Skip to content

Package curation provider plugins #6308

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 10 commits into from
Jan 11, 2023
Merged

Package curation provider plugins #6308

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
eddd815
FilePackageCurationProvider: Verify the curation directory
mnonnenmacher Jan 10, 2023
83229cb
PluginManager: Add a `ConfigurablePluginFactory`
mnonnenmacher Jan 4, 2023
0d10fb8
analyzer: Add a `PackageCurationProviderFactory`
mnonnenmacher Jan 5, 2023
4937f49
OrtConfiguration: Add a missing space
mnonnenmacher Jan 6, 2023
d38b483
model: Add a configuration model for package curation providers
mnonnenmacher Jan 6, 2023
d6c5767
AnalyzerCommand: Create package curation providers from config file
mnonnenmacher Jan 6, 2023
aac6f5b
reference.yml: Align order with `OrtConfiguration` class
mnonnenmacher Jan 10, 2023
588c696
OrtConfigurationTest: Align order of verification with reference.yml
mnonnenmacher Jan 10, 2023
fd95d54
OrtConfigurationTest: Add missing verifications for reference.yml
mnonnenmacher Jan 10, 2023
6538a3b
AnalyzerConfiguration: Remove unused SW360 configuration
mnonnenmacher Jan 10, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
29 changes: 29 additions & 0 deletions analyzer/src/main/kotlin/PackageCurationProvider.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,35 @@ package org.ossreviewtoolkit.analyzer

import org.ossreviewtoolkit.model.Identifier
import org.ossreviewtoolkit.model.PackageCuration
import org.ossreviewtoolkit.model.config.PackageCurationProviderConfiguration
import org.ossreviewtoolkit.utils.common.ConfigurablePluginFactory
import org.ossreviewtoolkit.utils.common.NamedPlugin

/**
* The extension point for [PackageCurationProvider]s.
*/
interface PackageCurationProviderFactory<CONFIG> : ConfigurablePluginFactory<PackageCurationProvider> {
companion object {
val ALL = NamedPlugin.getAll<PackageCurationProviderFactory<*>>()
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Note to myself: I was actually surprised that this (is supposed to) work(s) here as generic types get erased at compile time. But after reading through the excellent https://typealias.com/guides/star-projections-and-how-they-work/ I see how this could work.


fun create(configurations: List<PackageCurationProviderConfiguration>) =
// Reverse the list so that curations from providers with higher priority are applied later and can
// overwrite curations from providers with lower priority.
configurations.filter { it.enabled }.map { ALL.getValue(it.name).create(it.config) }.asReversed()
}

override fun create(config: Map<String, String>): PackageCurationProvider = create(parseConfig(config))

/**
* Create a new [PackageCurationProvider] with [config].
*/
fun create(config: CONFIG): PackageCurationProvider

/**
* Parse the [config] map into an object.
*/
fun parseConfig(config: Map<String, String>): CONFIG
}

/**
* A provider for [PackageCuration]s.
Expand Down
19 changes: 19 additions & 0 deletions analyzer/src/main/kotlin/curation/ClearlyDefinedPackageCurationProvider.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,6 +28,7 @@ import okhttp3.OkHttpClient
import org.apache.logging.log4j.kotlin.Logging

import org.ossreviewtoolkit.analyzer.PackageCurationProvider
import org.ossreviewtoolkit.analyzer.PackageCurationProviderFactory
import org.ossreviewtoolkit.clients.clearlydefined.ClearlyDefinedService
import org.ossreviewtoolkit.clients.clearlydefined.ClearlyDefinedService.Server
import org.ossreviewtoolkit.clients.clearlydefined.ComponentType
Expand All @@ -50,6 +51,24 @@ import org.ossreviewtoolkit.utils.spdx.toSpdx

import retrofit2.HttpException

class ClearlyDefinedPackageCurationProviderConfig(
/**
* The URL of the ClearlyDefined server to use. If null, uses the [production server][Server.PRODUCTION.apiUrl].
*/
val serverUrl: String? = null
)

class ClearlyDefinedPackageCurationProviderFactory :
PackageCurationProviderFactory<ClearlyDefinedPackageCurationProviderConfig> {
override val name = "ClearlyDefined"

override fun create(config: ClearlyDefinedPackageCurationProviderConfig) =
ClearlyDefinedPackageCurationProvider(serverUrl = config.serverUrl)

override fun parseConfig(config: Map<String, String>) =
ClearlyDefinedPackageCurationProviderConfig(serverUrl = config["serverUrl"])
}

