From 769ee1c1916f83600cac3116f62c9f0a2a635752 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Skaar=2C=20Bj=C3=B8rn-Andre?= Date: Mon, 11 Dec 2023 09:47:18 +0100 Subject: [PATCH 1/4] Rewrite Mapper interface som that the Mapper can populate values in PseudoFuncOutput. Simplified MapFunc to delegate most of the work to the Mapper. --- pom.xml | 21 +++++---------- .../dlp/pseudo/func/PseudoFuncOutput.java | 15 ++++++++--- .../dapla/dlp/pseudo/func/map/MapFunc.java | 27 +++---------------- .../ssb/dapla/dlp/pseudo/func/map/Mapper.java | 9 ++++--- 4 files changed, 27 insertions(+), 45 deletions(-) diff --git a/pom.xml b/pom.xml index ad41c53..8d7d001 100644 --- a/pom.xml +++ b/pom.xml @@ -5,7 +5,7 @@ no.ssb.dapla.dlp.pseudo.func dapla-dlp-pseudo-func - 1.2.9-SNAPSHOT + 1.3.0-SNAPSHOT dapla-dlp-pseudo-func @@ -186,29 +186,20 @@ - artifact-registry - ${artifact-registry.url} - - true - - - false - + central + https://repo.maven.apache.org/maven2 - artifact-registry-snapshot + artifact-registry ${artifact-registry.url} - false + true + always true - - central - https://repo.maven.apache.org/maven2 - diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFuncOutput.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFuncOutput.java index 4b229e9..0ae3596 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFuncOutput.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFuncOutput.java @@ -6,14 +6,18 @@ import java.util.ArrayList; import java.util.Arrays; import java.util.Collection; +import java.util.HashMap; import java.util.List; +import java.util.Map; import java.util.stream.Collectors; @Value @NoArgsConstructor public class PseudoFuncOutput { - private List values = new ArrayList<>(); - private List warnings = new ArrayList<>(); + List values = new ArrayList<>(); + List warnings = new ArrayList<>(); + Map metadata = new HashMap<>(); + public PseudoFuncOutput(Object v) { if (v instanceof Collection) { @@ -39,6 +43,10 @@ public void addWarning(String warning) { warnings.add(warning); } + public void addMetadata(String key, String value) { + metadata.put(key, value); + } + public List getStringValues() { return values.stream() .map(String::valueOf) @@ -46,7 +54,7 @@ public List getStringValues() { } public Object getFirstValue() { - return getValues().get(0); + return getValues().getFirst(); } @Override @@ -57,4 +65,5 @@ public String toString() { public boolean hasWarnings() { return ! warnings.isEmpty(); } + } diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java index c0ea4d1..f9f4a3c 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java @@ -10,13 +10,10 @@ @Slf4j public class MapFunc extends AbstractPseudoFunc { - private final MapFuncConfig config; - private final MapFuncConfigService mapFuncConfigService = new MapFuncConfigService(); private final Mapper mapper; public MapFunc(PseudoFuncConfig genericConfig) { super(genericConfig.getFuncDecl()); - this.config = mapFuncConfigService.resolve(genericConfig); this.mapper = loadMapper(); this.mapper.setConfig(genericConfig.asMap()); } @@ -31,35 +28,17 @@ public static Mapper loadMapper() { @Override public void init(PseudoFuncInput input) { - for (Object inputValue : input.getValues()) { - mapper.init(String.valueOf(inputValue)); - } + mapper.init(input); } @Override public PseudoFuncOutput apply(PseudoFuncInput input) { - PseudoFuncOutput output = new PseudoFuncOutput(); - - for (Object inputValue : input.getValues()) { - String plain = String.valueOf(inputValue); - final Object pseudonymized = mapper.map(plain); - output.add(pseudonymized); - } - - return output; + return mapper.map(input); } @Override public PseudoFuncOutput restore(PseudoFuncInput input) { - PseudoFuncOutput output = new PseudoFuncOutput(); - - for (Object inputValue : input.getValues()) { - String mapped = String.valueOf(inputValue); - final Object clear = mapper.restore(mapped); - output.add(clear); - } - - return output; + return mapper.restore(input); } } diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/Mapper.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/Mapper.java index 360fc30..f3169ea 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/Mapper.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/Mapper.java @@ -1,13 +1,16 @@ package no.ssb.dapla.dlp.pseudo.func.map; +import no.ssb.dapla.dlp.pseudo.func.PseudoFuncInput; +import no.ssb.dapla.dlp.pseudo.func.PseudoFuncOutput; + import java.util.Map; public interface Mapper { - void init(Object data); + void init(PseudoFuncInput data); void setConfig(Map config); - Object map(Object data); + PseudoFuncOutput map(PseudoFuncInput data); - Object restore(Object mapped); + PseudoFuncOutput restore(PseudoFuncInput mapped); } From 9506efe31f5ab33b03bb83dc63cdd878a0a6fd13 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Skaar=2C=20Bj=C3=B8rn-Andre?= Date: Mon, 11 Dec 2023 15:16:24 +0100 Subject: [PATCH 2/4] Add getAlgorithm method to all PseudoFunc implementations. --- .../java/no/ssb/dapla/dlp/pseudo/func/fpe/FpeFunc.java | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/fpe/FpeFunc.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/fpe/FpeFunc.java index 1014d91..d0f298c 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/fpe/FpeFunc.