Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Corrected class name validation to no longer fail for Kotlin classes on class path containing special characters #1884

Merged
merged 5 commits into from
Dec 22, 2021
Merged

Corrected class name validation to no longer fail for Kotlin classes on class path containing special characters #1884

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
d93c5f7
Added test cases to demonstrate incorrect name validation.
studro Dec 18, 2021
8f8ea18
Improved class name verification to match JVM specification.
studro Dec 18, 2021
4e26eb1
Updated CHANGELOG.md.
studro Dec 19, 2021
6b1523b
Implemented code review feedback.
studro Dec 20, 2021
0cfd02c
Fixing incorrect exception documentation in ClassName#isValidArrayFie…
studro Dec 21, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
1 change: 1 addition & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,7 @@ Currently the versioning policy of this project follows [Semantic Versioning v2.
## Unreleased - 2022-??-??
### Fixed
- Remove duplicated logging frameworks from the Eclipse plugin distribution ([#1868](https://github.com/spotbugs/spotbugs/issues/1868))
- Corrected class name validation to no longer fail for Kotlin classes on class path containing special characters. ([#1883](https://github.com/spotbugs/spotbugs/issues/1883))

## 4.5.2 - 2021-12-13
### Security
Expand Down
60 changes: 58 additions & 2 deletions spotbugs/src/main/java/edu/umd/cs/findbugs/util/ClassName.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -175,9 +175,65 @@ public static String extractSimpleName(@DottedClassName String className) {
* @return true if it's a valid class name, false otherwise
*/
public static boolean isValidClassName(String className) {
// FIXME: should use a regex
return !className.isEmpty() &&
(isValidBinaryClassName(className) ||
isValidDottedClassName(className) ||
isValidArrayFieldDescriptor(className) ||
isValidClassFieldDescriptor(className));
}

/**
* @see <a href="https://docs.oracle.com/javase/specs/jvms/se8/html/jvms-4.html#jvms-4.2.1">
* JVMS (Java SE 8 Edition) 4.2.1. Binary Class and Interface Names
* </a>
*/
private static boolean isValidBinaryClassName(String className) {
KengoTODA marked this conversation as resolved.
Show resolved Hide resolved
return className.indexOf('.') == -1 &&
className.indexOf('[') == -1 &&
className.indexOf(';') == -1;
KengoTODA marked this conversation as resolved.
Show resolved Hide resolved
}

private static boolean isValidDottedClassName(String className) {
return className.indexOf('/') == -1 &&
className.indexOf('[') == -1 &&
className.indexOf(';') == -1;
}

/**
* Determines whether a class name is a valid array field descriptor as per
* <a href="https://docs.oracle.com/javase/specs/jvms/se8/html/jvms-4.html#jvms-4.3.2">
* JVMS (Java SE 8 Edition) 4.3.2</a>
*
* @param className a class name to test for validity - must be non-{@code null} and non-empty.
* @return {@code true} if {@code className} is a valid array field descriptor as
* per JVMS 4.3.2, otherwise {@code false}
* @throws IndexOutOfBoundsException if {@code className} is empty.
* @throws NullPointerException if {@code className} is {@code null}.
*/
private static boolean isValidArrayFieldDescriptor(String className) {
String tail = className.substring(1);
return className.startsWith("[") &&
(isValidArrayFieldDescriptor(tail) ||
isValidClassFieldDescriptor(tail) ||
isValidBaseTypeFieldDescriptor(tail));

}

private static boolean isValidClassFieldDescriptor(String className) {
return className.startsWith("L") &&
className.endsWith(";") &&
isValidBinaryClassName(className.substring(1, className.length() - 1));
}

return className.indexOf('(') < 0;
private static boolean isValidBaseTypeFieldDescriptor(String className) {
return "B".equals(className) ||
"C".equals(className) ||
"D".equals(className) ||
"F".equals(className) ||
"I".equals(className) ||
"J".equals(className) ||
"S".equals(className) ||
"Z".equals(className);
}

/**
Expand Down
97 changes: 97 additions & 0 deletions spotbugs/src/test/java/edu/umd/cs/findbugs/util/ClassNameTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -95,4 +95,101 @@ public void testMatchedPrefix() {
ClassName.matchedPrefixes(searchString, "com.test.TestClass"));
}
}

@Test
public void testSimpleBinaryClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("com/bla/Parent"));
}

@Test
public void testSimpleDottedClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("com.bla.Parent"));
}

@Test
public void testInnerClassBinaryClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("com/bla/Parent$Child"));
}

@Test
public void testInnerClassDottedClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("com.bla.Parent$Child"));
}

@Test
public void testJavaStyleAnonymousInnerClassBinaryClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("com/bla/Parent$Child$1"));
}

@Test
public void testJavaStyleAnonymousInnerClassDottedClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("com.bla.Parent$Child$1"));
}

@Test
public void testKotlinStyleAnonymousInnerClassBinaryClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("com/bla/Parent$function$variable$1"));
}

@Test
public void testKotlinStyleAnonymousInnerClassDottedClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("com.bla.Parent$function$variable$1"));
}

@Test
public void testBinaryClassNameContainingAllowedSpecialCharactersIsValidClassName() {
assertTrue(ClassName.isValidClassName("com/bla/Parent$function!@#%^&*,?{}]()$variable$1"));
}

@Test
public void testDottedClassNameContainingAllowedSpecialCharactersIsValidClassName() {
assertTrue(ClassName.isValidClassName("com.bla.Parent$function!@#%^&*,?{}]()$variable$1"));
}

@Test
public void testFieldDescriptorClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("Lcom/bla/Parent;"));
}

@Test
public void testFieldDescriptorOneDimensionalArrayClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("[Lcom/bla/Parent;"));
}

@Test
public void testFieldDescriptorOneDimensionalPrimitiveArrayClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("[I"));
}

@Test
public void testFieldDescriptorTwoDimensionalArrayClassNameIsValidClassName() {
assertTrue(ClassName.isValidClassName("[[Lcom/bla/Parent;"));
}

@Test
public void testFieldDescriptorClassNameContainingAllowedSpecialCharactersIsValidClassName() {
assertTrue(ClassName.isValidClassName("[[Lcom/bla/Parent$function!@#%^&*,?{}]()$variable$1;"));
}

@Test
public void testFieldDescriptorClassNameContainingDotsIsInvalidClassName() {
assertFalse(ClassName.isValidClassName("Lcom.bla.Parent;"));
}

@Test
public void testClassNameContainingBothSlashesAndDotsIsInvalidClassName() {
assertFalse(ClassName.isValidClassName("com.bla/Parent"));
}

@Test
public void testBinaryClassNameContainingDisallowedSpecialCharactersIsInvalidClassName() {
assertFalse(ClassName.isValidClassName("com/bla/Parent$function$variable$1;"));
assertFalse(ClassName.isValidClassName("com/bla/Parent$function;$variable$1"));
assertFalse(ClassName.isValidClassName("com/bla/Parent$function[$variable$1"));
}

@Test
public void testEmptyStringIsInvalidClassName() {
assertFalse(ClassName.isValidClassName(("")));
}
}