/**
* A provider for curated package metadata from the [ClearlyDefined](https://clearlydefined.io/) service.
*/
Expand Down
53 changes: 51 additions & 2 deletions analyzer/src/main/kotlin/curation/FilePackageCurationProvider.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,25 +25,74 @@ import java.io.IOException
import org.apache.logging.log4j.kotlin.Logging

import org.ossreviewtoolkit.analyzer.PackageCurationProvider
import org.ossreviewtoolkit.analyzer.PackageCurationProviderFactory
import org.ossreviewtoolkit.model.FileFormat
import org.ossreviewtoolkit.model.PackageCuration
import org.ossreviewtoolkit.model.readValue
import org.ossreviewtoolkit.utils.common.getDuplicates
import org.ossreviewtoolkit.utils.ort.ORT_PACKAGE_CURATIONS_DIRNAME
import org.ossreviewtoolkit.utils.ort.ORT_PACKAGE_CURATIONS_FILENAME
import org.ossreviewtoolkit.utils.ort.ortConfigDirectory

class FilePackageCurationProviderConfig(
/**
* The path of the package curation file or directory.
*/
val path: String
)

class FilePackageCurationProviderFactory : PackageCurationProviderFactory<FilePackageCurationProviderConfig> {
override val name = "File"

override fun create(config: FilePackageCurationProviderConfig) = FilePackageCurationProvider(config)

override fun parseConfig(config: Map<String, String>) =
FilePackageCurationProviderConfig(path = config.getValue("path"))
}

class DefaultFilePackageCurationProviderFactory : PackageCurationProviderFactory<Unit> {
override val name = "DefaultFile"

override fun create(config: Unit) =
ortConfigDirectory.resolve(ORT_PACKAGE_CURATIONS_FILENAME).let { curationsFile ->
when {
curationsFile.isFile -> FilePackageCurationProvider(curationsFile)
else -> PackageCurationProvider.EMPTY
}
}

override fun parseConfig(config: Map<String, String>) = Unit
}

class DefaultDirPackageCurationProviderFactory : PackageCurationProviderFactory<Unit> {
override val name = "DefaultDir"

override fun create(config: Unit) =
ortConfigDirectory.resolve(ORT_PACKAGE_CURATIONS_DIRNAME).let { curationsDir ->
when {
curationsDir.isDirectory -> FilePackageCurationProvider(curationsDir)
else -> PackageCurationProvider.EMPTY
}
}

override fun parseConfig(config: Map<String, String>) = Unit
}

/**
* A [PackageCurationProvider] that loads [PackageCuration]s from all given curation files. Supports all file formats
* specified in [FileFormat].
*/
class FilePackageCurationProvider(
curationFiles: Collection<File>
curationFiles: List<File>
) : SimplePackageCurationProvider(readCurationFiles(curationFiles)) {
constructor(curationFile: File) : this(listOf(curationFile))
constructor(config: FilePackageCurationProviderConfig) : this(File(config.path))

companion object : Logging {
fun from(file: File? = null, dir: File? = null): FilePackageCurationProvider {
val curationFiles = mutableListOf<File>()
file?.takeIf { it.isFile }?.let { curationFiles += it }
dir?.let { curationFiles += FileFormat.findFilesWithKnownExtensions(it) }
dir?.takeIf { it.isDirectory }?.let { curationFiles += FileFormat.findFilesWithKnownExtensions(it) }

return FilePackageCurationProvider(curationFiles)
}
Expand Down
9 changes: 9 additions & 0 deletions analyzer/src/main/kotlin/curation/OrtConfigPackageCurationProvider.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@ import java.io.IOException
import org.apache.logging.log4j.kotlin.Logging

