Fixed #477

Author: cowtowncoder

release-notes/VERSION-2.x

@@ -14,6 +14,10 @@ JSON library.
 === Releases ===
 ------------------------------------------------------------------------
 
+2.9.7 (not yet released)
+
+#477: Exception while decoding Base64 value with escaped `=` character
+
 2.9.6 (12-Jun-2018)
 
 #400: Add mechanism for forcing `BufferRecycler` released (to call on shutdown)

src/main/java/com/fasterxml/jackson/core/base/ParserBase.java

@@ -1029,7 +1029,9 @@ protected final int _decodeBase64Escape(Base64Variant b64variant, int ch, int in
         // otherwise try to find actual triplet value
         int bits = b64variant.decodeBase64Char(unescaped);
         if (bits < 0) {
-            throw reportInvalidBase64Char(b64variant, unescaped, index);
+            if (bits != Base64Variant.BASE64_VALUE_PADDING) {
+                throw reportInvalidBase64Char(b64variant, unescaped, index);
+            }
         }
         return bits;
     }
@@ -1049,7 +1051,10 @@ protected final int _decodeBase64Escape(Base64Variant b64variant, char ch, int i
         // otherwise try to find actual triplet value
         int bits = b64variant.decodeBase64Char(unescaped);
         if (bits < 0) {
-            throw reportInvalidBase64Char(b64variant, unescaped, index);
+            // second check since padding can only be 3rd or 4th byte (index #2 or #3)
+            if ((bits != Base64Variant.BASE64_VALUE_PADDING) || (index < 2)) {
+                throw reportInvalidBase64Char(b64variant, unescaped, index);
+            }
         }
         return bits;
     }

src/main/java/com/fasterxml/jackson/core/json/ReaderBasedJsonParser.java

@@ -563,7 +563,9 @@ protected int _readBinary(Base64Variant b64variant, OutputStream out, byte[] buf
                     }
                     ch = _inputBuffer[_inputPtr++];
                     if (!b64variant.usesPaddingChar(ch)) {
-                        throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        if (_decodeBase64Escape(b64variant, ch, 3) != Base64Variant.BASE64_VALUE_PADDING) {
+                            throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        }
                     }
                     // Got 12 bits, only need 8, need to shift
                     decodedData >>= 4;
@@ -2714,7 +2716,9 @@ protected byte[] _decodeBase64(Base64Variant b64variant) throws IOException
                     }
                     ch = _inputBuffer[_inputPtr++];
                     if (!b64variant.usesPaddingChar(ch)) {
-                        throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        if (_decodeBase64Escape(b64variant, ch, 3) != Base64Variant.BASE64_VALUE_PADDING) {
+                            throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        }
                     }
                     // Got 12 bits, only need 8, need to shift
                     decodedData >>= 4;

src/main/java/com/fasterxml/jackson/core/json/UTF8DataInputJsonParser.java

@@ -492,7 +492,10 @@ protected int _readBinary(Base64Variant b64variant, OutputStream out,
                     // Ok, must get padding
                     ch = _inputData.readUnsignedByte();
                     if (!b64variant.usesPaddingChar(ch)) {
-                        throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        if ((ch != INT_BACKSLASH)
+                                || _decodeBase64Escape(b64variant, ch, 3) != Base64Variant.BASE64_VALUE_PADDING) {
+                            throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        }
                     }
                     // Got 12 bits, only need 8, need to shift
                     decodedData >>= 4;
@@ -2763,7 +2766,10 @@ protected final byte[] _decodeBase64(Base64Variant b64variant) throws IOExceptio
                 if (bits == Base64Variant.BASE64_VALUE_PADDING) {
                     ch = _inputData.readUnsignedByte();
                     if (!b64variant.usesPaddingChar(ch)) {
-                        throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        if ((ch != INT_BACKSLASH)
+                                || _decodeBase64Escape(b64variant, ch, 3) != Base64Variant.BASE64_VALUE_PADDING) {
+                            throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        }
                     }
                     // Got 12 bits, only need 8, need to shift
                     decodedData >>= 4;

