fix: Widen sensitive trait check to nested members of list and map members. (#783)

* Widen sensitive trait check to nested members of list and map members.

* Simplified code using Kotlin's partition method.

* Narrow redaction to only redact keys or values in map shapes, if only values / keys are sensitive.

* ktlint

* Clean up code & add codegen tests.

* Add missing optional chaining operator for accessing keys / values of map.

---------

Co-authored-by: Sichan Yoo <[email protected]>

Author: sichanyoo

smithy-swift-codegen/src/main/kotlin/software/amazon/smithy/swift/codegen/DirectedSwiftCodegen.kt

@@ -22,6 +22,7 @@ import software.amazon.smithy.model.shapes.ServiceShape
 import software.amazon.smithy.model.traits.SensitiveTrait
 import software.amazon.smithy.swift.codegen.core.GenerationContext
 import software.amazon.smithy.swift.codegen.integration.CustomDebugStringConvertibleGenerator
+import software.amazon.smithy.swift.codegen.integration.CustomDebugStringConvertibleGenerator.Companion.isSensitive
 import software.amazon.smithy.swift.codegen.integration.ProtocolGenerator
 import software.amazon.smithy.swift.codegen.integration.SwiftIntegration
 import software.amazon.smithy.swift.codegen.model.hasTrait
@@ -114,7 +115,7 @@ class DirectedSwiftCodegen(val context: PluginContext) :
             StructureGenerator(model, symbolProvider, writer, shape, settings, protocolGenerator?.serviceErrorProtocolSymbol).render()
         }
 
-        if (shape.hasTrait<SensitiveTrait>() || shape.members().any { it.hasTrait<SensitiveTrait>() || model.expectShape(it.target).hasTrait<SensitiveTrait>() }) {
+        if (shape.hasTrait<SensitiveTrait>() || shape.members().any { it.isSensitive(model) }) {
             writers.useShapeExtensionWriter(shape, "CustomDebugStringConvertible") { writer: SwiftWriter ->
                 CustomDebugStringConvertibleGenerator(symbolProvider, writer, shape, model).render()
             }
@@ -134,7 +135,7 @@ class DirectedSwiftCodegen(val context: PluginContext) :
             StructureGenerator(model, symbolProvider, writer, shape, settings, protocolGenerator?.serviceErrorProtocolSymbol).renderErrors()
         }
 
-        if (shape.hasTrait<SensitiveTrait>() || shape.members().any { it.hasTrait<SensitiveTrait>() || model.expectShape(it.target).hasTrait<SensitiveTrait>() }) {
+        if (shape.hasTrait<SensitiveTrait>() || shape.members().any { it.isSensitive(model) }) {
             writers.useShapeExtensionWriter(shape, "CustomDebugStringConvertible") { writer: SwiftWriter ->
                 CustomDebugStringConvertibleGenerator(symbolProvider, writer, shape, model).render()
             }

smithy-swift-codegen/src/main/kotlin/software/amazon/smithy/swift/codegen/integration/CustomDebugStringConvertibleGenerator.kt

@@ -8,7 +8,10 @@ package software.amazon.smithy.swift.codegen.integration
 import software.amazon.smithy.codegen.core.Symbol
 import software.amazon.smithy.codegen.core.SymbolProvider
 import software.amazon.smithy.model.Model
+import software.amazon.smithy.model.shapes.ListShape
+import software.amazon.smithy.model.shapes.MapShape
 import software.amazon.smithy.model.shapes.MemberShape
+import software.amazon.smithy.model.shapes.Shape
 import software.amazon.smithy.model.shapes.StructureShape
 import software.amazon.smithy.model.traits.ErrorTrait
 import software.amazon.smithy.model.traits.SensitiveTrait
@@ -25,6 +28,14 @@ class CustomDebugStringConvertibleGenerator(
 ) {
     companion object {
         const val REDACT_STRING = "CONTENT_REDACTED"
+
+        fun Shape.isSensitive(model: Model): Boolean = when {
+            this is MemberShape -> model.expectShape(target).isSensitive(model)
+            hasTrait<SensitiveTrait>() -> true
+            this is ListShape -> member.isSensitive(model)
+            this is MapShape -> key.isSensitive(model) || value.isSensitive(model)
+            else -> false
+        }
     }
 
