s390-tools/s390-tools-General-update-01.patch

From 1e44ace41de3cbd744b22a8f9835473b091186e0 Mon Sep 17 00:00:00 2001
From: Steffen Eiden <seiden@linux.ibm.com>
Date: Thu, 18 Jul 2024 10:55:45 +0200
Subject: [PATCH] rust/pvsecret: Refactor writing secret
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Refactor the writing of secret-type dependent output files to ease
extensions.

Reviewed-by: Marc Hartmayer <marc@linux.ibm.com>
Reviewed-by: Christoph Schlameuss <schlameuss@linux.ibm.com>
Signed-off-by: Steffen Eiden <seiden@linux.ibm.com>
Signed-off-by: Jan Höppner <hoeppner@linux.ibm.com>
---
 rust/pv/src/uvsecret/guest_secret.rs |  2 +-
 rust/pvsecret/src/cmd/create.rs      | 89 +++++++++++++++-------------
 2 files changed, 48 insertions(+), 43 deletions(-)

diff --git a/rust/pv/src/uvsecret/guest_secret.rs b/rust/pv/src/uvsecret/guest_secret.rs
index 509691fa..4f1db31c 100644
--- a/rust/pv/src/uvsecret/guest_secret.rs
+++ b/rust/pv/src/uvsecret/guest_secret.rs
@@ -68,7 +68,7 @@ impl GuestSecret {
     }
 
     /// Reference to the confidential data
-    pub(crate) fn confidential(&self) -> &[u8] {
+    pub fn confidential(&self) -> &[u8] {
         match &self {
             Self::Null => &[],
             Self::Association { secret, .. } => secret.value().as_slice(),
diff --git a/rust/pvsecret/src/cmd/create.rs b/rust/pvsecret/src/cmd/create.rs
index 808b29e1..9251c38c 100644
--- a/rust/pvsecret/src/cmd/create.rs
+++ b/rust/pvsecret/src/cmd/create.rs
@@ -62,7 +62,7 @@ pub fn create(opt: &CreateSecretOpt) -> Result<()> {
     write_out(&opt.output, ser_asrbc, "add-secret request")?;
     info!("Successfully wrote the request to '{}'", &opt.output);
 
-    write_secret(&opt.secret, &asrcb, &opt.output)
+    write_secret(&opt.secret, asrcb.guest_secret(), &opt.output)
 }
 
 /// Read+parse the first key from the buffer.
@@ -206,54 +206,59 @@ fn read_cuid(asrcb: &mut AddSecretRequest, opt: &CreateSecretOpt) -> Result<()>
     Ok(())
 }
 
