NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commit25a7812

committed

Fix JSON error reporting for many cases of erroneous string values.

The majority of error exit cases in json_lex_string() failed toset lex->token_terminator, causing problems for the error contextreporting code: it would see token_terminator less than token_startand do something more or less nuts. In v14 and up the end resultcould be as bad as a crash in report_json_context(). Olderversions accidentally avoided that fate; but all versions produceerror context lines that are far less useful than intended,because they'd stop at the end of the prior token instead ofcontinuing to where the actually-bad input is.To fix, invent some macros that make it less notationally painfulto do the right thing. Also add documentation about what thefunction is actually required to do; and in >= v14, add an assertionin report_json_context about token_terminator being sufficientlyfar advanced.Per report from Nikolay Shaplov. Back-patch to all supportedversions.Discussion:https://postgr.es/m/7332649.x5DLKWyVIX@thinkpad-pgpro

1 parent30dbdbe commit25a7812Copy full SHA for 25a7812

File tree

4 files changed

+78

-59

lines changed

src
- backend/utils/adt
  - jsonfuncs.c
- common
  - jsonapi.c
- test/regress/expected
  - json_encoding.out
  - json_encoding_1.out

4 files changed

+78

-59

lines changed

`‎src/backend/utils/adt/jsonfuncs.c`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -675,6 +675,7 @@ report_json_context(JsonLexContext *lex)`
`675`	`675`	`line_start=lex->line_start;`
`676`	`676`	`context_start=line_start;`
`677`	`677`	`context_end=lex->token_terminator;`
	`678`	`+Assert(context_end >=context_start);`
`678`	`679`
`679`	`680`	`/* Advance until we are close enough to context_end */`
`680`	`681`	`while (context_end-context_start >=50)`

