From 117e6b5ea112aef29bfbb08d7cc615cd5298df45 Mon Sep 17 00:00:00 2001
From: Panu Matilainen <pmatilai@redhat.com>
Date: Mon, 4 Nov 2024 13:25:26 +0200
Subject: [PATCH] Sanitize rpmsign --addsign/--delsign output

--addsign and --delsign used to emit output like below, which makes
you expect some additional output, where there will be none:

	/some/path.rpm:

Make sure all the error messages give a path you can relate to,
only emit the file name in INFO level in case of success.
No news is good news, right? So on success you now only get the
following IFF operation succeeds and -v was specified:

	/some/path.rpm

This also means we don't need to filter out these meaningless messages
all over the place in the test-suite, remove now unndecessary /dev/null
redirects and add -v to one case of both --addsign and --delsign to
cover that case.
---
 sign/rpmgensig.cc  | 14 ++++++++------
 tests/rpmsigdig.at | 46 +++++++++++++++++++++++++---------------------
 2 files changed, 33 insertions(+), 27 deletions(-)

diff --git a/sign/rpmgensig.cc b/sign/rpmgensig.cc
index b930ab2669..469fe71b05 100644
--- a/sign/rpmgensig.cc
+++ b/sign/rpmgensig.cc
@@ -340,7 +340,7 @@ static rpmtd makeGPGSignature(Header sigh, int ishdr, sigTarget sigt)
 
     if (stat(sigfile, &st)) {
 	/* External command failed to write signature */
-	rpmlog(RPMLOG_ERR, _("failed to write signature\n"));
+	rpmlog(RPMLOG_ERR, _("failed to write signature: %s\n"), sigfile);
 	goto exit;
     }
 
@@ -357,7 +357,8 @@ static rpmtd makeGPGSignature(Header sigh, int ishdr, sigTarget sigt)
 	    (void) Fclose(fd);
 	}
 	if (rc != pktlen) {
-	    rpmlog(RPMLOG_ERR, _("unable to read the signature\n"));
+	    rpmlog(RPMLOG_ERR, _("unable to read the signature: %s\n"),
+			sigfile);
 	    goto exit;
 	}
     }
@@ -595,8 +596,6 @@ static int rpmSign(const char *rpm, int deleting, int flags)
     int insSig = 0;
     rpmTagVal reserveTag = RPMSIGTAG_RESERVEDSPACE;
 
-    fprintf(stdout, "%s:\n", rpm);
-
     if (manageFile(&fd, rpm, O_RDWR))
 	goto exit;
 
@@ -626,7 +625,7 @@ static int rpmSign(const char *rpm, int deleting, int flags)
     }
 
     if (!headerIsEntry(h, RPMTAG_HEADERIMMUTABLE)) {
-	rpmlog(RPMLOG_ERR, _("Cannot sign RPM v3 packages\n"));
+	rpmlog(RPMLOG_ERR, _("Cannot sign RPM v3 packages: %s\n"), rpm);
 	goto exit;
     }
 
@@ -725,7 +724,7 @@ static int rpmSign(const char *rpm, int deleting, int flags)
 	rasprintf(&trpm, "%s.XXXXXX", rpm);
 	ofd = rpmMkTemp(trpm);
 	if (ofd == NULL || Ferror(ofd)) {
-	    rpmlog(RPMLOG_ERR, _("rpmMkTemp failed\n"));
+	    rpmlog(RPMLOG_ERR, _("rpmMkTemp failed: %s\n"), trpm);
 	    goto exit;
 	}
 
@@ -768,6 +767,9 @@ static int rpmSign(const char *rpm, int deleting, int flags)
 	}
     }
 
