@@ -118,9 +118,9 @@ linters:

         - deferInLoop

         - deprecatedComment

         - dupImport

+        - dupSubExpr

         - elseif

         - emptyFallthrough

-        - emptyStringTest

         - equalFold

         - evalOrder

         - exitAfterDefer

@@ -121,7 +121,7 @@ func TestVersionMiddlewareVersion(t *testing.T) {

 func TestVersionMiddlewareWithErrorsReturnsHeaders(t *testing.T) {

 	handler := func(ctx context.Context, w http.ResponseWriter, r *http.Request, vars map[string]string) error {

 		v := httputils.VersionFromContext(ctx)

-		assert.Check(t, len(v) != 0)

+		assert.Check(t, v != "")

 		return nil

 	}

@@ -113,7 +113,7 @@ func (ir *imageRouter) postImagesCreate(ctx context.Context, w http.ResponseWrit

 			return errdefs.InvalidParameter(err)

 		}

-		if len(comment) == 0 {

+		if comment == "" {

 			comment = "Imported from " + src

 		}

@@ -368,7 +368,7 @@ func (b *Builder) Build(ctx context.Context, opt backend.BuildConfig) (*builder.

 	ulimits, err := toBuildkitUlimits(opt.Options.Ulimits)

 	if err != nil {

 		return nil, err

-	} else if len(ulimits) > 0 {

+	} else if ulimits != "" {

 		frontendAttrs["ulimit"] = ulimits

 	}

@@ -60,7 +60,7 @@ func (c *imageProber) Probe(parentID string, runConfig *container.Config, platfo

 	if err != nil {

 		return "", err

 	}

-	if len(cacheID) == 0 {

+	if cacheID == "" {

 		log.G(context.TODO()).Debugf("[BUILDER] Cache miss: %s", runConfig.Cmd)

 		c.cacheBusted = true

 		return "", nil

@@ -106,7 +106,7 @@ func inspectResponse(ct string, r io.Reader, clen int64) (string, io.Reader, err

 	// content type for files without an extension (e.g. 'Dockerfile')

 	// so if we receive this value we better check for text content

 	contentType := ct

-	if len(ct) == 0 || ct == mimeTypeOctetStream {

+	if ct == "" || ct == mimeTypeOctetStream {

 		contentType, err = detectContentType(preamble)

 		if err != nil {

 			return contentType, bodyReader, err

@@ -115,7 +115,7 @@ func inspectResponse(ct string, r io.Reader, clen int64) (string, io.Reader, err

 	contentType = selectAcceptableMIME(contentType)

 	var cterr error

-	if len(contentType) == 0 {

+	if contentType == "" {

 		cterr = fmt.Errorf("unsupported Content-Type %q", ct)

 		contentType = ct

 	}

@@ -36,7 +36,7 @@ func TestSelectAcceptableMIME(t *testing.T) {

 	}

 	for _, m := range invalidMimeStrings {

-		if len(selectAcceptableMIME(m)) > 0 {

+		if selectAcceptableMIME(m) != "" {

 			t.Fatalf("Should not have accepted %q", m)

 		}

 	}

@@ -49,7 +49,7 @@ func TestHashFile(t *testing.T) {

 		t.Fatalf("Error when executing Stat: %s", err)

 	}

-	if len(sum) == 0 {

+	if sum == "" {

 		t.Fatalf("Hash returned empty sum")

 	}

@@ -83,7 +83,7 @@ func TestHashSubdir(t *testing.T) {

 		t.Fatalf("Error when executing Stat: %s", err)

 	}

-	if len(sum) == 0 {

+	if sum == "" {

 		t.Fatalf("Hash returned empty sum")

 	}

@@ -15,10 +15,10 @@ func (cli *Client) ContainerStart(ctx context.Context, containerID string, optio

 	}

 	query := url.Values{}

-	if len(options.CheckpointID) != 0 {

+	if options.CheckpointID != "" {

 		query.Set("checkpoint", options.CheckpointID)

 	}

-	if len(options.CheckpointDir) != 0 {

+	if options.CheckpointDir != "" {

 		query.Set("checkpoint-dir", options.CheckpointDir)

 	}

@@ -25,7 +25,7 @@ func (e emptyIDError) Error() string {

 // trimID trims the given object-ID / name, returning an error if it's empty.

 func trimID(objType, id string) (string, error) {

 	id = strings.TrimSpace(id)

-	if len(id) == 0 {

+	if id == "" {

 		return "", emptyIDError(objType)