     private val structSymbol: Symbol by lazy {
@@ -48,14 +59,7 @@ class CustomDebugStringConvertibleGenerator(
     private fun renderDescription() {
         val symbolName = structSymbol.name
         writer.writeInline("\"$symbolName(")
-        val membersWithoutSensitiveTrait = membersSortedByName
-            .filterNot { it.hasTrait<SensitiveTrait>() || model.expectShape(it.target).hasTrait<SensitiveTrait>() }
-            .sortedBy { it.memberName }
-            .toList()
-        val membersWithSensitiveTrait = membersSortedByName
-            .filter { it.hasTrait<SensitiveTrait>() || model.expectShape(it.target).hasTrait<SensitiveTrait>() }
-            .sortedBy { it.memberName }
-            .toList()
+        val (membersWithSensitiveTrait, membersWithoutSensitiveTrait) = membersSortedByName.partition { it.isSensitive(model) }
         for (member in membersWithoutSensitiveTrait) {
             renderMemberDescription(writer, member, false)
             renderComma(writer, member != membersWithoutSensitiveTrait.last())
@@ -77,7 +81,12 @@ class CustomDebugStringConvertibleGenerator(
     ) {
         val memberNames = symbolProvider.toMemberNames(member)
         val path = "properties.".takeIf { shape.hasTrait<ErrorTrait>() } ?: ""
-        val description = if (isRedacted) "\\\"$REDACT_STRING\\\"" else "\\(${SwiftTypes.String}(describing: $path${memberNames.first}))"
+        var description = ""
+        if (model.expectShape(member.target).isMapShape) {
+            description = getStringForLoggingMapShape(model.expectShape(member.target).asMapShape().get(), path, memberNames)
+        } else {
+            description = if (isRedacted) "\\\"$REDACT_STRING\\\"" else "\\(${SwiftTypes.String}(describing: $path${memberNames.first}))"
+        }
         writer.writeInline("${memberNames.second}: $description")
     }
 
@@ -86,4 +95,12 @@ class CustomDebugStringConvertibleGenerator(
             writer.writeInline(", ")
         }
     }
+
+    private fun getStringForLoggingMapShape(member: MapShape, path: String, memberNames: Pair<String, String>): String {
+        if (member.hasTrait<SensitiveTrait>()) return "\\\"$REDACT_STRING\\\""
+        if (member.key.isSensitive(model) && member.value.isSensitive(model)) return "\\\"$REDACT_STRING\\\""
+        if (member.key.isSensitive(model)) return "[keys: \\\"$REDACT_STRING\\\", values: \\(${SwiftTypes.String}(describing: $path${memberNames.first}?.values))]"
+        if (member.value.isSensitive(model)) return "[keys: \\(${SwiftTypes.String}(describing: $path${memberNames.first}?.keys)), values: \\\"$REDACT_STRING\\\"]"
+        return "\\(${SwiftTypes.String}(describing: $path${memberNames.first}))"
+    }
 }

smithy-swift-codegen/src/test/kotlin/CustomDebugStringConvertibleGeneratorTests.kt