import org.ossreviewtoolkit.analyzer.PackageCurationProvider
import org.ossreviewtoolkit.analyzer.PackageCurationProviderFactory
import org.ossreviewtoolkit.downloader.vcs.Git
import org.ossreviewtoolkit.model.Identifier
import org.ossreviewtoolkit.model.PackageCuration
Expand All @@ -38,6 +39,14 @@ import org.ossreviewtoolkit.utils.ort.ortDataDirectory
private const val ORT_CONFIG_REPOSITORY_BRANCH = "main"
private const val ORT_CONFIG_REPOSITORY_URL = "https://github.com/oss-review-toolkit/ort-config.git"

class OrtConfigPackageCurationProviderFactory : PackageCurationProviderFactory<Unit> {
override val name = "OrtConfig"

override fun create(config: Unit) = OrtConfigPackageCurationProvider()

override fun parseConfig(config: Map<String, String>) = Unit
}

/**
* A [PackageCurationProvider] that provides [PackageCuration]s loaded from the
* [ort-config repository](https://github.com/oss-review-toolkit/ort-config).
Expand Down
18 changes: 18 additions & 0 deletions analyzer/src/main/kotlin/curation/Sw360PackageCurationProvider.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,7 @@ import org.eclipse.sw360.http.HttpClientFactoryImpl
import org.eclipse.sw360.http.config.HttpClientConfig

import org.ossreviewtoolkit.analyzer.PackageCurationProvider
import org.ossreviewtoolkit.analyzer.PackageCurationProviderFactory
import org.ossreviewtoolkit.model.Hash
import org.ossreviewtoolkit.model.HashAlgorithm
import org.ossreviewtoolkit.model.Identifier
Expand All @@ -45,6 +46,23 @@ import org.ossreviewtoolkit.model.orEmpty
import org.ossreviewtoolkit.utils.ort.DeclaredLicenseProcessor
import org.ossreviewtoolkit.utils.spdx.SpdxExpression

class Sw360PackageCurationProviderFactory : PackageCurationProviderFactory<Sw360StorageConfiguration> {
override val name = "SW360"

override fun create(config: Sw360StorageConfiguration) = Sw360PackageCurationProvider(config)

override fun parseConfig(config: Map<String, String>) =
Sw360StorageConfiguration(
restUrl = config.getValue("restUrl"),
authUrl = config.getValue("authUrl"),
username = config.getValue("username"),
password = config["password"].orEmpty(),
clientId = config.getValue("clientId"),
clientPassword = config["clientPassword"].orEmpty(),
token = config["token"].orEmpty()
)
}

/**
* A [PackageCurationProvider] for curated package metadata from the configured SW360 instance using the REST API.
*/
Expand Down
6 changes: 6 additions & 0 deletions .../resources/META-INF/services/org.ossreviewtoolkit.analyzer.PackageCurationProviderFactory
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
org.ossreviewtoolkit.analyzer.curation.ClearlyDefinedPackageCurationProviderFactory
org.ossreviewtoolkit.analyzer.curation.DefaultDirPackageCurationProviderFactory
org.ossreviewtoolkit.analyzer.curation.DefaultFilePackageCurationProviderFactory
org.ossreviewtoolkit.analyzer.curation.FilePackageCurationProviderFactory
org.ossreviewtoolkit.analyzer.curation.OrtConfigPackageCurationProviderFactory
org.ossreviewtoolkit.analyzer.curation.Sw360PackageCurationProviderFactory
40 changes: 14 additions & 26 deletions cli/src/funTest/kotlin/OrtMainFunTest.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,7 @@ import org.ossreviewtoolkit.downloader.VersionControlSystem
import org.ossreviewtoolkit.model.OrtResult
import org.ossreviewtoolkit.model.config.OrtConfiguration
import org.ossreviewtoolkit.model.config.OrtConfigurationWrapper
import org.ossreviewtoolkit.model.config.PackageCurationProviderConfiguration
import org.ossreviewtoolkit.model.readValue
import org.ossreviewtoolkit.model.writeValue
import org.ossreviewtoolkit.utils.common.EnvironmentVariableFilter
Expand All @@ -63,7 +64,18 @@ class OrtMainFunTest : StringSpec() {

