mock.
 func (s *Mock) AtomicPut(key string, value []byte, previous *store.KVPair, opts *store.WriteOptions) (bool, *store.KVPair, error) {
 	return false, nil, errors.New("method AtomicPut not supported")
 }
 
-// AtomicDelete mock
+// AtomicDelete mock.
 func (s *Mock) AtomicDelete(key string, previous *store.KVPair) (bool, error) {
 	return false, errors.New("method AtomicDelete not supported")
 }
 
-// Close mock
+// Close mock.
 func (s *Mock) Close() {}

pkg/provider/kv/redis/redis.go

@@ -19,7 +19,7 @@ func (p *Provider) SetDefaults() {
 	p.Endpoints = []string{"127.0.0.1:6379"}
 }
 
-// Init the provider
+// Init the provider.
 func (p *Provider) Init() error {
 	return p.Provider.Init(store.REDIS, "redis")
 }

pkg/provider/kv/zk/zk.go

@@ -19,7 +19,7 @@ func (p *Provider) SetDefaults() {
 	p.Endpoints = []string{"127.0.0.1:2181"}
 }
 
-// Init the provider
+// Init the provider.
 func (p *Provider) Init() error {
 	return p.Provider.Init(store.ZK, "zookeeper")
 }

pkg/provider/marathon/config.go

@@ -362,7 +362,7 @@ func (p *Provider) getServerHost(task marathon.Task, app marathon.Application, e
 func getPort(task marathon.Task, app marathon.Application, serverPort string) (string, error) {
 	port, err := processPorts(app, task, serverPort)
 	if err != nil {
-		return "", fmt.Errorf("unable to process ports for %s %s: %v", app.ID, task.ID, err)
+		return "", fmt.Errorf("unable to process ports for %s %s: %w", app.ID, task.ID, err)
 	}
 
 	return strconv.Itoa(port), nil

pkg/provider/marathon/marathon.go

@@ -77,13 +77,13 @@ func (p *Provider) SetDefaults() {
 	p.DefaultRule = DefaultTemplateRule
 }
 
-// Basic holds basic authentication specific configurations
+// Basic holds basic authentication specific configurations.
 type Basic struct {
 	HTTPBasicAuthUser string `description:"Basic authentication User." json:"httpBasicAuthUser,omitempty" toml:"httpBasicAuthUser,omitempty" yaml:"httpBasicAuthUser,omitempty"`
 	HTTPBasicPassword string `description:"Basic authentication Password." json:"httpBasicPassword,omitempty" toml:"httpBasicPassword,omitempty" yaml:"httpBasicPassword,omitempty"`
 }
 
-// Init the provider
+// Init the provider.
 func (p *Provider) Init() error {
 	fm := template.FuncMap{
 		"strsToItfs": func(values []string) []interface{} {
@@ -97,7 +97,7 @@ func (p *Provider) Init() error {
 
 	defaultRuleTpl, err := provider.MakeDefaultRuleTemplate(p.DefaultRule, fm)
 	if err != nil {
-		return fmt.Errorf("error while parsing default rule: %v", err)
+		return fmt.Errorf("error while parsing default rule: %w", err)
 	}
 
 	p.defaultRuleTpl = defaultRuleTpl

pkg/provider/rancher/rancher.go

@@ -20,13 +20,13 @@ const (
 	DefaultTemplateRule = "Host(`{{ normalize .Name }}`)"
 )
 
-// Health
+// Health.
 const (
 	healthy         = "healthy"
 	updatingHealthy = "updating-healthy"
 )
 
-// State
+// States.
 const (
 	active          = "active"
 	running         = "running"
@@ -75,7 +75,7 @@ type rancherData struct {
 func (p *Provider) Init() error {
 	defaultRuleTpl, err := provider.MakeDefaultRuleTemplate(p.DefaultRule, nil)
 	if err != nil {
-		return fmt.Errorf("error while parsing default rule: %v", err)
+		return fmt.Errorf("error while parsing default rule: %w", err)
 	}
 
 	p.defaultRuleTpl = defaultRuleTpl

pkg/provider/rest/rest.go

@@ -31,7 +31,7 @@ func (p *Provider) Init() error {
 	return nil
 }
 
-// CreateRouter creates a router for the Rest API
+// CreateRouter creates a router for the Rest API.
 func (p *Provider) CreateRouter() *mux.Router {
 	router := mux.NewRouter()
 	router.Methods(http.MethodPut).Path("/api/providers/{provider}").Handler(p)

pkg/provider/traefik/internal.go

@@ -144,7 +144,7 @@ func (i *Provider) getEntryPointPort(name string, def *static.Redirections) (str
 
 	_, port, err := net.SplitHostPort(dst.Address)
 	if err != nil {
-		return "", fmt.Errorf("invalid entry point %q address %q: %v",
+		return "", fmt.Errorf("invalid entry point %q address %q: %w",
 			name, i.staticCfg.EntryPoints[def.EntryPoint.To].Address, err)
 	}