Merge pull request #1146 from hiddeco/revert-log-unify

onedr0p · web-flow · commit 1ea4a74f6581 · 2023-07-11T18:07:26.000-04:00
diff --git a/age/keysource.go b/age/keysource.go
@@ -124,7 +124,7 @@ func (key *MasterKey) Encrypt(dataKey []byte) error {
 	if key.parsedRecipient == nil {
 		parsedRecipient, err := parseRecipient(key.Recipient)
 		if err != nil {
-			log.WithError(err).WithField("recipient", key.parsedRecipient).Error("Encryption failed")
+			log.WithField("recipient", key.parsedRecipient).Error("Encryption failed")
 			return err
 		}
 		key.parsedRecipient = parsedRecipient
@@ -134,19 +134,19 @@ func (key *MasterKey) Encrypt(dataKey []byte) error {
 	aw := armor.NewWriter(&buffer)
 	w, err := age.Encrypt(aw, key.parsedRecipient)
 	if err != nil {
-		log.WithError(err).WithField("recipient", key.parsedRecipient).Error("Encryption failed")
+		log.WithField("recipient", key.parsedRecipient).Error("Encryption failed")
 		return fmt.Errorf("failed to create writer for encrypting sops data key with age: %w", err)
 	}
 	if _, err := w.Write(dataKey); err != nil {
-		log.WithError(err).WithField("recipient", key.parsedRecipient).Error("Encryption failed")
+		log.WithField("recipient", key.parsedRecipient).Error("Encryption failed")
 		return fmt.Errorf("failed to encrypt sops data key with age: %w", err)
 	}
 	if err := w.Close(); err != nil {
-		log.WithError(err).WithField("recipient", key.parsedRecipient).Error("Encryption failed")
+		log.WithField("recipient", key.parsedRecipient).Error("Encryption failed")
 		return fmt.Errorf("failed to close writer for encrypting sops data key with age: %w", err)
 	}
 	if err := aw.Close(); err != nil {
-		log.WithError(err).WithField("recipient", key.parsedRecipient).Error("Encryption failed")
+		log.WithField("recipient", key.parsedRecipient).Error("Encryption failed")
 		return fmt.Errorf("failed to close armored writer: %w", err)
 	}
 
@@ -180,7 +180,7 @@ func (key *MasterKey) Decrypt() ([]byte, error) {
 	if len(key.parsedIdentities) == 0 {
 		ids, err := key.loadIdentities()
 		if err != nil {
-			log.WithError(err).Error("Decryption failed")
+			log.Error("Decryption failed")
 			return nil, fmt.Errorf("failed to load age identities: %w", err)
 		}
 		ids.ApplyToMasterKey(key)
@@ -190,13 +190,13 @@ func (key *MasterKey) Decrypt() ([]byte, error) {
 	ar := armor.NewReader(src)
 	r, err := age.Decrypt(ar, key.parsedIdentities...)
 	if err != nil {
-		log.WithError(err).Error("Decryption failed")
+		log.Error("Decryption failed")
 		return nil, fmt.Errorf("failed to create reader for decrypting sops data key with age: %w", err)
 	}
 
 	var b bytes.Buffer
 	if _, err := io.Copy(&b, r); err != nil {
-		log.WithError(err).Error("Decryption failed")
+		log.Error("Decryption failed")
 		return nil, fmt.Errorf("failed to copy age decrypted data into bytes.Buffer: %w", err)
 	}
 
diff --git a/gcpkms/keysource.go b/gcpkms/keysource.go
@@ -94,12 +94,12 @@ func (c CredentialJSON) ApplyToMasterKey(key *MasterKey) {
 func (key *MasterKey) Encrypt(dataKey []byte) error {
 	service, err := key.newKMSClient()
 	if err != nil {
-		log.WithError(err).WithField("resourceID", key.ResourceID).Error("Encryption failed")
+		log.WithField("resourceID", key.ResourceID).Error("Encryption failed")
 		return fmt.Errorf("cannot create GCP KMS service: %w", err)
 	}
 	defer func() {
 		if err := service.Close(); err != nil {
-			log.WithError(err).Error("failed to close GCP KMS client connection")
+			log.Error("failed to close GCP KMS client connection")
 		}
 	}()
 
