fix(sentry): Prevent object readers from hanging on bad values

Recover from deserializer failures by advancing past the broken value
instead of retrying the same token forever. This keeps list and map
helpers progressing and preserves later valid entries.

Track nesting in JsonObjectReader so recovery also works after a
partially consumed object or array. Implement skipValue in
MapObjectReader and avoid consuming stack entries before type checks
so failed reads do not corrupt the remaining input.

Fixes GH-5278
Co-Authored-By: Claude <noreply@anthropic.com>

Author: adinauer

sentry/src/main/java/io/sentry/JsonObjectReader.java

@@ -18,6 +18,7 @@
 public final class JsonObjectReader implements ObjectReader {
 
   private final @NotNull JsonReader jsonReader;
+  private int depth = 0;
 
   public JsonObjectReader(Reader in) {
     this.jsonReader = new JsonReader(in);
@@ -84,10 +85,18 @@ public float nextFloat() throws IOException {
 
   @Override
   public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name) {
+    final int startDepth = depth;
+    JsonToken startToken = JsonToken.END_DOCUMENT;
     try {
+      startToken = peek();
       unknown.put(name, nextObjectOrNull());
     } catch (Exception exception) {
       logger.log(SentryLevel.ERROR, exception, "Error deserializing unknown key: %s", name);
+      try {
+        recoverValue(startDepth, startToken);
+      } catch (Exception ignored) {
+        // stream is unrecoverable
+      }
     }
   }
 
@@ -98,18 +107,21 @@ public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name
       jsonReader.nextNull();
       return null;
     }
-    jsonReader.beginArray();
+    beginArray();
     List<T> list = new ArrayList<>();
     if (jsonReader.hasNext()) {
       do {
+        final int startDepth = depth;
+        final JsonToken startToken = peek();
         try {
           list.add(deserializer.deserialize(this, logger));
         } catch (Exception e) {
           logger.log(SentryLevel.WARNING, "Failed to deserialize object in list.", e);
+          recoverValue(startDepth, startToken);
         }
       } while (jsonReader.peek() == JsonToken.BEGIN_OBJECT);
     }
-    jsonReader.endArray();
+    endArray();
     return list;
   }
 
@@ -120,20 +132,23 @@ public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name
       jsonReader.nextNull();
       return null;
     }
-    jsonReader.beginObject();
+    beginObject();
     Map<String, T> map = new HashMap<>();
     if (jsonReader.hasNext()) {
       do {
+        final String key = jsonReader.nextName();
+        final int startDepth = depth;
+        final JsonToken startToken = peek();
         try {
-          String key = jsonReader.nextName();
           map.put(key, deserializer.deserialize(this, logger));
         } catch (Exception e) {
           logger.log(SentryLevel.WARNING, "Failed to deserialize object in map.", e);
+          recoverValue(startDepth, startToken);
         }
       } while (jsonReader.peek() == JsonToken.BEGIN_OBJECT || jsonReader.peek() == JsonToken.NAME);
     }
 
-    jsonReader.endObject();
+    endObject();
     return map;
   }
 
@@ -151,9 +166,16 @@ public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name
     if (hasNext()) {
       do {
         final @NotNull String key = nextName();
-        final @Nullable List<T> list = nextListOrNull(logger, deserializer);
-        if (list != null) {
-          result.put(key, list);
+        final int startDepth = depth;
+        final JsonToken startToken = peek();
+        try {
+          final @Nullable List<T> list = nextListOrNull(logger, deserializer);
+          if (list != null) {
+            result.put(key, list);
+          }
+        } catch (Exception e) {
+          logger.log(SentryLevel.WARNING, "Failed to deserialize list in map.", e);
+          recoverValue(startDepth, startToken);
         }
       } while (peek() == JsonToken.BEGIN_OBJECT || peek() == JsonToken.NAME);
     }
@@ -219,21 +241,25 @@ public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name
   @Override
   public void beginObject() throws IOException {
     jsonReader.beginObject();
+    depth++;
   }
 
   @Override
   public void endObject() throws IOException {
     jsonReader.endObject();
+    depth--;
   }
 
   @Override
   public void beginArray() throws IOException {
     jsonReader.beginArray();
+    depth++;
   }
 
