Update CJson to v1.7.18 (#1116)

waahm7 · TingDaoK · web-flow · commit ab2cfa973af8 · 2024-05-20T14:47:24.000-07:00
Co-authored-by: Dengke Tang &lt;dengket@amazon.com&gt;
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -125,7 +125,7 @@ jobs:
         python builder.pyz build -p ${{ env.PACKAGE_NAME }} --target windows-${{ matrix.arch }} --compiler msvc-16
 
   windows-vc15:
-    runs-on: windows-2022 # latest
+    runs-on: windows-2019 # windows-2019 is last env with Visual Studio 2017 (v15.0)
     strategy:
       matrix:
         arch: [x86, x64]
diff --git a/source/external/cJSON.c b/source/external/cJSON.c
@@ -127,7 +127,7 @@ CJSON_PUBLIC(double) cJSON_GetNumberValue(const cJSON * const item)
 }
 
 /* This is a safeguard to prevent copy-pasters from using incompatible C and header files */
-#if (CJSON_VERSION_MAJOR != 1) || (CJSON_VERSION_MINOR != 7) || (CJSON_VERSION_PATCH != 17)
+#if (CJSON_VERSION_MAJOR != 1) || (CJSON_VERSION_MINOR != 7) || (CJSON_VERSION_PATCH != 18)
     #error cJSON.h and cJSON.c have different versions. Make sure that both have the same.
 #endif
 
@@ -273,10 +273,12 @@ CJSON_PUBLIC(void) cJSON_Delete(cJSON *item)
         if (!(item->type & cJSON_IsReference) && (item->valuestring != NULL))
         {
             global_hooks.deallocate(item->valuestring);
+            item->valuestring = NULL;
         }
         if (!(item->type & cJSON_StringIsConst) && (item->string != NULL))
         {
             global_hooks.deallocate(item->string);
+            item->string = NULL;
         }
         global_hooks.deallocate(item);
         item = next;
@@ -407,6 +409,7 @@ CJSON_PUBLIC(double) cJSON_SetNumberHelper(cJSON *object, double number)
     return object->valuedouble = number;
 }
 
+/* Note: when passing a NULL valuestring, cJSON_SetValuestring treats this as an error and return NULL */
 CJSON_PUBLIC(char*) cJSON_SetValuestring(cJSON *object, const char *valuestring)
 {
     char *copy = NULL;
@@ -415,8 +418,8 @@ CJSON_PUBLIC(char*) cJSON_SetValuestring(cJSON *object, const char *valuestring)
     {
         return NULL;
     }
-    /* return NULL if the object is corrupted */
-    if (object->valuestring == NULL)
+    /* return NULL if the object is corrupted or valuestring is NULL */
+    if (object->valuestring == NULL || valuestring == NULL)
     {
         return NULL;
     }
@@ -903,6 +906,7 @@ static cJSON_bool parse_string(cJSON * const item, parse_buffer * const input_bu
     if (output != NULL)
     {
         input_buffer->hooks.deallocate(output);
+        output = NULL;
     }
 
     if (input_pointer != NULL)
@@ -1249,6 +1253,7 @@ static unsigned char *print(const cJSON * const item, cJSON_bool format, const i
 
         /* free the buffer */
         hooks->deallocate(buffer->buffer);
+        buffer->buffer = NULL;
     }
 
     return printed;
@@ -1257,11 +1262,13 @@ static unsigned char *print(const cJSON * const item, cJSON_bool format, const i
     if (buffer->buffer != NULL)
     {
         hooks->deallocate(buffer->buffer);
+        buffer->buffer = NULL;
     }
 
     if (printed != NULL)
     {
         hooks->deallocate(printed);
+        printed = NULL;
     }
 
     return NULL;
@@ -1302,6 +1309,7 @@ CJSON_PUBLIC(char *) cJSON_PrintBuffered(const cJSON *item, int prebuffer, cJSON
     if (!print_value(item, &p))
     {
         global_hooks.deallocate(p.buffer);
+        p.buffer = NULL;
         return NULL;
     }
 
@@ -1673,6 +1681,11 @@ static cJSON_bool parse_object(cJSON * const item, parse_buffer * const input_bu
             current_item = new_item;
         }
 
+        if (cannot_access_at_index(input_buffer, 1))
+        {
+            goto fail; /* nothing comes after the comma */
+        }
+
         /* parse the name of the child */
         input_buffer->offset++;
         buffer_skip_whitespace(input_buffer);
@@ -3140,6 +3153,7 @@ CJSON_PUBLIC(void *) cJSON_malloc(size_t size)
 CJSON_PUBLIC(void) cJSON_free(void *object)
 {
     global_hooks.deallocate(object);
+    object = NULL;
 }
 /* Amazon edit */
 /* NOLINTEND */
diff --git a/source/external/cJSON.h b/source/external/cJSON.h
@@ -88,7 +88,7 @@ then using the CJSON_API_VISIBILITY flag to "export" the same symbols the way CJ
 /* project version */
 #define CJSON_VERSION_MAJOR 1
 #define CJSON_VERSION_MINOR 7
-#define CJSON_VERSION_PATCH 17
+#define CJSON_VERSION_PATCH 18
 