 	}

 	return id, nil

@@ -380,7 +380,7 @@ func (container *Container) GetResourcePath(path string) (string, error) {

 // The returned path is always prefixed with a [filepath.Separator].

 func cleanScopedPath(path string) string {

 	if len(path) >= 2 {

-		if v := filepath.VolumeName(path); len(v) > 0 {

+		if v := filepath.VolumeName(path); v != "" {

 			path = path[len(v):]

 		}

 	}

@@ -36,7 +36,7 @@ import (

 //     unique enough to only return a single container object

 //     If none of these searches succeed, an error is returned

 func (daemon *Daemon) GetContainer(prefixOrName string) (*container.Container, error) {

-	if len(prefixOrName) == 0 {

+	if prefixOrName == "" {

 		return nil, errors.WithStack(invalidIdentifier(prefixOrName))

 	}

@@ -178,7 +178,7 @@ func getEntrypointAndArgs(configEntrypoint, configCmd []string) (string, []strin

 // GetByName returns a container given a name.

 func (daemon *Daemon) GetByName(name string) (*container.Container, error) {

-	if len(name) == 0 {

+	if name == "" {

 		return nil, fmt.Errorf("No container name supplied")

 	}

 	fullName := name

@@ -252,7 +252,7 @@ func validateContainerConfig(config *containertypes.Config) error {

 	if err := translateWorkingDir(config); err != nil {

 		return err

 	}

-	if len(config.StopSignal) > 0 {

+	if config.StopSignal != "" {

 		if _, err := signal.ParseSignal(config.StopSignal); err != nil {

 			return err

 		}

@@ -141,10 +141,10 @@ func (daemon *Daemon) ContainerExecCreate(name string, options *containertypes.E

 		return "", err

 	}

 	execConfig.Env = container.ReplaceOrAppendEnvValues(cntr.CreateDaemonEnvironment(options.Tty, linkedEnv), options.Env)

-	if len(execConfig.User) == 0 {

+	if execConfig.User == "" {

 		execConfig.User = cntr.Config.User

 	}

-	if len(execConfig.WorkingDir) == 0 {

+	if execConfig.WorkingDir == "" {

 		execConfig.WorkingDir = cntr.Config.WorkingDir

 	}

@@ -43,7 +43,7 @@ func getUserFromContainerd(ctx context.Context, containerdCli *containerd.Client

 }

 func (daemon *Daemon) execSetPlatformOpt(ctx context.Context, daemonCfg *config.Config, ec *container.ExecConfig, p *specs.Process) error {

-	if len(ec.User) > 0 {

+	if ec.User != "" {

 		var err error

 		if daemon.UsesSnapshotter() {

 			p.User, err = getUserFromContainerd(ctx, daemon.containerdClient, ec)

@@ -137,7 +137,7 @@ func (p *cmdProbe) run(ctx context.Context, d *Daemon, cntr *container.Container

 		<-execErr

 		var msg string

-		if out := output.String(); len(out) > 0 {

+		if out := output.String(); out != "" {

 			msg = fmt.Sprintf("Health check exceeded timeout (%v): %s", probeTimeout, out)

 		} else {

 			msg = fmt.Sprintf("Health check exceeded timeout (%v)", probeTimeout)

@@ -39,7 +39,7 @@ func (i *ImageService) ImageInspect(ctx context.Context, refOrID string, opts ba

 	}

 	comment := img.Comment

-	if len(comment) == 0 && len(img.History) > 0 {

+	if comment == "" && len(img.History) > 0 {

 		comment = img.History[len(img.History)-1].Comment

 	}

@@ -25,7 +25,7 @@ func (i *ImageService) SquashImage(id, parent string) (string, error) {

 	var parentImg *image.Image

 	var parentChainID layer.ChainID

-	if len(parent) != 0 {

+	if parent != "" {

 		parentImg, err = i.imageStore.Get(image.ID(parent))

 		if err != nil {

 			return "", errors.Wrap(err, "error getting specified parent layer")

@@ -69,7 +69,7 @@ func (i *ImageService) SquashImage(id, parent string) (string, error) {

 	now := time.Now()

 	var historyComment string

-	if len(parent) > 0 {

+	if parent != "" {

 		historyComment = fmt.Sprintf("merge %s to %s", id, parent)

 	} else {

 		historyComment = fmt.Sprintf("create new from %s", id)

@@ -28,7 +28,7 @@ func (mj *JSONLogs) MarshalJSONBuf(buf *bytes.Buffer) error {

 		buf.WriteString(`"log":`)

 		ffjsonWriteJSONBytesAsString(buf, mj.Log)

