Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Struct with named fields can be deserialized from sequence #1587

Open
ghost opened this issue Jul 27, 2019 · 4 comments · May be fixed by #2639 or #2640
Open

Struct with named fields can be deserialized from sequence #1587

ghost opened this issue Jul 27, 2019 · 4 comments · May be fixed by #2639 or #2640

Comments

@ghost
Copy link

ghost commented Jul 27, 2019

When I derive Deserialize for a struct containing named fields, I expect that in any format that has a way of expressing named fields (i.e. pretty much every ordinary format except Bincode), it will always be expressed as a map containing named fields. To my surprise, it can also be deserialized from a sequence of field values without field names, even in formats where this is not correct, such as JSON and YAML.

Accepting invalid data is a security risk as well as risk of causing people to rely on an unintended implementation details. This also risks having different implementations that differ in what data they accept, which is also a security risk. Further it bloats programs with visitor methods for parsing invalid data, which would otherwise automatically be removed by the compiler.

In this example, I'd like deserialization to fail, but it incorrectly parses invalid data into a structure. (Playground)

use serde_derive::Deserialize;

#[derive(Debug, Deserialize)]
struct Person {
    first_name: String,
    last_name: String,
}

fn main() {
    eprintln!("{:#?}", serde_json::from_str::<Person>(r#"["John","Doe"]"#));
}

Maybe this is due to implementations of various formats not taking proper care in what data they accept after deserialize_struct is called, or maybe it is because of Serde itself having an ambiguous purpose of the visit_seq method, and there needs to be a different visitor method that is used only for formats that don't use field names (e.g. Bincode), with a default implementation that delegates to visit_seq. Deriving Deserialize for structs would then implement this method, but not the visit_seq method which also applies to JSON sequences.
@ghost ghost changed the title Struct can be deserialized from sequence Struct with named fields can be deserialized from sequence Jul 27, 2019
This was referenced Jul 27, 2019
Closed
Closed
Closed
Open
@nupurbaghel
Copy link

Do we have any solution for this yet? I also landed into this problem today where by my json is getting wrongly deserialized.

I have 2 types of values in a Container enum. The first is a struct containing String as field and the second is a Vector of String values.

pub enum Container {
String(Wrapper),
StringList(Vec),
}

pub struct Wrapper {
value: String
}

While deserializing json!(["abc"]) I get result as String(Wrapper { value: "abc" }) instead of StringList(["abc"])

Here is the code link: Playground

@Plecra
Copy link

Plecra commented May 12, 2020

Would a #[serde(strict)] attribute be an acceptable solution for you? I imagine it would omit all the fallback implementations from the Visitor implentation the macro generates.

Fwiw, there's nothing stopping you from writing a Deserialize implementation that does this yourself: https://play.rust-lang.org/?version=stable&mode=debug&edition=2018&gist=dc9fbffd94d47da2153a6308a30f5c88

@indiv0
Copy link

indiv0 commented May 15, 2022

Is there any way to enforce this without giving up #[derive(Deserialize)] at the present moment? What would it take to implement a #[serde(strict)] attribute like that?

@indiv0 indiv0 mentioned this issue May 15, 2022
Closed
@Mingun Mingun mentioned this issue May 28, 2023
Closed
@tbu- tbu- mentioned this issue Jun 20, 2023
Open
Toromyx added a commit to Toromyx/serde-1587 that referenced this issue Oct 28, 2023
@Toromyx
fest(serde-rs#1587): implement serde(strict_or_some_other_name) attri…
a3c11f3 
…bute
@Toromyx Toromyx linked a pull request Oct 28, 2023 that will close this issue
Open
5 tasks
@Toromyx
Copy link

Toromyx commented Oct 28, 2023

I implemented the serde(strict) attribute as I interpreted it: #2639
The naming is intentionally left undecided. I would appreciate some feedback :)

@Toromyx Toromyx mentioned this issue Oct 28, 2023
Closed
Toromyx added a commit to Toromyx/serde-1587 that referenced this issue Oct 28, 2023
@Toromyx
remove(serde-rs#1587)!: remove the ability to deserialize structs and…
4b14ca2 
… struct variants from a sequence

BREAKING CHANGE: This breaks previously established (wrong) behaviour on which some dependencies might depend.
@Toromyx Toromyx linked a pull request Oct 28, 2023 that will close this issue
Draft
Toromyx added a commit to Toromyx/serde-1587 that referenced this issue Oct 28, 2023
@Toromyx
feat(serde-rs#1587): implement serde(strict_or_some_other_name) on enums
75e969d 
This only has an effect on struct variants.
Toromyx added a commit to Toromyx/serde-1587 that referenced this issue Oct 29, 2023
@Toromyx
feat(serde-rs#1587): implement serde(strict_or_some_other_name) for d…
0752e23 
…eserialize_in_place
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
4 participants
@indiv0 @Toromyx @nupurbaghel @Plecra