   @Override
   public void endArray() throws IOException {
     jsonReader.endArray();
+    depth--;
   }
 
   @Override
@@ -281,6 +307,25 @@ public void skipValue() throws IOException {
     jsonReader.skipValue();
   }
 
+  private void recoverValue(final int startDepth, final @NotNull JsonToken startToken)
+      throws IOException {
+    final boolean enteredNestedValue = depth > startDepth;
+    while (depth > startDepth) {
+      final JsonToken token = peek();
+      if (token == JsonToken.END_OBJECT) {
+        endObject();
+      } else if (token == JsonToken.END_ARRAY) {
+        endArray();
+      } else {
+        skipValue();
+      }
+    }
+
+    if (!enteredNestedValue && peek() == startToken) {
+      skipValue();
+    }
+  }
+
   @Override
   public void close() throws IOException {
     jsonReader.close();

sentry/src/main/java/io/sentry/util/MapObjectReader.java

@@ -35,6 +35,11 @@ public void nextUnknown(
       unknown.put(name, nextObjectOrNull());
     } catch (Exception exception) {
       logger.log(SentryLevel.ERROR, exception, "Error deserializing unknown key: %s", name);
+      try {
+        skipValue();
+      } catch (Exception ignored) {
+        // stream is unrecoverable
+      }
     }
   }
 
@@ -56,6 +61,7 @@ public <T> List<T> nextListOrNull(
             list.add(deserializer.deserialize(this, logger));
           } catch (Exception e) {
             logger.log(SentryLevel.WARNING, "Failed to deserialize object in list.", e);
+            skipValue();
           }
         } while (peek() == JsonToken.BEGIN_OBJECT);
       }
@@ -80,11 +86,12 @@ public <T> Map<String, T> nextMapOrNull(
       Map<String, T> map = new HashMap<>();
       if (hasNext()) {
         do {
+          final String key = nextName();
           try {
-            String key = nextName();
             map.put(key, deserializer.deserialize(this, logger));
           } catch (Exception e) {
             logger.log(SentryLevel.WARNING, "Failed to deserialize object in map.", e);
+            skipValue();
           }
         } while (peek() == JsonToken.BEGIN_OBJECT || peek() == JsonToken.NAME);
       }
@@ -109,9 +116,14 @@ public <T> Map<String, T> nextMapOrNull(
       if (hasNext()) {
         do {
           final @NotNull String key = nextName();
-          final @Nullable List<T> list = nextListOrNull(logger, deserializer);
-          if (list != null) {
-            result.put(key, list);
+          try {
+            final @Nullable List<T> list = nextListOrNull(logger, deserializer);
+            if (list != null) {
+              result.put(key, list);
+            }
+          } catch (Exception e) {
+            logger.log(SentryLevel.WARNING, "Failed to deserialize list in map.", e);
+            skipValue();
           }
         } while (peek() == JsonToken.BEGIN_OBJECT || peek() == JsonToken.NAME);
       }
@@ -197,12 +209,13 @@ public String nextName() throws IOException {
 
   @Override
   public void beginObject() throws IOException {
-    final Map.Entry<String, Object> currentEntry = stack.removeLast();
+    final Map.Entry<String, Object> currentEntry = stack.peekLast();
     if (currentEntry == null) {
       throw new IOException("No more entries");
     }
     final Object value = currentEntry.getValue();
     if (value instanceof Map) {
+      stack.removeLast();
       // insert a dummy entry to indicate end of an object
       stack.addLast(new AbstractMap.SimpleEntry<>(null, JsonToken.END_OBJECT));
       // extract map entries onto the stack
@@ -223,12 +236,13 @@ public void endObject() throws IOException {
 
   @Override
   public void beginArray() throws IOException {
-    final Map.Entry<String, Object> currentEntry = stack.removeLast();
+    final Map.Entry<String, Object> currentEntry = stack.peekLast();
     if (currentEntry == null) {
       throw new IOException("No more entries");
     }
     final Object value = currentEntry.getValue();
     if (value instanceof List) {
+      stack.removeLast();
       // insert a dummy entry to indicate end of an object
       stack.addLast(new AbstractMap.SimpleEntry<>(null, JsonToken.END_ARRAY));
       // extract map entries onto the stack
@@ -377,7 +391,11 @@ public void nextNull() throws IOException {
   public void setLenient(final boolean lenient) {}
 
