Add checks to handle null

- Add checks to handle null before access
- Add missing nullable annotation to overrided getAllItems methods

Signed-off-by: Arthit Suriyawongkul <arthit@gmail.com>

Author: bact

src/main/java/org/spdx/library/conversion/Spdx2to3Converter.java

@@ -31,6 +31,9 @@
 import org.spdx.library.ListedLicenses;
 import org.spdx.library.model.v2.SpdxConstantsCompatV2;
 import org.spdx.library.model.v2.SpdxCreatorInformation;
+import org.spdx.library.model.v2.pointer.ByteOffsetPointer;
+import org.spdx.library.model.v2.pointer.LineCharPointer;
+import org.spdx.library.model.v2.pointer.StartEndPointer;
 import org.spdx.library.model.v3_0_1.ModelObjectV3;
 import org.spdx.library.model.v3_0_1.SpdxConstantsV3;
 import org.spdx.library.model.v3_0_1.SpdxModelClassFactoryV3;
@@ -1461,21 +1464,29 @@ public Snippet convertAndStore(org.spdx.library.model.v2.SpdxSnippet fromSnippet
 		Snippet toSnippet = (Snippet)SpdxModelClassFactoryV3.getModelObject(toModelStore, 
 				toObjectUri, SpdxConstantsV3.SOFTWARE_SNIPPET, copyManager, true, defaultUriPrefix);
 		convertItemProperties(fromSnippet, toSnippet);
-		org.spdx.library.model.v2.pointer.StartEndPointer fromByteRange = fromSnippet.getByteRange();
+		StartEndPointer fromByteRange = fromSnippet.getByteRange();
 		if (Objects.nonNull(fromByteRange)) {
-            //noinspection DataFlowIssue
-            toSnippet.setByteRange(toSnippet.createPositiveIntegerRange(toModelStore.getNextId(IdType.Anonymous))
-					.setBeginIntegerRange(((org.spdx.library.model.v2.pointer.ByteOffsetPointer)fromByteRange.getStartPointer()).getOffset())
-					.setEndIntegerRange(((org.spdx.library.model.v2.pointer.ByteOffsetPointer)fromByteRange.getEndPointer()).getOffset())
-					.build());
+			// noinspection DataFlowIssue
+			ByteOffsetPointer startPointer = (ByteOffsetPointer) fromByteRange.getStartPointer();
+			ByteOffsetPointer endPointer = (ByteOffsetPointer) fromByteRange.getEndPointer();
+			if (Objects.nonNull(startPointer) && Objects.nonNull(endPointer)) {
+				toSnippet.setByteRange(toSnippet
+						.createPositiveIntegerRange(toModelStore.getNextId(IdType.Anonymous))
+						.setBeginIntegerRange(startPointer.getOffset())
+						.setEndIntegerRange(endPointer.getOffset()).build());
+			}
 		}
-		Optional<org.spdx.library.model.v2.pointer.StartEndPointer> fromLineRange = fromSnippet.getLineRange();
+		Optional<StartEndPointer> fromLineRange = fromSnippet.getLineRange();
 		if (fromLineRange.isPresent()) {
-            //noinspection DataFlowIssue
-            toSnippet.setLineRange(toSnippet.createPositiveIntegerRange(toModelStore.getNextId(IdType.Anonymous))
-					.setBeginIntegerRange(((org.spdx.library.model.v2.pointer.LineCharPointer)fromLineRange.get().getStartPointer()).getLineNumber())
-					.setEndIntegerRange(((org.spdx.library.model.v2.pointer.LineCharPointer)fromLineRange.get().getEndPointer()).getLineNumber())
-					.build());
+			// noinspection DataFlowIssue
+			LineCharPointer startPointer = (LineCharPointer) fromLineRange.get().getStartPointer();
+			LineCharPointer endPointer = (LineCharPointer) fromLineRange.get().getEndPointer();
+			if (Objects.nonNull(startPointer) && Objects.nonNull(endPointer)) {
+				toSnippet.setLineRange(toSnippet
+						.createPositiveIntegerRange(toModelStore.getNextId(IdType.Anonymous))
+						.setBeginIntegerRange(startPointer.getLineNumber())
+						.setEndIntegerRange(endPointer.getLineNumber()).build());
+			}
 		}
 		toSnippet.setSnippetFromFile(convertAndStore(Objects.requireNonNull(fromSnippet.getSnippetFromFile())));
 		return toSnippet;

src/main/java/org/spdx/storage/listedlicense/SpdxListedLicenseModelStore.java

@@ -947,7 +947,7 @@ public void removeProperty(String objectUri, PropertyDescriptor propertyDescript
 	}
 
