Merge pull request CycloneDX#83 from CycloneDX/hierarchical-merging

coderpatros · web-flow · commit db897b408f0b · 2021-07-24T09:03:17.000+10:00
diff --git a/CycloneDX.Core/Json/Deserializer.cs b/CycloneDX.Core/Json/Deserializer.cs
@@ -70,7 +70,7 @@ public static Models.v1_3.Bom Deserialize_v1_3(string jsonString)
         {
             Contract.Requires(jsonString != null);
 
-            if (_options_v1_3 == null) _options_v1_3 = Utils.GetJsonSerializerOptions_v1_3();
+            if (_options_v1_3 is null) _options_v1_3 = Utils.GetJsonSerializerOptions_v1_3();
 
             var bom = JsonSerializer.Deserialize<Models.v1_3.Bom>(jsonString, _options_v1_3);
 
@@ -81,7 +81,7 @@ public static Models.v1_2.Bom Deserialize_v1_2(string jsonString)
         {
             Contract.Requires(jsonString != null);
 
-            if (_options_v1_2 == null) _options_v1_2 = Utils.GetJsonSerializerOptions_v1_2();
+            if (_options_v1_2 is null) _options_v1_2 = Utils.GetJsonSerializerOptions_v1_2();
 
             var bom = JsonSerializer.Deserialize<Models.v1_2.Bom>(jsonString, _options_v1_2);
 
diff --git a/CycloneDX.Core/Json/Serializer.cs b/CycloneDX.Core/Json/Serializer.cs
@@ -49,7 +49,7 @@ public static string Serialize(Models.v1_3.Bom bom)
         {
             Contract.Requires(bom != null);
 
-            if (_options_v1_3 == null) _options_v1_3 = Utils.GetJsonSerializerOptions_v1_3();
+            if (_options_v1_3 is null) _options_v1_3 = Utils.GetJsonSerializerOptions_v1_3();
 
             var jsonBom = JsonSerializer.Serialize(bom, _options_v1_3);
 
@@ -60,7 +60,7 @@ public static string Serialize(Models.v1_2.Bom bom)
         {
             Contract.Requires(bom != null);
 
-            if (_options_v1_2 == null) _options_v1_2 = Utils.GetJsonSerializerOptions_v1_2();
+            if (_options_v1_2 is null) _options_v1_2 = Utils.GetJsonSerializerOptions_v1_2();
 
             var jsonBom = JsonSerializer.Serialize(bom, _options_v1_2);
 
diff --git a/CycloneDX.Core/Models/v1_2/Metadata.cs b/CycloneDX.Core/Models/v1_2/Metadata.cs
@@ -30,7 +30,7 @@ public DateTime? Timestamp
             get => _timestamp;
             set
             {
-                if (value == null)
+                if (value is null)
                 {
                     _timestamp = null;
                 }
diff --git a/CycloneDX.Core/Models/v1_3/Dependency.cs b/CycloneDX.Core/Models/v1_3/Dependency.cs
@@ -34,7 +34,7 @@ public class Dependency
 
         [XmlElement("dependency")]
         [ProtoMember(2)]
-        public List<Dependency> Dependencies { get; set; } = new List<Dependency>();
+        public List<Dependency> Dependencies { get; set; }
 
         public Dependency() {}
 
diff --git a/CycloneDX.Core/Models/v1_3/IdentifiableAction.cs b/CycloneDX.Core/Models/v1_3/IdentifiableAction.cs
@@ -32,7 +32,7 @@ public DateTime? Timestamp
             get => _timestamp;
             set
             {
-                if (value == null)
+                if (value is null)
                 {
                     _timestamp = null;
                 }
diff --git a/CycloneDX.Core/Models/v1_3/Metadata.cs b/CycloneDX.Core/Models/v1_3/Metadata.cs
@@ -33,7 +33,7 @@ public DateTime? Timestamp
             get => _timestamp;
             set
             {
-                if (value == null)
+                if (value is null)
                 {
                     _timestamp = null;
                 }
diff --git a/CycloneDX.Utils.Tests/CycloneDX.Utils.Tests.csproj b/CycloneDX.Utils.Tests/CycloneDX.Utils.Tests.csproj
@@ -8,6 +8,7 @@
 
