Import.java
/*
* SPDX-FileCopyrightText: none
* SPDX-License-Identifier: CC0-1.0
*/
package gov.nist.secauto.oscal.lib.profile.resolver.selection;
import com.fasterxml.jackson.core.Version;
import com.fasterxml.jackson.core.util.VersionUtil;
import gov.nist.secauto.metaschema.core.metapath.item.node.IAssemblyNodeItem;
import gov.nist.secauto.metaschema.core.metapath.item.node.IDocumentNodeItem;
import gov.nist.secauto.metaschema.core.metapath.item.node.INodeItem;
import gov.nist.secauto.metaschema.core.metapath.item.node.IRootAssemblyNodeItem;
import gov.nist.secauto.metaschema.core.util.CollectionUtil;
import gov.nist.secauto.metaschema.core.util.ObjectUtils;
import gov.nist.secauto.oscal.lib.model.BackMatter;
import gov.nist.secauto.oscal.lib.model.BackMatter.Resource;
import gov.nist.secauto.oscal.lib.model.Catalog;
import gov.nist.secauto.oscal.lib.model.CatalogGroup;
import gov.nist.secauto.oscal.lib.model.Control;
import gov.nist.secauto.oscal.lib.model.Metadata;
import gov.nist.secauto.oscal.lib.model.Metadata.Location;
import gov.nist.secauto.oscal.lib.model.Metadata.Party;
import gov.nist.secauto.oscal.lib.model.Metadata.Role;
import gov.nist.secauto.oscal.lib.model.Parameter;
import gov.nist.secauto.oscal.lib.model.ProfileImport;
import gov.nist.secauto.oscal.lib.profile.resolver.ProfileResolutionEvaluationException;
import gov.nist.secauto.oscal.lib.profile.resolver.ProfileResolutionException;
import gov.nist.secauto.oscal.lib.profile.resolver.policy.ReferenceCountingVisitor;
import gov.nist.secauto.oscal.lib.profile.resolver.support.BasicIndexer;
import gov.nist.secauto.oscal.lib.profile.resolver.support.IEntityItem;
import gov.nist.secauto.oscal.lib.profile.resolver.support.IIndexer;
import java.net.URI;
import java.util.LinkedList;
import java.util.List;
import java.util.stream.Collectors;
import edu.umd.cs.findbugs.annotations.NonNull;
public class Import {
@NonNull
private final IRootAssemblyNodeItem profile;
@NonNull
private final IAssemblyNodeItem profileImportItem;
public Import(
@NonNull IRootAssemblyNodeItem profile,
@NonNull IAssemblyNodeItem profileImportItem) {
this.profile = profile;
this.profileImportItem = profileImportItem;
}
protected IRootAssemblyNodeItem getProfileItem() {
return profile;
}
protected IAssemblyNodeItem getProfileImportItem() {
return profileImportItem;
}
@NonNull
protected ProfileImport getProfileImport() {
return ObjectUtils.requireNonNull((ProfileImport) profileImportItem.getValue());
}
private static Catalog toCatalog(@NonNull IDocumentNodeItem catalogDocument) {
return (Catalog) INodeItem.toValue(catalogDocument);
}
@NonNull
protected IControlFilter newControlFilter() {
return IControlFilter.newInstance(getProfileImport());
}
@NonNull
protected IIndexer newIndexer() {
// TODO: add support for reassignment
// IIdentifierMapper mapper = IIdentifierMapper.IDENTITY;
// IIndexer indexer = new ReassignmentIndexer(mapper);
return new BasicIndexer();
}
@NonNull
public IIndexer resolve(@NonNull IDocumentNodeItem importedCatalogDocument, @NonNull Catalog resolvedCatalog)
throws ProfileResolutionException {
ProfileImport profileImport = getProfileImport();
URI uri = ObjectUtils.requireNonNull(profileImport.getHref(), "profile import href is null");
// determine which controls and groups to keep
IControlFilter filter = newControlFilter();
IIndexer indexer = newIndexer();
IControlSelectionState state = new ControlSelectionState(indexer, filter);
try {
ControlSelectionVisitor.instance().visitCatalog(importedCatalogDocument, state);
// process references
ReferenceCountingVisitor.instance().visitCatalog(importedCatalogDocument, indexer, uri);
// filter based on selections
FilterNonSelectedVisitor.instance().visitCatalog(importedCatalogDocument, indexer);
