Skip to content

[bugfix] fn:xml-to-json: enforce F&O 3.1 §17.4.2 structural validation (+10 XQTS HEAD) #6350

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
joewiz wants to merge 5 commits into
base: develop
Choose a base branch
from
+386 −6
Open

[bugfix] fn:xml-to-json: enforce F&O 3.1 §17.4.2 structural validation (+10 XQTS HEAD) #6350

Show file tree
Hide file tree
Changes from 4 commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
3000e1b
[bugfix] fn:xml-to-json: enforce F&O 3.1 §17.4.2 structural validation
joewiz May 11, 2026
dc559d6
[doc] FunXmlToJson: unescape F&O in Javadoc per project convention
joewiz May 11, 2026
34a3982
[refactor] FunXmlToJson: convert START_ELEMENT switch to arrow syntax
joewiz May 11, 2026
65437d6
[bugfix] fn:xml-to-json: port structural validation to the DOM traver…
joewiz Jun 1, 2026
03115ad
[refactor] Address remaining Codacy findings in FunXmlToJson
joewiz Jun 1, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
234 changes: 231 additions & 3 deletions exist-core/src/main/java/org/exist/xquery/functions/fn/FunXmlToJson.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,9 @@
import java.io.StringWriter;
import java.io.Writer;
import java.math.BigDecimal;
import java.util.ArrayDeque;
import java.util.ArrayList;
import java.util.Deque;
import java.util.Set;

import static org.exist.xquery.FunctionDSL.*;
Expand Down Expand Up @@ -154,6 +156,8 @@
"Invalid XML representation of JSON. Found XML element which is not one of [map, array, null, boolean, number, string].");
}

validateDomAttributes(element, localName);

switch (localName) {
case "map" -> writeJsonMap(element, gen);
case "array" -> writeJsonArray(element, gen);
Expand All @@ -166,7 +170,100 @@
}
}

/**
* Validate that the attributes on a JSON-representation element conform to
* F&O 3.1 §17.4.2 (the schema for JSON, Appendix C.2). The only allowed
* no-namespace attributes are {@code key} / {@code escaped-key} on any of
* the six elements (meaningful only when child of {@code map}) and
* {@code escaped} on any element (meaningful only on {@code string}, but
* per W3C bug 29917 tolerated as a no-op elsewhere). Attributes in the
* XPath-functions namespace are disallowed ({@code anyAttribute namespace="##other"}).
* Other-namespace attributes are ignored. The {@code escaped} /
* {@code escaped-key} values must be valid xs:boolean.
*/
private void validateDomAttributes(final org.w3c.dom.Element element, final String localName) throws XPathException {

Check warning on line 184 in exist-core/src/main/java/org/exist/xquery/functions/fn/FunXmlToJson.java

View check run for this annotation

Codacy Production / Codacy Static Code Analysis

exist-core/src/main/java/org/exist/xquery/functions/fn/FunXmlToJson.java#L184 

The method 'validateDomAttributes(org.w3c.dom.Element, String)' has an NPath complexity of 578, current threshold is 200
Copy link
Copy Markdown
Member

@reinhapa reinhapa Jun 1, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Adress Codacy issue: The method 'validateDomAttributes(org.w3c.dom.Element, String)' has an NPath complexity of 578, current threshold is 200

Copy link
Copy Markdown
Member

@line-o line-o Jun 1, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is the last remaining codacy issue

final org.w3c.dom.NamedNodeMap attrs = element.getAttributes();
if (attrs == null) {
return;
}
for (int i = 0; i < attrs.getLength(); i++) {
final org.w3c.dom.Attr attr = (org.w3c.dom.Attr) attrs.item(i);
final String attrName = attr.getLocalName() != null ? attr.getLocalName() : attr.getName();
// Skip xmlns declarations — they live in the standard XML namespace.
final String fullName = attr.getName();
if ("xmlns".equals(fullName) || (fullName != null && fullName.startsWith("xmlns:"))) {
continue;
}
final String attrNs = attr.getNamespaceURI();
if (Namespaces.XPATH_FUNCTIONS_NS.equals(attrNs)) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Attribute '" + attrName
+ "' must not be in the namespace '" + Namespaces.XPATH_FUNCTIONS_NS + "'.");
}
if (attrNs != null && !attrNs.isEmpty()) {
continue;
}
switch (attrName) {
case "key" -> { /* always allowed; lexical form is xs:string */ }
case "escaped-key" -> {
if (!isValidXsBoolean(attr.getValue())) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Attribute 'escaped-key' must have a valid xs:boolean value, but got '"
+ attr.getValue() + "'.");
}
}
case "escaped" -> {
if (!isValidXsBoolean(attr.getValue())) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Attribute 'escaped' must have a valid xs:boolean value, but got '"
+ attr.getValue() + "'.");
}
}
default -> throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Attribute '" + attrName
+ "' is not allowed on element '" + localName + "'.");
}
}
}

