SPR-6291 - UrlPathHelper is too aggressive decoding URLs

poutsma · poutsma · commit c5c1d70aa325 · 2010-10-12T12:09:43.000Z
diff --git a/org.springframework.web/src/main/java/org/springframework/web/util/UriUtils.java b/org.springframework.web/src/main/java/org/springframework/web/util/UriUtils.java
@@ -462,6 +462,7 @@ public static String decode(String source, String encoding) throws UnsupportedEn
 		Assert.hasLength(encoding, "'encoding' must not be empty");
 		int length = source.length();
 		ByteArrayOutputStream bos = new ByteArrayOutputStream(length);
+		boolean changed = false;
 		for (int i = 0; i < length; i++) {
 			int ch = source.charAt(i);
 			if (ch == '%') {
@@ -472,6 +473,7 @@ public static String decode(String source, String encoding) throws UnsupportedEn
 					int l = Character.digit(hex2, 16);
 					bos.write((char) ((u << 4) + l));
 					i += 2;
+					changed = true;
 				}
 				else {
 					throw new IllegalArgumentException("Invalid encoded sequence \"" + source.substring(i) + "\"");
@@ -481,7 +483,7 @@ public static String decode(String source, String encoding) throws UnsupportedEn
 				bos.write(ch);
 			}
 		}
-		return new String(bos.toByteArray(), encoding);
+		return changed ? new String(bos.toByteArray(), encoding) : source;
 	}
 
 }
diff --git a/org.springframework.web/src/test/java/org/springframework/web/util/UriUtilsTests.java b/org.springframework.web/src/test/java/org/springframework/web/util/UriUtilsTests.java
@@ -88,11 +88,13 @@ public void encodeFragment() throws UnsupportedEncodingException {
 
 	@Test
 	public void decode() throws UnsupportedEncodingException {
+		assertEquals("Invalid encoded URI", "", UriUtils.decode("", ENC));
 		assertEquals("Invalid encoded URI", "foobar", UriUtils.decode("foobar", ENC));
 		assertEquals("Invalid encoded URI", "foo bar", UriUtils.decode("foo%20bar", ENC));
 		assertEquals("Invalid encoded URI", "foo+bar", UriUtils.decode("foo%2bbar", ENC));
 		assertEquals("Invalid encoded result", "T\u014dky\u014d", UriUtils.decode("T%C5%8Dky%C5%8D", ENC));
 		assertEquals("Invalid encoded result", "/Z\u00fcrich", UriUtils.decode("/Z%C3%BCrich", ENC));
+		assertEquals("Invalid encoded result", "T\u014dky\u014d", UriUtils.decode("T\u014dky\u014d", ENC));
 	}
 
 	@Test(expected = IllegalArgumentException.class)

Original file line number	Diff line number	Diff line change
`@@ -462,6 +462,7 @@ public static String decode(String source, String encoding) throws UnsupportedEn`
`462`	`462`	`Assert.hasLength(encoding, "'encoding' must not be empty");`
`463`	`463`	`int length = source.length();`
`464`	`464`	`ByteArrayOutputStream bos = new ByteArrayOutputStream(length);`
	`465`	`+ boolean changed = false;`
`465`	`466`	`for (int i = 0; i < length; i++) {`
`466`	`467`	`int ch = source.charAt(i);`
`467`	`468`	`if (ch == '%') {`
`@@ -472,6 +473,7 @@ public static String decode(String source, String encoding) throws UnsupportedEn`
`472`	`473`	`int l = Character.digit(hex2, 16);`
`473`	`474`	`bos.write((char) ((u << 4) + l));`
`474`	`475`	`i += 2;`
	`476`	`+ changed = true;`
`475`	`477`	`}`
`476`	`478`	`else {`
`477`	`479`	`throw new IllegalArgumentException("Invalid encoded sequence \"" + source.substring(i) + "\"");`
`@@ -481,7 +483,7 @@ public static String decode(String source, String encoding) throws UnsupportedEn`
`481`	`483`	`bos.write(ch);`
`482`	`484`	`}`
`483`	`485`	`}`
`484`		`- return new String(bos.toByteArray(), encoding);`
	`486`	`+ return changed ? new String(bos.toByteArray(), encoding) : source;`
`485`	`487`	`}`
`486`	`488`
`487`	`489`	`}`