Schema Fixes

Signed-off-by: Basil Hess <bhe@zurich.ibm.com>

Author: bhess

schema/bom-1.7.schema.json

@@ -5536,12 +5536,12 @@
                   {
                     "title": "Common Extensions",
                     "required": [
-                      "name",
-                      "value"
+                      "commonExtensionName",
+                      "commonExtensionValue"
                     ],
                     "additionalProperties": false,
                     "properties": {
-                      "name": {
+                      "commonExtensionName": {
                         "type": "string",
                         "title": "name",
                         "description": "The name of the extension.",
@@ -5570,7 +5570,7 @@
                           "signedCertificateTimestamp": "Shows that the certificate has been publicly logged, which helps prevent the issuance of rogue certificates by a CA. Log ID, timestamp and signature as proof."
                         }
                       },
-                      "value": {
+                      "commonExtensionValue": {
                         "type": "string",
                         "title": "Value",
                         "description": "The value of the certificate extension."
@@ -5581,16 +5581,16 @@
                     "title": "Custom Extensions",
                     "description": "Custom extensions may convey application-specific or vendor-specific data not covered by standard extensions. The structure and semantics of custom extensions are typically defined outside of public standards. CycloneDX leverages properties to support this capability.",
                     "required": [
-                      "name"
+                      "customExtensionName"
                     ],
                     "additionalProperties": false,
                     "properties": {
-                      "name": {
+                      "customExtensionName": {
                         "type": "string",
                         "title": "Name",
                         "description": "The name for the custom certificate extension."
                       },
-                      "value": {
+                      "customExtensionValue": {
                         "type": "string",
                         "title": "Value",
                         "description": "The description of the custom certificate extension."
@@ -5802,27 +5802,40 @@
               "additionalProperties": false,
               "properties": {
                 "encr": {
-                  "type": "string",
+                  "type": "array",
                   "title": "Encryption Algorithms (ENCR)",
-                  "description": "Transform Type 1: encryption algorithms"
-                },
+                  "description": "Transform Type 1: encryption algorithms",
+                  "items": {
+                    "$ref": "#/definitions/ikeV2Enc",
+                    "title": "Encryption Algorithm (ENCR)"
+                  }
+                },  
                 "prf": {
                   "type": "array",
-                  "$ref": "#/definitions/ikeV2Prf",
                   "title": "Pseudorandom Functions (PRF)",
-                  "description": "Transform Type 2: pseudorandom functions"
+                  "description": "Transform Type 2: pseudorandom functions",
+                  "items": {
+                    "$ref": "#/definitions/ikeV2Prf",
+                    "title": "Pseudorandom Function (PRF)"
+                  }
                 },
                 "integ": {
                   "type": "array",
-                  "$ref": "#/definitions/ikeV2Integ",
                   "title": "Integrity Algorithms (INTEG)",
-                  "description": "Transform Type 3: integrity algorithms"
+                  "description": "Transform Type 3: integrity algorithms",
+                  "items": {
+                    "$ref": "#/definitions/ikeV2Integ",
+                    "title": "Integrity Algorithm (INTEG)"
+                  }
                 },
                 "ke": {
                   "type": "array",
-                  "$ref": "#/definitions/ikeV2Ke",
                   "title": "Key Exchange Methods (KE)",
-                  "description": "Transform Type 4: Key Exchange Method (KE) per [RFC 9370](https://www.ietf.org/rfc/rfc9370.html), formerly called Diffie-Hellman Group (D-H)."
+                  "description": "Transform Type 4: Key Exchange Method (KE) per [RFC 9370](https://www.ietf.org/rfc/rfc9370.html), formerly called Diffie-Hellman Group (D-H).",
+                  "items": {
+                    "$ref": "#/definitions/ikeV2Ke",
+                    "title": "Key Exchange Method (KE)"
+                  }
                 },
                 "esn": {
                   "type": "boolean",
@@ -5831,9 +5844,12 @@
                 },
                 "auth": {
                   "type": "array",
-                  "$ref": "#/definitions/ikeV2Auth",
                   "title": "IKEv2 Authentication methods",
-                  "description": "IKEv2 Authentication method per [RFC9593](https://www.ietf.org/rfc/rfc9593.html)."
+                  "description": "IKEv2 Authentication method per [RFC9593](https://www.ietf.org/rfc/rfc9593.html).",
+                  "items": {
+                    "$ref": "#/definitions/ikeV2Auth",
+                    "title": "IKEv2 Authentication Method"
+                  }
                 }
               }
             },