   @Override
-  public void skipValue() throws IOException {}
+  public void skipValue() throws IOException {
+    if (!stack.isEmpty()) {
+      stack.removeLast();
+    }
+  }
 
   @SuppressWarnings("TypeParameterUnusedInFormals")
   @Nullable

sentry/src/test/java/io/sentry/JsonObjectReaderTest.kt

@@ -18,6 +18,24 @@ class JsonObjectReaderTest {
 
   val fixture = Fixture()
 
+  private val throwingValueDeserializer =
+    JsonDeserializer<String> { reader, _ ->
+      reader.beginObject()
+      reader.nextName()
+      val value = reader.nextString()
+      if (value == "fail") {
+        throw IllegalStateException("intentional")
+      }
+      reader.endObject()
+      value
+    }
+
+  private fun getValuesReader(jsonValue: String): JsonObjectReader =
+    fixture.getSut("{\"values\": $jsonValue}").apply {
+      beginObject()
+      nextName()
+    }
+
   // nextStringOrNull
 
   @Test
@@ -198,6 +216,87 @@ class JsonObjectReaderTest {
     verify(fixture.logger, never()).log(any(), any(), any<Throwable>())
   }
 
+  @Test(timeout = 1000L)
+  fun `nextListOrNull skips a failing element`() {
+    val actual =
+      getValuesReader("[{\"value\": \"fail\"}]")
+        .nextListOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(emptyList(), actual)
+  }
+
+  @Test(timeout = 1000L)
+  fun `nextListOrNull keeps elements before a failing element`() {
+    val actual =
+      getValuesReader("[{\"value\": \"one\"}, {\"value\": \"fail\"}]")
+        .nextListOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(listOf("one"), actual)
+  }
+
+  @Test(timeout = 1000L)
+  fun `nextListOrNull keeps elements after a failing element`() {
+    val actual =
+      getValuesReader("[{\"value\": \"fail\"}, {\"value\": \"two\"}]")
+        .nextListOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(listOf("two"), actual)
+  }
+
+  @Test(timeout = 1000L)
+  fun `nextMapOrNull skips a failing value`() {
+    val actual =
+      getValuesReader("{\"bad\": {\"value\": \"fail\"}}")
+        .nextMapOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(emptyMap(), actual)
+  }
+
+  @Test(timeout = 1000L)
+  fun `nextMapOrNull keeps values before a failing value`() {
+    val actual =
+      getValuesReader("{\"good\": {\"value\": \"one\"}, \"bad\": {\"value\": \"fail\"}}")
+        .nextMapOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(mapOf("good" to "one"), actual)
+  }
+
+  @Test(timeout = 1000L)
+  fun `nextMapOrNull keeps values after a failing value`() {
+    val actual =
+      getValuesReader("{\"bad\": {\"value\": \"fail\"}, \"good\": {\"value\": \"two\"}}")
+        .nextMapOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(mapOf("good" to "two"), actual)
+  }
+
+  @Test(timeout = 1000L)
+  fun `nextMapOfListOrNull skips a failing value`() {
+    val actual =
+      getValuesReader("{\"bad\": {\"value\": \"fail\"}}")
+        .nextMapOfListOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(emptyMap(), actual)
+  }
+
+  @Test(timeout = 1000L)
+  fun `nextMapOfListOrNull keeps values before a failing value`() {
+    val actual =
+      getValuesReader("{\"good\": [{\"value\": \"one\"}], \"bad\": {\"value\": \"fail\"}}")
+        .nextMapOfListOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(mapOf("good" to listOf("one")), actual)
+  }
+
+  @Test(timeout = 1000L)
+  fun `nextMapOfListOrNull keeps values after a failing value`() {
+    val actual =
+      getValuesReader("{\"bad\": {\"value\": \"fail\"}, \"good\": [{\"value\": \"two\"}]}")
+        .nextMapOfListOrNull(fixture.logger, throwingValueDeserializer)
+
+    assertEquals(mapOf("good" to listOf("two")), actual)
+  }
+
   // nextDateOrNull
 
   @Test