All Downloads are FREE. Search and download functionalities are using the official Maven repository.

proguard.optimize.gson.GsonDeserializationInvocationFinder Maven / Gradle / Ivy

Go to download

ProGuard is a free shrinker, optimizer, obfuscator, and preverifier for Java bytecode

The newest version!
/*
 * ProGuard -- shrinking, optimization, obfuscation, and preverification
 *             of Java bytecode.
 *
 * Copyright (c) 2002-2021 Guardsquare NV
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License as published by the Free
 * Software Foundation; either version 2 of the License, or (at your option)
 * any later version.
 *
 * This program is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
 * more details.
 *
 * You should have received a copy of the GNU General Public License along
 * with this program; if not, write to the Free Software Foundation, Inc.,
 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
 */
package proguard.optimize.gson;

import org.apache.logging.log4j.LogManager;
import org.apache.logging.log4j.Logger;
import proguard.classfile.*;
import proguard.classfile.attribute.*;
import proguard.classfile.attribute.visitor.*;
import proguard.classfile.constant.Constant;
import proguard.classfile.editor.InstructionSequenceBuilder;
import proguard.classfile.instruction.Instruction;
import proguard.classfile.instruction.visitor.InstructionVisitor;
import proguard.classfile.util.*;
import proguard.classfile.visitor.ClassVisitor;
import proguard.evaluation.*;
import proguard.evaluation.value.*;

/**
 * This instruction visitor searches the code for invocations to any of the
 * deserialization methods of Gson (all the fromJson variants) and keeps
 * track of the domain classes that are involved in the deserialization.
 *
 * @author Lars Vandenbergh
 */
public class GsonDeserializationInvocationFinder
implements   InstructionVisitor
{
    private static final Logger logger = LogManager.getLogger(GsonDeserializationInvocationFinder.class);

    private final ClassPool                   programClassPool;
    private final ClassPool                   libraryClassPool;
    private final ClassVisitor                domainClassVisitor;
    private final WarningPrinter warningPrinter;
    private final FromJsonInvocationMatcher[] fromJsonInvocationMatchers;
    private final TypedReferenceValueFactory valueFactory         =
            new TypedReferenceValueFactory();
    private final PartialEvaluator           partialEvaluator     =
            PartialEvaluator.Builder.create()
                    .setValueFactory(valueFactory)
                    .setInvocationUnit(new BasicInvocationUnit(valueFactory))
                    .setEvaluateAllCode(true)
                    .build();
    private final AttributeVisitor            lazyPartialEvaluator =
        new AttributeNameFilter(Attribute.CODE,
                                new SingleTimeAttributeVisitor(
                                    partialEvaluator));


    /**
     * Creates a new GsonDeserializationInvocationFinder.
     *
     * @param programClassPool   the program class pool used to look up class
     *                           references.
     * @param libraryClassPool   the library class pool used to look up class
     *                           references.
     * @param domainClassVisitor the visitor to which found domain classes that
     *                           are involved in Gson deserialization will
     *                           be delegated.
     * @param warningPrinter        used to print notes about domain classes that
     *                           can not be handled by the Gson optimization.
     */
    public GsonDeserializationInvocationFinder(ClassPool      programClassPool,
                                               ClassPool      libraryClassPool,
                                               ClassVisitor   domainClassVisitor,
                                               WarningPrinter warningPrinter)
    {
        this.programClassPool   = programClassPool;
        this.libraryClassPool   = libraryClassPool;
        this.domainClassVisitor = domainClassVisitor;
        this.warningPrinter = warningPrinter;

        // Create matchers for relevant instruction sequences.
        InstructionSequenceBuilder builder = new InstructionSequenceBuilder();

        // The invocation "Gson#fromJson(String, Class)".
        Instruction[] fromJsonStringClassInstructions = builder
            .invokevirtual(GsonClassConstants.NAME_GSON,
                           GsonClassConstants.METHOD_NAME_FROM_JSON,
                           GsonClassConstants.METHOD_TYPE_FROM_JSON_STRING_CLASS)
            .instructions();

        // The invocation "Gson#fromJson(String, Type)".
        Instruction[] fromJsonStringTypeInstructions = builder
            .invokevirtual(GsonClassConstants.NAME_GSON,
                           GsonClassConstants.METHOD_NAME_FROM_JSON,
                           GsonClassConstants.METHOD_TYPE_FROM_JSON_STRING_TYPE)
            .instructions();

        // The invocation "Gson#fromJson(Reader, Class)".
        Instruction[] fromJsonReaderClassInstructions = builder
            .invokevirtual(GsonClassConstants.NAME_GSON,
                           GsonClassConstants.METHOD_NAME_FROM_JSON,
                           GsonClassConstants.METHOD_TYPE_FROM_JSON_READER_CLASS)
            .instructions();