tools/src/test/resources/1.7/valid-cryptography-certificate-advanced-1.7.json

@@ -41,52 +41,52 @@
           "revocationDate": "2024-01-10T15:45:30Z",
           "certificateExtensions": [
             {
-              "extension": "basicConstraints",
-              "value": "CA:TRUE, pathlen:2"
+              "commonExtensionName": "basicConstraints",
+              "commonExtensionValue": "CA:TRUE, pathlen:2"
             },
             {
-              "extension": "keyUsage",
-              "value": "Certificate Sign, CRL Sign, Digital Signature"
+              "commonExtensionName": "keyUsage",
+              "commonExtensionValue": "Certificate Sign, CRL Sign, Digital Signature"
             },
             {
-              "extension": "extendedKeyUsage",
-              "value": "TLS Web Server Authentication, TLS Web Client Authentication"
+              "commonExtensionName": "extendedKeyUsage",
+              "commonExtensionValue": "TLS Web Server Authentication, TLS Web Client Authentication"
             },
             {
-              "extension": "subjectAlternativeName",
-              "value": "DNS:internal-ca.example.com, DNS:ca.internal.example.com, IP:192.168.1.100"
+              "commonExtensionName": "subjectAlternativeName",
+              "commonExtensionValue": "DNS:internal-ca.example.com, DNS:ca.internal.example.com, IP:192.168.1.100"
             },
             {
-              "extension": "authorityKeyIdentifier",
-              "value": "keyid:01:02:03:04:05:06:07:08:09:0A:0B:0C:0D:0E:0F:10:11:12:13:14"
+              "commonExtensionName": "authorityKeyIdentifier",
+              "commonExtensionValue": "keyid:01:02:03:04:05:06:07:08:09:0A:0B:0C:0D:0E:0F:10:11:12:13:14"
             },
             {
-              "extension": "subjectKeyIdentifier",
-              "value": "A1:B2:C3:D4:E5:F6:07:08:09:0A:0B:0C:0D:0E:0F:10:11:12:13:14"
+              "commonExtensionName": "subjectKeyIdentifier",
+              "commonExtensionValue": "A1:B2:C3:D4:E5:F6:07:08:09:0A:0B:0C:0D:0E:0F:10:11:12:13:14"
             },
             {
-              "extension": "crlDistributionPoints",
-              "value": "URI:http://crl.example.com/root-ca.crl"
+              "commonExtensionName": "crlDistributionPoints",
+              "commonExtensionValue": "URI:http://crl.example.com/root-ca.crl"
             },
             {
-              "extension": "authorityInformationAccess",
-              "value": "OCSP - URI:http://ocsp.example.com, CA Issuers - URI:http://certs.example.com/root-ca.crt"
+              "commonExtensionName": "authorityInformationAccess",
+              "commonExtensionValue": "OCSP - URI:http://ocsp.example.com, CA Issuers - URI:http://certs.example.com/root-ca.crt"
             },
             {
-              "extension": "certificatePolicies",
-              "value": "Policy: 1.2.3.4.5.6.7.8.1, CPS: http://www.example.com/cps"
+              "commonExtensionName": "certificatePolicies",
+              "commonExtensionValue": "Policy: 1.2.3.4.5.6.7.8.1, CPS: http://www.example.com/cps"
             },
             {
-              "name": "organizationalSecurityLevel",
-              "value": "HIGH"
+              "customExtensionName": "organizationalSecurityLevel",
+              "customExtensionValue": "HIGH"
             },
             {
-              "name": "incidentTrackingId",
-              "value": "SEC-2024-001"
+              "customExtensionName": "incidentTrackingId",
+              "customExtensionValue": "SEC-2024-001"
             },
             {
-              "name": "complianceFramework",
-              "value": "SOX, PCI-DSS Level 1, ISO 27001"
+              "customExtensionName": "complianceFramework",
+              "customExtensionValue": "SOX, PCI-DSS Level 1, ISO 27001"
             }
           ],
           "relatedCryptographicAssets": [
@@ -148,16 +148,16 @@
               "commonExtensionValue": "Log ID: ABCD1234..., Timestamp: 2024-01-01T00:00:00Z, Signature: 3045022100..."
             },
             {
-              "commonExtensionName": "deploymentEnvironment",
-              "commonExtensionValue": "PRODUCTION"
+              "customExtensionName": "deploymentEnvironment",
+              "customExtensionValue": "PRODUCTION"
             },
             {
-              "commonExtensionName": "businessCriticality",
-              "commonExtensionValue": "CRITICAL"
+              "customExtensionName": "businessCriticality",
+              "customExtensionValue": "CRITICAL"
             },
             {
-              "commonExtensionName": "autoRenewalEnabled",
-              "commonExtensionValue": "true"
+              "customExtensionName": "autoRenewalEnabled",
+              "customExtensionValue": "true"
             }
           ],
           "relatedCryptographicAssets": [