+    if (res == 0)
+	rpmlog(RPMLOG_INFO, "%s\n", rpm);
+
 exit:
     if (fd)	(void) closeFile(&fd);
     if (ofd)	(void) closeFile(&ofd);
diff --git a/tests/rpmsigdig.at b/tests/rpmsigdig.at
index 3dbea49f58..057434f509 100644
--- a/tests/rpmsigdig.at
+++ b/tests/rpmsigdig.at
@@ -1137,13 +1137,13 @@ RPMTEST_CHECK([
 RPMDB_INIT
 
 cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64.rpm "${RPMTEST}"/tmp/
-runroot rpmsign --key-id 4344591E1964C5FC --rpmv3 --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --key-id 4344591E1964C5FC --rpmv3 --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm
 echo PRE-IMPORT
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 echo POST-IMPORT
 runroot rpmkeys --import /data/keys/rpm.org-rsa-2048-test.pub
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
-runroot rpmsign --delsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --delsign /tmp/hello-2.0-1.x86_64.rpm
 echo POST-DELSIGN
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 ],
@@ -1166,13 +1166,13 @@ RPMTEST_CHECK([
 RPMDB_INIT
 
 cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64.rpm "${RPMTEST}"/tmp/
-runroot rpmsign --key-id 4344591E1964C5FC --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --key-id 4344591E1964C5FC --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm
 echo PRE-IMPORT
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 echo POST-IMPORT
 runroot rpmkeys --import /data/keys/rpm.org-rsa-2048-test.pub
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
-runroot rpmsign --delsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --delsign /tmp/hello-2.0-1.x86_64.rpm
 echo POST-DELSIGN
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 ],
@@ -1196,9 +1196,9 @@ ORIG="/data/RPMS/hello-2.0-1.x86_64.rpm"
 NEW="/tmp/hello-2.0-1.x86_64.rpm"
 
 runroot_other cp ${ORIG} /tmp/
-runroot rpmsign --key-id 4344591E1964C5FC --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --key-id 4344591E1964C5FC --addsign ${NEW}
 runroot_other cmp -s ${ORIG} ${NEW}; echo $?
-runroot rpmsign --delsign ${NEW} > /dev/null
+runroot rpmsign --delsign ${NEW}
 runroot_other cmp -s ${ORIG} ${NEW}; echo $?
 ],
 [ignore],
@@ -1208,7 +1208,7 @@ runroot_other cmp -s ${ORIG} ${NEW}; echo $?
 [])
 
 RPMTEST_CHECK([
-runroot rpmsign --define "__gpg_sign_cmd mumble" --key-id 1964C5FC --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --define "__gpg_sign_cmd mumble" --key-id 1964C5FC --addsign /tmp/hello-2.0-1.x86_64.rpm
 ],
 [1],
 [],
@@ -1216,7 +1216,7 @@ runroot rpmsign --define "__gpg_sign_cmd mumble" --key-id 1964C5FC --addsign /tm
 ])
 
 RPMTEST_CHECK([
-runroot rpmsign --define "__gpg /gnus/not/here" --key-id 1964C5FC --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --define "__gpg /gnus/not/here" --key-id 1964C5FC --addsign /tmp/hello-2.0-1.x86_64.rpm
 ],
 [1],
 [],
@@ -1248,8 +1248,7 @@ dd if=/dev/zero of="${RPMTEST}"/tmp/${pkg} \
 runroot rpmsign --define "_pkgverify_flags 0" --key-id 4344591E1964C5FC --digest-algo sha256 --addsign "/tmp/${pkg}"
 ],
 [1],
-[/tmp/hello-2.0-1.x86_64.rpm:
-],
+[],
 [error: not signing corrupt package /tmp/hello-2.0-1.x86_64.rpm: MD5 digest: BAD (Expected 007ca1d8b35cca02a1854ba301c5432e != 137ca1d8b35cca02a1854ba301c5432e)
 ])
 
@@ -1276,8 +1275,7 @@ dd if=/dev/zero of="${RPMTEST}"/tmp/${pkg} \
 runroot rpmsign --key-id 1964C5FC --digest-algo sha256 --addsign "/tmp/${pkg}"
 ],
 [1],
-[/tmp/hello-2.0-1.x86_64.rpm:
-],
+[],
 [error: not signing corrupt package /tmp/hello-2.0-1.x86_64.rpm: Payload SHA256 digest: BAD (Expected 84a7338287bf19715c4eed0243f5cdb447eeb0ade37b2af718d4060aefca2f7c != bea903609dceac36e1f26a983c493c98064d320fdfeb423034ed63d649b2c8dc)
 ])
 