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/fpe/FpeFunc.java @@ -14,10 +14,17 @@ public class FpeFunc extends AbstractPseudoFunc { private final FormatPreservingEncryption fpe; private final FpeConfigService fpeConfigService = new FpeConfigService(); + private static final String ALGORITHM = "FPE"; + // We should consider implementing a more sophisticated tweak, see: // https://crypto.stackexchange.com/questions/10903/what-are-the-uses-of-tweaks-in-block-ciphers private static final byte[] STATIC_TWEAK = new byte[0]; + @Override + public String getAlgorithm() { + return ALGORITHM; + } + public FpeFunc(PseudoFuncConfig genericConfig) { super(genericConfig.getFuncDecl()); config = fpeConfigService.resolve(genericConfig); From 77c247bf13b7d004447fbfbed9eea7148742588f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Skaar=2C=20Bj=C3=B8rn-Andre?= Date: Mon, 11 Dec 2023 15:17:53 +0100 Subject: [PATCH 3/4] Add getAlgorithm method to all PseudoFunc implementations. --- .../java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java | 3 +++ .../java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java | 5 +++++ .../no/ssb/dapla/dlp/pseudo/func/redact/RedactFunc.java | 8 ++++++++ .../dapla/dlp/pseudo/func/tink/daead/TinkDaeadFunc.java | 7 +++++++ .../ssb/dapla/dlp/pseudo/func/tink/fpe/TinkFpeFunc.java | 6 ++++++ 5 files changed, 29 insertions(+) diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java index ccc865c..ee0a5cc 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java @@ -5,6 +5,9 @@ public interface PseudoFunc { /** Name of the function declaration (including any parameters), e.g. foo(param1,param2) */ String getFuncDecl(); + /** Name of the encryption algorithm, e.g. TINK_FPE, TINK_DEEAD */ + String getAlgorithm(); + /** * Preprocessing of input. This will be called before apply */ diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java index f9f4a3c..888d5c7 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/map/MapFunc.java @@ -12,6 +12,11 @@ public class MapFunc extends AbstractPseudoFunc { private final Mapper mapper; + @Override + public String getAlgorithm() { + return null; + } + public MapFunc(PseudoFuncConfig genericConfig) { super(genericConfig.getFuncDecl()); this.mapper = loadMapper(); diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/redact/RedactFunc.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/redact/RedactFunc.java index 02450f6..e361fe7 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/redact/RedactFunc.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/redact/RedactFunc.java @@ -16,6 +16,14 @@ public class RedactFunc extends AbstractPseudoFunc { private final RedactFuncConfigService configService = new RedactFuncConfigService(); private final RedactFuncConfig config; + // A.k.a Free Text Redaction + private static final String ALGORITHM = "REDACT"; + + @Override + public String getAlgorithm() { + return ALGORITHM; + } + public RedactFunc(@NonNull PseudoFuncConfig genericConfig) { super(genericConfig.getFuncDecl()); this.config = configService.resolve(genericConfig); diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/tink/daead/TinkDaeadFunc.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/tink/daead/TinkDaeadFunc.java index 4158a22..7b23c98 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/tink/daead/TinkDaeadFunc.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/tink/daead/TinkDaeadFunc.java @@ -17,6 +17,13 @@ public class TinkDaeadFunc extends AbstractPseudoFunc { private final TinkDaeadFuncConfigService configService = new TinkDaeadFuncConfigService(); private final TinkDaeadFuncConfig config; + private static final String ALGORITHM = "TINK-DAEAD"; + + @Override + public String getAlgorithm() { + return ALGORITHM; + } + public TinkDaeadFunc(@NonNull PseudoFuncConfig genericConfig) { super(genericConfig.getFuncDecl()); this.config = configService.resolve(genericConfig); diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/tink/fpe/TinkFpeFunc.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/tink/fpe/TinkFpeFunc.java index ae9b983..b3ef858 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/tink/fpe/TinkFpeFunc.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/tink/fpe/TinkFpeFunc.java @@ -15,6 +15,12 @@ public class TinkFpeFunc extends AbstractPseudoFunc { private final TinkFpeFuncConfigService configService = new TinkFpeFuncConfigService(); private final TinkFpeFuncConfig config; + private static final String ALGORITHM = "TINK-FPE"; + @Override + public String getAlgorithm() { + return ALGORITHM; + } + public TinkFpeFunc(@NonNull PseudoFuncConfig genericConfig) { super(genericConfig.getFuncDecl()); this.config = configService.resolve(genericConfig); From e78a2279cb24a49ae3a0e387c157b160d96d8d31 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Skaar=2C=20Bj=C3=B8rn-Andre?= Date: Mon, 11 Dec 2023 15:19:46 +0100 Subject: [PATCH 4/4] Fix typo --- src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java b/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java index ee0a5cc..c13a0bf 100644 --- a/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java +++ b/src/main/java/no/ssb/dapla/dlp/pseudo/func/PseudoFunc.java @@ -5,7 +5,7 @@ public interface PseudoFunc { /** Name of the function declaration (including any parameters), e.g. foo(param1,param2) */ String getFuncDecl(); - /** Name of the encryption algorithm, e.g. TINK_FPE, TINK_DEEAD */ + /** Name of the encryption algorithm, e.g. TINK_FPE, TINK-DAEAD */ String getAlgorithm(); /**