Use cmd instead of fmt in signer commands

Author: pappz

client/cmd/signer/artifactkey.go

@@ -32,7 +32,7 @@ The artifact key will be used to sign software artifacts/updates.`,
 			return fmt.Errorf("--expiration must be a positive duration (e.g., 720h, 365d, 8760h)")
 		}
 
-		if err := handleCreateArtifactKey(createArtifactKeyRootPrivKeyFile, createArtifactKeyPrivKeyFile, createArtifactKeyPubKeyFile, createArtifactKeyExpiration); err != nil {
+		if err := handleCreateArtifactKey(cmd, createArtifactKeyRootPrivKeyFile, createArtifactKeyPrivKeyFile, createArtifactKeyPubKeyFile, createArtifactKeyExpiration); err != nil {
 			return fmt.Errorf("failed to create artifact key: %w", err)
 		}
 		return nil
@@ -49,7 +49,7 @@ This command is typically used to distribute or authorize a set of valid artifac
 			return fmt.Errorf("at least one --artifact-pub-key-file must be provided")
 		}
 
-		if err := handleBundlePubKeys(bundlePubKeysRootPrivKeyFile, bundlePubKeysPubKeyFiles, bundlePubKeysFile); err != nil {
+		if err := handleBundlePubKeys(cmd, bundlePubKeysRootPrivKeyFile, bundlePubKeysPubKeyFiles, bundlePubKeysFile); err != nil {
 			return fmt.Errorf("failed to bundle public keys: %w", err)
 		}
 		return nil
@@ -94,8 +94,8 @@ func init() {
 	}
 }
 
-func handleCreateArtifactKey(rootPrivKeyFile, artifactPrivKeyFile, artifactPubKeyFile string, expiration time.Duration) error {
-	fmt.Println("🔑 Creating new artifact signing key...")
+func handleCreateArtifactKey(cmd *cobra.Command, rootPrivKeyFile, artifactPrivKeyFile, artifactPubKeyFile string, expiration time.Duration) error {
+	cmd.Println("🔑 Creating new artifact signing key...")
 
 	privKeyPEM, err := os.ReadFile(rootPrivKeyFile)
 	if err != nil {
@@ -125,13 +125,13 @@ func handleCreateArtifactKey(rootPrivKeyFile, artifactPrivKeyFile, artifactPubKe
 		return fmt.Errorf("write signature file (%s): %w", signatureFile, err)
 	}
 
-	fmt.Printf("✅ Artifact key created successfully.\n")
-	fmt.Printf("%s\n", artifactKey.String())
+	cmd.Printf("✅ Artifact key created successfully.\n")
+	cmd.Printf("%s\n", artifactKey.String())
 	return nil
 }
 
-func handleBundlePubKeys(rootPrivKeyFile string, artifactPubKeyFiles []string, bundlePubKeysFile string) error {
-	fmt.Println("📦 Bundling public keys into signed package...")
+func handleBundlePubKeys(cmd *cobra.Command, rootPrivKeyFile string, artifactPubKeyFiles []string, bundlePubKeysFile string) error {
+	cmd.Println("📦 Bundling public keys into signed package...")
 
 	privKeyPEM, err := os.ReadFile(rootPrivKeyFile)
 	if err != nil {
@@ -171,6 +171,6 @@ func handleBundlePubKeys(rootPrivKeyFile string, artifactPubKeyFiles []string, b
 		return fmt.Errorf("write signature file (%s): %w", signatureFile, err)
 	}
 
-	fmt.Printf("✅ Bundle created with %d public keys.\n", len(artifactPubKeyFiles))
+	cmd.Printf("✅ Bundle created with %d public keys.\n", len(artifactPubKeyFiles))
 	return nil
 }

client/cmd/signer/artifactsign.go

@@ -25,7 +25,7 @@ var signArtifactCmd = &cobra.Command{
 This command produces a detached signature that can be verified using the corresponding artifact public key.`,
 	SilenceUsage: true,
 	RunE: func(cmd *cobra.Command, args []string) error {
-		if err := handleSignArtifact(signArtifactRootPrivKeyFile, signArtifactArtifactFile); err != nil {
+		if err := handleSignArtifact(cmd, signArtifactRootPrivKeyFile, signArtifactArtifactFile); err != nil {
 			return fmt.Errorf("failed to sign artifact: %w", err)
 		}
 		return nil
@@ -38,7 +38,7 @@ var verifyArtifactCmd = &cobra.Command{
 	Long:         `Verify a software artifact signature using the artifact's public key.`,
 	SilenceUsage: true,
 	RunE: func(cmd *cobra.Command, args []string) error {
-		if err := handleVerifyArtifact(verifyArtifactPubKeyFile, verifyArtifactFile, verifyArtifactSignatureFile); err != nil {
+		if err := handleVerifyArtifact(cmd, verifyArtifactPubKeyFile, verifyArtifactFile, verifyArtifactSignatureFile); err != nil {
 			return fmt.Errorf("failed to verify artifact: %w", err)
 		}
 		return nil
@@ -75,8 +75,8 @@ func init() {
 	}
 }
 
