From 6336c9d353eca47d01065b60a1e26e79a704758a Mon Sep 17 00:00:00 2001
From: oppiliappan <me@oppi.li>
Date: Mon, 3 Nov 2025 12:35:56 +0000
Subject: [PATCH] guard: supress logging
Change-Id: ykxtvrlpxwrlopymzyzuytvsstvxpvll

the default slog logger caused indigo/identity to emit logs when
resolving identities. using a bespoke logger in the guard subcommand
fixes this.

Signed-off-by: oppiliappan <me@oppi.li>
---
 guard/guard.go | 55 ++++++++++++++++++++++++--------------------------
 1 file changed, 26 insertions(+), 29 deletions(-)

diff --git a/guard/guard.go b/guard/guard.go
index cb8c86fe..2154354e 100644
--- a/guard/guard.go
+++ b/guard/guard.go
@@ -16,7 +16,6 @@ import (
 	securejoin "github.com/cyphar/filepath-securejoin"
 	"github.com/urfave/cli/v3"
 	"tangled.org/core/idresolver"
-	"tangled.org/core/log"
 )
 
 func Command() *cli.Command {
@@ -55,23 +54,21 @@ func Command() *cli.Command {
 }
 
 func Run(ctx context.Context, cmd *cli.Command) error {
-	l := log.FromContext(ctx)
-
 	incomingUser := cmd.String("user")
 	gitDir := cmd.String("git-dir")
 	logPath := cmd.String("log-path")
 	endpoint := cmd.String("internal-api")
 	motdFile := cmd.String("motd-file")
 
+	stream := io.Discard
 	logFile, err := os.OpenFile(logPath, os.O_APPEND|os.O_CREATE|os.O_WRONLY, 0644)
-	if err != nil {
-		l.Error("failed to open log file", "error", err)
-		return err
-	} else {
-		fileHandler := slog.NewJSONHandler(logFile, &slog.HandlerOptions{Level: slog.LevelInfo})
-		l = slog.New(fileHandler)
+	if err == nil {
+		stream = logFile
 	}
 
+	fileHandler := slog.NewJSONHandler(stream, &slog.HandlerOptions{Level: slog.LevelInfo})
+	slog.SetDefault(slog.New(fileHandler))
+
 	var clientIP string
 	if connInfo := os.Getenv("SSH_CONNECTION"); connInfo != "" {
 		parts := strings.Fields(connInfo)
@@ -81,27 +78,27 @@ func Run(ctx context.Context, cmd *cli.Command) error {
 	}
 
 	if incomingUser == "" {
-		l.Error("access denied: no user specified")
+		slog.Error("access denied: no user specified")
 		fmt.Fprintln(os.Stderr, "access denied: no user specified")
 		os.Exit(-1)
 	}
 
 	sshCommand := os.Getenv("SSH_ORIGINAL_COMMAND")
 
-	l.Info("connection attempt",
+	slog.Info("connection attempt",
 		"user", incomingUser,
 		"command", sshCommand,
 		"client", clientIP)
 
 	if sshCommand == "" {
-		l.Info("access denied: no interactive shells", "user", incomingUser)
+		slog.Info("access denied: no interactive shells", "user", incomingUser)
 		fmt.Fprintf(os.Stderr, "Hi @%s! You've successfully authenticated.\n", incomingUser)
 		os.Exit(-1)
 	}
 
 	cmdParts := strings.Fields(sshCommand)
 	if len(cmdParts) < 2 {
-		l.Error("invalid command format", "command", sshCommand)
+		slog.Error("invalid command format", "command", sshCommand)
 		fmt.Fprintln(os.Stderr, "invalid command format")
 		os.Exit(-1)
 	}
@@ -113,16 +110,16 @@ func Run(ctx context.Context, cmd *cli.Command) error {
 	// any of the above with a leading slash (/)
 
 	components := strings.Split(strings.TrimPrefix(strings.Trim(cmdParts[1], "'"), "/"), "/")
-	l.Info("command components", "components", components)
+	slog.Info("command components", "components", components)
 
 	if len(components) != 2 {
-		l.Error("invalid repo format", "components", components)
+		slog.Error("invalid repo format", "components", components)
 		fmt.Fprintln(os.Stderr, "invalid repo format, needs <user>/<repo> or /<user>/<repo>")
 		os.Exit(-1)
 	}
 