`‎src/common/jsonapi.c`

Lines changed: 47 additions & 29 deletions

Original file line number	Diff line number	Diff line change
`@@ -697,6 +697,14 @@ json_lex(JsonLexContext *lex)`
`697`	`697`
`698`	`698`	`/*`
`699`	`699`	`* The next token in the input stream is known to be a string; lex it.`
	`700`	`+ *`
	`701`	`+ * If lex->strval isn't NULL, fill it with the decoded string.`
	`702`	`+ * Set lex->token_terminator to the end of the decoded input, and in`
	`703`	`+ * success cases, transfer its previous value to lex->prev_token_terminator.`
	`704`	`+ * Return JSON_SUCCESS or an error code.`
	`705`	`+ *`
	`706`	`+ * Note: be careful that all error exits advance lex->token_terminator`
	`707`	`+ * to the point after the character we detected the error on.`
`700`	`708`	`*/`
`701`	`709`	`staticinlineJsonParseErrorType`
`702`	`710`	`json_lex_string(JsonLexContext*lex)`
`@@ -705,6 +713,19 @@ json_lex_string(JsonLexContext *lex)`
`705`	`713`	`char*constend=lex->input+lex->input_length;`
`706`	`714`	`inthi_surrogate=-1;`
`707`	`715`
	`716`	`+/* Convenience macros for error exits */`
	`717`	`+#defineFAIL_AT_CHAR_START(code) \`
	`718`	`+do { \`
	`719`	`+lex->token_terminator = s; \`
	`720`	`+return code; \`
	`721`	`+} while (0)`
	`722`	`+#defineFAIL_AT_CHAR_END(code) \`
	`723`	`+do { \`
	`724`	`+lex->token_terminator = \`
	`725`	`+s + pg_encoding_mblen_bounded(lex->input_encoding, s); \`
	`726`	`+return code; \`
	`727`	`+} while (0)`
	`728`	`+`
`708`	`729`	`if (lex->strval!=NULL)`
`709`	`730`	`resetStringInfo(lex->strval);`
`710`	`731`
`@@ -715,21 +736,15 @@ json_lex_string(JsonLexContext *lex)`
`715`	`736`	`s++;`
`716`	`737`	`/* Premature end of the string. */`
`717`	`738`	`if (s >=end)`
`718`		`-{`
`719`		`-lex->token_terminator=s;`
`720`		`-returnJSON_INVALID_TOKEN;`
`721`		`-}`
	`739`	`+FAIL_AT_CHAR_START(JSON_INVALID_TOKEN);`
`722`	`740`	`elseif (*s=='"')`
`723`	`741`	`break;`
`724`	`742`	`elseif (*s=='\\')`
`725`	`743`	`{`
`726`	`744`	`/* OK, we have an escape character. */`
`727`	`745`	`s++;`
`728`	`746`	`if (s >=end)`
`729`		`-{`
`730`		`-lex->token_terminator=s;`
`731`		`-returnJSON_INVALID_TOKEN;`
`732`		`-}`
	`747`	`+FAIL_AT_CHAR_START(JSON_INVALID_TOKEN);`
`733`	`748`	`elseif (*s=='u')`
`734`	`749`	`{`
`735`	`750`	`inti;`
`@@ -739,21 +754,15 @@ json_lex_string(JsonLexContext *lex)`
`739`	`754`	`{`
`740`	`755`	`s++;`
`741`	`756`	`if (s >=end)`
`742`		`-{`
`743`		`-lex->token_terminator=s;`
`744`		`-returnJSON_INVALID_TOKEN;`
`745`		`-}`
	`757`	`+FAIL_AT_CHAR_START(JSON_INVALID_TOKEN);`
`746`	`758`	`elseif (s >='0'&&s <='9')`
`747`	`759`	`ch= (ch16)+ (s-'0');`
`748`	`760`	`elseif (s >='a'&&s <='f')`
`749`	`761`	`ch= (ch16)+ (s-'a')+10;`
`750`	`762`	`elseif (s >='A'&&s <='F')`
`751`	`763`	`ch= (ch16)+ (s-'A')+10;`
`752`	`764`	`else`
`753`		`-{`
`754`		`-lex->token_terminator=s+pg_encoding_mblen_bounded(lex->input_encoding,s);`
`755`		`-returnJSON_UNICODE_ESCAPE_FORMAT;`
`756`		`-}`
	`765`	`+FAIL_AT_CHAR_END(JSON_UNICODE_ESCAPE_FORMAT);`
`757`	`766`	`}`
`758`	`767`	`if (lex->strval!=NULL)`
`759`	`768`	`{`
`@@ -763,20 +772,20 @@ json_lex_string(JsonLexContext *lex)`
`763`	`772`	`if (is_utf16_surrogate_first(ch))`
`764`	`773`	`{`
`765`	`774`	`if (hi_surrogate!=-1)`
`766`		`-returnJSON_UNICODE_HIGH_SURROGATE;`
	`775`	`+FAIL_AT_CHAR_END(JSON_UNICODE_HIGH_SURROGATE);`
`767`	`776`	`hi_surrogate=ch;`
`768`	`777`	`continue;`
`769`	`778`	`}`
`770`	`779`	`elseif (is_utf16_surrogate_second(ch))`
`771`	`780`	`{`
`772`	`781`	`if (hi_surrogate==-1)`
`773`		`-returnJSON_UNICODE_LOW_SURROGATE;`
	`782`	`+FAIL_AT_CHAR_END(JSON_UNICODE_LOW_SURROGATE);`