   <ItemGroup>
     <PackageReference Include="Microsoft.NET.Test.Sdk" Version="16.10.0" />
+    <PackageReference Include="Snapshooter.Xunit" Version="0.6.2" />
     <PackageReference Include="xunit" Version="2.4.1" />
     <PackageReference Include="xunit.runner.visualstudio" Version="2.4.3">
       <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
diff --git a/CycloneDX.Utils.Tests/MergeTests.cs b/CycloneDX.Utils.Tests/MergeTests.cs
@@ -18,6 +18,8 @@
 using System;
 using System.Collections.Generic;
 using Xunit;
+using Snapshooter;
+using Snapshooter.Xunit;
 using CycloneDX;
 using CycloneDX.Models.v1_3;
 using CycloneDX.Utils;
@@ -27,7 +29,7 @@ namespace CycloneDX.Utils.Tests
     public class MergeTests
     {
         [Fact]
-        public void MergeToolsTest()
+        public void FlatMergeToolsTest()
         {
             var sbom1 = new Bom
             {
@@ -58,13 +60,13 @@ public void MergeToolsTest()
                 }
             };
 
-            var result = CycloneDXUtils.Merge(sbom1, sbom2);
+            var result = CycloneDXUtils.FlatMerge(sbom1, sbom2);
 
-            Assert.Equal(2, result.Metadata.Tools.Count);
+            Snapshot.Match(result);
         }
 
         [Fact]
-        public void MergeComponentsTest()
+        public void FlatMergeComponentsTest()
         {
             var sbom1 = new Bom
             {
@@ -89,9 +91,118 @@ public void MergeComponentsTest()
                 }
             };
 
-            var result = CycloneDXUtils.Merge(sbom1, sbom2);
+            var result = CycloneDXUtils.FlatMerge(sbom1, sbom2);
 