+// Write non confidential data (=name+id) to a yaml stdout
+fn write_yaml<P: AsRef<Path>>(
+    name: &str,
+    guest_secret: &GuestSecret,
+    stdout: &bool,
+    outp_path: P,
+) -> Result<()> {
+    debug!("Non-confidential secret information: {guest_secret:x?}");
+
+    let secret_info = serde_yaml::to_string(guest_secret)?;
+    if stdout.to_owned() {
+        println!("{secret_info}");
+        return Ok(());
+    }
+
+    let gen_name: String = name
+        .chars()
+        .map(|c| if c.is_whitespace() { '_' } else { c })
+        .collect();
+    let mut yaml_path = outp_path
+        .as_ref()
+        .parent()
+        .with_context(|| format!("Cannot open directory of {:?}", outp_path.as_ref()))?
+        .to_owned();
+    yaml_path.push(gen_name);
+    yaml_path.set_extension("yaml");
+    write_out(&yaml_path, secret_info, "secret information")?;
+    warn!(
+        "Successfully wrote secret info to '{}'",
+        yaml_path.display().to_string()
+    );
+    Ok(())
+}
+
 /// Write the generated secret (if any) to the specified output stream
 fn write_secret<P: AsRef<Path>>(
     secret: &AddSecretType,
-    asrcb: &AddSecretRequest,
+    guest_secret: &GuestSecret,
     outp_path: P,
 ) -> Result<()> {
-    if let AddSecretType::Association {
-        name,
-        stdout,
-        output_secret: secret_out,
-        ..
-    } = secret
-    {
-        let gen_name: String = name
-            .chars()
-            .map(|c| if c.is_whitespace() { '_' } else { c })
-            .collect();
-        let mut gen_path = outp_path
-            .as_ref()
-            .parent()
-            .with_context(|| format!("Cannot open directory of {:?}", outp_path.as_ref()))?
-            .to_owned();
-        gen_path.push(format!("{gen_name}.yaml"));
-
-        // write non confidential data (=name+id) to a yaml
-        let secret_info = serde_yaml::to_string(asrcb.guest_secret())?;
-        if stdout.to_owned() {
-            println!("{secret_info}");
-        } else {
-            write_out(&gen_path, secret_info, "association secret info")?;
-            debug!(
-                "Non-confidential secret information: {:x?}",
-                asrcb.guest_secret()
-            );
-            warn!(
-                "Successfully wrote association info to '{}'",
-                gen_path.display()
-            );
-        }
-
-        if let Some(path) = secret_out {
-            if let GuestSecret::Association { secret, .. } = asrcb.guest_secret() {
-                write_out(path, secret.value(), "Association secret")?
-            } else {
-                unreachable!("The secret type has to be `association` at this point (bug)!")
+    match secret {
+        AddSecretType::Association {
+            name,
+            stdout,
+            output_secret,
+            ..
+        } => {
+            write_yaml(name, guest_secret, stdout, outp_path)?;
+            if let Some(path) = output_secret {
+                write_out(path, guest_secret.confidential(), "Association secret")?
             }
-            info!("Successfully wrote generated association secret to '{path}'");
         }
+        _ => (),
     };
     Ok(())
 }
Sync from SUSE:SLFO:Main s390-tools revision f8d30047267f360595a979170e4c04ad 2025-01-10 17:23:54 +01:00			`From 1e44ace41de3cbd744b22a8f9835473b091186e0 Mon Sep 17 00:00:00 2001`
			`From: Steffen Eiden <seiden@linux.ibm.com>`
			`Date: Thu, 18 Jul 2024 10:55:45 +0200`
			`Subject: [PATCH] rust/pvsecret: Refactor writing secret`
			`MIME-Version: 1.0`
			`Content-Type: text/plain; charset=UTF-8`
			`Content-Transfer-Encoding: 8bit`

			`Refactor the writing of secret-type dependent output files to ease`
			`extensions.`

			`Reviewed-by: Marc Hartmayer <marc@linux.ibm.com>`
			`Reviewed-by: Christoph Schlameuss <schlameuss@linux.ibm.com>`
			`Signed-off-by: Steffen Eiden <seiden@linux.ibm.com>`
			`Signed-off-by: Jan Höppner <hoeppner@linux.ibm.com>`
			`---`
			`rust/pv/src/uvsecret/guest_secret.rs \| 2 +-`
			`rust/pvsecret/src/cmd/create.rs \| 89 +++++++++++++++-------------`
			`2 files changed, 48 insertions(+), 43 deletions(-)`

			`diff --git a/rust/pv/src/uvsecret/guest_secret.rs b/rust/pv/src/uvsecret/guest_secret.rs`
			`index 509691fa..4f1db31c 100644`
			`--- a/rust/pv/src/uvsecret/guest_secret.rs`
			`+++ b/rust/pv/src/uvsecret/guest_secret.rs`
			`@@ -68,7 +68,7 @@ impl GuestSecret {`
			`}`

			`/// Reference to the confidential data`
			`- pub(crate) fn confidential(&self) -> &[u8] {`
			`+ pub fn confidential(&self) -> &[u8] {`
			`match &self {`
			`Self::Null => &[],`
			`Self::Association { secret, .. } => secret.value().as_slice(),`
			`diff --git a/rust/pvsecret/src/cmd/create.rs b/rust/pvsecret/src/cmd/create.rs`
			`index 808b29e1..9251c38c 100644`
			`--- a/rust/pvsecret/src/cmd/create.rs`
			`+++ b/rust/pvsecret/src/cmd/create.rs`
			`@@ -62,7 +62,7 @@ pub fn create(opt: &CreateSecretOpt) -> Result<()> {`
			`write_out(&opt.output, ser_asrbc, "add-secret request")?;`
			`info!("Successfully wrote the request to '{}'", &opt.output);`