} catch (ProfileResolutionEvaluationException ex) {
throw new ProfileResolutionException(
String.format("Import: Unable to resolve profile import '%s'. %s", uri.toString(), ex.getMessage()), ex);
}
Catalog importedCatalog = toCatalog(importedCatalogDocument);
for (Parameter param : CollectionUtil.listOrEmpty(importedCatalog.getParams())) {
if (param != null) {
resolvedCatalog.addParam(param);
}
}
for (Control control : CollectionUtil.listOrEmpty(importedCatalog.getControls())) {
if (control != null) {
resolvedCatalog.addControl(control);
}
}
for (CatalogGroup group : CollectionUtil.listOrEmpty(importedCatalog.getGroups())) {
if (group != null) {
resolvedCatalog.addGroup(group);
}
}
generateMetadata(importedCatalogDocument, resolvedCatalog, indexer);
generateBackMatter(importedCatalogDocument, resolvedCatalog, indexer);
return indexer;
}
private static void generateMetadata(
@NonNull IDocumentNodeItem importedCatalogDocument,
@NonNull Catalog resolvedCatalog,
@NonNull IIndexer indexer) {
Metadata importedMetadata = toCatalog(importedCatalogDocument).getMetadata();
if (importedMetadata != null) {
Metadata resolvedMetadata = resolvedCatalog.getMetadata();
if (resolvedMetadata == null) {
resolvedMetadata = new Metadata();
resolvedCatalog.setMetadata(resolvedMetadata);
}
resolveMetadata(importedMetadata, resolvedMetadata, indexer);
}
}
private static void resolveMetadata(
@NonNull Metadata imported,
@NonNull Metadata resolved,
@NonNull IIndexer indexer) {
String importedVersion = imported.getOscalVersion();
if (importedVersion != null) {
Version importOscalVersion = VersionUtil.parseVersion(importedVersion, null, null);
Version resolvedCatalogVersion
= VersionUtil.parseVersion(resolved.getOscalVersion(), null, null);
if (importOscalVersion.compareTo(resolvedCatalogVersion) > 0) {
resolved.setOscalVersion(importOscalVersion.toString());
}
}
// copy roles, parties, and locations with prop name:keep and any referenced
resolved.setRoles(
IIndexer.filterDistinct(
ObjectUtils.notNull(CollectionUtil.listOrEmpty(resolved.getRoles()).stream()),
indexer.getEntitiesByItemType(IEntityItem.ItemType.ROLE),
Role::getId)
.collect(Collectors.toCollection(LinkedList::new)));
resolved.setParties(
IIndexer.filterDistinct(
ObjectUtils.notNull(CollectionUtil.listOrEmpty(resolved.getParties()).stream()),
indexer.getEntitiesByItemType(IEntityItem.ItemType.PARTY),
Party::getUuid)
.collect(Collectors.toCollection(LinkedList::new)));
resolved.setLocations(
IIndexer.filterDistinct(
ObjectUtils.notNull(CollectionUtil.listOrEmpty(resolved.getLocations()).stream()),
indexer.getEntitiesByItemType(IEntityItem.ItemType.LOCATION),
Location::getUuid)
.collect(Collectors.toCollection(LinkedList::new)));
}
@SuppressWarnings("PMD.AvoidDeeplyNestedIfStmts") // not worth a function call
private static void generateBackMatter(
@NonNull IDocumentNodeItem importedCatalogDocument,
@NonNull Catalog resolvedCatalog,
@NonNull IIndexer indexer) {
BackMatter importedBackMatter = toCatalog(importedCatalogDocument).getBackMatter();
if (importedBackMatter != null) {
BackMatter resolvedBackMatter = resolvedCatalog.getBackMatter();
List<Resource> resolvedResources = resolvedBackMatter == null ? CollectionUtil.emptyList()
: CollectionUtil.listOrEmpty(resolvedBackMatter.getResources());
List<Resource> resources = IIndexer.filterDistinct(
ObjectUtils.notNull(resolvedResources.stream()),
indexer.getEntitiesByItemType(IEntityItem.ItemType.RESOURCE),
Resource::getUuid)
.collect(Collectors.toCollection(LinkedList::new));
if (!resources.isEmpty()) {
if (resolvedBackMatter == null) {
resolvedBackMatter = new BackMatter();
resolvedCatalog.setBackMatter(resolvedBackMatter);
}
resolvedBackMatter.setResources(resources);
}
}
}
}