 	}

-	if len(mj.Stream) != 0 {

+	if mj.Stream != "" {

 		if first {

 			first = false

 		} else {

@@ -30,7 +30,7 @@ type Info struct {

 func (info *Info) ExtraAttributes(keyMod func(string) string) (map[string]string, error) {

 	extra := make(map[string]string)

-	if labels, ok := info.Config["labels"]; ok && len(labels) > 0 {

+	if labels, ok := info.Config["labels"]; ok && labels != "" {

 		for _, l := range strings.Split(labels, ",") {

 			if v, ok := info.ContainerLabels[l]; ok {

 				if keyMod != nil {

@@ -41,7 +41,7 @@ func (info *Info) ExtraAttributes(keyMod func(string) string) (map[string]string

 		}

 	}

-	if labelsRegex, ok := info.Config["labels-regex"]; ok && len(labelsRegex) > 0 {

+	if labelsRegex, ok := info.Config["labels-regex"]; ok && labelsRegex != "" {

 		re, err := regexp.Compile(labelsRegex)

 		if err != nil {

 			return nil, err

@@ -68,7 +68,7 @@ func (info *Info) ExtraAttributes(keyMod func(string) string) (map[string]string

 		return extra, nil

 	}

-	if env, ok := info.Config["env"]; ok && len(env) > 0 {

+	if env, ok := info.Config["env"]; ok && env != "" {

 		for _, l := range strings.Split(env, ",") {

 			if v, ok := envMapping[l]; ok {

 				if keyMod != nil {

@@ -79,7 +79,7 @@ func (info *Info) ExtraAttributes(keyMod func(string) string) (map[string]string

 		}

 	}

-	if envRegex, ok := info.Config["env-regex"]; ok && len(envRegex) > 0 {

+	if envRegex, ok := info.Config["env-regex"]; ok && envRegex != "" {

 		re, err := regexp.Compile(envRegex)

 		if err != nil {

 			return nil, err

@@ -715,7 +715,7 @@ func withCommonOptions(daemon *Daemon, daemonCfg *dconfig.Config, c *container.C

 			return err

 		}

 		cwd := c.Config.WorkingDir

-		if len(cwd) == 0 {

+		if cwd == "" {

 			cwd = "/"

 		}

 		if s.Process == nil {

@@ -87,7 +87,7 @@ func parsePSOutput(output []byte, procs []uint32) (*container.TopResponse, error

 	// in "docker top" client command

 	preContainedPidFlag := false

 	for _, line := range lines[1:] {

-		if len(line) == 0 {

+		if line == "" {

 			continue

 		}

 		fields := fieldsASCII(line)

@@ -124,7 +124,7 @@ func (daemon *Daemon) registerMountPoints(container *container.Container, hostCo

 				CopyData:    false,

 			}

-			if len(cp.Source) == 0 {

+			if cp.Source == "" {

 				v, err := daemon.volumes.Get(ctx, cp.Name, volumeopts.WithGetDriver(cp.Driver), volumeopts.WithGetReference(container.ID))

 				if err != nil {

 					return err

@@ -308,7 +308,7 @@ func (daemon *Daemon) registerMountPoints(container *container.Container, hostCo

 // lazyInitializeVolume initializes a mountpoint's volume if needed.

 // This happens after a daemon restart.

 func (daemon *Daemon) lazyInitializeVolume(containerID string, m *volumemounts.MountPoint) error {

-	if len(m.Driver) > 0 && m.Volume == nil {

+	if m.Driver != "" && m.Volume == nil {

 		v, err := daemon.volumes.Get(context.TODO(), m.Name, volumeopts.WithGetDriver(m.Driver), volumeopts.WithGetReference(containerID))

 		if err != nil {

 			return err

@@ -40,8 +40,8 @@ type V2Metadata struct {

 // CheckV2MetadataHMAC returns true if the given "meta" is tagged with a hmac hashed by the given "key".

 func CheckV2MetadataHMAC(meta *V2Metadata, key []byte) bool {

-	if len(meta.HMAC) == 0 || len(key) == 0 {

-		return len(meta.HMAC) == 0 && len(key) == 0

+	if meta.HMAC == "" || len(key) == 0 {

+		return meta.HMAC == "" && len(key) == 0

 	}

 	mac := hmac.New(sha256.New, key)

 	mac.Write([]byte(meta.Digest))