-            Assert.Equal(2, result.Components.Count);
+            Snapshot.Match(result);
+        }
+
+        [Fact]
+        public void HierarchicalMergeComponentsTest()
+        {
+            var sbom1 = new Bom
+            {
+                Metadata = new Metadata
+                {
+                    Component = new Component
+                    {
+                        Name = "System1",
+                        Version = "1",
+                        BomRef = "System1@1"
+                    }
+                },
+                Components = new List<Component>
+                {
+                    new Component
+                    {
+                        Name = "Component1",
+                        Version = "1",
+                        BomRef = "Component1@1"
+                    }
+                },
+                Dependencies = new List<Dependency>
+                {
+                    new Dependency
+                    {
+                        Ref = "System1@1",
+                        Dependencies = new List<Dependency>
+                        {
+                            new Dependency
+                            {
+                                Ref = "Component1@1"
+                            }
+                        }
+                    }
+                },
+                Compositions = new List<Composition>
+                {
+                    new Composition
+                    {
+                        Aggregate = Composition.AggregateType.Complete,
+                        Assemblies = new List<string>
+                        {
+                            "System1@1"
+                        },
+                        Dependencies = new List<string>
+                        {
+                            "System1@1"
+                        }
+                    }
+                }
+            };
+            var sbom2 = new Bom
+            {
+                Metadata = new Metadata
+                {
+                    Component = new Component
+                    {
+                        Name = "System2",
+                        Version = "1",
+                        BomRef = "System2@1"
+                    }
+                },
+                Components = new List<Component>
+                {
+                    new Component
+                    {
+                        Name = "Component2",
+                        Version = "1",
+                        BomRef = "Component2@1"
+                    }
+                },
+                Dependencies = new List<Dependency>
+                {
+                    new Dependency
+                    {
+                        Ref = "System2@1",
+                        Dependencies = new List<Dependency>
+                        {
+                            new Dependency
+                            {
+                                Ref = "Component2@1"
+                            }
+                        }
+                    }
+                },
+                Compositions = new List<Composition>
+                {
+                    new Composition
+                    {
+                        Aggregate = Composition.AggregateType.Complete,
+                        Assemblies = new List<string>
+                        {
+                            "System2@1"
+                        },
+                        Dependencies = new List<string>
+                        {
+                            "System2@1"
+                        }
+                    }
+                }
+            };
+
+            var result = CycloneDXUtils.HierarchicalMerge(new [] { sbom1, sbom2 });
+
+            Snapshot.Match(result);
         }
     }
 }
diff --git a/CycloneDX.Utils.Tests/__snapshots__/MergeTests.FlatMergeComponentsTest.snap b/CycloneDX.Utils.Tests/__snapshots__/MergeTests.FlatMergeComponentsTest.snap
@@ -0,0 +1,63 @@
+﻿{
+  "BomFormat": "CycloneDX",
+  "SpecVersion": "1.3",
+  "SerialNumber": null,
+  "Version": null,
+  "Metadata": null,
+  "Components": [
+    {
+      "Type": "Null",
+      "MimeType": null,
+      "BomRef": null,
+      "Supplier": null,
+      "Author": null,
+      "Publisher": null,
+      "Group": null,
+      "Name": "Component1",
+      "Version": "1",
+      "Description": null,
+      "Scope": null,
+      "Hashes": null,
+      "Licenses": null,
+      "Copyright": null,
+      "Cpe": null,
+      "Purl": null,
+      "Swid": null,
+      "Modified": null,
+      "Pedigree": null,
+      "ExternalReferences": null,
+      "Components": null,
+      "Properties": null,
+      "Evidence": null
+    },
+    {
+      "Type": "Null",
+      "MimeType": null,
+      "BomRef": null,
+      "Supplier": null,
+      "Author": null,
+      "Publisher": null,
+      "Group": null,
+      "Name": "Component2",
+      "Version": "1",
+      "Description": null,
+      "Scope": null,
+      "Hashes": null,
+      "Licenses": null,
+      "Copyright": null,
+      "Cpe": null,
+      "Purl": null,
+      "Swid": null,
+      "Modified": null,
+      "Pedigree": null,
+      "ExternalReferences": null,
+      "Components": null,
+      "Properties": null,
+      "Evidence": null
+    }
+  ],
+  "Services": null,
+  "ExternalReferences": null,
+  "Dependencies": null,
+  "Compositions": null
+}
diff --git a/CycloneDX.Utils.Tests/__snapshots__/MergeTests.FlatMergeToolsTest.snap b/CycloneDX.Utils.Tests/__snapshots__/MergeTests.FlatMergeToolsTest.snap
@@ -0,0 +1,33 @@
+﻿{
+  "BomFormat": "CycloneDX",
+  "SpecVersion": "1.3",
+  "SerialNumber": null,
+  "Version": null,
+  "Metadata": {
+    "Tools": [
+      {
+        "Vendor": null,
+        "Name": "Tool1",
+        "Version": "1",
+        "Hashes": null
+      },
+      {
+        "Vendor": null,
+        "Name": "Tool2",
+        "Version": "1",
+        "Hashes": null
+      }
+    ],
+    "Authors": null,
+    "Component": null,
+    "Manufacture": null,
+    "Supplier": null,
+    "Licenses": null,
+    "Properties": null
+  },
+  "Components": [],
+  "Services": null,
+  "ExternalReferences": null,
+  "Dependencies": null,
+  "Compositions": null
+}
diff --git a/CycloneDX.Utils.Tests/__snapshots__/MergeTests.HierarchicalMergeComponentsTest.snap b/CycloneDX.Utils.Tests/__snapshots__/MergeTests.HierarchicalMergeComponentsTest.snap
diff --git a/CycloneDX.Utils/Merge.cs b/CycloneDX.Utils/Merge.cs