 	didOrHandle := components[0]
-	identity := resolveIdentity(ctx, l, didOrHandle)
+	identity := resolveIdentity(ctx, didOrHandle)
 	did := identity.DID.String()
 	repoName := components[1]
 	qualifiedRepoName, _ := securejoin.SecureJoin(did, repoName)
@@ -133,14 +130,14 @@ func Run(ctx context.Context, cmd *cli.Command) error {
 		"git-upload-archive": true,
 	}
 	if !validCommands[gitCommand] {
-		l.Error("access denied: invalid git command", "command", gitCommand)
+		slog.Error("access denied: invalid git command", "command", gitCommand)
 		fmt.Fprintln(os.Stderr, "access denied: invalid git command")
 		return fmt.Errorf("access denied: invalid git command")
 	}
 
 	if gitCommand != "git-upload-pack" {
-		if !isPushPermitted(l, incomingUser, qualifiedRepoName, endpoint) {
-			l.Error("access denied: user not allowed",
+		if !isPushPermitted(incomingUser, qualifiedRepoName, endpoint) {
+			slog.Error("access denied: user not allowed",
 				"did", incomingUser,
 				"reponame", qualifiedRepoName)
 			fmt.Fprintln(os.Stderr, "access denied: user not allowed")
@@ -150,7 +147,7 @@ func Run(ctx context.Context, cmd *cli.Command) error {
 
 	fullPath, _ := securejoin.SecureJoin(gitDir, qualifiedRepoName)
 
-	l.Info("processing command",
+	slog.Info("processing command",
 		"user", incomingUser,
 		"command", gitCommand,
 		"repo", repoName,
@@ -160,7 +157,7 @@ func Run(ctx context.Context, cmd *cli.Command) error {
 	var motdReader io.Reader
 	if reader, err := os.Open(motdFile); err != nil {
 		if !errors.Is(err, os.ErrNotExist) {
-			l.Error("failed to read motd file", "error", err)
+			slog.Error("failed to read motd file", "error", err)
 		}
 		motdReader = strings.NewReader("Welcome to this knot!\n")
 	} else {
@@ -181,12 +178,12 @@ func Run(ctx context.Context, cmd *cli.Command) error {
 	)
 
 	if err := gitCmd.Run(); err != nil {
-		l.Error("command failed", "error", err)
+		slog.Error("command failed", "error", err)
 		fmt.Fprintf(os.Stderr, "command failed: %v\n", err)
 		return fmt.Errorf("command failed: %v", err)
 	}
 
-	l.Info("command completed",
+	slog.Info("command completed",
 		"user", incomingUser,
 		"command", gitCommand,
 		"repo", repoName,
@@ -195,23 +192,23 @@ func Run(ctx context.Context, cmd *cli.Command) error {
 	return nil
 }
 
-func resolveIdentity(ctx context.Context, l *slog.Logger, didOrHandle string) *identity.Identity {
+func resolveIdentity(ctx context.Context, didOrHandle string) *identity.Identity {
 	resolver := idresolver.DefaultResolver()
 	ident, err := resolver.ResolveIdent(ctx, didOrHandle)
 	if err != nil {
-		l.Error("Error resolving handle", "error", err, "handle", didOrHandle)
+		slog.Error("Error resolving handle", "error", err, "handle", didOrHandle)
 		fmt.Fprintf(os.Stderr, "error resolving handle: %v\n", err)
 		os.Exit(1)
 	}
 	if ident.Handle.IsInvalidHandle() {
-		l.Error("Error resolving handle", "invalid handle", didOrHandle)
+		slog.Error("Error resolving handle", "invalid handle", didOrHandle)
 		fmt.Fprintf(os.Stderr, "error resolving handle: invalid handle\n")
 		os.Exit(1)
 	}
 	return ident
 }
 
-func isPushPermitted(l *slog.Logger, user, qualifiedRepoName, endpoint string) bool {
+func isPushPermitted(user, qualifiedRepoName, endpoint string) bool {
 	u, _ := url.Parse(endpoint + "/push-allowed")
 	q := u.Query()
 	q.Add("user", user)
@@ -220,12 +217,12 @@ func isPushPermitted(l *slog.Logger, user, qualifiedRepoName, endpoint string) b
 
 	req, err := http.Get(u.String())
 	if err != nil {
-		l.Error("Error verifying permissions", "error", err)
+		slog.Error("Error verifying permissions", "error", err)
 		fmt.Fprintf(os.Stderr, "error verifying permissions: %v\n", err)
 		os.Exit(1)
 	}
 
-	l.Info("Checking push permission",
+	slog.Info("checking push permission",
 		"url", u.String(),
 		"status", req.Status)
 
-- 
2.43.0