Restructure qmctl

[ArtiomDivak]

This MR refactors the qmctl file to improve its structure, making it easier to add new commands and debug in the future. The new design is heavily inspired by the clean, command-based architecture of the "ramalama" project, aiming for a more organized and maintainable codebase.

closes #838

Summary by Sourcery

Restructure qmctl into a modular command-based architecture inspired by ramalama to improve maintainability and facilitate adding new commands and debugging

Enhancements:

• Refactor qmctl to separate command definitions from execution logic for clearer organization
• Adopt a command-based design that simplifies adding new subcommands and debugging
• Align code structure with ramalama-inspired architecture for better readability and maintainability

Chores:

• Update .gitignore to reflect new project structure

[sourcery-ai]

Reviewer's Guide

This MR refactors the monolithic qmctl tool into a clean, command-based architecture inspired by the ramalama project, modularizing command handlers and streamlining the main dispatch logic for easier extension and debugging.

File-Level Changes

Change	Details	Files
Introduce a Command abstraction and registry	Define a Command interface with Execute and Help methods Create a central registry (map) of command names to handlers Move dispatch logic out of a switch into a generic lookup/execute flow	tools/qmctl/qmctl
Modularize individual commands into separate handlers	Extract each subcommand (e.g., create, delete, list) into its own handler struct Register handlers in init or setup method Remove inline command logic from the main file	tools/qmctl/qmctl
Centralize flag parsing and help output	Unify flag definitions for all commands Implement a generic help command that lists available subcommands Ensure each handler provides its own usage text	tools/qmctl/qmctl
Standardize error handling and logging	Return error objects from Execute and handle centrally in main Log errors with consistent formatting and exit codes Remove ad-hoc print statements spread across command code	tools/qmctl/qmctl
Update ignore rules for new build artifacts	Add qmctl binary to .gitignore Ignore temporary files generated during build	.gitignore

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it. You can also reply to a
  review comment with @sourcery-ai issue to create an issue from it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time. You can also comment
  @sourcery-ai title on the pull request to (re-)generate the title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time exactly where you
  want it. You can also comment @sourcery-ai summary on the pull request to
  (re-)generate the summary at any time.
• Generate reviewer's guide: Comment @sourcery-ai guide on the pull
  request to (re-)generate the reviewer's guide at any time.
• Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
  pull request to resolve all Sourcery comments. Useful if you've already
  addressed all the comments and don't want to see them anymore.
• Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
  request to dismiss all existing Sourcery reviews. Especially useful if you
  want to start fresh with a new review - don't forget to comment
  @sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

[sourcery-ai]

Hey @ArtiomDivak - I've reviewed your changes - here's some feedback:

Blocking issues:

• Detected subprocess function 'run' without a static string. If this data can be controlled by a malicious actor, it may be an instance of command injection. Audit the use of this call to ensure it is not controllable by an external resource. You may consider using 'shlex.escape()'. (link)
• Detected subprocess function 'run' without a static string. If this data can be controlled by a malicious actor, it may be an instance of command injection. Audit the use of this call to ensure it is not controllable by an external resource. You may consider using 'shlex.escape()'. (link)
• Detected subprocess function 'run' without a static string. If this data can be controlled by a malicious actor, it may be an instance of command injection. Audit the use of this call to ensure it is not controllable by an external resource. You may consider using 'shlex.escape()'. (link)

General comments:

• Factor out the repeated container-exists and argument-validation logic into a decorator or helper to DRY up the multiple exec_* and show_* methods.
• Replace the scattered sys.exit(1) calls by raising custom exceptions in command handlers and handling them centrally in the CLI entrypoint to simplify control flow.
• Consider breaking each command into its own module or class rather than growing a single monolithic QMCTL class to better align with the intended clean, command-based architecture.

Here's what I looked at during the review

• 🟡 General issues: 1 issue found
• 🔴 Security: 3 blocking issues
• 🟢 Testing: all looks good
• 🟢 Complexity: all looks good
• 🟢 Documentation: all looks good

---

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

[sourcery-ai]

Hey @ArtiomDivak - I've reviewed your changes and they look great!