 	@Override
-	public Stream<TypedValue> getAllItems(String documentUri, @Nullable String typeFilter)
+	public Stream<TypedValue> getAllItems(@Nullable String documentUri, @Nullable String typeFilter)
 			throws InvalidSPDXAnalysisException {
 		listedLicenseModificationLock.writeLock().lock();
 		try {

src/main/java/org/spdx/storage/listedlicense/SpdxV2ListedLicenseModelStore.java

@@ -25,6 +25,7 @@
 import java.util.Optional;
 import java.util.Set;
 import java.util.stream.Stream;
+import javax.annotation.Nullable;
 
 import org.spdx.core.InvalidSPDXAnalysisException;
 import org.spdx.core.TypedValue;
@@ -184,7 +185,7 @@ public void removeProperty(String objectUri,
 	 * @see org.spdx.storage.IModelStore#getAllItems(java.lang.String, java.lang.String)
 	 */
 	@Override
-	public Stream<TypedValue> getAllItems(String nameSpace, String typeFilter)
+	public Stream<TypedValue> getAllItems(@Nullable String nameSpace, @Nullable String typeFilter)
 			throws InvalidSPDXAnalysisException {
 		return baseStore.getAllItems(nameSpace, typeFilter).filter(tv -> !tv.getSpecVersion().startsWith("3."));
 	}

src/main/java/org/spdx/storage/listedlicense/SpdxV3ListedLicenseModelStore.java

@@ -24,6 +24,7 @@
 import java.util.Optional;
 import java.util.Set;
 import java.util.stream.Stream;
+import javax.annotation.Nullable;
 
 import org.spdx.core.InvalidSPDXAnalysisException;
 import org.spdx.core.TypedValue;
@@ -194,7 +195,7 @@ public void removeProperty(String objectUri,
 	 * @see org.spdx.storage.IModelStore#getAllItems(java.lang.String, java.lang.String)
 	 */
 	@Override
-	public Stream<TypedValue> getAllItems(String nameSpace, String typeFilter)
+	public Stream<TypedValue> getAllItems(@Nullable String nameSpace, @Nullable String typeFilter)
 			throws InvalidSPDXAnalysisException {
 		return baseStore.getAllItems(nameSpace, typeFilter).filter(tv -> tv.getSpecVersion().startsWith("3."));
 	}

src/main/java/org/spdx/storage/simple/ExtendedSpdxStore.java

@@ -22,6 +22,7 @@
 import java.util.Optional;
 import java.util.stream.Collectors;
 import java.util.stream.Stream;
+import javax.annotation.Nullable;
 
 import org.spdx.core.InvalidSPDXAnalysisException;
 import org.spdx.core.TypedValue;
@@ -111,7 +112,7 @@ public void removeProperty(String objectUri, PropertyDescriptor propertyDescript
 	 * @see org.spdx.storage.IModelStore#getAllItems(java.lang.String, java.lang.String)
 	 */
 	@Override
-	public Stream<TypedValue> getAllItems(String documentUri, String typeFilter) throws InvalidSPDXAnalysisException {
+	public Stream<TypedValue> getAllItems(@Nullable String documentUri, @Nullable String typeFilter) throws InvalidSPDXAnalysisException {
 		return baseStore.getAllItems(documentUri, typeFilter);
 	}
 

src/main/java/org/spdx/utility/license/LicenseExpressionParser.java

@@ -505,6 +505,7 @@ private static AnyLicenseInfo parseSimpleLicenseToken(String token, IModelStore
 	}
 
 	/**
+	 * Converts an external reference to a full object URI
 	 * @param externalReference String of the form [prefix]:[id] where [prefix] is a prefix in the customIdToUri and ID is the suffix of the object URI
 	 * @param customIdToUri Mapping of the id prefixes used in the license expression to the namespace preceding the external ID
 	 * @return the full object URI with the [prefix] replaced by the associated namespace
@@ -519,13 +520,15 @@ private static String convertToExternalObjectUri(String externalReference, @Null
 			throw new LicenseParserException("Invalid external ID: "+externalReference);
 		}
 		String namespace = null;
-		for (DictionaryEntry entry:customIdToUri) {
-			if (refParts[0].equals(entry.getIdPrefix())) {
-				Optional<String> entryValue = entry.getValue();
-				if (!entryValue.isPresent()) {
-					throw new LicenseParserException("No associated namespace for license ID prefix "+entry.getIdPrefix());
+		if (Objects.nonNull(customIdToUri)) {
+			for (DictionaryEntry entry : customIdToUri) {
+				if (refParts[0].equals(entry.getIdPrefix())) {
+					Optional<String> entryValue = entry.getValue();
+					if (!entryValue.isPresent()) {
+						throw new LicenseParserException("No associated namespace for license ID prefix "+entry.getIdPrefix());
+					}
+					namespace = entryValue.get();
 				}
-				namespace = entryValue.get();
 			}
 		}
 		if (Objects.isNull(namespace)) {