Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Duplicate
Priority: Minor - P4
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Confidence Status:
None

Assigned Teams:

C Drivers

Documentation Changes Summary:

Hide

1. What would you like to communicate to the user about this feature?
2. Would you like the user to see examples of the syntax and/or executable code and its output?
3. Which versions of the driver/connector does this apply to?

Show
1. What would you like to communicate to the user about this feature? 2. Would you like the user to see examples of the syntax and/or executable code and its output? 3. Which versions of the driver/connector does this apply to?

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

Summary

bson_validate returns true for invalid utf8 string. Please refer to the example below for more detail.

The error seems to occur in _bson_iter_validate_document (called within bson_validate ). The validation process is based on iteration by bson_iter_visit_all, however, utf8 validation will be also called in bson_iter_visit_all, so the validation function _bson_iter_validate_utf8 won't be call for invalid utf8.

Code in bson_iter_visit_all:

case BSON_TYPE_UTF8: {
   uint32_t utf8_len;
   const char *utf8;

   utf8 = bson_iter_utf8 (iter, &utf8_len);

   if (!bson_utf8_validate (utf8, utf8_len, true)) {
      iter->err_off = iter->off;
      return true;
   }

   if (VISIT_UTF8 (iter, key, utf8_len, utf8, data)) {
      return true;
   }
} break;

Environment

Example below is tested with mongoc 1.29.1 and 1.17.6, gcc 10.2.1.

How to Reproduce

#include <bson/bson.h>

int
main (int argc, char *argv[])
{
   static const char invalid[] = {0xed, 0xa0, 0xa5, 0};

   printf ("validate utf8: %d\n",
           bson_utf8_validate (invalid, strlen (invalid), false));
   // output: validate utf8: 0

   bson_t b;
   bson_init (&b);
   printf ("append utf8: %d\n", bson_append_utf8 (&b, "key", -1, invalid, -1));
   // output: append utf8: 1

   bson_iter_t child;
   if (!bson_iter_init (&child, &b)) {
      printf ("bson_iter_init failed\n");
      return 1;
   }

   static bson_visitor_t bson_validate_funcs = {};
   bson_iter_visit_all (&child, &bson_validate_funcs, NULL);
   printf ("bson iter err: %d\n", child.err_off > 0);
   // output: bson iter err: 1

   printf ("bson validate: %d\n", bson_validate (&b, BSON_VALIDATE_UTF8, NULL));
   // output: bson validate: 1

   return 0;
}

duplicates

CDRIVER-4448 bson_validate accepts data rejected by bson_iter_visit_all

Backlog

Assignee:: Unassigned

Reporter:: wait4pumpkin N/A

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: Dec 18 2024 08:56:18 AM UTC

Updated:: Dec 30 2024 05:41:14 PM UTC

Resolved:: Dec 30 2024 05:41:14 PM UTC

Details

Description

Summary

Environment

How to Reproduce

Attachments

Issue Links

Activity

People

Dates