/**
* Reject non-whitespace text children of {@code map} and {@code array} per
* F&O 3.1 §17.4.2 — only element children (and whitespace) are permitted
* inside container elements.
*/
private void validateContainerChildren(final org.w3c.dom.Element element, final String localName) throws XPathException {
final org.w3c.dom.NodeList children = element.getChildNodes();
for (int i = 0; i < children.getLength(); i++) {
final org.w3c.dom.Node child = children.item(i);
final short kind = child.getNodeType();
if (kind == org.w3c.dom.Node.TEXT_NODE || kind == org.w3c.dom.Node.CDATA_SECTION_NODE) {
final String text = child.getNodeValue();
if (text != null && !isXmlWhitespace(text)) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Element '" + localName
+ "' must not have non-whitespace text content.");
}
}
}
}

/**
* Reject element children of leaf JSON elements ({@code string}, {@code number},
* {@code boolean}, {@code null}) per F&O 3.1 §17.4.2.
*/
private void validateNoElementChildren(final org.w3c.dom.Element element, final String localName) throws XPathException {
final org.w3c.dom.NodeList children = element.getChildNodes();
for (int i = 0; i < children.getLength(); i++) {
if (children.item(i).getNodeType() == org.w3c.dom.Node.ELEMENT_NODE) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Element '" + localName
+ "' must not have element children.");
}
}
}

private void writeJsonMap(final org.w3c.dom.Element element, final JsonGenerator gen) throws XPathException, IOException {
validateContainerChildren(element, "map");
gen.writeStartObject();
final org.w3c.dom.NodeList mapChildren = element.getChildNodes();
final Set<String> seenKeys = new java.util.HashSet<>();
Expand All @@ -191,6 +288,7 @@
}

private void writeJsonArray(final org.w3c.dom.Element element, final JsonGenerator gen) throws XPathException, IOException {
validateContainerChildren(element, "array");
gen.writeStartArray();
final org.w3c.dom.NodeList arrayChildren = element.getChildNodes();
for (int i = 0; i < arrayChildren.getLength(); i++) {
Expand All @@ -203,6 +301,7 @@
}

private void writeJsonString(final org.w3c.dom.Element element, final JsonGenerator gen) throws XPathException, IOException {
validateNoElementChildren(element, "string");
final String strContent = getTextContent(element);
final boolean escaped = "true".equals(element.getAttribute("escaped"));
if (escaped) {
Expand All @@ -217,6 +316,7 @@
}

private void writeJsonNumber(final org.w3c.dom.Element element, final JsonGenerator gen) throws XPathException, IOException {
validateNoElementChildren(element, "number");
final String numStr = getTextContent(element);
try {
gen.writeNumber(new BigDecimal(numStr));
Expand All @@ -225,13 +325,15 @@
}
}

private void writeJsonBoolean(final org.w3c.dom.Element element, final JsonGenerator gen) throws IOException {
private void writeJsonBoolean(final org.w3c.dom.Element element, final JsonGenerator gen) throws XPathException, IOException {
validateNoElementChildren(element, "boolean");
final String boolStr = getTextContent(element);
final boolean boolVal = !("0".equals(boolStr) || "false".equals(boolStr) || boolStr.isEmpty());
gen.writeBoolean(boolVal);
}

private void writeJsonNull(final org.w3c.dom.Element element, final JsonGenerator gen) throws XPathException, IOException {
validateNoElementChildren(element, "null");
final String nullContent = getTextContent(element);
if (!nullContent.isEmpty()) {
throw new XPathException(this, ErrorCodes.FOJS0006,
Expand Down Expand Up @@ -278,6 +380,8 @@
final Integer stackSeparator = 0;
//use ArrayList<Object> to store String type keys and non-string type separators
final ArrayList<Object> mapkeyArrayList = new ArrayList<>();
//track parent element local names so we can validate child structure (F&O 3.1 §17.4.2 / §17.5.4)
final Deque<String> elementStack = new ArrayDeque<>();
boolean elementKeyIsEscaped = false;
boolean elementValueIsEscaped = false;
XMLStreamReader reader = null;
Expand All @@ -299,6 +403,7 @@
"Invalid XML representation of JSON. Element '" + reader.getLocalName()
+ "' is not in the required namespace '" + Namespaces.XPATH_FUNCTIONS_NS + "'.");
}
validateStartElement(reader, elementStack);
final String elementAttributeEscapedValue = reader.getAttributeValue(null, "escaped");
elementValueIsEscaped = "true".equals(elementAttributeEscapedValue);
final String elementAttributeEscapedKeyValue = reader.getAttributeValue(null, "escaped-key");
Expand Down Expand Up @@ -326,15 +431,20 @@
mapkeyArrayList.add(stackSeparator);
jsonGenerator.writeStartObject();
}
default -> { }
default -> { /* other valid JSON element kinds emit only at END_ELEMENT */ }
}
break;
case XMLStreamReader.CHARACTERS:
case XMLStreamReader.CDATA:
tempStringBuilder.append(reader.getText());
final String charText = reader.getText();
validateTextInContext(charText, elementStack.peek());
tempStringBuilder.append(charText);
break;
case XMLStreamReader.END_ELEMENT:
final String tempString = tempStringBuilder.toString();
if (!elementStack.isEmpty()) {
elementStack.pop();
}
switch (reader.getLocalName()) {
case "array":
jsonGenerator.writeEndArray();
Expand Down Expand Up @@ -439,4 +549,122 @@
unescapedJsonString = unescapedJsonStringBuilder.toString();
return unescapedJsonString;
}