@@ -110,7 +110,7 @@ func (key *MasterKey) Encrypt(dataKey []byte) error {
 	ctx := context.Background()
 	resp, err := service.Encrypt(ctx, req)
 	if err != nil {
-		log.WithError(err).WithField("resourceID", key.ResourceID).Error("Encryption failed")
+		log.WithField("resourceID", key.ResourceID).Error("Encryption failed")
 		return fmt.Errorf("failed to encrypt sops data key with GCP KMS key: %w", err)
 	}
 	// NB: base64 encoding is for compatibility with SOPS <=3.8.x.
@@ -145,20 +145,20 @@ func (key *MasterKey) EncryptIfNeeded(dataKey []byte) error {
 func (key *MasterKey) Decrypt() ([]byte, error) {
 	service, err := key.newKMSClient()
 	if err != nil {
-		log.WithError(err).WithField("resourceID", key.ResourceID).Error("Decryption failed")
+		log.WithField("resourceID", key.ResourceID).Error("Decryption failed")
 		return nil, fmt.Errorf("cannot create GCP KMS service: %w", err)
 	}
 	defer func() {
 		if err := service.Close(); err != nil {
-			log.WithError(err).Error("failed to close GCP KMS client connection")
+			log.Error("failed to close GCP KMS client connection")
 		}
 	}()
 
 	// NB: this is for compatibility with SOPS <=3.8.x. The previous GCP KMS
 	// client used to work with base64 encoded strings.
 	decodedCipher, err := base64.StdEncoding.DecodeString(string(key.EncryptedDataKey()))
 	if err != nil {
-		log.WithError(err).WithField("resourceID", key.ResourceID).Error("Decryption failed")
+		log.WithField("resourceID", key.ResourceID).Error("Decryption failed")
 		return nil, err
 	}
 
@@ -169,7 +169,7 @@ func (key *MasterKey) Decrypt() ([]byte, error) {
 	ctx := context.Background()
 	resp, err := service.Decrypt(ctx, req)
 	if err != nil {
-		log.WithError(err).WithField("resourceID", key.ResourceID).Error("Decryption failed")
+		log.WithField("resourceID", key.ResourceID).Error("Decryption failed")
 		return nil, fmt.Errorf("failed to decrypt sops data key with GCP KMS key: %w", err)
 	}
 
diff --git a/hcvault/keysource.go b/hcvault/keysource.go
@@ -130,18 +130,18 @@ func (key *MasterKey) Encrypt(dataKey []byte) error {
 
 	client, err := vaultClient(key.VaultAddress, key.token)
 	if err != nil {
-		log.WithError(err).WithField("Path", fullPath).Error("Encryption failed")
+		log.WithField("Path", fullPath).Error("Encryption failed")
 		return err
 	}
 
 	secret, err := client.Logical().Write(fullPath, encryptPayload(dataKey))
 	if err != nil {
-		log.WithError(err).WithField("Path", fullPath).Error("Encryption failed")
+		log.WithField("Path", fullPath).Error("Encryption failed")
 		return fmt.Errorf("failed to encrypt sops data key to Vault transit backend '%s': %w", fullPath, err)
 	}
 	encryptedKey, err := encryptedKeyFromSecret(secret)
 	if err != nil {
-		log.WithError(err).WithField("Path", fullPath).Error("Encryption failed")
+		log.WithField("Path", fullPath).Error("Encryption failed")
 		return fmt.Errorf("failed to encrypt sops data key to Vault transit backend '%s': %w", fullPath, err)
 	}
 
@@ -175,18 +175,18 @@ func (key *MasterKey) Decrypt() ([]byte, error) {
 
 	client, err := vaultClient(key.VaultAddress, key.token)
 	if err != nil {
-		log.WithError(err).WithField("Path", fullPath).Error("Decryption failed")
+		log.WithField("Path", fullPath).Error("Decryption failed")
 		return nil, err
 	}
 
 	secret, err := client.Logical().Write(fullPath, decryptPayload(key.EncryptedKey))
 	if err != nil {
-		log.WithError(err).WithField("Path", fullPath).Error("Decryption failed")
+		log.WithField("Path", fullPath).Error("Decryption failed")
 		return nil, fmt.Errorf("failed to decrypt sops data key from Vault transit backend '%s': %w", fullPath, err)
 	}
 	dataKey, err := dataKeyFromSecret(secret)
 	if err != nil {
-		log.WithError(err).WithField("Path", fullPath).Error("Decryption failed")
+		log.WithField("Path", fullPath).Error("Decryption failed")
 		return nil, fmt.Errorf("failed to decrypt sops data key from Vault transit backend '%s': %w", fullPath, err)
 	}
 
