Merge pull request #13 from Deep-CodeAI/fix/parser-coercion-bounds

Skobeltsyn · web-flow · commit 693d2447ed08 · 2026-05-03T12:19:46.000+03:00
Fix/parser coercion bounds
diff --git a/src/main/kotlin/agents_engine/generation/GenerableSupport.kt b/src/main/kotlin/agents_engine/generation/GenerableSupport.kt
@@ -297,8 +297,13 @@ private fun coerceValue(value: Any?, type: KType): Any? {
     if (value == null) return null
     return when (type.classifier) {
         String::class -> value.toString()
-        Int::class -> (value as? Number)?.toInt()
-        Long::class -> (value as? Number)?.toLong()
+        // #855 — `Number.toInt()` and `Number.toLong()` truncate silently on overflow.
+        // Reject out-of-range values so the LLM can't slip a 99_999_999_999 into an
+        // `Int` field and end up with garbage. Returning null routes through
+        // `constructFromMap` → `onToolError.invalidArgs`, which is the right
+        // recovery path for "this value didn't match the type contract".
+        Int::class -> coerceToInt(value)
+        Long::class -> coerceToLong(value)
         Double::class -> (value as? Number)?.toDouble()
         Float::class -> (value as? Number)?.toFloat()
         Boolean::class -> value as? Boolean
@@ -317,3 +322,53 @@ private fun coerceValue(value: Any?, type: KType): Any? {
         }
     }
 }
+
+/**
+ * Coerce a JSON-decoded value to `Int` without silent truncation. Returns null when
+ * the input is not a `Number`, when a fractional part would be lost, or when the
+ * value is outside `Int.MIN_VALUE..Int.MAX_VALUE`. See #855.
+ */
+private fun coerceToInt(value: Any): Int? {
+    val n = value as? Number ?: return null
+    val asLong = when (n) {
+        is Long, is Int, is Short, is Byte -> n.toLong()
+        is Double -> {
+            if (n.isNaN() || n.isInfinite() || n != Math.floor(n)) return null
+            if (n < Int.MIN_VALUE.toDouble() || n > Int.MAX_VALUE.toDouble()) return null
+            n.toLong()
+        }
+        is Float -> {
+            val d = n.toDouble()
+            if (d.isNaN() || d.isInfinite() || d != Math.floor(d)) return null
+            if (d < Int.MIN_VALUE.toDouble() || d > Int.MAX_VALUE.toDouble()) return null
+            d.toLong()
+        }
+        else -> n.toLong()
+    }
+    if (asLong !in Int.MIN_VALUE..Int.MAX_VALUE) return null
+    return asLong.toInt()
+}
+
+/**
+ * Coerce a JSON-decoded value to `Long` without silent truncation. Returns null on
+ * non-numeric input, fractional input, or out-of-range floating-point input. See #855.
+ */
+private fun coerceToLong(value: Any): Long? {
+    val n = value as? Number ?: return null
+    return when (n) {
+        is Long -> n
+        is Int, is Short, is Byte -> n.toLong()
+        is Double -> {
+            if (n.isNaN() || n.isInfinite() || n != Math.floor(n)) return null
+            if (n < Long.MIN_VALUE.toDouble() || n > Long.MAX_VALUE.toDouble()) return null
+            n.toLong()
+        }
+        is Float -> {
+            val d = n.toDouble()
+            if (d.isNaN() || d.isInfinite() || d != Math.floor(d)) return null
+            if (d < Long.MIN_VALUE.toDouble() || d > Long.MAX_VALUE.toDouble()) return null
+            d.toLong()
+        }
+        else -> n.toLong()
+    }
+}
diff --git a/src/main/kotlin/agents_engine/generation/LenientJsonParser.kt b/src/main/kotlin/agents_engine/generation/LenientJsonParser.kt
@@ -8,6 +8,16 @@ package agents_engine.generation
  */
 internal object LenientJsonParser {
 