			`- write_secret(&opt.secret, &asrcb, &opt.output)`
			`+ write_secret(&opt.secret, asrcb.guest_secret(), &opt.output)`
			`}`

			`/// Read+parse the first key from the buffer.`
			`@@ -206,54 +206,59 @@ fn read_cuid(asrcb: &mut AddSecretRequest, opt: &CreateSecretOpt) -> Result<()>`
			`Ok(())`
			`}`

			`+// Write non confidential data (=name+id) to a yaml stdout`
			`+fn write_yaml<P: AsRef<Path>>(`
			`+ name: &str,`
			`+ guest_secret: &GuestSecret,`
			`+ stdout: &bool,`
			`+ outp_path: P,`
			`+) -> Result<()> {`
			`+ debug!("Non-confidential secret information: {guest_secret:x?}");`
			`+`
			`+ let secret_info = serde_yaml::to_string(guest_secret)?;`
			`+ if stdout.to_owned() {`
			`+ println!("{secret_info}");`
			`+ return Ok(());`
			`+ }`
			`+`
			`+ let gen_name: String = name`
			`+ .chars()`
			`+ .map(\|c\| if c.is_whitespace() { '_' } else { c })`
			`+ .collect();`
			`+ let mut yaml_path = outp_path`
			`+ .as_ref()`
			`+ .parent()`
			`+ .with_context(\|\| format!("Cannot open directory of {:?}", outp_path.as_ref()))?`
			`+ .to_owned();`
			`+ yaml_path.push(gen_name);`
			`+ yaml_path.set_extension("yaml");`
			`+ write_out(&yaml_path, secret_info, "secret information")?;`
			`+ warn!(`
			`+ "Successfully wrote secret info to '{}'",`
			`+ yaml_path.display().to_string()`
			`+ );`
			`+ Ok(())`
			`+}`
			`+`
			`/// Write the generated secret (if any) to the specified output stream`
			`fn write_secret<P: AsRef<Path>>(`
			`secret: &AddSecretType,`
			`- asrcb: &AddSecretRequest,`
			`+ guest_secret: &GuestSecret,`
			`outp_path: P,`
			`) -> Result<()> {`
			`- if let AddSecretType::Association {`
			`- name,`
			`- stdout,`
			`- output_secret: secret_out,`
			`- ..`
			`- } = secret`
			`- {`
			`- let gen_name: String = name`
			`- .chars()`
			`- .map(\|c\| if c.is_whitespace() { '_' } else { c })`
			`- .collect();`
			`- let mut gen_path = outp_path`
			`- .as_ref()`
			`- .parent()`
			`- .with_context(\|\| format!("Cannot open directory of {:?}", outp_path.as_ref()))?`
			`- .to_owned();`
			`- gen_path.push(format!("{gen_name}.yaml"));`
			`-`
			`- // write non confidential data (=name+id) to a yaml`
			`- let secret_info = serde_yaml::to_string(asrcb.guest_secret())?;`
			`- if stdout.to_owned() {`
			`- println!("{secret_info}");`
			`- } else {`
			`- write_out(&gen_path, secret_info, "association secret info")?;`
			`- debug!(`
			`- "Non-confidential secret information: {:x?}",`
			`- asrcb.guest_secret()`
			`- );`
			`- warn!(`
			`- "Successfully wrote association info to '{}'",`
			`- gen_path.display()`
			`- );`
			`- }`
			`-`
			`- if let Some(path) = secret_out {`
			`- if let GuestSecret::Association { secret, .. } = asrcb.guest_secret() {`
			`- write_out(path, secret.value(), "Association secret")?`
			`- } else {`
			- unreachable!("The secret type has to be `association` at this point (bug)!")
			`+ match secret {`
			`+ AddSecretType::Association {`
			`+ name,`
			`+ stdout,`
			`+ output_secret,`
			`+ ..`
			`+ } => {`
			`+ write_yaml(name, guest_secret, stdout, outp_path)?;`
			`+ if let Some(path) = output_secret {`
			`+ write_out(path, guest_secret.confidential(), "Association secret")?`
			`}`
			`- info!("Successfully wrote generated association secret to '{path}'");`
			`}`
			`+ _ => (),`
			`};`
			`Ok(())`
			`}`