Original file line number	Diff line number	Diff line change
`@@ -70,7 +70,7 @@ public static Models.v1_3.Bom Deserialize_v1_3(string jsonString)`
`70`	`70`	`{`
`71`	`71`	`Contract.Requires(jsonString != null);`
`72`	`72`
`73`		`- if (_options_v1_3 == null) _options_v1_3 = Utils.GetJsonSerializerOptions_v1_3();`
	`73`	`+ if (_options_v1_3 is null) _options_v1_3 = Utils.GetJsonSerializerOptions_v1_3();`
`74`	`74`
`75`	`75`	`var bom = JsonSerializer.Deserialize<Models.v1_3.Bom>(jsonString, _options_v1_3);`
`76`	`76`
`@@ -81,7 +81,7 @@ public static Models.v1_2.Bom Deserialize_v1_2(string jsonString)`
`81`	`81`	`{`
`82`	`82`	`Contract.Requires(jsonString != null);`
`83`	`83`
`84`		`- if (_options_v1_2 == null) _options_v1_2 = Utils.GetJsonSerializerOptions_v1_2();`
	`84`	`+ if (_options_v1_2 is null) _options_v1_2 = Utils.GetJsonSerializerOptions_v1_2();`
`85`	`85`
`86`	`86`	`var bom = JsonSerializer.Deserialize<Models.v1_2.Bom>(jsonString, _options_v1_2);`
`87`	`87`
Original file line number	Diff line number	Diff line change
`@@ -49,7 +49,7 @@ public static string Serialize(Models.v1_3.Bom bom)`
`49`	`49`	`{`
`50`	`50`	`Contract.Requires(bom != null);`
`51`	`51`
`52`		`- if (_options_v1_3 == null) _options_v1_3 = Utils.GetJsonSerializerOptions_v1_3();`
	`52`	`+ if (_options_v1_3 is null) _options_v1_3 = Utils.GetJsonSerializerOptions_v1_3();`
`53`	`53`
`54`	`54`	`var jsonBom = JsonSerializer.Serialize(bom, _options_v1_3);`
`55`	`55`
`@@ -60,7 +60,7 @@ public static string Serialize(Models.v1_2.Bom bom)`
`60`	`60`	`{`
`61`	`61`	`Contract.Requires(bom != null);`
`62`	`62`
`63`		`- if (_options_v1_2 == null) _options_v1_2 = Utils.GetJsonSerializerOptions_v1_2();`
	`63`	`+ if (_options_v1_2 is null) _options_v1_2 = Utils.GetJsonSerializerOptions_v1_2();`
`64`	`64`
`65`	`65`	`var jsonBom = JsonSerializer.Serialize(bom, _options_v1_2);`
`66`	`66`
Original file line number	Diff line number	Diff line change
`@@ -30,7 +30,7 @@ public DateTime? Timestamp`
`30`	`30`	`get => _timestamp;`
`31`	`31`	`set`
`32`	`32`	`{`
`33`		`- if (value == null)`
	`33`	`+ if (value is null)`
`34`	`34`	`{`
`35`	`35`	`_timestamp = null;`
`36`	`36`	`}`
Original file line number	Diff line number	Diff line change
`@@ -32,7 +32,7 @@ public DateTime? Timestamp`
`32`	`32`	`get => _timestamp;`
`33`	`33`	`set`
`34`	`34`	`{`
`35`		`- if (value == null)`
	`35`	`+ if (value is null)`
`36`	`36`	`{`
`37`	`37`	`_timestamp = null;`
`38`	`38`	`}`
Original file line number	Diff line number	Diff line change
`@@ -33,7 +33,7 @@ public DateTime? Timestamp`
`33`	`33`	`get => _timestamp;`
`34`	`34`	`set`
`35`	`35`	`{`
`36`		`- if (value == null)`
	`36`	`+ if (value is null)`
`37`	`37`	`{`
`38`	`38`	`_timestamp = null;`
`39`	`39`	`}`