@@ -294,7 +294,7 @@ func (pd *pushDescriptor) Upload(ctx context.Context, progressOutput progress.Ou

 		log.G(ctx).Debugf("attempting to mount layer %s (%s) from %s", diffID, mountCandidate.Digest, mountCandidate.SourceRepository)

 		createOpts := []distribution.BlobCreateOption{}

-		if len(mountCandidate.SourceRepository) > 0 {

+		if mountCandidate.SourceRepository != "" {

 			namedRef, err := reference.ParseNormalizedNamed(mountCandidate.SourceRepository)

 			if err != nil {

 				log.G(ctx).WithError(err).Errorf("failed to parse source repository reference %v", reference.FamiliarString(namedRef))

@@ -359,10 +359,10 @@ func (pd *pushDescriptor) Upload(ctx context.Context, progressOutput progress.Ou

 		// when error is unauthorizedError and user don't hasAuthInfo that's the case user don't has right to push layer to register

 		// and he hasn't login either, in this case candidate cache should be removed

-		if len(mountCandidate.SourceRepository) > 0 &&

+		if mountCandidate.SourceRepository != "" &&

 			(!isUnauthorizedError || pd.pushState.hasAuthInfo) &&

 			(metadata.CheckV2MetadataHMAC(&mountCandidate, pd.hmacKey) ||

-				len(mountCandidate.HMAC) == 0) {

+				mountCandidate.HMAC == "") {

 			cause := "blob mount failure"

 			if err != nil {

 				cause = fmt.Sprintf("an error: %v", err.Error())

@@ -488,7 +488,7 @@ func (pd *pushDescriptor) layerAlreadyExists(

 	// filter the metadata

 	candidates := []metadata.V2Metadata{}

 	for _, meta := range v2Metadata {

-		if len(meta.SourceRepository) > 0 && !checkOtherRepositories && meta.SourceRepository != pd.repoName.Name() {

+		if meta.SourceRepository != "" && !checkOtherRepositories && meta.SourceRepository != pd.repoName.Name() {

 			continue

 		}

 		candidates = append(candidates, meta)

@@ -85,7 +85,7 @@ func (d *Daemon) CheckActiveContainerCount(ctx context.Context) func(t *testing.

 		t.Helper()

 		out, err := d.Cmd("ps", "-q")

 		assert.NilError(t, err)

-		if len(strings.TrimSpace(out)) == 0 {

+		if strings.TrimSpace(out) == "" {

 			return 0, ""

 		}

 		return len(strings.Split(strings.TrimSpace(out), "\n")), fmt.Sprintf("output: %q", out)

@@ -1748,7 +1748,7 @@ func (s *DockerAPISuite) TestContainersAPICreateMountsValidation(c *testing.T) {

 	for i, tc := range tests {

 		c.Run(fmt.Sprintf("case %d", i), func(c *testing.T) {

 			_, err = apiClient.ContainerCreate(testutil.GetContext(c), &tc.config, &tc.hostConfig, &network.NetworkingConfig{}, nil, "")

-			if len(tc.msg) > 0 {

+			if tc.msg != "" {

 				assert.ErrorContains(c, err, tc.msg, "%v", tests[i].config)

 			} else {

 				assert.NilError(c, err)

@@ -1958,7 +1958,7 @@ func (s *DockerAPISuite) TestContainersAPICreateMountsCreate(c *testing.T) {

 			switch {

 			// Named volumes still exist after the container is removed

-			case tc.spec.Type == "volume" && len(tc.spec.Source) > 0:

+			case tc.spec.Type == "volume" && tc.spec.Source != "":

 				_, err := apiclient.VolumeInspect(ctx, mountPoint.Name)

 				assert.NilError(c, err)

@@ -103,7 +103,7 @@ func (s *DockerAPISuite) TestInspectAPIBridgeNetworkSettings121(c *testing.T) {

 	assert.NilError(c, err)

 	settings := inspectJSON.NetworkSettings

-	assert.Assert(c, len(settings.IPAddress) != 0)

+	assert.Assert(c, settings.IPAddress != "")

 	assert.Assert(c, settings.Networks["bridge"] != nil)

 	assert.Equal(c, settings.IPAddress, settings.Networks["bridge"].IPAddress)

 }

@@ -216,7 +216,7 @@ func (s *DockerCLILogsSuite) TestLogsSinceFutureFollow(c *testing.T) {

 	since := t.Unix() + 2

 	out := cli.DockerCmd(c, "logs", "-t", "-f", fmt.Sprintf("--since=%v", since), name).Combined()

