Merge branch 'RM-3765_cli_exclusive_group_fix' into 'master'

RM-3765: fix CLI exclusive arguments group usage

See merge request cdoc2/cdoc2-java-ref-impl!53

Author: OlesjaAarma

cdoc2-cli/src/main/java/ee/cyber/cdoc2/cli/DecryptionKeyExclusiveArgument.java

@@ -0,0 +1,56 @@
+package ee.cyber.cdoc2.cli;
+
+import picocli.CommandLine;
+
+import java.io.File;
+
+import ee.cyber.cdoc2.cli.util.CliConstants;
+import ee.cyber.cdoc2.cli.util.LabeledPasswordParam;
+import ee.cyber.cdoc2.cli.util.LabeledPasswordParamConverter;
+import ee.cyber.cdoc2.cli.util.LabeledSecretConverter;
+import ee.cyber.cdoc2.crypto.keymaterial.LabeledSecret;
+
+
+/**
+ * Optional group of mutually exclusive arguments, only one of the arguments in the group can
+ * appear on the command line
+ */
+public class DecryptionKeyExclusiveArgument {
+
+    @CommandLine.Option(names = {"-k", "--key"},
+        paramLabel = "PEM", description = "EC private key PEM used to decrypt")
+    private File privKeyFile;
+
+    @CommandLine.Option(names = {"-p12"},
+        paramLabel = ".p12", description = "Load private key from .p12 file (FILE.p12:password)")
+    private String p12;
+
+    @CommandLine.Option(names = {"-s", "--secret"}, paramLabel = "<label>:<secret>",
+        converter = LabeledSecretConverter.class,
+        description = CliConstants.SECRET_DESCRIPTION)
+    private LabeledSecret secret;
+
+    @CommandLine.Option(names = {"-pw", "--password"}, arity = "0..1",
+        converter = LabeledPasswordParamConverter.class,
+        paramLabel = "<label>:<password>", description = CliConstants.PASSWORD_DESCRIPTION)
+    // if empty --pw was provided labeledPasswordParam.isEmpty() is true
+    // if option was not provided then labeledPasswordParam is null
+    private LabeledPasswordParam labeledPasswordParam;
+
+    public File getPrivKeyFile() {
+        return this.privKeyFile;
+    }
+
+    public String getP12() {
+        return this.p12;
+    }
+
+    public LabeledSecret getSecret() {
+        return this.secret;
+    }
+
+    public LabeledPasswordParam getLabeledPasswordParam() {
+        return this.labeledPasswordParam;
+    }
+
+}

cdoc2-cli/src/main/java/ee/cyber/cdoc2/cli/commands/CDocDecryptCmd.java

@@ -1,10 +1,7 @@
 package ee.cyber.cdoc2.cli.commands;
 
-import ee.cyber.cdoc2.cli.util.LabeledPasswordParamConverter;
-import ee.cyber.cdoc2.cli.util.LabeledPasswordParam;
-import ee.cyber.cdoc2.cli.util.LabeledSecretConverter;
+import ee.cyber.cdoc2.cli.DecryptionKeyExclusiveArgument;
 import ee.cyber.cdoc2.crypto.keymaterial.DecryptionKeyMaterial;
-import ee.cyber.cdoc2.crypto.keymaterial.LabeledSecret;
 import picocli.CommandLine;
 import picocli.CommandLine.Command;
 import picocli.CommandLine.Option;
@@ -16,13 +13,14 @@
 
 import java.util.concurrent.Callable;
 
-import ee.cyber.cdoc2.cli.util.CliConstants;
 import ee.cyber.cdoc2.CDocDecrypter;
 import ee.cyber.cdoc2.client.KeyCapsuleClientFactory;
 
 import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getDecrypterWithFilesExtraction;
 import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getDecryptionKeyMaterial;
 import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getKeyCapsulesClientFactory;
+import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getSmartCardDecryptionKeyMaterial;
+
 
 //S106 Standard outputs should not be used directly to log anything
 //CLI needs to interact with standard outputs
@@ -36,30 +34,8 @@ public class CDocDecryptCmd implements Callable<Void> {
             paramLabel = "CDOC", description = "the CDOC2 file")
     private File cdocFile;
 
-    @CommandLine.ArgGroup(exclusive = true, multiplicity = "0..1")
-    Exclusive exclusive;
-
-    static class Exclusive {
-        @Option(names = {"-k", "--key"},
-                paramLabel = "PEM", description = "Private key PEM to use for decrypting")
-        private File privKeyFile;
-
-        @Option(names = {"-p12"},
-                paramLabel = ".p12", description = "Load private key from .p12 file (FILE.p12:password)")
-        private String p12;
-
-        @Option(names = {"-s", "--secret"}, paramLabel = "<label>:<secret>",
-                converter = LabeledSecretConverter.class,
-                description = CliConstants.SECRET_DESCRIPTION)
-        private LabeledSecret secret;
-
-        @Option(names = {"-pw", "--password"}, arity = "0..1",
-            converter = LabeledPasswordParamConverter.class,
-            paramLabel = "<label>:<password>", description = CliConstants.PASSWORD_DESCRIPTION)
-        // if empty --pw was provided labeledPasswordParam.isEmpty() is true
-        // if option was not provided then labeledPasswordParam is null
-        private LabeledPasswordParam labeledPasswordParam;
-    }
+    @CommandLine.ArgGroup
+    DecryptionKeyExclusiveArgument exclusive;
 
