remove lingering logrus usage

Author: brianm

go.mod

@@ -10,7 +10,6 @@ require (
 	github.com/markdingo/netstring v1.0.2
 	github.com/mikesmitty/edkey v0.0.0-20170222072505-3356ea4e686a
 	github.com/sigstore/rekor v1.4.2
-	github.com/sirupsen/logrus v1.9.3
 	github.com/stretchr/testify v1.11.1
 	golang.org/x/crypto v0.43.0
 	gotest.tools v2.2.0+incompatible

go.sum

@@ -12,8 +12,6 @@ github.com/cbroglie/mustache v1.4.0 h1:Azg0dVhxTml5me+7PsZ7WPrQq1Gkf3WApcHMjMprY
 github.com/cbroglie/mustache v1.4.0/go.mod h1:SS1FTIghy0sjse4DUVGV1k/40B1qE1XkD9DtDsHo9iM=
 github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
 github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
 github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/go-chi/chi/v5 v5.2.3 h1:WQIt9uxdsAbgIYgid+BpYc+liqQZGMHRaUwp0JUcvdE=
@@ -46,7 +44,6 @@ github.com/opencontainers/go-digest v1.0.0 h1:apOUWs51W5PlhuyGyz9FCeeBIOUDA/6nW8
 github.com/opencontainers/go-digest v1.0.0/go.mod h1:0JzlMkj0TRzQZfJkVvzbP0HBR3IKzErnv2BNG4W4MAM=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/prometheus/client_golang v1.23.0 h1:ust4zpdl9r4trLY/gSjlm07PuiBq2ynaXXlptpfy8Uc=
@@ -65,10 +62,6 @@ github.com/sigstore/rekor v1.4.2 h1:Lx2xby7loviFYdg2C9pB1mESk2QU/LqcYSGsqqZwmg8=
 github.com/sigstore/rekor v1.4.2/go.mod h1:nX/OYaLqpTeCOuMEt7ELE0+5cVjZWFnFKM+cZ+3hQRA=
 github.com/sigstore/sigstore v1.9.5 h1:Wm1LT9yF4LhQdEMy5A2JeGRHTrAWGjT3ubE5JUSrGVU=
 github.com/sigstore/sigstore v1.9.5/go.mod h1:VtxgvGqCmEZN9X2zhFSOkfXxvKUjpy8RpUW39oCtoII=
-github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
-github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
-github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.11.1 h1:7s2iGBzp5EwR7/aIZr8ao5+dra3wiQyKjjFuvgVKu7U=
 github.com/stretchr/testify v1.11.1/go.mod h1:wZwfW3scLgRK+23gO65QZefKpKQRnfz6sD981Nm4B6U=
 github.com/titanous/rocacheck v0.0.0-20171023193734-afe73141d399 h1:e/5i7d4oYZ+C1wj2THlRK+oAhjeS/TRQwMfkIuet3w0=
@@ -79,7 +72,6 @@ golang.org/x/mod v0.28.0 h1:gQBtGhjxykdjY9YhZpSlZIsbnaE2+PgjfLWUQTnoZ1U=
 golang.org/x/mod v0.28.0/go.mod h1:yfB/L0NOf/kmEbXjzCPOx1iK1fRutOydrCMsqRhEBxI=
 golang.org/x/net v0.46.0 h1:giFlY12I07fugqwPuWJi68oOnpfqFnJIJzaIIm2JVV4=
 golang.org/x/net v0.46.0/go.mod h1:Q9BGdFy1y4nkUwiLvT5qtyhAnEHgnQ/zd8PfU6nc210=
-golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.37.0 h1:fdNQudmxPjkdUTPnLn5mdQv7Zwvbvpaxqs831goi9kQ=
 golang.org/x/sys v0.37.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks=
 golang.org/x/term v0.36.0 h1:zMPR+aF8gfksFprF/Nc/rd1wRS1EI6nDBGyWAvDzx2Q=
@@ -96,7 +88,6 @@ google.golang.org/protobuf v1.36.10 h1:AYd7cD/uASjIL6Q9LiTjz8JLcrh/88q5UObnmY3aO
 google.golang.org/protobuf v1.36.10/go.mod h1:HTf+CrKn2C3g5S8VImy6tdcUvCska2kB7j23XfzDpco=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gotest.tools v2.2.0+incompatible h1:VsBPFP1AI068pPrMxtb/S8Zkgf9xEmTLJjfM+P5UIEo=

pkg/agent/agent.go

@@ -5,13 +5,13 @@ import (
 	"errors"
 	"fmt"
 	"io"
+	"log/slog"
 	"net"
 	"os"
 	"sync"
 