        // The invocation "Gson#fromJson(Reader, Type)".
        Instruction[] fromJsonReaderTypeInstructions = builder
            .invokevirtual(GsonClassConstants.NAME_GSON,
                           GsonClassConstants.METHOD_NAME_FROM_JSON,
                           GsonClassConstants.METHOD_TYPE_FROM_JSON_READER_TYPE)
            .instructions();

        // The invocation "Gson#fromJson(JsonReader, Type)".
        Instruction[] fromJsonJsonReaderTypeInstructions = builder
            .invokevirtual(GsonClassConstants.NAME_GSON,
                           GsonClassConstants.METHOD_NAME_FROM_JSON,
                           GsonClassConstants.METHOD_TYPE_FROM_JSON_JSON_READER_TYPE)
            .instructions();

        Constant[] constants = builder.constants();

        fromJsonInvocationMatchers = new FromJsonInvocationMatcher[]
        {
            new FromJsonInvocationMatcher(constants, fromJsonStringClassInstructions,      0, -1),
            new FromJsonInvocationMatcher(constants, fromJsonStringTypeInstructions,      -1,  0),
            new FromJsonInvocationMatcher(constants, fromJsonReaderClassInstructions,      0, -1),
            new FromJsonInvocationMatcher(constants, fromJsonReaderTypeInstructions,      -1,  0),
            new FromJsonInvocationMatcher(constants, fromJsonJsonReaderTypeInstructions,  -1,  0)
        };
    }


    // Implementations for InstructionVisitor.

    @Override
    public void visitAnyInstruction(Clazz clazz, Method method, CodeAttribute codeAttribute, int offset, Instruction instruction)
    {
        // Try to match any of the fromJson() constructs.
        FromJsonInvocationMatcher matchingMatcher = null;
        for (FromJsonInvocationMatcher matcher : fromJsonInvocationMatchers)
        {
            instruction.accept(clazz,
                               method,
                               codeAttribute,
                               offset,
                               matcher);
            if(matcher.isMatching())
            {
                matchingMatcher = matcher;
                break;
            }
        }

        if (matchingMatcher != null)
        {
            logger.debug("GsonDeserializationInvocationFinder: Gson#fromJson: {}.{}{} {}",
                         clazz.getName(),
                         method.getName(clazz),
                         method.getDescriptor(clazz),
                         instruction.toString(offset)
            );

            // Figure out the type that is being deserialized.
            lazyPartialEvaluator.visitCodeAttribute(clazz,
                                                    method,
                                                    codeAttribute);

            // Derive types from Class or Type argument.
            int stackElementIndex = matchingMatcher.typeStackElementIndex == -1 ?
                matchingMatcher.classStackElementIndex :
                matchingMatcher.typeStackElementIndex;
            InstructionOffsetValue producer =
                partialEvaluator.getStackBefore(offset)
                                .getTopActualProducerValue(stackElementIndex)
                                .instructionOffsetValue();

            TypeArgumentFinder typeArgumentFinder =
                new TypeArgumentFinder(programClassPool,
                                       libraryClassPool,
                                       partialEvaluator);
            for (int i = 0; i < producer.instructionOffsetCount(); i++)
            {
                codeAttribute.instructionAccept(clazz,
                                                method,
                                                producer.instructionOffset(i),
                                                typeArgumentFinder);
            }

            String[] targetTypes = typeArgumentFinder.typeArgumentClasses;
            if (targetTypes != null)
            {
                for (String targetType : targetTypes)
                {
                    logger.debug("GsonDeserializationInvocationFinder: deserialized type: {}", targetType);
                    programClassPool.classAccept(targetType, domainClassVisitor);
                }
            }
            else if (warningPrinter != null)
            {
                warningPrinter.print(clazz.getName(),
                                     "Warning: can't derive deserialized type from fromJson() invocation in " +
                                     clazz.getName() +
                                     "." +
                                     method.getName(clazz) +
                                     method.getDescriptor(clazz));
            }
        }
    }


    // Utility classes.

    private static class FromJsonInvocationMatcher
    extends              InstructionSequenceMatcher
    {
        private int classStackElementIndex;
        private int typeStackElementIndex;

        private FromJsonInvocationMatcher(Constant[]    patternConstants,
                                          Instruction[] patternInstructions,
                                          int           classStackElementIndex,
                                          int           typeStackElementIndex)
        {
            super(patternConstants, patternInstructions);
            this.classStackElementIndex = classStackElementIndex;
            this.typeStackElementIndex  = typeStackElementIndex;
        }
    }
}




© 2015 - 2025 Weber Informatics LLC | Privacy Policy