     @Option (names = {"--slot"},
             description = "Smart card key slot to use for decrypting. Default: 0")
@@ -103,15 +79,15 @@ public Void call() throws Exception {
             keyCapsulesClientFactory = getKeyCapsulesClientFactory(this.keyServerPropertiesFile);
         }
 
-        DecryptionKeyMaterial decryptionKeyMaterial = getDecryptionKeyMaterial(
-            this.cdocFile,
-            this.exclusive.labeledPasswordParam,
-            this.exclusive.secret,
-            this.exclusive.p12,
-            this.exclusive.privKeyFile,
-            this.slot,
-            this.keyAlias
-        );
+        DecryptionKeyMaterial decryptionKeyMaterial = (null == this.exclusive)
+            ? getSmartCardDecryptionKeyMaterial(this.slot, this.keyAlias)
+            : getDecryptionKeyMaterial(
+                this.cdocFile,
+                this.exclusive.getLabeledPasswordParam(),
+                this.exclusive.getSecret(),
+                this.exclusive.getP12(),
+                this.exclusive.getPrivKeyFile()
+            );
 
         CDocDecrypter cDocDecrypter = getDecrypterWithFilesExtraction(
             this.cdocFile,

cdoc2-cli/src/main/java/ee/cyber/cdoc2/cli/commands/CDocListCmd.java

@@ -1,14 +1,10 @@
 package ee.cyber.cdoc2.cli.commands;
 
-import ee.cyber.cdoc2.cli.util.LabeledPasswordParam;
-import ee.cyber.cdoc2.cli.util.LabeledPasswordParamConverter;
-import ee.cyber.cdoc2.cli.util.LabeledSecretConverter;
-import ee.cyber.cdoc2.cli.util.CliConstants;
+import ee.cyber.cdoc2.cli.DecryptionKeyExclusiveArgument;
 import ee.cyber.cdoc2.CDocDecrypter;
 import ee.cyber.cdoc2.client.KeyCapsuleClientFactory;
 import ee.cyber.cdoc2.client.KeyCapsuleClientImpl;
 import ee.cyber.cdoc2.crypto.keymaterial.DecryptionKeyMaterial;
-import ee.cyber.cdoc2.crypto.keymaterial.LabeledSecret;
 import ee.cyber.cdoc2.util.Resources;
 import java.io.File;
 import java.nio.file.InvalidPathException;
@@ -20,10 +16,14 @@
 import java.util.Properties;
 import java.util.concurrent.Callable;
 import org.apache.commons.compress.archivers.ArchiveEntry;
+
+import picocli.CommandLine;
 import picocli.CommandLine.Command;
 import picocli.CommandLine.Option;
 
 import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getDecryptionKeyMaterial;
+import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getSmartCardDecryptionKeyMaterial;
+
 
 //S106 Standard outputs should not be used directly to log anything
 //CLI needs to interact with standard outputs
@@ -34,25 +34,8 @@ public class CDocListCmd implements Callable<Void> {
             paramLabel = "CDOC", description = "the CDOC2 file")
     private File cdocFile;
 
-    @Option(names = {"-k", "--key"},
-            paramLabel = "PEM", description = "EC private key PEM used to decrypt")
-    private File privKeyFile;
-
-    @Option(names = {"-p12"},
-            paramLabel = ".p12", description = "Load private key from .p12 file (FILE.p12:password)")
-    private String p12;
-
-    @Option(names = {"-s", "--secret"},
-        paramLabel = "<label>:<secret>",
-        converter = LabeledSecretConverter.class,
-        description = CliConstants.SECRET_DESCRIPTION)
-    private LabeledSecret secret;
-
-    @Option(names = {"-pass", "--password"}, arity = "0..1",
-        paramLabel = "<label>:<password>",
-        converter = LabeledPasswordParamConverter.class,
-        description = CliConstants.PASSWORD_DESCRIPTION)
-    private LabeledPasswordParam labeledPasswordParam;
+    @CommandLine.ArgGroup
+    DecryptionKeyExclusiveArgument exclusive;
 
     @Option (names = {"--slot"},
             description = "Key from smartcard slot used for decrypting. Default 0")
@@ -93,14 +76,14 @@ public Void call() throws Exception {
             keyCapsulesClient = KeyCapsuleClientImpl.createFactory(p);
         }
 