@@ -1317,30 +1315,36 @@ runroot_other sq key import /data/keys/*.secret
 
 RPMTEST_CHECK([
 cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64.rpm "${RPMTEST}"/tmp/
-runroot rpmsign --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+echo SIGN
+runroot rpmsign --addsign -v /tmp/hello-2.0-1.x86_64.rpm
 echo PRE-IMPORT
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 echo POST-IMPORT
 runroot rpmkeys --import /data/keys/rpm.org-rsa-2048-test.pub
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
-runroot rpmsign --delsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+echo DELSIGN
+runroot rpmsign --delsign -v /tmp/hello-2.0-1.x86_64.rpm
 echo POST-DELSIGN
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 ],
 [0],
-[PRE-IMPORT
+[SIGN
+/tmp/hello-2.0-1.x86_64.rpm
+PRE-IMPORT
 /tmp/hello-2.0-1.x86_64.rpm:
     Header V4 RSA/SHA512 signature, key ID 4344591e1964c5fc: NOKEY
 POST-IMPORT
 /tmp/hello-2.0-1.x86_64.rpm:
     Header V4 RSA/SHA512 signature, key fingerprint: 771b18d3d7baa28734333c424344591e1964c5fc: OK
+DELSIGN
+/tmp/hello-2.0-1.x86_64.rpm
 POST-DELSIGN
 /tmp/hello-2.0-1.x86_64.rpm:
 ],
 [ignore])
 
 RPMTEST_CHECK([
-runroot rpmsign --addsign --key-id 152bb32fd9ca982797e835cfb0645aec757bf69e /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --addsign --key-id 152bb32fd9ca982797e835cfb0645aec757bf69e /tmp/hello-2.0-1.x86_64.rpm
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm
 ],
 [1],
@@ -1364,7 +1368,7 @@ cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64-signed.rpm "${RPMTEST}"/tmp/
 echo PRE-DELSIGN
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64-signed.rpm|grep -v digest
 echo POST-DELSIGN
-runroot rpmsign --delsign /tmp/hello-2.0-1.x86_64-signed.rpm > /dev/null
+runroot rpmsign --delsign /tmp/hello-2.0-1.x86_64-signed.rpm
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64-signed.rpm|grep -v digest
 ],
 [0],
@@ -1411,7 +1415,7 @@ RPMTEST_CHECK([
 RPMDB_INIT
 
 cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64.rpm "${RPMTEST}"/tmp/
-runroot rpmsign --key-id B0645AEC757BF69E --digest-algo sha512 --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --key-id B0645AEC757BF69E --digest-algo sha512 --addsign /tmp/hello-2.0-1.x86_64.rpm
 echo PRE-IMPORT
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 echo POST-IMPORT
@@ -1442,7 +1446,7 @@ RPMTEST_CHECK([
 RPMDB_INIT
 
 cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64.rpm "${RPMTEST}"/tmp/
-runroot rpmsign --key-id 7f1c21f95f65bbe8 --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --key-id 7f1c21f95f65bbe8 --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm
 echo PRE-IMPORT
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 echo POST-IMPORT
@@ -1473,7 +1477,7 @@ RPMTEST_CHECK([
 RPMDB_INIT
 
 cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64.rpm "${RPMTEST}"/tmp/
-runroot rpmsign --key-id 79cc07f167fee8841829acaa42655a75156b3de0 --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --key-id 79cc07f167fee8841829acaa42655a75156b3de0 --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm
 echo PRE-IMPORT
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 echo POST-IMPORT
@@ -1510,7 +1514,7 @@ RPMTEST_CHECK([
 RPMDB_INIT
 
 cp "${RPMTEST}"/data/RPMS/hello-2.0-1.x86_64.rpm "${RPMTEST}"/tmp/
-runroot rpmsign --key-id 94706f8da571389e8642bdfd42655a75156b3de0 --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm > /dev/null
+runroot rpmsign --key-id 94706f8da571389e8642bdfd42655a75156b3de0 --digest-algo sha256 --addsign /tmp/hello-2.0-1.x86_64.rpm
 echo PRE-IMPORT
 runroot rpmkeys -Kv /tmp/hello-2.0-1.x86_64.rpm|grep -v digest
 echo POST-IMPORT