Blocking issues:

• Detected subprocess function 'run' without a static string. If this data can be controlled by a malicious actor, it may be an instance of command injection. Audit the use of this call to ensure it is not controllable by an external resource. You may consider using 'shlex.escape()'. (link)
• Detected subprocess function 'run' without a static string. If this data can be controlled by a malicious actor, it may be an instance of command injection. Audit the use of this call to ensure it is not controllable by an external resource. You may consider using 'shlex.escape()'. (link)
• Detected subprocess function 'run' without a static string. If this data can be controlled by a malicious actor, it may be an instance of command injection. Audit the use of this call to ensure it is not controllable by an external resource. You may consider using 'shlex.escape()'. (link)
• Detected subprocess function 'run' without a static string. If this data can be controlled by a malicious actor, it may be an instance of command injection. Audit the use of this call to ensure it is not controllable by an external resource. You may consider using 'shlex.escape()'. (link)

Here's what I looked at during the review

• 🟢 General issues: all looks good
• 🔴 Security: 4 blocking issues
• 🟢 Testing: all looks good
• 🟢 Complexity: all looks good
• 🟢 Documentation: all looks good

---

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

[Yarboa]

@ArtiomDivak Did you try to run the tests through tmt locally?
Please refer that one all tier-0 testing are failing due to the changes

qm/tests/e2e/README.md

Line 139 in daec692

Refer [FMF](https://fmf.readthedocs.io/en/stable) for tmt test metadata specification

[engelmi]

Added a few comments.
This PR is quite big, so I am not sure if it would be better to split it.

[dougsland]

please keep the license

[ArtiomDivak]

Added the licence Thank you

[engelmi]

Please remove the __pycache__ (and maybe add it to .gitignore)

[dougsland]

@ArtiomDivak ready for review?

[ArtiomDivak]

Yes its ready for review

[engelmi]

LGTM, great work!

[engelmi]

@sourcery-ai review

[engelmi]

@dougsland PR lgtm, PTAL as well

[sourcery-ai]

Hey @ArtiomDivak - I've reviewed your changes and they look great!

---

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

[dougsland]

@ArtiomDivak @engelmi I have few comments that can be addressed later, for example.

1. we need a --help that show example of real commands. Example, cp needs "qm:"
2. don't raise errors to users, some don't understand the ValidationError output, better add some text only message.

./qmctl cp l a
Traceback (most recent call last):
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1057, in <module>
    main()
    ~~~~^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1053, in main
    run_command_with_error_handling(args, controller, parser)
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 762, in run_command_with_error_handling
    args.func(args, controller)
    ~~~~~~~~~^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1038, in handle_cp_command
    controller.copy_in_container(
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~^
        paths=args.paths, output_json=args.json, pretty=True
        ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    )
    ^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 564, in copy_in_container
    src, dst = self._validate_paths_for_cp(paths)
               ~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 172, in _validate_paths_for_cp
    raise ValidationError(
        f"Provide `{self.container}:` only in source or destination"
    )
ValidationError: Provide `qm:` only in source or destination

 ./qmctl exec
Traceback (most recent call last):
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1057, in <module>
    main()
    ~~~~^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1053, in main
    run_command_with_error_handling(args, controller, parser)
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 762, in run_command_with_error_handling
    args.func(args, controller)
    ~~~~~~~~~^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1014, in handle_exec_command
    controller.exec_in_container(
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~^
        command=args.cmd, output_json=args.json, pretty=True
        ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    )
    ^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 534, in exec_in_container
    self._validate_command_provided(
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^
        command,
        ^^^^^^^^
        "No command provided to execute in the container."
        ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    )
    ^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 160, in _validate_command_provided
    raise ValidationError(f"No command provided{context_msg}.")
ValidationError: No command provided No command provided to execute in the container..

 ./qmctl execin
Traceback (most recent call last):
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1057, in <module>
    main()
    ~~~~^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1053, in main
    run_command_with_error_handling(args, controller, parser)
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 762, in run_command_with_error_handling
    args.func(args, controller)
    ~~~~~~~~~^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1026, in handle_execin_command
    controller.execin_in_container(
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^
        command=args.cmd, output_json=args.json, pretty=True
        ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    )
    ^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 594, in execin_in_container
    self._validate_exec_command(command)
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 180, in _validate_exec_command
    self._validate_command_provided(command, "to execute in container")
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 160, in _validate_command_provided
    raise ValidationError(f"No command provided{context_msg}.")
ValidationError: No command provided to execute in container.

# ./qmctl execin ls
Traceback (most recent call last):
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1057, in <module>
    main()
    ~~~~^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1053, in main
    run_command_with_error_handling(args, controller, parser)
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 762, in run_command_with_error_handling
    args.func(args, controller)
    ~~~~~~~~~^^^^^^^^^^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 1026, in handle_execin_command
    controller.execin_in_container(
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^
        command=args.cmd, output_json=args.json, pretty=True
        ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    )
    ^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 594, in execin_in_container
    self._validate_exec_command(command)
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^
  File "/root/artiom/qm/tools/qmctl/./qmctl", line 183, in _validate_exec_command
    raise ValidationError("No command provided to execute.")

[dougsland]

@ArtiomDivak great stuff, I have created:
#866
#865