mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
34358 Commits
59 Branches
Tree: 27fb5c0e4f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '27fb5c0e4f'
${ noResults }
sonarqube/sonar-core/src/test/java/org/sonar/core/sarif/SarifSerializerImplTest.java

SarifSerializerImplTest.java 6.7KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2023 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.core.sarif;

  21. 

  22. import java.net.URISyntaxException;

  23. import java.net.URL;

  24. import java.nio.file.NoSuchFileException;

  25. import java.nio.file.Path;

  26. import java.nio.file.Paths;

  27. import java.util.Set;

  28. import org.junit.Test;

  29. import org.junit.runner.RunWith;

  30. import org.mockito.junit.MockitoJUnitRunner;

  31. 

  32. import static java.lang.String.format;

  33. import static java.util.Objects.requireNonNull;

  34. import static org.assertj.core.api.Assertions.assertThat;

  35. import static org.assertj.core.api.Assertions.assertThatThrownBy;

  36. import static org.assertj.core.api.Assertions.fail;

  37. import static org.sonar.core.sarif.SarifVersionValidator.UNSUPPORTED_VERSION_MESSAGE_TEMPLATE;

  38. 

  39. @RunWith(MockitoJUnitRunner.class)

  40. public class SarifSerializerImplTest {

  41. 

  42.   private static final String SARIF_JSON = "{\"version\":\"2.1.0\",\"$schema\":\"http://json.schemastore.org/sarif-2.1.0-rtm.4\",\"runs\":[{\"results\":[]}]}";

  43. 

  44.   private final SarifSerializerImpl serializer = new SarifSerializerImpl();

  45. 

  46.   @Test

  47.   public void serialize() {

  48.     Run.builder().results(Set.of()).build();

  49.     Sarif210 sarif210 = new Sarif210("http://json.schemastore.org/sarif-2.1.0-rtm.4", Run.builder().results(Set.of()).build());

  50. 

  51.     String result = serializer.serialize(sarif210);

  52. 

  53.     assertThat(result).isEqualTo(SARIF_JSON);

  54.   }

  55. 

  56.   @Test

  57.   public void deserialize() throws URISyntaxException, NoSuchFileException {

  58.     URL sarifResource = requireNonNull(getClass().getResource("eslint-sarif210.json"));

  59.     Path sarif = Paths.get(sarifResource.toURI());

  60. 

  61.     Sarif210 deserializationResult = serializer.deserialize(sarif);

  62. 

  63.     verifySarif(deserializationResult);

  64.   }

  65. 

  66.   @Test

  67.   public void deserialize_shouldFail_whenFileCantBeFound() {

  68.     String file = "wrongPathToFile";

  69.     Path sarif = Paths.get(file);

  70. 

  71.     assertThatThrownBy(() -> serializer.deserialize(sarif))

  72.       .isInstanceOf(NoSuchFileException.class);

  73.   }

  74. 

  75.   @Test

  76.   public void deserialize_shouldFail_whenJsonSyntaxIsIncorrect() throws URISyntaxException {

  77.     URL sarifResource = requireNonNull(getClass().getResource("invalid-json-syntax.json"));

  78.     Path sarif = Paths.get(sarifResource.toURI());

  79. 

  80.     assertThatThrownBy(() -> serializer.deserialize(sarif))

  81.       .isInstanceOf(IllegalStateException.class)

  82.       .hasMessage(format("Failed to read SARIF report at '%s': invalid JSON syntax or file is not UTF-8 encoded", sarif));

  83.   }

  84. 

  85.   @Test

  86.   public void deserialize_whenFileIsNotUtf8encoded_shouldFail() throws URISyntaxException {

  87.     URL sarifResource = requireNonNull(getClass().getResource("sarif210-nonUtf8.json"));

  88.     Path sarif = Paths.get(sarifResource.toURI());

  89. 

  90.     assertThatThrownBy(() -> serializer.deserialize(sarif))

  91.       .isInstanceOf(IllegalStateException.class)

  92.       .hasMessage(format("Failed to read SARIF report at '%s': invalid JSON syntax or file is not UTF-8 encoded", sarif));

  93.   }

  94. 