 	"github.com/epithet-ssh/epithet/pkg/caclient"
 	"github.com/epithet-ssh/epithet/pkg/sshcert"
-	log "github.com/sirupsen/logrus"
 	"golang.org/x/crypto/ssh"
 	"golang.org/x/crypto/ssh/agent"
 )
@@ -24,12 +24,13 @@ var errAgentStopped = errors.New("agent has been stopped")
 // has internal synchronization and can be safely accessed from multiple goroutines.
 // The done channel and closeOnce provide safe shutdown coordination.
 //
-// Immutable after creation: agentSocketPath, publicKey, privateKey, caClient
+// Immutable after creation: agentSocketPath, publicKey, privateKey, caClient, log
 // Protected by internal sync: keyring (uses its own locking)
 // Protected by closeOnce: agentListener, done channel
 type Agent struct {
 	keyring  agent.Agent // Thread-safe (has internal locking)
 	caClient *caclient.Client
+	log      *slog.Logger // Immutable after New()
 
 	agentSocketPath string // Immutable after New()
 	agentListener   net.Listener
@@ -43,7 +44,7 @@ type Agent struct {
 
 // New creates a new SSH agent. This does not start listening - call Serve() to begin accepting connections.
 // If agentSocketPath is empty, a temporary socket will be created when Serve() is called.
-func New(caClient *caclient.Client, agentSocketPath string) (*Agent, error) {
+func New(logger *slog.Logger, caClient *caclient.Client, agentSocketPath string) (*Agent, error) {
 	pub, priv, err := sshcert.GenerateKeys()
 	if err != nil {
 		return nil, err
@@ -53,6 +54,7 @@ func New(caClient *caclient.Client, agentSocketPath string) (*Agent, error) {
 		agentSocketPath: agentSocketPath,
 		keyring:         agent.NewKeyring(),
 		caClient:        caClient,
+		log:             logger,
 		publicKey:       pub,
 		privateKey:      priv,
 		done:            make(chan struct{}),
@@ -88,7 +90,7 @@ func (a *Agent) UseCredential(c Credential) error {
 		return errAgentStopped
 	}
 
-	log.Debug("replacing credentials")
+	a.log.Debug("replacing credentials")
 	oldKeys, err := a.keyring.List()
 	if err != nil {
 		a.Close()
@@ -174,7 +176,7 @@ func (a *Agent) serve(ctx context.Context) {
 			case <-ctx.Done():
 				return
 			default:
-				log.Warnf("error on accept from SSH_AUTH_SOCK listener: %v", err)
+				a.log.Warn("error on accept from SSH_AUTH_SOCK listener", "error", err)
 				continue
 			}
 		}
@@ -185,10 +187,10 @@ func (a *Agent) serve(ctx context.Context) {
 func (a *Agent) serveAgent(conn net.Conn) {
 	defer conn.Close()
 
-	log.Debug("new connection to agent")
+	a.log.Debug("new connection to agent")
 	err := agent.ServeAgent(a.keyring, conn)
 	if err != nil && err != io.EOF {
-		log.Warnf("error from ssh-agent: %v", err)
+		a.log.Warn("error from ssh-agent", "error", err)
 	}
 }
 

pkg/agent/agent_test.go

@@ -5,6 +5,7 @@ import (
 	"crypto/rand"
 	"encoding/binary"
 	"errors"
+	"log/slog"
 	"os"
 	"testing"
 	"time"
@@ -32,7 +33,7 @@ func TestBasics(t *testing.T) {
 	ctx, cancel := context.WithCancel(t.Context())
 	defer cancel()
 
-	a, err := agent.New(nil, "")
+	a, err := agent.New(slog.Default(), nil, "")
 	require.NoError(t, err)
 
 	// Serve in background

pkg/broker/broker.go

@@ -333,7 +333,7 @@ func (b *Broker) ensureAgent(connectionHash policy.ConnectionHash, credential ag
 
 	// Create the agent (Note: agent.New expects *caclient.Client, but we don't need it for UseCredential)
 	// We pass nil because we're manually managing certificates via UseCredential
-	ag, err := agent.New(nil, socketPath)
+	ag, err := agent.New(&b.log, nil, socketPath)
 	if err != nil {
 		return fmt.Errorf("failed to create agent: %w", err)
 	}

pkg/ca/ca_test.go

@@ -10,7 +10,6 @@ import (
 
 	"github.com/epithet-ssh/epithet/pkg/ca"
 	"github.com/epithet-ssh/epithet/pkg/sshcert"
-	"github.com/sirupsen/logrus"
 	"github.com/stretchr/testify/require"
 	"golang.org/x/crypto/ssh"
 )
@@ -101,7 +100,7 @@ func TestCA_GetPublicKey(t *testing.T) {
 	c, err := ca.New(caPrivKey, "")
 	require.NoError(t, err)
 
-	logrus.Infof("%s", c.PublicKey())
+	t.Logf("%s", c.PublicKey())
 
 	require.True(t, strings.HasPrefix(string(c.PublicKey()), "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDNH7"))
 }