MahatiC
diff --git a/‎cmd/gcs-sidecar/main.go‎
Lines changed: 4 additions & 2 deletions b/‎cmd/gcs-sidecar/main.go‎
Lines changed: 4 additions & 2 deletions
diff --git a/‎internal/gcs-sidecar/bridge.go‎
Lines changed: 5 additions & 1 deletion b/‎internal/gcs-sidecar/bridge.go‎
Lines changed: 5 additions & 1 deletion
@@ -7,6 +7,7 @@ import (
 	"context"
 	"flag"
 	"fmt"
+	"io"
 	"net"
 	"os"
 	"time"
@@ -150,7 +151,6 @@ func main() {
 		logrus.Fatal(err)
 	}
 	logrus.SetLevel(level)
-	logrus.SetOutput(logFileHandle)
 	trace.ApplyConfig(trace.Config{DefaultSampler: trace.AlwaysSample()})
 	trace.RegisterExporter(&oc.LogrusExporter{})
 
@@ -225,15 +225,17 @@ func main() {
 	case "allow":
 		initialEnforcer = &securitypolicy.OpenDoorSecurityPolicyEnforcer{}
 		logrus.Tracef("initial-policy-stance: allow")
+		logrus.SetOutput(logFileHandle)
 	case "deny":
 		initialEnforcer = &securitypolicy.ClosedDoorSecurityPolicyEnforcer{}
 		logrus.Tracef("initial-policy-stance: deny")
+		logrus.SetOutput(io.Discard)
 	default:
 		logrus.Error("unknown initial-policy-stance")
 	}
 
 	// 3. Create bridge and initializa
-	brdg := sidecar.NewBridge(shimCon, gcsCon, initialEnforcer)
+	brdg := sidecar.NewBridge(shimCon, gcsCon, initialEnforcer, logFileHandle)
 	brdg.AssignHandlers()
 
 	// 3. Listen and serve for hcsshim requests.
 
@@ -47,6 +47,9 @@ type Bridge struct {
 	// and send responses back to hcsshim respectively.
 	sendToGCSCh  chan request
 	sendToShimCh chan bridgeResponse
+
+	// logging target
+	logWriter io.Writer
 }
 
 // SequenceID is used to correlate requests and responses.
@@ -77,7 +80,7 @@ type request struct {
 	message []byte
 }
 
-func NewBridge(shimConn io.ReadWriteCloser, inboxGCSConn io.ReadWriteCloser, initialEnforcer securitypolicy.SecurityPolicyEnforcer) *Bridge {
+func NewBridge(shimConn io.ReadWriteCloser, inboxGCSConn io.ReadWriteCloser, initialEnforcer securitypolicy.SecurityPolicyEnforcer, logWriter io.Writer) *Bridge {
 	hostState := NewHost(initialEnforcer)
 	return &Bridge{
 		pending:        make(map[sequenceID]*prot.ContainerExecuteProcessResponse),
@@ -87,6 +90,7 @@ func NewBridge(shimConn io.ReadWriteCloser, inboxGCSConn io.ReadWriteCloser, ini
 		inboxGCSConn:   inboxGCSConn,
 		sendToGCSCh:    make(chan request),
 		sendToShimCh:   make(chan bridgeResponse),
+		logWriter:      logWriter,
 	}
 }
Original file line number	Diff line number	Diff line change
`@@ -47,6 +47,9 @@ type Bridge struct {`
`47`	`47`	`// and send responses back to hcsshim respectively.`
`48`	`48`	`sendToGCSCh chan request`
`49`	`49`	`sendToShimCh chan bridgeResponse`
	`50`	`+`
	`51`	`+ // logging target`
	`52`	`+ logWriter io.Writer`
`50`	`53`	`}`
`51`	`54`
`52`	`55`	`// SequenceID is used to correlate requests and responses.`
`@@ -77,7 +80,7 @@ type request struct {`
`77`	`80`	`message []byte`
`78`	`81`	`}`
`79`	`82`
`80`		`-func NewBridge(shimConn io.ReadWriteCloser, inboxGCSConn io.ReadWriteCloser, initialEnforcer securitypolicy.SecurityPolicyEnforcer) *Bridge {`
	`83`	`+func NewBridge(shimConn io.ReadWriteCloser, inboxGCSConn io.ReadWriteCloser, initialEnforcer securitypolicy.SecurityPolicyEnforcer, logWriter io.Writer) *Bridge {`
`81`	`84`	`hostState := NewHost(initialEnforcer)`
`82`	`85`	`return &Bridge{`
`83`	`86`	`pending: make(map[sequenceID]*prot.ContainerExecuteProcessResponse),`
`@@ -87,6 +90,7 @@ func NewBridge(shimConn io.ReadWriteCloser, inboxGCSConn io.ReadWriteCloser, ini`
`87`	`90`	`inboxGCSConn: inboxGCSConn,`
`88`	`91`	`sendToGCSCh: make(chan request),`
`89`	`92`	`sendToShimCh: make(chan bridgeResponse),`
	`93`	`+ logWriter: logWriter,`
`90`	`94`	`}`
`91`	`95`	`}`
`92`	`96`