`774`	`783`	`ch=surrogate_pair_to_codepoint(hi_surrogate,ch);`
`775`	`784`	`hi_surrogate=-1;`
`776`	`785`	`}`
`777`	`786`
`778`	`787`	`if (hi_surrogate!=-1)`
`779`		`-returnJSON_UNICODE_LOW_SURROGATE;`
	`788`	`+FAIL_AT_CHAR_END(JSON_UNICODE_LOW_SURROGATE);`
`780`	`789`
`781`	`790`	`/*`
`782`	`791`	`* Reject invalid cases. We can't have a value above`
`@@ -786,7 +795,7 @@ json_lex_string(JsonLexContext *lex)`
`786`	`795`	`if (ch==0)`
`787`	`796`	`{`
`788`	`797`	`/* We can't allow this, since our TEXT type doesn't */`
`789`		`-returnJSON_UNICODE_CODE_POINT_ZERO;`
	`798`	`+FAIL_AT_CHAR_END(JSON_UNICODE_CODE_POINT_ZERO);`
`790`	`799`	`}`
`791`	`800`
`792`	`801`	`/*`
`@@ -800,7 +809,7 @@ json_lex_string(JsonLexContext *lex)`
`800`	`809`	`charcbuf[MAX_UNICODE_EQUIVALENT_STRING+1];`
`801`	`810`
`802`	`811`	`if (!pg_unicode_to_server_noerror(ch, (unsignedchar*)cbuf))`
`803`		`-returnJSON_UNICODE_UNTRANSLATABLE;`
	`812`	`+FAIL_AT_CHAR_END(JSON_UNICODE_UNTRANSLATABLE);`
`804`	`813`	`appendStringInfoString(lex->strval,cbuf);`
`805`	`814`	`}`
`806`	`815`	`#else`
`@@ -820,14 +829,14 @@ json_lex_string(JsonLexContext *lex)`
`820`	`829`	`appendStringInfoChar(lex->strval, (char)ch);`
`821`	`830`	`}`
`822`	`831`	`else`
`823`		`-returnJSON_UNICODE_HIGH_ESCAPE;`
	`832`	`+FAIL_AT_CHAR_END(JSON_UNICODE_HIGH_ESCAPE);`
`824`	`833`	`#endif/* FRONTEND */`
`825`	`834`	`}`
`826`	`835`	`}`
`827`	`836`	`elseif (lex->strval!=NULL)`
`828`	`837`	`{`
`829`	`838`	`if (hi_surrogate!=-1)`
`830`		`-returnJSON_UNICODE_LOW_SURROGATE;`
	`839`	`+FAIL_AT_CHAR_END(JSON_UNICODE_LOW_SURROGATE);`
`831`	`840`
`832`	`841`	`switch (*s)`
`833`	`842`	`{`
`@@ -852,10 +861,14 @@ json_lex_string(JsonLexContext *lex)`
`852`	`861`	`appendStringInfoChar(lex->strval,'\t');`
`853`	`862`	`break;`
`854`	`863`	`default:`
`855`		`-/* Not a valid string escape, so signal error. */`
	`864`	`+`
	`865`	`+/*`
	`866`	`+ * Not a valid string escape, so signal error. We`
	`867`	`+ * adjust token_start so that just the escape sequence`
	`868`	`+ * is reported, not the whole string.`
	`869`	`+ */`
`856`	`870`	`lex->token_start=s;`
`857`		`-lex->token_terminator=s+pg_encoding_mblen_bounded(lex->input_encoding,s);`
`858`		`-returnJSON_ESCAPING_INVALID;`
	`871`	`+FAIL_AT_CHAR_END(JSON_ESCAPING_INVALID);`
`859`	`872`	`}`
`860`	`873`	`}`
`861`	`874`	`elseif (strchr("\"\\/bfnrt",*s)==NULL)`
`@@ -868,16 +881,15 @@ json_lex_string(JsonLexContext *lex)`
`868`	`881`	`* shown it's not a performance win.`
`869`	`882`	`*/`
`870`	`883`	`lex->token_start=s;`
`871`		`-lex->token_terminator=s+pg_encoding_mblen_bounded(lex->input_encoding,s);`
`872`		`-returnJSON_ESCAPING_INVALID;`
	`884`	`+FAIL_AT_CHAR_END(JSON_ESCAPING_INVALID);`
`873`	`885`	`}`
`874`	`886`	`}`
`875`	`887`	`else`
`876`	`888`	`{`
`877`	`889`	`char*p=s;`
`878`	`890`
`879`	`891`	`if (hi_surrogate!=-1)`
`880`		`-returnJSON_UNICODE_LOW_SURROGATE;`
	`892`	`+FAIL_AT_CHAR_END(JSON_UNICODE_LOW_SURROGATE);`
`881`	`893`
`882`	`894`	`/*`
`883`	`895`	`* Skip to the first byte that requires special handling, so we`
`@@ -917,12 +929,18 @@ json_lex_string(JsonLexContext *lex)`
`917`	`929`	`}`
`918`	`930`
`919`	`931`	`if (hi_surrogate!=-1)`
	`932`	`+{`
	`933`	`+lex->token_terminator=s+1;`
`920`	`934`	`returnJSON_UNICODE_LOW_SURROGATE;`
	`935`	`+}`
`921`	`936`
`922`	`937`	`/* Hooray, we found the end of the string! */`
`923`	`938`	`lex->prev_token_terminator=lex->token_terminator;`
`924`	`939`	`lex->token_terminator=s+1;`
`925`	`940`	`returnJSON_SUCCESS;`
	`941`	`+`
	`942`	`+#undef FAIL_AT_CHAR_START`
	`943`	`+#undef FAIL_AT_CHAR_END`
`926`	`944`	`}`
`927`	`945`
`928`	`946`	`/*`