-	assert.Assert(c, len(out) != 0, "cannot read from empty log")

+	assert.Assert(c, out != "", "cannot read from empty log")

 	lines := strings.Split(strings.TrimSpace(out), "\n")

 	for _, v := range lines {

 		ts, err := time.Parse(time.RFC3339Nano, strings.Split(v, " ")[0])

@@ -184,7 +184,7 @@ func (s *DockerRegistrySuite) TestCrossRepositoryLayerPush(c *testing.T) {

 	assert.Assert(c, !strings.Contains(out1, "Mounted from"))

 	digest1 := reference.DigestRegexp.FindString(out1)

-	assert.Assert(c, len(digest1) > 0, "no digest found for pushed manifest")

+	assert.Assert(c, digest1 != "", "no digest found for pushed manifest")

 	const destRepoName = privateRegistryURL + "/crossrepopush/img"

@@ -198,7 +198,7 @@ func (s *DockerRegistrySuite) TestCrossRepositoryLayerPush(c *testing.T) {

 	assert.Assert(c, is.Contains(out2, "Mounted from crossrepopush/busybox"))

 	digest2 := reference.DigestRegexp.FindString(out2)

-	assert.Assert(c, len(digest2) > 0, "no digest found for pushed manifest")

+	assert.Assert(c, digest2 != "", "no digest found for pushed manifest")

 	assert.Equal(c, digest1, digest2)

 	// ensure that pushing again produces the same digest

@@ -206,7 +206,7 @@ func (s *DockerRegistrySuite) TestCrossRepositoryLayerPush(c *testing.T) {

 	assert.NilError(c, err, "pushing the image to the private registry has failed: %s", out3)

 	digest3 := reference.DigestRegexp.FindString(out3)

-	assert.Assert(c, len(digest3) > 0, "no digest found for pushed manifest")

+	assert.Assert(c, digest3 != "", "no digest found for pushed manifest")

 	assert.Equal(c, digest3, digest2)

 	// ensure that we can pull and run the cross-repo-pushed repository

@@ -1820,7 +1820,7 @@ func testRunWriteSpecialFilesAndNotCommit(t *testing.T, name, path string) {

 	}

 	out = cli.DockerCmd(t, "diff", name).Combined()

-	if len(strings.Trim(out, "\r\n")) != 0 && !eqToBaseDiff(out, t) {

+	if strings.Trim(out, "\r\n") != "" && !eqToBaseDiff(out, t) {

 		t.Fatal("diff should be empty")

 	}

 }

@@ -2258,7 +2258,7 @@ func (s *DockerCLIRunSuite) TestRunAllowPortRangeThroughExpose(c *testing.T) {

 		if portnum < 3000 || portnum > 3003 {

 			c.Fatalf("Port %d is out of range ", portnum)

 		}

-		if len(binding) == 0 || len(binding[0].HostPort) == 0 {

+		if len(binding) == 0 || binding[0].HostPort == "" {

 			c.Fatalf("Port is not mapped for the port %s", port)

 		}

 	}

@@ -2591,7 +2591,7 @@ func (s *DockerCLIRunSuite) TestRunAllowPortRangeThroughPublish(c *testing.T) {

 		if portnum < 3000 || portnum > 3003 {

 			c.Fatalf("Port %d is out of range ", portnum)

 		}

-		if len(binding) == 0 || len(binding[0].HostPort) == 0 {

+		if len(binding) == 0 || binding[0].HostPort == "" {

 			c.Fatal("Port is not mapped for the port "+port, id)

 		}

 	}

@@ -1810,7 +1810,7 @@ func waitForEvent(t *testing.T, d *daemon.Daemon, since string, filter string, e

 	for i := 0; i < retry; i++ {

 		until := daemonUnixTime(t)

 		var err error

-		if len(filter) > 0 {

+		if filter != "" {

 			out, err = d.Cmd("events", "--since", since, "--until", until, filter)

 		} else {

 			out, err = d.Cmd("events", "--since", since, "--until", until)

@@ -446,7 +446,7 @@ func reducedCheck(r reducer, funcs ...checkF) checkF {

 		for _, f := range funcs {

 			v, comment := f(t)

 			values = append(values, v)

-			if len(comment) > 0 {

+			if comment != "" {

 				comments = append(comments, comment)

 			}

 		}

@@ -159,7 +159,7 @@ func testIptabler(t *testing.T, tn string, config firewaller.Config, netConfig f

 	stripComments := func(text string) string {

 		lines := strings.Split(text, "\n")

