XmlSchemaContentValidator.java

  1. /*
  2.  * Portions of this software was developed by employees of the National Institute
  3.  * of Standards and Technology (NIST), an agency of the Federal Government and is
  4.  * being made available as a public service. Pursuant to title 17 United States
  5.  * Code Section 105, works of NIST employees are not subject to copyright
  6.  * protection in the United States. This software may be subject to foreign
  7.  * copyright. Permission in the United States and in foreign countries, to the
  8.  * extent that NIST may hold copyright, to use, copy, modify, create derivative
  9.  * works, and distribute this software and its documentation without fee is hereby
  10.  * granted on a non-exclusive basis, provided that this notice and disclaimer
  11.  * of warranty appears in all copies.
  12.  *
  13.  * THE SOFTWARE IS PROVIDED 'AS IS' WITHOUT ANY WARRANTY OF ANY KIND, EITHER
  14.  * EXPRESSED, IMPLIED, OR STATUTORY, INCLUDING, BUT NOT LIMITED TO, ANY WARRANTY
  15.  * THAT THE SOFTWARE WILL CONFORM TO SPECIFICATIONS, ANY IMPLIED WARRANTIES OF
  16.  * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND FREEDOM FROM
  17.  * INFRINGEMENT, AND ANY WARRANTY THAT THE DOCUMENTATION WILL CONFORM TO THE
  18.  * SOFTWARE, OR ANY WARRANTY THAT THE SOFTWARE WILL BE ERROR FREE.  IN NO EVENT
  19.  * SHALL NIST BE LIABLE FOR ANY DAMAGES, INCLUDING, BUT NOT LIMITED TO, DIRECT,
  20.  * INDIRECT, SPECIAL OR CONSEQUENTIAL DAMAGES, ARISING OUT OF, RESULTING FROM,
  21.  * OR IN ANY WAY CONNECTED WITH THIS SOFTWARE, WHETHER OR NOT BASED UPON WARRANTY,
  22.  * CONTRACT, TORT, OR OTHERWISE, WHETHER OR NOT INJURY WAS SUSTAINED BY PERSONS OR
  23.  * PROPERTY OR OTHERWISE, AND WHETHER OR NOT LOSS WAS SUSTAINED FROM, OR AROSE OUT
  24.  * OF THE RESULTS OF, OR USE OF, THE SOFTWARE OR SERVICES PROVIDED HEREUNDER.
  25.  */

  27. package gov.nist.secauto.metaschema.core.model.validation;

  29. import gov.nist.secauto.metaschema.core.model.constraint.IConstraint.Level;
  30. import gov.nist.secauto.metaschema.core.util.ObjectUtils;

  32. import org.xml.sax.ErrorHandler;
  33. import org.xml.sax.SAXException;
  34. import org.xml.sax.SAXParseException;

  36. import java.io.IOException;
  37. import java.io.InputStream;
  38. import java.net.URI;
  39. import java.util.Collections;
  40. import java.util.LinkedList;
  41. import java.util.List;

  43. import javax.xml.XMLConstants;
  44. import javax.xml.transform.Source;
  45. import javax.xml.transform.stream.StreamSource;
  46. import javax.xml.validation.Schema;
  47. import javax.xml.validation.SchemaFactory;
  48. import javax.xml.validation.Validator;

  50. import edu.umd.cs.findbugs.annotations.NonNull;

  52. public class XmlSchemaContentValidator
  53.     extends AbstractContentValidator {
  54.   private final Schema schema;

  56.   @SuppressWarnings("null")
  57.   @NonNull
  58.   private static Schema toSchema(@NonNull List<? extends Source> schemaSources) throws SAXException {
  59.     SchemaFactory schemafactory = SchemaFactory.newInstance(XMLConstants.W3C_XML_SCHEMA_NS_URI);
  60.     // schemafactory.setResourceResolver(new ClasspathResourceResolver());
  61.     Schema retval;
  62.     if (schemaSources.isEmpty()) {
  63.       retval = schemafactory.newSchema();
  64.     } else {
  65.       retval = schemafactory.newSchema(schemaSources.toArray(new Source[0]));
  66.     }

  68.     // TODO verify source input streams are closed
  69.     return retval;
  70.   }

  72.   public XmlSchemaContentValidator(@NonNull List<? extends Source> schemaSources) throws SAXException {
  73.     this(toSchema(ObjectUtils.requireNonNull(schemaSources, "schemaSources")));
  74.   }