-func handleSignArtifact(privKeyFile, artifactFile string) error {
-	fmt.Println("🖋️  Signing artifact...")
+func handleSignArtifact(cmd *cobra.Command, privKeyFile, artifactFile string) error {
+	cmd.Println("🖋️  Signing artifact...")
 
 	privKeyPEM, err := os.ReadFile(privKeyFile)
 	if err != nil {
@@ -103,13 +103,13 @@ func handleSignArtifact(privKeyFile, artifactFile string) error {
 		return fmt.Errorf("write signature file (%s): %w", sigFile, err)
 	}
 
-	fmt.Printf("✅ Artifact signed successfully.\n")
-	fmt.Printf("Signature file: %s\n", sigFile)
+	cmd.Printf("✅ Artifact signed successfully.\n")
+	cmd.Printf("Signature file: %s\n", sigFile)
 	return nil
 }
 
-func handleVerifyArtifact(pubKeyFile, artifactFile, signatureFile string) error {
-	fmt.Println("🔍 Verifying artifact...")
+func handleVerifyArtifact(cmd *cobra.Command, pubKeyFile, artifactFile, signatureFile string) error {
+	cmd.Println("🔍 Verifying artifact...")
 
 	// Read artifact public key
 	pubKeyPEM, err := os.ReadFile(pubKeyFile)
@@ -144,9 +144,9 @@ func handleVerifyArtifact(pubKeyFile, artifactFile, signatureFile string) error
 		return fmt.Errorf("artifact verification failed: %w", err)
 	}
 
-	fmt.Println("✅ Artifact signature is valid")
-	fmt.Printf("Artifact: %s\n", artifactFile)
-	fmt.Printf("Signed by key: %s\n", signature.KeyID)
-	fmt.Printf("Signature timestamp: %s\n", signature.Timestamp.Format("2006-01-02 15:04:05 MST"))
+	cmd.Println("✅ Artifact signature is valid")
+	cmd.Printf("Artifact: %s\n", artifactFile)
+	cmd.Printf("Signed by key: %s\n", signature.KeyID)
+	cmd.Printf("Signature timestamp: %s\n", signature.Timestamp.Format("2006-01-02 15:04:05 MST"))
 	return nil
 }

client/cmd/signer/main.go

@@ -1,7 +1,6 @@
 package main
 
 import (
-	"fmt"
 	"os"
 
 	"github.com/spf13/cobra"
@@ -16,7 +15,7 @@ root keys, artifact keys, and revocation lists securely.`,
 
 func main() {
 	if err := rootCmd.Execute(); err != nil {
-		fmt.Println(err)
+		rootCmd.Println(err)
 		os.Exit(1)
 	}
 }

client/cmd/signer/revocation.go

@@ -28,7 +28,7 @@ var createRevocationListCmd = &cobra.Command{
 	Short:        "Create a new revocation list signed by the private root key",
 	SilenceUsage: true,
 	RunE: func(cmd *cobra.Command, args []string) error {
-		return handleCreateRevocationList(revocationListFile, privateRootKeyFile)
+		return handleCreateRevocationList(cmd, revocationListFile, privateRootKeyFile)
 	},
 }
 
@@ -37,7 +37,7 @@ var extendRevocationListCmd = &cobra.Command{
 	Short:        "Extend an existing revocation list with a given key ID",
 	SilenceUsage: true,
 	RunE: func(cmd *cobra.Command, args []string) error {
-		return handleExtendRevocationList(keyID, revocationListFile, privateRootKeyFile)
+		return handleExtendRevocationList(cmd, keyID, revocationListFile, privateRootKeyFile)
 	},
 }
 
@@ -46,7 +46,7 @@ var verifyRevocationListCmd = &cobra.Command{
 	Short:        "Verify a revocation list signature using the public root key",
 	SilenceUsage: true,
 	RunE: func(cmd *cobra.Command, args []string) error {
-		return handleVerifyRevocationList(revocationListFile, signatureFile, publicRootKeyFile)
+		return handleVerifyRevocationList(cmd, revocationListFile, signatureFile, publicRootKeyFile)
 	},
 }
 