-		lines = slices.DeleteFunc(lines, func(l string) bool { return len(l) > 0 && l[0] == '#' })

+		lines = slices.DeleteFunc(lines, func(l string) bool { return l != "" && l[0] == '#' })

 		return strings.Join(lines, "\n")

 	}

@@ -150,9 +150,9 @@ func dbusConnectionChanged(args []interface{}) {

 		return

 	}

-	if len(newOwner) > 0 {

+	if newOwner != "" {

 		connectionEstablished()

-	} else if len(oldOwner) > 0 {

+	} else if oldOwner != "" {

 		connectionLost()

 	}

 }

@@ -80,7 +80,7 @@ func ReverseIP(IP string) string {

 		// Reversed IPv6 is represented in dotted decimal instead of the typical

 		// colon hex notation

 		for key := range reverseIP {

-			if len(reverseIP[key]) == 0 { // expand the compressed 0s

+			if reverseIP[key] == "" { // expand the compressed 0s

 				reverseIP[key] = strings.Repeat("0000", 8-strings.Count(IP, ":"))

 			} else if len(reverseIP[key]) < 4 { // 0-padding needed

 				reverseIP[key] = strings.Repeat("0", 4-len(reverseIP[key])) + reverseIP[key]

@@ -421,7 +421,7 @@ func (n *Network) applyConfigurationTo(to *Network) error {

 			}

 		}

 	}

-	if len(n.ipamType) != 0 {

+	if n.ipamType != "" {

 		to.ipamType = n.ipamType

 	}

 	if len(n.ipamOptions) > 0 {

@@ -367,7 +367,7 @@ func (sb *Sandbox) ResolveIP(ctx context.Context, ip string) string {

 	for _, ep := range sb.Endpoints() {

 		n := ep.getNetwork()

 		svc = n.ResolveIP(ctx, ip)

-		if len(svc) != 0 {

+		if svc != "" {

 			return svc

 		}

 	}

@@ -151,7 +151,7 @@ func readPluginInfo(name, path string) (*Plugin, error) {

 		return nil, err

 	}

-	if len(u.Scheme) == 0 {

+	if u.Scheme == "" {

 		return nil, fmt.Errorf("Unknown protocol")

 	}

@@ -170,7 +170,7 @@ func readPluginJSONInfo(name, path string) (*Plugin, error) {

 		return nil, err

 	}

 	p.name = name

-	if p.TLSConfig != nil && len(p.TLSConfig.CAFile) == 0 {

+	if p.TLSConfig != nil && p.TLSConfig.CAFile == "" {

 		p.TLSConfig.InsecureSkipVerify = true

 	}

 	p.activateWait = sync.NewCond(&sync.Mutex{})

@@ -54,7 +54,7 @@ type importSpec struct {

 func (s *importSpec) String() string {

 	var ss string

-	if len(s.Name) != 0 {

+	if s.Name != "" {

 		ss += s.Name

 	}

 	ss += s.Path

@@ -96,7 +96,7 @@ func Parse(filePath string, objName string) (*ParsedPkg, error) {

 	for _, f := range p.Functions {

 		args := append(f.Args, f.Returns...)

 		for _, arg := range args {

-			if len(arg.PackageSelector) == 0 {

+			if arg.PackageSelector == "" {

 				continue

 			}

@@ -330,7 +330,7 @@ func TestTarSums(t *testing.T) {

 			fh  io.Reader

 			err error

 		)

-		if len(layer.filename) > 0 {

+		if layer.filename != "" {

 			fh, err = os.Open(layer.filename)

 			if err != nil {

 				t.Errorf("failed to open %s: %s", layer.filename, err)

@@ -380,7 +380,7 @@ func TestTarSums(t *testing.T) {

 			continue

 		}

 		var gotSum string

-		if len(layer.jsonfile) > 0 {

+		if layer.jsonfile != "" {

 			jfh, err := os.Open(layer.jsonfile)

 			if err != nil {

 				t.Errorf("failed to open %s: %s", layer.jsonfile, err)

@@ -16,10 +16,10 @@ func (vi *VersionInfo) isValid() bool {

 	const stopChars = " \t\r\n/"

 	name := vi.Name

 	vers := vi.Version

-	if len(name) == 0 || strings.ContainsAny(name, stopChars) {

+	if name == "" || strings.ContainsAny(name, stopChars) {

 		return false

 	}

-	if len(vers) == 0 || strings.ContainsAny(vers, stopChars) {

+	if vers == "" || strings.ContainsAny(vers, stopChars) {

 		return false

 	}

 	return true

@@ -41,7 +41,7 @@ func AppendVersions(base string, versions ...VersionInfo) string {