`‎src/test/regress/expected/json_encoding.out`

Lines changed: 12 additions & 12 deletions

Original file line number	Diff line number	Diff line change
`@@ -56,19 +56,19 @@ select json '{ "a": "\ud83d\ude04\ud83d\udc36" }' -> 'a' as correct_in_utf8;`
`56`	`56`	`select json '{ "a": "\ud83d\ud83d" }' -> 'a'; -- 2 high surrogates in a row`
`57`	`57`	`ERROR: invalid input syntax for type json`
`58`	`58`	`DETAIL: Unicode high surrogate must not follow a high surrogate.`
`59`		`-CONTEXT: JSON data, line 1: { "a":...`
	`59`	`+CONTEXT: JSON data, line 1: { "a": "\ud83d\ud83d...`
`60`	`60`	`select json '{ "a": "\ude04\ud83d" }' -> 'a'; -- surrogates in wrong order`
`61`	`61`	`ERROR: invalid input syntax for type json`
`62`	`62`	`DETAIL: Unicode low surrogate must follow a high surrogate.`
`63`		`-CONTEXT: JSON data, line 1: { "a":...`
	`63`	`+CONTEXT: JSON data, line 1: { "a": "\ude04...`
`64`	`64`	`select json '{ "a": "\ud83dX" }' -> 'a'; -- orphan high surrogate`
`65`	`65`	`ERROR: invalid input syntax for type json`
`66`	`66`	`DETAIL: Unicode low surrogate must follow a high surrogate.`
`67`		`-CONTEXT: JSON data, line 1: { "a":...`
	`67`	`+CONTEXT: JSON data, line 1: { "a": "\ud83dX...`
`68`	`68`	`select json '{ "a": "\ude04X" }' -> 'a'; -- orphan low surrogate`
`69`	`69`	`ERROR: invalid input syntax for type json`
`70`	`70`	`DETAIL: Unicode low surrogate must follow a high surrogate.`
`71`		`-CONTEXT: JSON data, line 1: { "a":...`
	`71`	`+CONTEXT: JSON data, line 1: { "a": "\ude04...`
`72`	`72`	`--handling of simple unicode escapes`
`73`	`73`	`select json '{ "a": "the Copyright \u00a9 sign" }' as correct_in_utf8;`
`74`	`74`	`correct_in_utf8`
`@@ -121,7 +121,7 @@ select json '{ "a": "dollar \\u0024 character" }' ->> 'a' as not_an_escape;`
`121`	`121`	`select json '{ "a": "null \u0000 escape" }' ->> 'a' as fails;`
`122`	`122`	`ERROR: unsupported Unicode escape sequence`
`123`	`123`	`DETAIL: \u0000 cannot be converted to text.`
`124`		`-CONTEXT: JSON data, line 1: { "a":...`
	`124`	`+CONTEXT: JSON data, line 1: { "a": "null \u0000...`
`125`	`125`	`select json '{ "a": "null \\u0000 escape" }' ->> 'a' as not_an_escape;`
`126`	`126`	`not_an_escape`
`127`	`127`	`--------------------`
`@@ -159,7 +159,7 @@ ERROR: unsupported Unicode escape sequence`
`159`	`159`	`LINE 1: SELECT '"\u0000"'::jsonb;`
`160`	`160`	`^`
`161`	`161`	`DETAIL: \u0000 cannot be converted to text.`
`162`		`-CONTEXT: JSON data, line 1: ...`
	`162`	`+CONTEXT: JSON data, line 1:"\u0000...`
`163`	`163`	`-- use octet_length here so we don't get an odd unicode char in the`
`164`	`164`	`-- output`
`165`	`165`	`SELECT octet_length('"\uaBcD"'::jsonb::text); -- OK, uppercase and lower case both OK`
`@@ -180,25 +180,25 @@ ERROR: invalid input syntax for type json`
`180`	`180`	`LINE 1: SELECT jsonb '{ "a": "\ud83d\ud83d" }' -> 'a';`