diff --git a/kms/keysource.go b/kms/keysource.go
@@ -194,7 +194,7 @@ func (c CredentialsProvider) ApplyToMasterKey(key *MasterKey) {
 func (key *MasterKey) Encrypt(dataKey []byte) error {
 	cfg, err := key.createKMSConfig()
 	if err != nil {
-		log.WithError(err).WithField("arn", key.Arn).Error("Encryption failed")
+		log.WithField("arn", key.Arn).Error("Encryption failed")
 		return err
 	}
 	client := kms.NewFromConfig(*cfg)
@@ -205,7 +205,7 @@ func (key *MasterKey) Encrypt(dataKey []byte) error {
 	}
 	out, err := client.Encrypt(context.TODO(), input)
 	if err != nil {
-		log.WithError(err).WithField("arn", key.Arn).Error("Encryption failed")
+		log.WithField("arn", key.Arn).Error("Encryption failed")
 		return fmt.Errorf("failed to encrypt sops data key with AWS KMS: %w", err)
 	}
 	key.EncryptedKey = base64.StdEncoding.EncodeToString(out.CiphertextBlob)
@@ -237,12 +237,12 @@ func (key *MasterKey) SetEncryptedDataKey(enc []byte) {
 func (key *MasterKey) Decrypt() ([]byte, error) {
 	k, err := base64.StdEncoding.DecodeString(key.EncryptedKey)
 	if err != nil {
-		log.WithError(err).WithField("arn", key.Arn).Error("Decryption failed")
+		log.WithField("arn", key.Arn).Error("Decryption failed")
 		return nil, fmt.Errorf("error base64-decoding encrypted data key: %s", err)
 	}
 	cfg, err := key.createKMSConfig()
 	if err != nil {
-		log.WithError(err).WithField("arn", key.Arn).Error("Decryption failed")
+		log.WithField("arn", key.Arn).Error("Decryption failed")
 		return nil, err
 	}
 	client := kms.NewFromConfig(*cfg)
@@ -253,7 +253,7 @@ func (key *MasterKey) Decrypt() ([]byte, error) {
 	}
 	decrypted, err := client.Decrypt(context.TODO(), input)
 	if err != nil {
-		log.WithError(err).WithField("arn", key.Arn).Error("Decryption failed")
+		log.WithField("arn", key.Arn).Error("Decryption failed")
 		return nil, fmt.Errorf("failed to decrypt sops data key with AWS KMS: %w", err)
 	}
 	log.WithField("arn", key.Arn).Info("Decryption succeeded")
diff --git a/pgp/keysource.go b/pgp/keysource.go
@@ -268,7 +268,7 @@ func (key *MasterKey) Encrypt(dataKey []byte) error {
 	}
 	errs = append(errs, fmt.Errorf("GnuPG binary error: %w", binaryErr))
 
-	log.WithError(errs).WithField("fingerprint", key.Fingerprint).Error("Encryption failed")
+	log.WithField("fingerprint", key.Fingerprint).Error("Encryption failed")
 	return fmt.Errorf("could not encrypt data key with PGP key: %w", errs)
 }
 
@@ -379,7 +379,7 @@ func (key *MasterKey) Decrypt() ([]byte, error) {
 	}
 	errs = append(errs, fmt.Errorf("GnuPG binary error: %w", binaryErr))
 
-	log.WithError(errs).WithField("fingerprint", key.Fingerprint).Error("Decryption failed")
+	log.WithField("fingerprint", key.Fingerprint).Error("Decryption failed")
 	return nil, fmt.Errorf("could not decrypt data key with PGP key: %w", errs)
 }
 