 	}

 	verstrs := make([]string, 0, 1+len(versions))

-	if len(base) > 0 {

+	if base != "" {

 		verstrs = append(verstrs, base)

 	}

@@ -124,7 +124,7 @@ func (p *Plugin) InitSpec(execRoot string) (*specs.Spec, error) {

 	args := append(p.PluginObj.Config.Entrypoint, p.PluginObj.Settings.Args...)

 	cwd := p.PluginObj.Config.WorkDir

-	if len(cwd) == 0 {

+	if cwd == "" {

 		cwd = "/"

 	}

 	s.Process.Terminal = false

@@ -131,7 +131,7 @@ func (tr *authTransport) RoundTrip(orig *http.Request) (*http.Response, error) {

 	// Don't override

 	if req.Header.Get("Authorization") == "" {

-		if req.Header.Get("X-Docker-Token") == "true" && tr.authConfig != nil && len(tr.authConfig.Username) > 0 {

+		if req.Header.Get("X-Docker-Token") == "true" && tr.authConfig != nil && tr.authConfig.Username != "" {

 			req.SetBasicAuth(tr.authConfig.Username, tr.authConfig.Password)

 		} else if len(tr.token) > 0 {

 			req.Header.Set("Authorization", "Token "+strings.Join(tr.token, ","))

@@ -153,7 +153,7 @@ func NewDaemon(workingDir string, ops ...Option) (*Daemon, error) {

 		op(d)

 	}

-	if len(d.resolvConfContent) > 0 {

+	if d.resolvConfContent != "" {

 		path := filepath.Join(d.Folder, "resolv.conf")

 		if err := os.WriteFile(path, []byte(d.resolvConfContent), 0644); err != nil {

 			return nil, fmt.Errorf("failed to write docker resolv.conf to %q: %v", path, err)

@@ -98,7 +98,7 @@ func (a *volumeDriverAdapter) getCapabilities() volume.Capability {

 	}

 	// don't spam the warn log below just because the plugin didn't provide a scope

-	if len(cap.Scope) == 0 {

+	if cap.Scope == "" {

 		cap.Scope = volume.LocalScope

 	}

@@ -138,7 +138,7 @@ func (a *volumeAdapter) DriverName() string {

 }

 func (a *volumeAdapter) Path() string {

-	if len(a.eMount) == 0 {

+	if a.eMount == "" {

 		mountpoint, _ := a.proxy.Path(a.name)

 		a.eMount = a.scopePath(mountpoint)

 	}

@@ -46,7 +46,7 @@ func (p *linuxParser) ValidateMountConfig(mnt *mount.Mount) error {

 }

 func (p *linuxParser) validateMountConfigImpl(mnt *mount.Mount, validateBindSourceExists bool) error {

-	if len(mnt.Target) == 0 {

+	if mnt.Target == "" {

 		return &errMountConfig{mnt, errMissingField("Target")}

 	}

@@ -60,7 +60,7 @@ func (p *linuxParser) validateMountConfigImpl(mnt *mount.Mount, validateBindSour

 	switch mnt.Type {

 	case mount.TypeBind:

-		if len(mnt.Source) == 0 {

+		if mnt.Source == "" {

 			return &errMountConfig{mnt, errMissingField("Source")}

 		}

 		// Don't error out just because the propagation mode is not supported on the platform

@@ -101,7 +101,7 @@ func (p *linuxParser) validateMountConfigImpl(mnt *mount.Mount, validateBindSour

 		if mnt.ImageOptions != nil {

 			return &errMountConfig{mnt, errExtraField("ImageOptions")}

 		}

-		anonymousVolume := len(mnt.Source) == 0

+		anonymousVolume := mnt.Source == ""

 		if mnt.VolumeOptions != nil && mnt.VolumeOptions.Subpath != "" {

 			if anonymousVolume {

@@ -122,7 +122,7 @@ func (p *linuxParser) validateMountConfigImpl(mnt *mount.Mount, validateBindSour

 		if mnt.ImageOptions != nil {

 			return &errMountConfig{mnt, errExtraField("ImageOptions")}

 		}

-		if len(mnt.Source) != 0 {

+		if mnt.Source != "" {

 			return &errMountConfig{mnt, errExtraField("Source")}

 		}

 		if _, err := p.ConvertTmpfsOptions(mnt.TmpfsOptions, mnt.ReadOnly); err != nil {

@@ -135,7 +135,7 @@ func (p *linuxParser) validateMountConfigImpl(mnt *mount.Mount, validateBindSour