  95.   @Test

  96.   public void deserialize_shouldFail_whenSarifVersionIsNotSupported() throws URISyntaxException {

  97.     URL sarifResource = requireNonNull(getClass().getResource("unsupported-sarif-version-abc.json"));

  98.     Path sarif = Paths.get(sarifResource.toURI());

  99. 

  100.     assertThatThrownBy(() -> serializer.deserialize(sarif))

  101.       .isInstanceOf(IllegalStateException.class)

  102.       .hasMessage(format(UNSUPPORTED_VERSION_MESSAGE_TEMPLATE, "A.B.C"));

  103.   }

  104. 

  105.   private void verifySarif(Sarif210 deserializationResult) {

  106.     Sarif210 expected = buildExpectedSarif210();

  107. 

  108.     assertThat(deserializationResult).isNotNull();

  109.     assertThat(deserializationResult).usingRecursiveComparison().ignoringFields("runs").isEqualTo(expected);

  110. 

  111.     Run run = getRun(deserializationResult);

  112.     Run expectedRun = getRun(expected);

  113.     assertThat(run).usingRecursiveComparison().ignoringFields("results", "tool.driver.rules").isEqualTo(expectedRun);

  114. 

  115.     Result result = getResult(run);

  116.     Result expectedResult = getResult(expectedRun);

  117.     assertThat(result).usingRecursiveComparison().isEqualTo(expectedResult);

  118. 

  119.     Rule rule = getRule(run);

  120.     Rule expectedRule = getRule(expectedRun);

  121.     assertThat(rule).usingRecursiveComparison().ignoringFields("properties").isEqualTo(expectedRule);

  122.   }

  123. 

  124.   private static Sarif210 buildExpectedSarif210() {

  125.     return new Sarif210("http://json.schemastore.org/sarif-2.1.0-rtm.4", buildExpectedRun());

  126.   }

  127. 

  128.   private static Run buildExpectedRun() {

  129.     Tool tool = new Tool(buildExpectedDriver());

  130.     return Run.builder()

  131.       .tool(tool)

  132.       .results(Set.of(buildExpectedResult())).build();

  133.   }

  134. 

  135.   private static Driver buildExpectedDriver() {

  136.     return Driver.builder()

  137.       .name("ESLint")

  138.       .rules(Set.of(buildExpectedRule()))

  139.       .build();

  140.   }

  141. 

  142.   private static Rule buildExpectedRule() {

  143.     return Rule.builder()

  144.       .id("no-unused-vars")

  145.       .shortDescription("disallow unused variables")

  146.       .build();

  147.   }

  148. 

  149.   private static Result buildExpectedResult() {

  150.     return Result.builder()

  151.       .ruleId("no-unused-vars")

  152.       .locations(Set.of(buildExpectedLocation()))

  153.       .message("'x' is assigned a value but never used.")

  154.       .level("error")

  155.       .build();

  156.   }

  157. 

  158.   private static Location buildExpectedLocation() {

  159.     ArtifactLocation artifactLocation = new ArtifactLocation(null, "file:///C:/dev/sarif/sarif-tutorials/samples/Introduction/simple-example.js");

  160.     PhysicalLocation physicalLocation = PhysicalLocation.of(artifactLocation, buildExpectedRegion());

  161.     return Location.of(physicalLocation);

  162.   }

  163. 

  164.   private static Region buildExpectedRegion() {

  165.     return Region.builder()

  166.       .startLine(1)

  167.       .startColumn(5)

  168.       .build();

  169.   }

  170. 

  171.   private static Run getRun(Sarif210 sarif210) {

  172.     return sarif210.getRuns().stream().findFirst().orElseGet(() -> fail("runs property is missing"));

  173.   }

  174. 

  175.   private static Result getResult(Run run) {

  176.     return run.getResults().stream().findFirst().orElseGet(() -> fail("results property is missing"));

  177.   }

  178. 

  179.   private static Rule getRule(Run run) {

  180.     return run.getTool().getDriver().getRules().stream().findFirst().orElseGet(() -> fail("rules property is missing"));

  181.   }

  182. 

  183. }