@@ -93,7 +93,7 @@ func init() {
 	}
 }
 
-func handleCreateRevocationList(revocationListFile string, privateRootKeyFile string) error {
+func handleCreateRevocationList(cmd *cobra.Command, revocationListFile string, privateRootKeyFile string) error {
 	privKeyPEM, err := os.ReadFile(privateRootKeyFile)
 	if err != nil {
 		return fmt.Errorf("failed to read private root key file: %w", err)
@@ -113,11 +113,11 @@ func handleCreateRevocationList(revocationListFile string, privateRootKeyFile st
 		return fmt.Errorf("failed to write output files: %w", err)
 	}
 
-	fmt.Println("✅ Revocation list created successfully")
+	cmd.Println("✅ Revocation list created successfully")
 	return nil
 }
 
-func handleExtendRevocationList(keyID, revocationListFile, privateRootKeyFile string) error {
+func handleExtendRevocationList(cmd *cobra.Command, keyID, revocationListFile, privateRootKeyFile string) error {
 	privKeyPEM, err := os.ReadFile(privateRootKeyFile)
 	if err != nil {
 		return fmt.Errorf("failed to read private root key file: %w", err)
@@ -152,11 +152,11 @@ func handleExtendRevocationList(keyID, revocationListFile, privateRootKeyFile st
 		return fmt.Errorf("failed to write output files: %w", err)
 	}
 
-	fmt.Println("✅ Revocation list extended successfully")
+	cmd.Println("✅ Revocation list extended successfully")
 	return nil
 }
 
-func handleVerifyRevocationList(revocationListFile, signatureFile, publicRootKeyFile string) error {
+func handleVerifyRevocationList(cmd *cobra.Command, revocationListFile, signatureFile, publicRootKeyFile string) error {
 	// Read revocation list file
 	rlBytes, err := os.ReadFile(revocationListFile)
 	if err != nil {
@@ -194,15 +194,15 @@ func handleVerifyRevocationList(revocationListFile, signatureFile, publicRootKey
 	}
 
 	// Display results
-	fmt.Println("✅ Revocation list signature is valid")
-	fmt.Printf("Last Updated: %s\n", rl.LastUpdated.Format(time.RFC3339))
-	fmt.Printf("Expires At: %s\n", rl.ExpiresAt.Format(time.RFC3339))
-	fmt.Printf("Number of revoked keys: %d\n", len(rl.Revoked))
+	cmd.Println("✅ Revocation list signature is valid")
+	cmd.Printf("Last Updated: %s\n", rl.LastUpdated.Format(time.RFC3339))
+	cmd.Printf("Expires At: %s\n", rl.ExpiresAt.Format(time.RFC3339))
+	cmd.Printf("Number of revoked keys: %d\n", len(rl.Revoked))
 
 	if len(rl.Revoked) > 0 {
-		fmt.Println("\nRevoked Keys:")
+		cmd.Println("\nRevoked Keys:")
 		for keyID, revokedTime := range rl.Revoked {
-			fmt.Printf("  - %s (revoked at: %s)\n", keyID, revokedTime.Format(time.RFC3339))
+			cmd.Printf("  - %s (revoked at: %s)\n", keyID, revokedTime.Format(time.RFC3339))
 		}
 	}
 

client/cmd/signer/rootkey.go

@@ -28,7 +28,7 @@ var createRootKeyCmd = &cobra.Command{
 		}
 
 		// Run main logic
-		if err := handleGenerateRootKey(privKeyFile, pubKeyFile, rootExpiration); err != nil {
+		if err := handleGenerateRootKey(cmd, privKeyFile, pubKeyFile, rootExpiration); err != nil {
 			return fmt.Errorf("failed to generate root key: %w", err)
 		}
 		return nil
@@ -52,7 +52,7 @@ func init() {
 	}
 }
 
-func handleGenerateRootKey(privKeyFile, pubKeyFile string, expiration time.Duration) error {
+func handleGenerateRootKey(cmd *cobra.Command, privKeyFile, pubKeyFile string, expiration time.Duration) error {
 	rk, privPEM, pubPEM, err := reposign.GenerateRootKey(expiration)
 	if err != nil {
 		return fmt.Errorf("generate root key: %w", err)
@@ -68,7 +68,7 @@ func handleGenerateRootKey(privKeyFile, pubKeyFile string, expiration time.Durat
 		return fmt.Errorf("write public key file (%s): %w", pubKeyFile, err)
 	}
 
-	fmt.Printf("%s\n\n", rk.String())
-	fmt.Printf("✅ Root key pair generated successfully.\n")
+	cmd.Printf("%s\n\n", rk.String())
+	cmd.Printf("✅ Root key pair generated successfully.\n")
 	return nil
 }