 #include <stddef.h>
 

Original file line number	Diff line number	Diff line change
`@@ -127,7 +127,7 @@ CJSON_PUBLIC(double) cJSON_GetNumberValue(const cJSON * const item)`
`127`	`127`	`}`
`128`	`128`
`129`	`129`	`/* This is a safeguard to prevent copy-pasters from using incompatible C and header files */`
`130`		`-#if (CJSON_VERSION_MAJOR != 1) \|\| (CJSON_VERSION_MINOR != 7) \|\| (CJSON_VERSION_PATCH != 17)`
	`130`	`+#if (CJSON_VERSION_MAJOR != 1) \|\| (CJSON_VERSION_MINOR != 7) \|\| (CJSON_VERSION_PATCH != 18)`
`131`	`131`	`#error cJSON.h and cJSON.c have different versions. Make sure that both have the same.`
`132`	`132`	`#endif`
`133`	`133`
`@@ -273,10 +273,12 @@ CJSON_PUBLIC(void) cJSON_Delete(cJSON *item)`
`273`	`273`	`if (!(item->type & cJSON_IsReference) && (item->valuestring != NULL))`
`274`	`274`	`{`
`275`	`275`	`global_hooks.deallocate(item->valuestring);`
	`276`	`+ item->valuestring = NULL;`
`276`	`277`	`}`
`277`	`278`	`if (!(item->type & cJSON_StringIsConst) && (item->string != NULL))`
`278`	`279`	`{`
`279`	`280`	`global_hooks.deallocate(item->string);`
	`281`	`+ item->string = NULL;`
`280`	`282`	`}`
`281`	`283`	`global_hooks.deallocate(item);`
`282`	`284`	`item = next;`
`@@ -407,6 +409,7 @@ CJSON_PUBLIC(double) cJSON_SetNumberHelper(cJSON *object, double number)`
`407`	`409`	`return object->valuedouble = number;`
`408`	`410`	`}`
`409`	`411`
	`412`	`+/* Note: when passing a NULL valuestring, cJSON_SetValuestring treats this as an error and return NULL */`
`410`	`413`	`CJSON_PUBLIC(char) cJSON_SetValuestring(cJSON object, const char *valuestring)`
`411`	`414`	`{`
`412`	`415`	`char *copy = NULL;`
`@@ -415,8 +418,8 @@ CJSON_PUBLIC(char) cJSON_SetValuestring(cJSON object, const char *valuestring)`
`415`	`418`	`{`
`416`	`419`	`return NULL;`
`417`	`420`	`}`
`418`		`- /* return NULL if the object is corrupted */`
`419`		`- if (object->valuestring == NULL)`
	`421`	`+ /* return NULL if the object is corrupted or valuestring is NULL */`
	`422`	`+ if (object->valuestring == NULL \|\| valuestring == NULL)`
`420`	`423`	`{`
`421`	`424`	`return NULL;`
`422`	`425`	`}`
`@@ -903,6 +906,7 @@ static cJSON_bool parse_string(cJSON * const item, parse_buffer * const input_bu`
`903`	`906`	`if (output != NULL)`
`904`	`907`	`{`
`905`	`908`	`input_buffer->hooks.deallocate(output);`
	`909`	`+ output = NULL;`
`906`	`910`	`}`
`907`	`911`
`908`	`912`	`if (input_pointer != NULL)`
`@@ -1249,6 +1253,7 @@ static unsigned char print(const cJSON const item, cJSON_bool format, const i`
`1249`	`1253`
`1250`	`1254`	`/* free the buffer */`
`1251`	`1255`	`hooks->deallocate(buffer->buffer);`
	`1256`	`+ buffer->buffer = NULL;`
`1252`	`1257`	`}`
`1253`	`1258`
`1254`	`1259`	`return printed;`
`@@ -1257,11 +1262,13 @@ static unsigned char print(const cJSON const item, cJSON_bool format, const i`
`1257`	`1262`	`if (buffer->buffer != NULL)`
`1258`	`1263`	`{`
`1259`	`1264`	`hooks->deallocate(buffer->buffer);`
	`1265`	`+ buffer->buffer = NULL;`
`1260`	`1266`	`}`
`1261`	`1267`
`1262`	`1268`	`if (printed != NULL)`
`1263`	`1269`	`{`
`1264`	`1270`	`hooks->deallocate(printed);`
	`1271`	`+ printed = NULL;`
`1265`	`1272`	`}`
`1266`	`1273`
`1267`	`1274`	`return NULL;`
`@@ -1302,6 +1309,7 @@ CJSON_PUBLIC(char ) cJSON_PrintBuffered(const cJSON item, int prebuffer, cJSON`
`1302`	`1309`	`if (!print_value(item, &p))`
`1303`	`1310`	`{`
`1304`	`1311`	`global_hooks.deallocate(p.buffer);`
	`1312`	`+ p.buffer = NULL;`
`1305`	`1313`	`return NULL;`
`1306`	`1314`	`}`
`1307`	`1315`
`@@ -1673,6 +1681,11 @@ static cJSON_bool parse_object(cJSON * const item, parse_buffer * const input_bu`
`1673`	`1681`	`current_item = new_item;`
`1674`	`1682`	`}`
`1675`	`1683`
	`1684`	`+ if (cannot_access_at_index(input_buffer, 1))`
	`1685`	`+ {`
	`1686`	`+ goto fail; /* nothing comes after the comma */`
	`1687`	`+ }`
	`1688`	`+`
`1676`	`1689`	`/* parse the name of the child */`
`1677`	`1690`	`input_buffer->offset++;`
`1678`	`1691`	`buffer_skip_whitespace(input_buffer);`
`@@ -3140,6 +3153,7 @@ CJSON_PUBLIC(void *) cJSON_malloc(size_t size)`
`3140`	`3153`	`CJSON_PUBLIC(void) cJSON_free(void *object)`
`3141`	`3154`	`{`
`3142`	`3155`	`global_hooks.deallocate(object);`
	`3156`	`+ object = NULL;`
`3143`	`3157`	`}`
`3144`	`3158`	`/* Amazon edit */`
`3145`	`3159`	`/* NOLINTEND */`