override suspend fun beforeSpec(spec: Spec) {
configFile = createSpecTempFile(suffix = ".yml")
configFile.writeValue(OrtConfigurationWrapper(OrtConfiguration()))
configFile.writeValue(
OrtConfigurationWrapper(
OrtConfiguration(
packageCurationProviders = listOf(
PackageCurationProviderConfiguration(
name = "File",
config = mapOf("path" to projectDir.resolve("gradle/curations.yml").path)
)
)
)
)
)
}

override suspend fun beforeTest(testCase: TestCase) {
Expand Down Expand Up @@ -186,29 +198,6 @@ class OrtMainFunTest : StringSpec() {
}

"Analyzer creates correct output" {
val expectedResult = patchExpectedResult(
projectDir.resolve("gradle-all-dependencies-expected-result.yml"),
url = vcsUrl,
revision = vcsRevision,
urlProcessed = normalizeVcsUrl(vcsUrl)
)

@Suppress("IgnoredReturnValue")
runMain(
"-c", configFile.path,
"-P", "ort.analyzer.enabledPackageManagers=Gradle",
"analyze",
"-i", projectDir.resolve("gradle").absolutePath,
"-o", outputDir.path
)

val analyzerResult = outputDir.resolve("analyzer-result.yml").readValue<OrtResult>()
val resolvedResult = analyzerResult.withResolvedScopes()

patchActualResult(resolvedResult, patchStartAndEndTime = true) shouldBe expectedResult
}

"Package curation data file is applied correctly" {
val expectedResult = patchExpectedResult(
projectDir.resolve("gradle-all-dependencies-expected-result-with-curations.yml"),
url = vcsUrl,
Expand All @@ -222,8 +211,7 @@ class OrtMainFunTest : StringSpec() {
"-P", "ort.analyzer.enabledPackageManagers=Gradle",
"analyze",
"-i", projectDir.resolve("gradle").absolutePath,
"-o", outputDir.path,
"--package-curations-file", projectDir.resolve("gradle/curations.yml").toString()
"-o", outputDir.path
)

val analyzerResult = outputDir.resolve("analyzer-result.yml").readValue<OrtResult>()
Expand Down
53 changes: 2 additions & 51 deletions cli/src/main/kotlin/commands/AnalyzerCommand.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,6 @@ import com.github.ajalt.clikt.parameters.options.convert
import com.github.ajalt.clikt.parameters.options.default
import com.github.ajalt.clikt.parameters.options.defaultLazy
import com.github.ajalt.clikt.parameters.options.deprecated
import com.github.ajalt.clikt.parameters.options.flag
import com.github.ajalt.clikt.parameters.options.option
import com.github.ajalt.clikt.parameters.options.required
import com.github.ajalt.clikt.parameters.options.split
Expand All @@ -40,14 +39,11 @@ import java.time.Duration
import kotlin.time.toKotlinDuration