 		if mnt.VolumeOptions != nil {

 			return &errMountConfig{mnt, errExtraField("VolumeOptions")}

 		}

-		if len(mnt.Source) == 0 {

+		if mnt.Source == "" {

 			return &errMountConfig{mnt, errMissingField("Source")}

 		}

 		if mnt.ImageOptions != nil && mnt.ImageOptions.Subpath != "" {

@@ -393,7 +393,7 @@ func (p *linuxParser) parseMountSpec(cfg mount.Mount, validateBindSourceExists b

 }

 func (p *linuxParser) ParseVolumesFrom(spec string) (string, string, error) {

-	if len(spec) == 0 {

+	if spec == "" {

 		return "", "", fmt.Errorf("volumes-from specification cannot be an empty string")

 	}

@@ -484,7 +484,7 @@ func (p *linuxParser) ValidateVolumeName(name string) error {

 }

 func (p *linuxParser) IsBackwardCompatible(m *MountPoint) bool {

-	return len(m.Source) > 0 || m.Driver == volume.DefaultDriverName

+	return m.Source != "" || m.Driver == volume.DefaultDriverName

 }

 func (p *linuxParser) ValidateTmpfsMountDestination(dest string) error {

@@ -233,7 +233,7 @@ func (m *MountPoint) Setup(ctx context.Context, mountLabel string, rootIDs idtoo

 		}

 	}

-	if len(m.Source) == 0 {

+	if m.Source == "" {

 		return "", noCleanup, fmt.Errorf("Unable to setup mount point, neither source nor volume defined")

 	}

@@ -213,7 +213,7 @@ func (defaultFileInfoProvider) fileInfo(path string) (exist, isDir bool, _ error

 }

 func (p *windowsParser) validateMountConfigReg(mnt *mount.Mount, additionalValidators ...mountValidator) error {

-	if len(mnt.Target) == 0 {

+	if mnt.Target == "" {

 		return &errMountConfig{mnt, errMissingField("Target")}

 	}

 	for _, v := range additionalValidators {

@@ -224,7 +224,7 @@ func (p *windowsParser) validateMountConfigReg(mnt *mount.Mount, additionalValid

 	switch mnt.Type {

 	case mount.TypeBind:

-		if len(mnt.Source) == 0 {

+		if mnt.Source == "" {

 			return &errMountConfig{mnt, errMissingField("Source")}

 		}

 		// Don't error out just because the propagation mode is not supported on the platform

@@ -257,7 +257,7 @@ func (p *windowsParser) validateMountConfigReg(mnt *mount.Mount, additionalValid

 			return &errMountConfig{mnt, errExtraField("BindOptions")}

 		}

-		anonymousVolume := len(mnt.Source) == 0

+		anonymousVolume := mnt.Source == ""

 		if mnt.VolumeOptions != nil && mnt.VolumeOptions.Subpath != "" {

 			if anonymousVolume {

 				return errAnonymousVolumeWithSubpath

@@ -273,13 +273,13 @@ func (p *windowsParser) validateMountConfigReg(mnt *mount.Mount, additionalValid

 			return &errMountConfig{mnt, fmt.Errorf("must not set ReadOnly mode when using anonymous volumes")}

 		}

-		if len(mnt.Source) != 0 {

+		if mnt.Source != "" {

 			if err := p.ValidateVolumeName(mnt.Source); err != nil {

 				return &errMountConfig{mnt, err}

 			}

 		}

 	case mount.TypeNamedPipe:

-		if len(mnt.Source) == 0 {

+		if mnt.Source == "" {

 			return &errMountConfig{mnt, errMissingField("Source")}

 		}

@@ -423,7 +423,7 @@ func (p *windowsParser) parseMountSpec(cfg mount.Mount, convertTargetToBackslash

 }

 func (p *windowsParser) ParseVolumesFrom(spec string) (string, string, error) {

-	if len(spec) == 0 {

+	if spec == "" {

 		return "", "", fmt.Errorf("volumes-from specification cannot be an empty string")

 	}

@@ -147,7 +147,7 @@ func (s *VolumeStore) setNamed(v volume.Volume, ref string) {

 	s.globalLock.Lock()

 	s.names[name] = v

-	if len(ref) > 0 {

+	if ref != "" {

 		if s.refs[name] == nil {

 			s.refs[name] = make(map[string]struct{})

 		}