+    /**
+     * Hard cap on nesting depth — see #854. Without it, input like
+     * `{"a":{"a":{...nested 10000 times...}}}` overflows the JVM stack
+     * (`StackOverflowError` is an `Error`, not an `Exception` — it's NOT
+     * caught by the try/catch in [parse]). 64 levels is comfortably more
+     * than any legitimate LLM-emitted structure and keeps stack usage in
+     * the kilobytes.
+     */
+    const val MAX_NESTING_DEPTH: Int = 64
+
     fun parse(input: String): Any? {
         val block = extractJsonBlock(input)
         if (block.isEmpty() || (block[0] != '{' && block[0] != '[')) return null
@@ -55,20 +65,33 @@ internal object LenientJsonParser {
 
     private class Parser(private val s: String) {
         private var pos = 0
+        private var depth = 0
 
         fun parseValue(): Any? {
             skipWs()
             if (pos >= s.length) return null
             return when (s[pos]) {
-                '{' -> parseObject()
-                '[' -> parseArray()
+                '{' -> withDepth { parseObject() }
+                '[' -> withDepth { parseArray() }
                 '"' -> parseString()
                 't', 'f' -> parseBoolean()
                 'n' -> parseNull()
                 else -> parseNumber()
             }
         }
 
+        private inline fun <T> withDepth(block: () -> T): T {
+            if (depth >= MAX_NESTING_DEPTH) {
+                throw IllegalStateException("JSON nesting exceeds $MAX_NESTING_DEPTH")
+            }
+            depth++
+            try {
+                return block()
+            } finally {
+                depth--
+            }
+        }
+
         private fun parseObject(): Map<String, Any?> {
             pos++ // consume '{'
             val map = linkedMapOf<String, Any?>()
diff --git a/src/test/kotlin/agents_engine/generation/CoerceValueOverflowTest.kt b/src/test/kotlin/agents_engine/generation/CoerceValueOverflowTest.kt
@@ -0,0 +1,89 @@
+package agents_engine.generation
+
+import kotlin.test.Test
+import kotlin.test.assertEquals
+import kotlin.test.assertNotNull
+import kotlin.test.assertNull
+
+// Tests for #855 — coerceValue rejects out-of-range or fractional inputs for
+// Int / Long fields instead of silently truncating. Out-of-range routes to
+// constructFromMap returning null, which surfaces as an invalidArgs error.
+
+@Generable("box of an Int") data class IntBox(val n: Int)
+@Generable("box of a Long") data class LongBox(val n: Long)
+
+class CoerceValueOverflowTest {
+
+    @Test
+    fun `Int field rejects value larger than Int_MAX_VALUE`() {
+        // 99_999_999_999 truncated to Int gives -1474836425 — silent corruption.
+        val result = IntBox::class.constructFromMap(mapOf("n" to 99_999_999_999L))
+        assertNull(result, "out-of-range Int must reject construction, not silently truncate")
+    }
+
+    @Test
+    fun `Int field rejects value below Int_MIN_VALUE`() {
+        val result = IntBox::class.constructFromMap(mapOf("n" to -99_999_999_999L))
+        assertNull(result, "below-range Int must reject construction")
+    }
+
+    @Test
+    fun `Int field accepts Int_MAX_VALUE exactly`() {
+        val result = IntBox::class.constructFromMap(mapOf("n" to Int.MAX_VALUE.toLong()))
+        assertNotNull(result)
+        assertEquals(Int.MAX_VALUE, result!!.n)
+    }
+
+    @Test
+    fun `Int field accepts Int_MIN_VALUE exactly`() {
+        val result = IntBox::class.constructFromMap(mapOf("n" to Int.MIN_VALUE.toLong()))
+        assertNotNull(result)
+        assertEquals(Int.MIN_VALUE, result!!.n)
+    }
+
+    @Test
+    fun `Int field rejects fractional Double input`() {
+        val result = IntBox::class.constructFromMap(mapOf("n" to 1.5))
+        assertNull(result, "fractional Double must reject coercion to Int")
+    }
+
+    @Test
+    fun `Int field accepts whole-number Double`() {
+        val result = IntBox::class.constructFromMap(mapOf("n" to 42.0))
+        assertNotNull(result)
+        assertEquals(42, result!!.n)
+    }
+
+    @Test
+    fun `Int field rejects NaN and Infinity`() {
