From 427b293c7d2c40f92f4bf2a3a744659896b8120b Mon Sep 17 00:00:00 2001 From: RedMser Date: Tue, 20 Sep 2022 18:28:01 +0200 Subject: [PATCH] Disallow invalid escape sequences in JSON.parse --- core/io/json.cpp | 8 +++- tests/core/io/test_json.h | 84 +++++++++++++++++++++++++++++++++++++++ 2 files changed, 91 insertions(+), 1 deletion(-) diff --git a/core/io/json.cpp b/core/io/json.cpp index a6e054a9fe63..496400a5ea7c 100644 --- a/core/io/json.cpp +++ b/core/io/json.cpp @@ -299,9 +299,15 @@ Error JSON::_get_token(const char32_t *p_str, int &index, int p_len, Token &r_to } } break; - default: { + case '"': + case '\\': + case '/': { res = next; } break; + default: { + r_err_str = "Invalid escape sequence."; + return ERR_PARSE_ERROR; + } } str += res; diff --git a/tests/core/io/test_json.h b/tests/core/io/test_json.h index 34a66ab6b544..73c7ac7a2efa 100644 --- a/tests/core/io/test_json.h +++ b/tests/core/io/test_json.h @@ -146,6 +146,90 @@ TEST_CASE("[JSON] Parsing objects (dictionaries)") { dictionary["empty_object"].hash() == Dictionary().hash(), "The parsed JSON should contain the expected values."); } + +TEST_CASE("[JSON] Parsing escape sequences") { + // Only certain escape sequences are valid according to the JSON specification. + // Others must result in a parsing error instead. + + JSON json; + + TypedArray valid_escapes; + valid_escapes.push_back("\";\""); + valid_escapes.push_back("\\;\\"); + valid_escapes.push_back("/;/"); + valid_escapes.push_back("b;\b"); + valid_escapes.push_back("f;\f"); + valid_escapes.push_back("n;\n"); + valid_escapes.push_back("r;\r"); + valid_escapes.push_back("t;\t"); + + SUBCASE("Basic valid escape sequences") { + for (int i = 0; i < valid_escapes.size(); i++) { + String valid_escape = valid_escapes[i]; + String valid_escape_string = valid_escape.get_slice(";", 0); + String valid_escape_value = valid_escape.get_slice(";", 1); + + String json_string = "\"\\"; + json_string += valid_escape_string; + json_string += "\""; + json.parse(json_string); + + CHECK_MESSAGE( + json.get_error_line() == 0, + vformat("Parsing valid escape sequence `%s` as JSON should parse successfully.", valid_escape_string)); + + String json_value = json.get_data(); + CHECK_MESSAGE( + json_value == valid_escape_value, + vformat("Parsing valid escape sequence `%s` as JSON should return the expected value.", valid_escape_string)); + } + } + + SUBCASE("Valid unicode escape sequences") { + String json_string = "\"\\u0000\""; + json.parse(json_string); + + CHECK_MESSAGE( + json.get_error_line() == 0, + vformat("Parsing valid unicode escape sequence with value `0000` as JSON should parse successfully.")); + + String json_value = json.get_data(); + CHECK_MESSAGE( + json_value == "\0", + vformat("Parsing valid unicode escape sequence with value `0000` as JSON should return the expected value.")); + } + + SUBCASE("Invalid escape sequences") { + for (char32_t i = 0; i < 128; i++) { + bool skip = false; + for (int j = 0; j < valid_escapes.size(); j++) { + String valid_escape = valid_escapes[j]; + String valid_escape_string = valid_escape.get_slice(";", 0); + if (valid_escape_string[0] == i) { + skip = true; + break; + } + } + + if (skip) { + continue; + } + + String json_string = "\"\\"; + json_string += i; + json_string += "\""; + Error err = json.parse(json_string); + + // TODO: Line number is currently kept on 0, despite an error occurring. This should be fixed in the JSON parser. + // CHECK_MESSAGE( + // json.get_error_line() != 0, + // vformat("Parsing invalid escape sequence with ASCII value `%d` as JSON should fail to parse.", i)); + CHECK_MESSAGE( + err == ERR_PARSE_ERROR, + vformat("Parsing invalid escape sequence with ASCII value `%d` as JSON should fail to parse with ERR_PARSE_ERROR.", i)); + } + } +} } // namespace TestJSON #endif // TEST_JSON_H