Original file line number	Diff line number	Diff line change
`@@ -194,7 +194,7 @@ func (c CredentialsProvider) ApplyToMasterKey(key *MasterKey) {`
`194`	`194`	`func (key *MasterKey) Encrypt(dataKey []byte) error {`
`195`	`195`	`cfg, err := key.createKMSConfig()`
`196`	`196`	`if err != nil {`
`197`		`- log.WithError(err).WithField("arn", key.Arn).Error("Encryption failed")`
	`197`	`+ log.WithField("arn", key.Arn).Error("Encryption failed")`
`198`	`198`	`return err`
`199`	`199`	`}`
`200`	`200`	`client := kms.NewFromConfig(*cfg)`
`@@ -205,7 +205,7 @@ func (key *MasterKey) Encrypt(dataKey []byte) error {`
`205`	`205`	`}`
`206`	`206`	`out, err := client.Encrypt(context.TODO(), input)`
`207`	`207`	`if err != nil {`
`208`		`- log.WithError(err).WithField("arn", key.Arn).Error("Encryption failed")`
	`208`	`+ log.WithField("arn", key.Arn).Error("Encryption failed")`
`209`	`209`	`return fmt.Errorf("failed to encrypt sops data key with AWS KMS: %w", err)`
`210`	`210`	`}`
`211`	`211`	`key.EncryptedKey = base64.StdEncoding.EncodeToString(out.CiphertextBlob)`
`@@ -237,12 +237,12 @@ func (key *MasterKey) SetEncryptedDataKey(enc []byte) {`
`237`	`237`	`func (key *MasterKey) Decrypt() ([]byte, error) {`
`238`	`238`	`k, err := base64.StdEncoding.DecodeString(key.EncryptedKey)`
`239`	`239`	`if err != nil {`
`240`		`- log.WithError(err).WithField("arn", key.Arn).Error("Decryption failed")`
	`240`	`+ log.WithField("arn", key.Arn).Error("Decryption failed")`
`241`	`241`	`return nil, fmt.Errorf("error base64-decoding encrypted data key: %s", err)`
`242`	`242`	`}`
`243`	`243`	`cfg, err := key.createKMSConfig()`
`244`	`244`	`if err != nil {`
`245`		`- log.WithError(err).WithField("arn", key.Arn).Error("Decryption failed")`
	`245`	`+ log.WithField("arn", key.Arn).Error("Decryption failed")`
`246`	`246`	`return nil, err`
`247`	`247`	`}`
`248`	`248`	`client := kms.NewFromConfig(*cfg)`
`@@ -253,7 +253,7 @@ func (key *MasterKey) Decrypt() ([]byte, error) {`
`253`	`253`	`}`
`254`	`254`	`decrypted, err := client.Decrypt(context.TODO(), input)`
`255`	`255`	`if err != nil {`
`256`		`- log.WithError(err).WithField("arn", key.Arn).Error("Decryption failed")`
	`256`	`+ log.WithField("arn", key.Arn).Error("Decryption failed")`
`257`	`257`	`return nil, fmt.Errorf("failed to decrypt sops data key with AWS KMS: %w", err)`
`258`	`258`	`}`
`259`	`259`	`log.WithField("arn", key.Arn).Info("Decryption succeeded")`
Original file line number	Diff line number	Diff line change
`@@ -268,7 +268,7 @@ func (key *MasterKey) Encrypt(dataKey []byte) error {`
`268`	`268`	`}`
`269`	`269`	`errs = append(errs, fmt.Errorf("GnuPG binary error: %w", binaryErr))`
`270`	`270`
`271`		`- log.WithError(errs).WithField("fingerprint", key.Fingerprint).Error("Encryption failed")`
	`271`	`+ log.WithField("fingerprint", key.Fingerprint).Error("Encryption failed")`
`272`	`272`	`return fmt.Errorf("could not encrypt data key with PGP key: %w", errs)`
`273`	`273`	`}`
`274`	`274`
`@@ -379,7 +379,7 @@ func (key *MasterKey) Decrypt() ([]byte, error) {`
`379`	`379`	`}`
`380`	`380`	`errs = append(errs, fmt.Errorf("GnuPG binary error: %w", binaryErr))`
`381`	`381`
`382`		`- log.WithError(errs).WithField("fingerprint", key.Fingerprint).Error("Decryption failed")`
	`382`	`+ log.WithField("fingerprint", key.Fingerprint).Error("Decryption failed")`
`383`	`383`	`return nil, fmt.Errorf("could not decrypt data key with PGP key: %w", errs)`
`384`	`384`	`}`
`385`	`385`