+        assertNull(IntBox::class.constructFromMap(mapOf("n" to Double.NaN)))
+        assertNull(IntBox::class.constructFromMap(mapOf("n" to Double.POSITIVE_INFINITY)))
+        assertNull(IntBox::class.constructFromMap(mapOf("n" to Double.NEGATIVE_INFINITY)))
+    }
+
+    @Test
+    fun `Long field rejects fractional Double input`() {
+        val result = LongBox::class.constructFromMap(mapOf("n" to 1.5))
+        assertNull(result, "fractional Double must reject coercion to Long")
+    }
+
+    @Test
+    fun `Long field accepts integer-valued Double within range`() {
+        val result = LongBox::class.constructFromMap(mapOf("n" to 9_000_000_000_000.0))
+        assertNotNull(result)
+        assertEquals(9_000_000_000_000L, result!!.n)
+    }
+
+    @Test
+    fun `Long field rejects out-of-range Double`() {
+        // 1e30 is well outside Long range.
+        val result = LongBox::class.constructFromMap(mapOf("n" to 1e30))
+        assertNull(result, "out-of-range Double must reject coercion to Long")
+    }
+
+    @Test
+    fun `Long field accepts Int and Long values transparently`() {
+        assertEquals(42L, LongBox::class.constructFromMap(mapOf("n" to 42))!!.n)
+        assertEquals(42L, LongBox::class.constructFromMap(mapOf("n" to 42L))!!.n)
+    }
+}
diff --git a/src/test/kotlin/agents_engine/generation/LenientJsonParserDepthLimitTest.kt b/src/test/kotlin/agents_engine/generation/LenientJsonParserDepthLimitTest.kt
@@ -0,0 +1,62 @@
+package agents_engine.generation
+
+import kotlin.test.Test
+import kotlin.test.assertEquals
+import kotlin.test.assertNotNull
+import kotlin.test.assertNull
+
+// Tests for #854 — LenientJsonParser caps nesting depth so a malicious payload
+// can't overflow the JVM stack.
+class LenientJsonParserDepthLimitTest {
+
+    @Test
+    fun `extreme nesting returns null instead of crashing with StackOverflowError`() {
+        // 10 000 levels — would overflow without the depth cap.
+        val deep = "{" + "\"a\":{".repeat(10_000) + "1" + "}".repeat(10_001)
+        assertNull(LenientJsonParser.parse(deep), "extreme nesting must return null, not throw")
+    }
+
+    @Test
+    fun `nesting at exactly the cap parses successfully`() {
+        // The cap is on Parser internals — depth counts each open `{`/`[` Parser
+        // descends into. With MAX_NESTING_DEPTH = 64, 63 nested objects + leaf parse.
+        val depth = LenientJsonParser.MAX_NESTING_DEPTH - 1
+        val capJson = "{" + "\"a\":{".repeat(depth - 1) + "\"x\":1" + "}".repeat(depth)
+        val r = LenientJsonParser.parse(capJson)
+        assertNotNull(r, "at-cap input must parse")
+    }
+
+    @Test
+    fun `nesting one past the cap returns null`() {
+        val depth = LenientJsonParser.MAX_NESTING_DEPTH + 1
+        val overCap = "{" + "\"a\":{".repeat(depth - 1) + "\"x\":1" + "}".repeat(depth)
+        assertNull(LenientJsonParser.parse(overCap), "over-cap input must return null")
+    }
+
+    @Test
+    fun `array nesting is also capped`() {
+        val depth = LenientJsonParser.MAX_NESTING_DEPTH + 50
+        val deepArray = "[".repeat(depth) + "1" + "]".repeat(depth)
+        assertNull(LenientJsonParser.parse(deepArray), "deeply-nested array must return null")
+    }
+
+    @Test
+    fun `mixed object array nesting at moderate depth still parses`() {
+        // 10 levels mixed — well under the cap.
+        val ten = LenientJsonParser.parse("""{"a":[{"b":[{"c":[{"d":[{"e":42}]}]}]}]}""") as? Map<*, *>
+        assertNotNull(ten, "moderate mixed nesting must parse fine")
+    }
+
+    @Test
+    fun `flat structures with many siblings are unaffected (siblings dont count as depth)`() {
+        // 10 000 sibling fields — no depth recursion, just iteration.
+        val flat = buildString {
+            append("{")
+            (0 until 10_000).joinTo(this, ",") { """"k$it":$it""" }
+            append("}")
+        }
+        val r = LenientJsonParser.parse(flat) as? Map<*, *>
+        assertNotNull(r, "wide-but-shallow input must parse")
+        assertEquals(10_000, r!!.size)
+    }
+}
