org.honton.chas.bom.CreateBomMojo Maven / Gradle / Ivy
package org.honton.chas.bom;
import java.io.BufferedInputStream;
import java.io.BufferedWriter;
import java.io.IOException;
import java.io.InputStream;
import java.nio.charset.StandardCharsets;
import java.nio.file.CopyOption;
import java.nio.file.Files;
import java.nio.file.Path;
import java.nio.file.Paths;
import java.nio.file.StandardCopyOption;
import java.util.Enumeration;
import java.util.Properties;
import java.util.SortedMap;
import java.util.TreeMap;
import java.util.jar.JarEntry;
import java.util.jar.JarFile;
import java.util.stream.Stream;
import org.apache.commons.compress.archivers.ArchiveEntry;
import org.apache.commons.compress.archivers.ArchiveInputStream;
import org.apache.commons.compress.archivers.tar.TarArchiveInputStream;
import org.apache.commons.compress.compressors.gzip.GzipCompressorInputStream;
import org.apache.maven.model.Dependency;
import org.apache.maven.model.Model;
import org.apache.maven.model.io.xpp3.MavenXpp3Writer;
import org.apache.maven.plugin.AbstractMojo;
import org.apache.maven.plugin.MojoExecutionException;
import org.apache.maven.plugins.annotations.Mojo;
import org.apache.maven.plugins.annotations.Parameter;
/** Create a Bill of Materials from a set of jars or tar file. */
@Mojo(name = "extract", requiresProject = false)
public class CreateBomMojo extends AbstractMojo {
/** The groupId for the bom. */
@Parameter(property = "bom.groupId", defaultValue = "extracted")
private String groupId;
/** The artifactId for the bom. */
@Parameter(property = "bom.artifactId", defaultValue = "bom")
private String artifactId;
/** The version for the bom. */
@Parameter(property = "bom.version", defaultValue = "1.0.0-SNAPSHOT")
private String version;
/** The source directory or tar. */
@Parameter(property = "bom.source")
private String source;
/** The source directory or tar. */
@Parameter(property = "bom.bom", defaultValue = "pom.xml")
private String output;
private Sha1 sha1;
private QueryCentral queryCentral = new QueryCentral();
private SortedMap dependencies = new TreeMap<>();
public void execute() throws MojoExecutionException {
try {
sha1 = new Sha1();
if (source == null) {
source = "";
}
if (source.endsWith(".tar.gz") || source.endsWith(".tar")) {
extractTar();
} else {
findJars();
}
writeBom();
} catch (Exception e) {
throw new MojoExecutionException(e.getMessage(), e);
}
}
private void findJars() throws IOException {
try (Stream walk = Files.walk(Paths.get(source))) {
walk.filter(f -> f.getFileName().toString().endsWith(".jar")).forEach(this::extractJar);
}
}
private void extractJar(Path jarPath) {
if (!mavenBuilt(jarPath)) {
findGAVfromSha1(jarPath);
}
}
private boolean mavenBuilt(Path jarPath) {
try {
try (JarFile jarFile = new JarFile(jarPath.toFile())) {
return findPomProperties(jarFile);
}
} catch (IOException e) {
getLog().error("Error during extraction of " + jarPath + " : " + e.getMessage(), e);
return false;
}
}
private boolean findPomProperties(JarFile jarFile) throws IOException {
for (Enumeration entries = jarFile.entries(); entries.hasMoreElements(); ) {
JarEntry entry = entries.nextElement();
String name = entry.getName();
if (name.startsWith("META-INF/maven/") && name.endsWith("/pom.properties")) {
dependencyFromProperties(jarFile, entry);
return true;
}
}
return false;
}
private void dependencyFromProperties(JarFile jarFile, JarEntry entry) throws IOException {
Properties properties = new Properties();
properties.load(jarFile.getInputStream(entry));
Dependency dependency = new Dependency();
dependency.setGroupId(properties.getProperty("groupId"));
dependency.setArtifactId(properties.getProperty("artifactId"));
dependency.setVersion(properties.getProperty("version"));
dependency.setClassifier(properties.getProperty("classifier"));
addDependency(dependency);
}
private void findGAVfromSha1(Path jarPath) {
try {
Dependency dependency = queryCentral.getDependency(sha1.getChecksum(jarPath));
if (dependency != null) {
addDependency(dependency);
}
} catch (InterruptedException e) {
Thread.currentThread().interrupt();
} catch (IOException e) {
getLog().error("Error while querying checksum of " + jarPath + " : " + e.getMessage(), e);
}
}
private void addDependency(Dependency dependency) {
dependencies.put(dependency.getManagementKey()+':'+dependency.getVersion(), dependency);
}
private ArchiveInputStream getArchiveInputStream() throws IOException {
InputStream bi = new BufferedInputStream(Files.newInputStream(Path.of(source)));
return new TarArchiveInputStream(
source.endsWith(".gz") ? new GzipCompressorInputStream(bi) : bi);
}
private void extractTar() {
try {
try (ArchiveInputStream ais = getArchiveInputStream()) {
extractTar(ais);
}
} catch (IOException e) {
getLog().error("Error during processing " + source + " : " + e.getMessage(), e);
}
}
private void extractTar(ArchiveInputStream archiveInputStream) throws IOException {
for (; ; ) {
ArchiveEntry entry = archiveInputStream.getNextEntry();
if (entry == null) {
break;
}
String entryName = entry.getName();
if (entryName.endsWith(".jar")) {
String name = entryName.substring(entryName.lastIndexOf('/') + 1);
Path jarFile = Files.createTempFile(name.substring(0, name.length()-4), ".jar");
Files.copy(archiveInputStream, jarFile, StandardCopyOption.REPLACE_EXISTING);
extractJar(jarFile);
Files.delete(jarFile);
}
}
}
private void writeBom() throws IOException {
Model model = new Model();
model.setModelVersion("4.0.0");
model.setGroupId(groupId);
model.setArtifactId(artifactId);
model.setVersion(version);
dependencies.values().forEach(model::addDependency);
try (BufferedWriter writer = Files.newBufferedWriter(Path.of(output), StandardCharsets.UTF_8)) {
new MavenXpp3Writer().write(writer, model);
}
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy