csaf-rs 0.5.1

A parser for the CSAF standard written in Rust
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170

use std::fmt::Display;

use TestResultStatus::*;
use serde::{Deserialize, Serialize};

#[derive(Debug, PartialEq, Eq, Hash, Clone, Serialize, Deserialize)]
#[serde(rename_all = "camelCase")]
pub struct ValidationError {
    pub message: String,
    pub instance_path: String,
}

impl std::fmt::Display for ValidationError {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "ValidationError: {} at {}", self.message, self.instance_path)
    }
}

/// Trait for types that can be converted into a [`ValidationError`] by providing an instance path.
pub trait IntoValidationError {
    fn into_validation_error(self, instance_path: &str) -> ValidationError;
}

/// Result of executing a single test
#[derive(Debug, Clone, Serialize, Deserialize)]
#[serde(rename_all = "camelCase")]
pub struct TestResult {
    /// The test ID that was executed
    pub test_id: String,

    /// The status of the test execution
    pub status: TestResultStatus,
}

#[derive(Debug, Clone, Serialize, Deserialize, PartialEq)]
#[serde(rename_all = "camelCase")]
pub enum TestResultStatus {
    Success,
    Failure {
        errors: Vec<ValidationError>,
        warnings: Vec<ValidationError>,
        infos: Vec<ValidationError>,
    },
    NotFound,
    Skipped,
}

impl Display for TestResultStatus {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        match self {
            Success => write!(f, "Success"),
            Failure {
                errors,
                warnings,
                infos,
            } => write!(
                f,
                "Failure with {} error(s), {} warning(s) and {} info(s)",
                errors.len(),
                warnings.len(),
                infos.len()
            ),
            NotFound => write!(f, "Test not found"),
            Skipped => write!(f, "Test skipped"),
        }
    }
}

/// Result of a CSAF validation
#[derive(Debug, Clone, Serialize, Deserialize)]
#[serde(rename_all = "camelCase")]
pub struct ValidationResult {
    /// Whether the validation was successful (no errors)
    pub success: bool,
    /// The detected CSAF version
    pub version: String,
    /// Individual test results with execution details
    pub test_results: Vec<TestResult>,
    /// The total number of errors found during validation
    pub num_errors: usize,
    /// The total number of warnings found during validation
    pub num_warnings: usize,
    /// The total number of infos found during validation
    pub num_infos: usize,
    /// The total number of tests not found
    pub num_not_found: usize,
}

pub trait Validate {
    /// Validates this object according to
    fn validate_by_test(&self, test_id: &str) -> TestResult;

    /// Validates this object according to specific test IDs and returns detailed results
    fn validate_by_tests(&self, version: &str, test_ids: &[&str]) -> ValidationResult;

    /// Validates this object according to a validation preset and returns detailed results
    fn validate_by_preset(&self, version: &str, preset: &str) -> ValidationResult;
}

/// Represents something which is validatable according to the CSAF standard.
/// This trait MUST be implemented by the struct that represents a CSAF document
/// in the respective version.
///
/// It can then be used to validate documents with [validate_by_preset] or [validate_by_tests].
pub trait Validatable {
    /// Returns the test IDs belonging to a preset
    fn tests_in_preset(preset: &str) -> Option<Vec<&'static str>>;

    /// Runs a test by test ID
    fn run_test(&self, test_id: &str) -> TestResult;
}

/// Execute a single test and return the test result.
///
/// This function will check, whether the test_id exists in the Validatable's
/// tests. If it does, it will execute the test function and return the result.
/// If not, it will return a TestResult indicating that the test was not found.
pub fn validate_by_test(target: &impl Validatable, test_id: &str) -> TestResult {
    // Try to execute the test specified by the test_id
    target.run_test(test_id)
}

/// Validate document with specific tests and return detailed results.
pub fn validate_by_tests(target: &impl Validatable, version: &str, test_ids: &[&str]) -> ValidationResult {
    let mut test_results = Vec::new();
    let mut num_errors: usize = 0;
    let mut num_warnings: usize = 0;
    let mut num_infos: usize = 0;
    let mut num_not_found: usize = 0;

    // Loop through tests and gather all results and errors
    for test_id in test_ids {
        let test_result = validate_by_test(target, test_id);
        match &test_result.status {
            Failure {
                errors,
                warnings,
                infos,
            } => {
                num_errors += errors.len();
                num_warnings += warnings.len();
                num_infos += infos.len();
            },
            NotFound => {
                num_not_found += 1;
            },
            _ => {},
        }
        test_results.push(test_result);
    }

    ValidationResult {
        success: num_errors == 0,
        version: version.to_string(),
        num_errors,
        num_warnings,
        num_infos,
        num_not_found,
        test_results,
    }
}

/// Validate document with a preset and return detailed results.
pub fn validate_by_preset<V: Validatable>(target: &V, version: &str, preset: &str) -> ValidationResult {
    // Retrieve the test IDs for the given preset
    let test_ids: Vec<&str> = V::tests_in_preset(preset).unwrap_or(vec![]);

    // Forward them to validate_by_tests
    validate_by_tests(target, version, &test_ids)
}