@@ -0,0 +1,69 @@
+import io.kotest.matchers.string.shouldContainOnlyOnce
+import org.junit.jupiter.api.Test
+import software.amazon.smithy.swift.codegen.DefaultClientConfigurationIntegration
+
+class CustomDebugStringConvertibleGeneratorTests {
+    @Test
+    fun `list with sensitive trait gets redacted correctly`() {
+        val context = setupTests("custom-debug-string-convertible-generator-test.smithy", "com.test#Example")
+        val contents = getFileContents(context.manifest, "Sources/RestJson/models/GetFooOutput+CustomDebugStringConvertible.swift")
+        contents.shouldSyntacticSanityCheck()
+        contents.shouldContainOnlyOnce("listWithSensitiveTrait: \\\"CONTENT_REDACTED\\\"")
+    }
+
+    @Test
+    fun `list with member shape that targets a shape with sensitive trait gets redacted correctly`() {
+        val context = setupTests("custom-debug-string-convertible-generator-test.smithy", "com.test#Example")
+        val contents = getFileContents(context.manifest, "Sources/RestJson/models/GetFooOutput+CustomDebugStringConvertible.swift")
+        contents.shouldSyntacticSanityCheck()
+        contents.shouldContainOnlyOnce("listWithSensitiveTargetedByMember: \\\"CONTENT_REDACTED\\\"")
+    }
+
+    @Test
+    fun `map with sensitive trait gets redacted correctly`() {
+        val context = setupTests("custom-debug-string-convertible-generator-test.smithy", "com.test#Example")
+        val contents = getFileContents(context.manifest, "Sources/RestJson/models/GetFooOutput+CustomDebugStringConvertible.swift")
+        contents.shouldSyntacticSanityCheck()
+        contents.shouldContainOnlyOnce("mapWithSensitiveTrait: \\\"CONTENT_REDACTED\\\"")
+    }
+
+    @Test
+    fun `map with key that targets a shape with sensitive trait gets redacted correctly`() {
+        val context = setupTests("custom-debug-string-convertible-generator-test.smithy", "com.test#Example")
+        val contents = getFileContents(context.manifest, "Sources/RestJson/models/GetFooOutput+CustomDebugStringConvertible.swift")
+        contents.shouldSyntacticSanityCheck()
+        contents.shouldContainOnlyOnce("mapWithSensitiveTargetedByKey: [keys: \\\"CONTENT_REDACTED\\\", values: \\(Swift.String(describing: mapWithSensitiveTargetedByKey?.values))]")
+    }
+
+    @Test
+    fun `map with value that targets a shape with sensitive trait gets redacted correctly`() {
+        val context = setupTests("custom-debug-string-convertible-generator-test.smithy", "com.test#Example")
+        val contents = getFileContents(context.manifest, "Sources/RestJson/models/GetFooOutput+CustomDebugStringConvertible.swift")
+        contents.shouldSyntacticSanityCheck()
+        contents.shouldContainOnlyOnce("mapWithSensitiveTargetedByValue: [keys: \\(Swift.String(describing: mapWithSensitiveTargetedByValue?.keys)), values: \\\"CONTENT_REDACTED\\\"]")
+    }
+
+    @Test
+    fun `map with key and value that target shapes with sensitive trait gets redacted correctly`() {
+        val context = setupTests("custom-debug-string-convertible-generator-test.smithy", "com.test#Example")
+        val contents = getFileContents(context.manifest, "Sources/RestJson/models/GetFooOutput+CustomDebugStringConvertible.swift")
+        contents.shouldSyntacticSanityCheck()
+        contents.shouldContainOnlyOnce("mapWithSensitiveTargetedByBoth: \\\"CONTENT_REDACTED\\\"")
+    }
+
+    private fun setupTests(smithyFile: String, serviceShapeId: String): TestContext {
+        val context = TestContext.initContextFrom(
+            listOf(smithyFile),
+            serviceShapeId,
+            MockHTTPRestJsonProtocolGenerator(),
+            { model -> model.defaultSettings(serviceShapeId, "RestJson", "2019-12-16", "Rest Json Protocol") },
+            listOf(DefaultClientConfigurationIntegration())
+        )
+
+        context.generator.initializeMiddleware(context.generationCtx)
+        context.generator.generateProtocolClient(context.generationCtx)
+        context.generator.generateSerializers(context.generationCtx)
+        context.generationCtx.delegator.flushWriters()
+        return context
+    }
+}

smithy-swift-codegen/src/test/resources/custom-debug-string-convertible-generator-test.smithy

@@ -0,0 +1,66 @@
+$version: "1.0"
+namespace com.test
+
+use aws.protocols#awsJson1_1
+
+@awsJson1_1
+service Example {
+    version: "1.0.0",
+    operations: [
+        GetFoo
+    ]
+}
+
+@http(method: "GET", uri: "/foo")
+operation GetFoo {
+    input: GetFooRequest,
+    output: GetFooResponse
+}
+
+structure GetFooRequest {}
+
+structure GetFooResponse {
+    listWithSensitiveTrait: SensitiveList
+    listWithSensitiveTargetedByMember: SensitiveMemberTargetList
+
+    mapWithSensitiveTrait: SensitiveMap
+    mapWithSensitiveTargetedByKey: SensitiveKeyTargetMap
+    mapWithSensitiveTargetedByValue: SensitiveValueTargetMap
+    mapWithSensitiveTargetedByBoth: SensitiveTargetMap
+}
+
+@sensitive
+list SensitiveList {
+    member: String
+}
+
+list SensitiveMemberTargetList {
+    member: SensitiveTargetStruct
+}
+
+@sensitive
+map SensitiveMap {
+    key: String
+    value: String
+}
+
+map SensitiveKeyTargetMap {
+    key: SensitiveTargetString
+    value: String
+}
+
+map SensitiveValueTargetMap {
+    key: String
+    value: SensitiveTargetStruct
+}
+
+map SensitiveTargetMap {
+    key: SensitiveTargetString
+    value: SensitiveTargetStruct
+}
+
+@sensitive
+structure SensitiveTargetStruct {}
+
+@sensitive
+string SensitiveTargetString