-        DecryptionKeyMaterial decryptionKeyMaterial = getDecryptionKeyMaterial(
+        DecryptionKeyMaterial decryptionKeyMaterial = (null == this.exclusive)
+            ? getSmartCardDecryptionKeyMaterial(this.slot, this.keyAlias)
+            : getDecryptionKeyMaterial(
             this.cdocFile,
-            this.labeledPasswordParam,
-            this.secret,
-            this.p12,
-            this.privKeyFile,
-            this.slot,
-            this.keyAlias
+            this.exclusive.getLabeledPasswordParam(),
+            this.exclusive.getSecret(),
+            this.exclusive.getP12(),
+            this.exclusive.getPrivKeyFile()
         );
 
         CDocDecrypter cDocDecrypter = new CDocDecrypter()

cdoc2-cli/src/main/java/ee/cyber/cdoc2/cli/commands/CDocReEncryptCmd.java

@@ -1,5 +1,6 @@
 package ee.cyber.cdoc2.cli.commands;
 
+import ee.cyber.cdoc2.cli.DecryptionKeyExclusiveArgument;
 import ee.cyber.cdoc2.cli.util.InteractiveCommunicationUtil;
 import ee.cyber.cdoc2.cli.util.LabeledPasswordParamConverter;
 import ee.cyber.cdoc2.cli.util.LabeledPasswordParam;
@@ -26,6 +27,7 @@
 
 import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getDecryptionKeyMaterial;
 import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getKeyCapsulesClientFactory;
+import static ee.cyber.cdoc2.cli.util.CDocDecryptionHelper.getSmartCardDecryptionKeyMaterial;
 
 
 //S106 Standard outputs should not be used directly to log anything
@@ -40,30 +42,9 @@ public class CDocReEncryptCmd implements Callable<Void> {
     @CommandLine.Option(names = {"-f", "--file" }, required = true,
         paramLabel = "CDOC", description = "the CDOC2 file")
     private File cdocFile;
-    @CommandLine.ArgGroup(exclusive = true, multiplicity = "0..1")
-    Exclusive exclusive;
-
-    static class Exclusive {
-        @CommandLine.Option(names = {"-k", "--key"},
-            paramLabel = "PEM", description = "Private key PEM to use for decrypting")
-        private File privKeyFile;
-
-        @CommandLine.Option(names = {"-p12"},
-            paramLabel = ".p12", description = "Load private key from .p12 file (FILE.p12:password)")
-        private String p12;
-
-        @CommandLine.Option(names = {"-s", "--secret"}, paramLabel = "<label>:<secret>",
-            converter = LabeledSecretConverter.class,
-            description = CliConstants.SECRET_DESCRIPTION
-                + ". Used to decrypt existing CDOC container.")
-        private LabeledSecret secret;
-
-        @CommandLine.Option(names = {"-pw", "--password"}, arity = "0..1",
-            converter = LabeledPasswordParamConverter.class,
-            paramLabel = "<label>:<password>",
-            description = CliConstants.PASSWORD_DESCRIPTION + ". Used to decrypt existing CDOC container.")
-        private LabeledPasswordParam password;
-    }
+
+    @CommandLine.ArgGroup
+    DecryptionKeyExclusiveArgument exclusive;
 
     @CommandLine.Option(names = {"-encpw", "--encpassword"}, arity = "0..1",
         converter = LabeledPasswordParamConverter.class,
@@ -76,7 +57,6 @@ static class Exclusive {
         description = CliConstants.SECRET_DESCRIPTION + ". Used for re-encryption part.")
     private LabeledSecret reEncryptSecret;
 
-
     @CommandLine.Option(names = {"--slot"},
         description = "Smart card key slot to use for decrypting. Default: 0")
     private Integer slot = 0;
@@ -111,14 +91,14 @@ public Void call() throws Exception {
             throw new InvalidPathException(this.cdocFile.getAbsolutePath(), "Input CDOC file does not exist");
         }
 
-        DecryptionKeyMaterial decryptionKeyMaterial = getDecryptionKeyMaterial(
+        DecryptionKeyMaterial decryptionKeyMaterial = (null == this.exclusive)
+            ? getSmartCardDecryptionKeyMaterial(this.slot, this.keyAlias)
+            : getDecryptionKeyMaterial(
             this.cdocFile,
-            this.exclusive.password,
-            this.exclusive.secret,
-            this.exclusive.p12,
-            this.exclusive.privKeyFile,
-            this.slot,
-            this.keyAlias
+            this.exclusive.getLabeledPasswordParam(),
+            this.exclusive.getSecret(),
+            this.exclusive.getP12(),
+            this.exclusive.getPrivKeyFile()
         );
 
         KeyCapsuleClientFactory keyCapsulesClientFactory = null;