import org.ossreviewtoolkit.analyzer.Analyzer
import org.ossreviewtoolkit.analyzer.PackageCurationProviderFactory
import org.ossreviewtoolkit.analyzer.PackageManager
import org.ossreviewtoolkit.analyzer.PackageManagerFactory
import org.ossreviewtoolkit.analyzer.curation.ClearlyDefinedPackageCurationProvider
import org.ossreviewtoolkit.analyzer.curation.CompositePackageCurationProvider
import org.ossreviewtoolkit.analyzer.curation.FilePackageCurationProvider
import org.ossreviewtoolkit.analyzer.curation.OrtConfigPackageCurationProvider
import org.ossreviewtoolkit.analyzer.curation.SimplePackageCurationProvider
import org.ossreviewtoolkit.analyzer.curation.Sw360PackageCurationProvider
import org.ossreviewtoolkit.cli.OrtCommand
import org.ossreviewtoolkit.cli.utils.SeverityStats
import org.ossreviewtoolkit.cli.utils.configurationGroup
Expand All @@ -64,8 +60,6 @@ import org.ossreviewtoolkit.model.utils.DefaultResolutionProvider
import org.ossreviewtoolkit.model.utils.mergeLabels
import org.ossreviewtoolkit.utils.common.expandTilde
import org.ossreviewtoolkit.utils.common.safeMkdirs
import org.ossreviewtoolkit.utils.ort.ORT_PACKAGE_CURATIONS_DIRNAME
import org.ossreviewtoolkit.utils.ort.ORT_PACKAGE_CURATIONS_FILENAME
import org.ossreviewtoolkit.utils.ort.ORT_REPO_CONFIG_FILENAME
import org.ossreviewtoolkit.utils.ort.ORT_RESOLUTIONS_FILENAME
import org.ossreviewtoolkit.utils.ort.ortConfigDirectory
Expand Down Expand Up @@ -98,24 +92,6 @@ class AnalyzerCommand : OrtCommand(
help = "The list of output formats to be used for the ORT result file(s)."
).enum<FileFormat>().split(",").default(listOf(FileFormat.YAML)).outputGroup()

private val packageCurationsFile by option(
"--package-curations-file",
help = "A file containing package curation data."
).convert { it.expandTilde() }
.file(mustExist = true, canBeFile = true, canBeDir = false, mustBeWritable = false, mustBeReadable = true)
.convert { it.absoluteFile.normalize() }
.default(ortConfigDirectory.resolve(ORT_PACKAGE_CURATIONS_FILENAME))
.configurationGroup()

private val packageCurationsDir by option(
"--package-curations-dir",
help = "A directory containing package curation data."
).convert { it.expandTilde() }
.file(mustExist = true, canBeFile = false, canBeDir = true, mustBeWritable = false, mustBeReadable = true)
.convert { it.absoluteFile.normalize() }
.default(ortConfigDirectory.resolve(ORT_PACKAGE_CURATIONS_DIRNAME))
.configurationGroup()

private val repositoryConfigurationFile by option(
"--repository-configuration-file",
help = "A file containing the repository configuration. If set, overrides any repository configuration " +
Expand All @@ -135,21 +111,6 @@ class AnalyzerCommand : OrtCommand(
.default(ortConfigDirectory.resolve(ORT_RESOLUTIONS_FILENAME))
.configurationGroup()

private val useClearlyDefinedCurations by option(
"--clearly-defined-curations",
help = "Whether to fall back to package curation data from the ClearlyDefine service or not."
).flag()

private val useOrtCurations by option(
"--ort-curations",
help = "Whether to fall back to package curation data from the ort-config repository or not."
).flag()

private val useSw360Curations by option(
"--sw360-curations",
help = "Whether to fall back to package curation data from the SW360 service or not."
).flag()

private val labels by option(
"--label", "-l",
help = "Set a label in the ORT result, overwriting any existing label of the same name. Can be used multiple " +
Expand Down Expand Up @@ -199,8 +160,6 @@ class AnalyzerCommand : OrtCommand(
}

val configurationFiles = listOf(
packageCurationsFile,
packageCurationsDir,
repositoryConfigurationFile,
resolutionsFile
)
Expand Down Expand Up @@ -232,15 +191,7 @@ class AnalyzerCommand : OrtCommand(
val analyzer = Analyzer(analyzerConfiguration, labels)

val curationProviders = buildList {
if (useClearlyDefinedCurations) add(ClearlyDefinedPackageCurationProvider())

if (useSw360Curations) {
ortConfig.analyzer.sw360Configuration?.let { add(Sw360PackageCurationProvider(it)) }
}

if (useOrtCurations) add(OrtConfigPackageCurationProvider())

add(FilePackageCurationProvider.from(packageCurationsFile, packageCurationsDir))
addAll(PackageCurationProviderFactory.create(ortConfig.packageCurationProviders))

val repositoryPackageCurations = repositoryConfiguration.curations.packages

Expand Down
Loading