  76.   protected XmlSchemaContentValidator(@NonNull Schema schema) {
  77.     this.schema = ObjectUtils.requireNonNull(schema, "schema");
  78.   }

  80.   public Schema getSchema() {
  81.     return schema;
  82.   }

  84.   @Override
  85.   public IValidationResult validate(InputStream is, URI documentUri) throws IOException {
  86.     Source xmlSource = new StreamSource(is, documentUri.toASCIIString());

  88.     Validator validator = schema.newValidator();
  89.     XmlValidationErrorHandler errorHandler = new XmlValidationErrorHandler(documentUri);
  90.     validator.setErrorHandler(errorHandler);
  91.     try {
  92.       validator.validate(xmlSource);
  93.     } catch (SAXException ex) {
  94.       throw new IOException(String.format("Unexpected failure during validation of '%s'", documentUri), ex);
  95.     }
  96.     return errorHandler;
  97.   }

  99.   public static class XmlValidationFinding implements IValidationFinding {
  100.     @NonNull
  101.     private final URI documentUri;
  102.     @NonNull
  103.     private final SAXParseException exception;
  104.     @NonNull
  105.     private final Level severity;

  107.     public XmlValidationFinding(@NonNull Level severity, @NonNull SAXParseException exception,
  108.         @NonNull URI documentUri) {
  109.       this.documentUri = ObjectUtils.requireNonNull(documentUri, "documentUri");
  110.       this.exception = ObjectUtils.requireNonNull(exception, "exception");
  111.       this.severity = ObjectUtils.requireNonNull(severity, "severity");
  112.     }

  114.     @Override
  115.     public Level getSeverity() {
  116.       return severity;
  117.     }

  119.     @SuppressWarnings("null")
  120.     @Override
  121.     public URI getDocumentUri() {
  122.       String systemId = getCause().getSystemId();
  123.       return systemId == null ? documentUri : URI.create(systemId);
  124.     }

  126.     @SuppressWarnings("null")
  127.     @Override
  128.     public String getMessage() {
  129.       return getCause().getLocalizedMessage();
  130.     }

  132.     @NonNull
  133.     @Override
  134.     public SAXParseException getCause() {
  135.       return exception;
  136.     }
  137.   }

  139.   private static class XmlValidationErrorHandler implements ErrorHandler, IValidationResult {
  140.     @NonNull
  141.     private final URI documentUri;
  142.     @NonNull
  143.     private final List<XmlValidationFinding> findings = new LinkedList<>();
  144.     @NonNull
  145.     private Level highestSeverity = Level.INFORMATIONAL;

  147.     public XmlValidationErrorHandler(@NonNull URI documentUri) {
  148.       this.documentUri = ObjectUtils.requireNonNull(documentUri, "documentUri");
  149.     }

  151.     @NonNull
  152.     public URI getDocumentUri() {
  153.       return documentUri;
  154.     }

  156.     private void adjustHighestSeverity(@NonNull Level severity) {
  157.       if (highestSeverity.ordinal() < severity.ordinal()) {
  158.         highestSeverity = severity;
  159.       }
  160.     }

  162.     @SuppressWarnings("null")
  163.     @Override
  164.     public void warning(SAXParseException ex) throws SAXException {
  165.       findings.add(new XmlValidationFinding(Level.WARNING, ex, getDocumentUri()));
  166.       adjustHighestSeverity(Level.WARNING);
  167.     }

  169.     @SuppressWarnings("null")
  170.     @Override
  171.     public void error(SAXParseException ex) throws SAXException {
  172.       findings.add(new XmlValidationFinding(Level.ERROR, ex, getDocumentUri()));
  173.       adjustHighestSeverity(Level.ERROR);
  174.     }

  176.     @SuppressWarnings("null")
  177.     @Override
  178.     public void fatalError(SAXParseException ex) throws SAXException {
  179.       findings.add(new XmlValidationFinding(Level.CRITICAL, ex, getDocumentUri()));
  180.       adjustHighestSeverity(Level.CRITICAL);
  181.     }

  183.     @SuppressWarnings("null")
  184.     @Override
  185.     @NonNull
  186.     public List<XmlValidationFinding> getFindings() {
  187.       return Collections.unmodifiableList(findings);
  188.     }

  190.     @Override
  191.     public Level getHighestSeverity() {
  192.       return highestSeverity;
  193.     }
  194.   }
  195. }
Created with JaCoCo 0.8.10.202304240956