`181`	`181`	`^`
`182`	`182`	`DETAIL: Unicode high surrogate must not follow a high surrogate.`
`183`		`-CONTEXT: JSON data, line 1: { "a":...`
	`183`	`+CONTEXT: JSON data, line 1: { "a": "\ud83d\ud83d...`
`184`	`184`	`SELECT jsonb '{ "a": "\ude04\ud83d" }' -> 'a'; -- surrogates in wrong order`
`185`	`185`	`ERROR: invalid input syntax for type json`
`186`	`186`	`LINE 1: SELECT jsonb '{ "a": "\ude04\ud83d" }' -> 'a';`
`187`	`187`	`^`
`188`	`188`	`DETAIL: Unicode low surrogate must follow a high surrogate.`
`189`		`-CONTEXT: JSON data, line 1: { "a":...`
	`189`	`+CONTEXT: JSON data, line 1: { "a": "\ude04...`
`190`	`190`	`SELECT jsonb '{ "a": "\ud83dX" }' -> 'a'; -- orphan high surrogate`
`191`	`191`	`ERROR: invalid input syntax for type json`
`192`	`192`	`LINE 1: SELECT jsonb '{ "a": "\ud83dX" }' -> 'a';`
`193`	`193`	`^`
`194`	`194`	`DETAIL: Unicode low surrogate must follow a high surrogate.`
`195`		`-CONTEXT: JSON data, line 1: { "a":...`
	`195`	`+CONTEXT: JSON data, line 1: { "a": "\ud83dX...`
`196`	`196`	`SELECT jsonb '{ "a": "\ude04X" }' -> 'a'; -- orphan low surrogate`
`197`	`197`	`ERROR: invalid input syntax for type json`
`198`	`198`	`LINE 1: SELECT jsonb '{ "a": "\ude04X" }' -> 'a';`
`199`	`199`	`^`
`200`	`200`	`DETAIL: Unicode low surrogate must follow a high surrogate.`
`201`		`-CONTEXT: JSON data, line 1: { "a":...`
	`201`	`+CONTEXT: JSON data, line 1: { "a": "\ude04...`
`202`	`202`	`-- handling of simple unicode escapes`
`203`	`203`	`SELECT jsonb '{ "a": "the Copyright \u00a9 sign" }' as correct_in_utf8;`
`204`	`204`	`correct_in_utf8`
`@@ -223,7 +223,7 @@ ERROR: unsupported Unicode escape sequence`
`223`	`223`	`LINE 1: SELECT jsonb '{ "a": "null \u0000 escape" }' as fails;`
`224`	`224`	`^`
`225`	`225`	`DETAIL: \u0000 cannot be converted to text.`
`226`		`-CONTEXT: JSON data, line 1: { "a":...`
	`226`	`+CONTEXT: JSON data, line 1: { "a": "null \u0000...`
`227`	`227`	`SELECT jsonb '{ "a": "null \\u0000 escape" }' as not_an_escape;`
`228`	`228`	`not_an_escape`
`229`	`229`	`------------------------------`
`@@ -253,7 +253,7 @@ ERROR: unsupported Unicode escape sequence`
`253`	`253`	`LINE 1: SELECT jsonb '{ "a": "null \u0000 escape" }' ->> 'a' as fai...`
`254`	`254`	`^`
`255`	`255`	`DETAIL: \u0000 cannot be converted to text.`
`256`		`-CONTEXT: JSON data, line 1: { "a":...`
	`256`	`+CONTEXT: JSON data, line 1: { "a": "null \u0000...`
`257`	`257`	`SELECT jsonb '{ "a": "null \\u0000 escape" }' ->> 'a' as not_an_escape;`
`258`	`258`	`not_an_escape`
`259`	`259`	`--------------------`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit25a7812

File tree

4 files changed

4 files changed

`‎src/backend/utils/adt/jsonfuncs.c`

`‎src/common/jsonapi.c`

`‎src/test/regress/expected/json_encoding.out`

0 commit comments