/**
* Validate the current START_ELEMENT against the F&O 3.1 §17.4.2 / §17.5.4 structural rules
* and, on success, push the element's local name onto the parent-tracking stack.
*/
private void validateStartElement(final XMLStreamReader reader, final Deque<String> elementStack) throws XPathException {
final String localName = reader.getLocalName();
if (!isJsonElementName(localName)) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Element '" + localName
+ "' is not one of [map, array, null, boolean, number, string].");
}
final String parentLocalName = elementStack.peek();
if (parentLocalName != null && isLeafElementName(parentLocalName)) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Element '" + parentLocalName
+ "' must not have element children.");
}
validateAttributes(reader, localName);
elementStack.push(localName);
}

/**
* Reject non-whitespace text node children of {@code map} and {@code array} per F&O 3.1 §17.4.2.
*/
private void validateTextInContext(final String text, final String parentLocalName) throws XPathException {
if (parentLocalName == null) {
return;
}
if (!"map".equals(parentLocalName) && !"array".equals(parentLocalName)) {
return;
}
if (!isXmlWhitespace(text)) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Element '" + parentLocalName
+ "' must not have non-whitespace text content.");
}
}

private static boolean isJsonElementName(final String name) {
return switch (name) {
case "map", "array", "string", "number", "boolean", "null" -> true;
default -> false;
};
}

private static boolean isLeafElementName(final String name) {
return switch (name) {
case "string", "number", "boolean", "null" -> true;
default -> false;
};
}

private static boolean isXmlWhitespace(final String text) {
for (int i = 0; i < text.length(); i++) {
final char c = text.charAt(i);
if (c != ' ' && c != '\t' && c != '\n' && c != '\r') {
return false;
}
}
return true;
}

/**
* Validate that the attributes on the current element conform to F&O 3.1 §17.4.2 (the schema for JSON).
* <p>
* Per the schema (Appendix C.2), the only allowed no-namespace attributes are:
* <ul>
* <li>{@code key} and {@code escaped-key} on any of the six elements (when child of map; allowed at top-level too)</li>
* <li>{@code escaped} on {@code string} only</li>
* </ul>
* Attributes in the {@code http://www.w3.org/2005/xpath-functions} namespace are disallowed
* ({@code anyAttribute namespace="##other"}); attributes in any other namespace are ignored.
* The {@code escaped} and {@code escaped-key} attributes must hold a valid {@code xs:boolean} value.
*/
private void validateAttributes(final XMLStreamReader reader, final String localName) throws XPathException {
for (int i = 0; i < reader.getAttributeCount(); i++) {
final String attrNs = reader.getAttributeNamespace(i);
final String attrName = reader.getAttributeLocalName(i);
if (Namespaces.XPATH_FUNCTIONS_NS.equals(attrNs)) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Attribute '" + attrName
+ "' must not be in the namespace '" + Namespaces.XPATH_FUNCTIONS_NS + "'.");
}
if (attrNs != null && !attrNs.isEmpty()) {
continue;
}
switch (attrName) {
case "key", "escaped-key" -> {
if ("escaped-key".equals(attrName) && !isValidXsBoolean(reader.getAttributeValue(i))) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Attribute 'escaped-key' must have a valid xs:boolean value, but got '"
+ reader.getAttributeValue(i) + "'.");
}
}
case "escaped" -> {
// Per W3C bug 29917 / qt3tests xml-to-json-065, 'escaped' is tolerated on
// non-string elements as a no-op; only the lexical value is enforced.
if (!isValidXsBoolean(reader.getAttributeValue(i))) {
throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Attribute 'escaped' must have a valid xs:boolean value, but got '"
+ reader.getAttributeValue(i) + "'.");
}
}
default -> throw new XPathException(this, ErrorCodes.FOJS0006,
"Invalid XML representation of JSON. Attribute '" + attrName
+ "' is not allowed on element '" + localName + "'.");
}
}
}

private static boolean isValidXsBoolean(final String value) {
if (value == null) {
return false;
}
final String trimmed = value.trim();
return "true".equals(trimmed) || "false".equals(trimmed) || "1".equals(trimmed) || "0".equals(trimmed);
}
}
Loading
Loading