src/main/java/com/fasterxml/jackson/core/json/UTF8StreamJsonParser.java

@@ -487,18 +487,14 @@ public byte[] getBinaryValue(Base64Variant b64variant) throws IOException
                 (_currToken != JsonToken.VALUE_EMBEDDED_OBJECT || _binaryValue == null)) {
             _reportError("Current token ("+_currToken+") not VALUE_STRING or VALUE_EMBEDDED_OBJECT, can not access as binary");
         }
-        /* To ensure that we won't see inconsistent data, better clear up
-         * state...
-         */
+        // To ensure that we won't see inconsistent data, better clear up state...
         if (_tokenIncomplete) {
             try {
                 _binaryValue = _decodeBase64(b64variant);
             } catch (IllegalArgumentException iae) {
                 throw _constructError("Failed to decode VALUE_STRING as base64 ("+b64variant+"): "+iae.getMessage());
             }
-            /* let's clear incomplete only now; allows for accessing other
-             * textual content in error cases
-             */
+            // let's clear incomplete only now; allows for accessing other textual content in error cases
             _tokenIncomplete = false;
         } else { // may actually require conversion...
             if (_binaryValue == null) {
@@ -602,7 +598,9 @@ protected int _readBinary(Base64Variant b64variant, OutputStream out,
                     }
                     ch = _inputBuffer[_inputPtr++] & 0xFF;
                     if (!b64variant.usesPaddingChar(ch)) {
-                        throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        if (_decodeBase64Escape(b64variant, ch, 3) != Base64Variant.BASE64_VALUE_PADDING) {
+                            throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        }
                     }
                     // Got 12 bits, only need 8, need to shift
                     decodedData >>= 4;
@@ -3608,7 +3606,7 @@ protected final byte[] _decodeBase64(Base64Variant b64variant) throws IOExceptio
             // First branch: can get padding (-> 1 byte)
             if (bits < 0) {
                 if (bits != Base64Variant.BASE64_VALUE_PADDING) {
-                    // as per [JACKSON-631], could also just be 'missing'  padding
+                    // could also just be 'missing'  padding
                     if (ch == '"' && !b64variant.usesPadding()) {
                         decodedData >>= 4;
                         builder.append(decodedData);
@@ -3623,7 +3621,9 @@ protected final byte[] _decodeBase64(Base64Variant b64variant) throws IOExceptio
                     }
                     ch = _inputBuffer[_inputPtr++] & 0xFF;
                     if (!b64variant.usesPaddingChar(ch)) {
-                        throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        if (_decodeBase64Escape(b64variant, ch, 3) != Base64Variant.BASE64_VALUE_PADDING) {
+                            throw reportInvalidBase64Char(b64variant, ch, 3, "expected padding character '"+b64variant.getPaddingChar()+"'");
+                        }
                     }
                     // Got 12 bits, only need 8, need to shift
                     decodedData >>= 4;
@@ -3641,7 +3641,7 @@ protected final byte[] _decodeBase64(Base64Variant b64variant) throws IOExceptio
             bits = b64variant.decodeBase64Char(ch);
             if (bits < 0) {
                 if (bits != Base64Variant.BASE64_VALUE_PADDING) {
-                    // as per [JACKSON-631], could also just be 'missing'  padding
+                    // could also just be 'missing'  padding
                     if (ch == '"' && !b64variant.usesPadding()) {
                         decodedData >>= 2;
                         builder.appendTwoBytes(decodedData);

src/test/java/com/fasterxml/jackson/core/base64/Base64BinaryParsingTest.java

@@ -53,6 +53,12 @@ public void testWithEscaped() throws IOException {
         }
     }
 
+    public void testWithEscapedPadding() throws IOException {
+        for (int mode : ALL_MODES) {
+            _testEscapedPadding(mode);
+        }
+    }
+
     public void testInvalidTokenForBase64() throws IOException
     {
         for (int mode : ALL_MODES) {
@@ -333,4 +339,53 @@ private void _testEscaped(int mode) throws IOException
         }
         p.close();
     }
+
+    private void _testEscapedPadding(int mode) throws IOException
+    {
+        // Input: "Test!" -> "VGVzdCE="
+        final String DOC = quote("VGVzdCE\\u003d");
+
+        // 06-Sep-2018, tatu: actually one more, test escaping of padding
+        JsonParser p = createParser(mode, DOC);
+        assertToken(JsonToken.VALUE_STRING, p.nextToken());
+        assertEquals("Test!", new String(p.getBinaryValue(), "US-ASCII"));
+        if (mode != MODE_DATA_INPUT) {
+            assertNull(p.nextToken());
+        }
+        p.close();
+
+        // also, try out alternate access method
+        p = createParser(mode, DOC);
+        assertToken(JsonToken.VALUE_STRING, p.nextToken());
+        assertEquals("Test!", new String(_readBinary(p), "US-ASCII"));
+        if (mode != MODE_DATA_INPUT) {
+            assertNull(p.nextToken());
+        }
+        p.close();
+
+        // and then different padding; "X" -> "WA=="
+        final String DOC2 = quote("WA\\u003D\\u003D");
+        p = createParser(mode, DOC2);
+        assertToken(JsonToken.VALUE_STRING, p.nextToken());
+        assertEquals("X", new String(p.getBinaryValue(), "US-ASCII"));
+        if (mode != MODE_DATA_INPUT) {
+            assertNull(p.nextToken());
+        }
+        p.close();
+
+        p = createParser(mode, DOC2);
+        assertToken(JsonToken.VALUE_STRING, p.nextToken());
+        assertEquals("X", new String(_readBinary(p), "US-ASCII"));
+        if (mode != MODE_DATA_INPUT) {
+            assertNull(p.nextToken());
+        }
+        p.close();
+    }
+
+    private byte[] _readBinary(JsonParser p) throws IOException
+    {
+        ByteArrayOutputStream bytes = new ByteArrayOutputStream();
+        p.readBinaryValue(bytes);
+        return bytes.toByteArray();
+    }
 }