getsentry
diff --git a/‎CHANGELOG.md‎
Lines changed: 4 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎sentry/src/main/java/io/sentry/JsonObjectReader.java‎
Lines changed: 93 additions & 10 deletions b/‎sentry/src/main/java/io/sentry/JsonObjectReader.java‎
Lines changed: 93 additions & 10 deletions
diff --git a/‎sentry/src/main/java/io/sentry/util/MapObjectReader.java‎
Lines changed: 31 additions & 7 deletions b/‎sentry/src/main/java/io/sentry/util/MapObjectReader.java‎
Lines changed: 31 additions & 7 deletions
@@ -2,6 +2,10 @@
 
 ## Unreleased
 
+### Fixes
+
+- Fix `JsonObjectReader` and `MapObjectReader` hanging indefinitely when deserialization errors leave the reader in an inconsistent state; failed values are now skipped, parsing continues, and a WARNING-level log entry is emitted for each skipped value ([#5293](https://github.com/getsentry/sentry-java/pull/5293))
+
 ### Dependencies
 
 - Bump Native SDK from v0.13.3 to v0.13.6 ([#5277](https://github.com/getsentry/sentry-java/pull/5277))
 
@@ -18,6 +18,7 @@
 public final class JsonObjectReader implements ObjectReader {
 
   private final @NotNull JsonReader jsonReader;
+  private int depth = 0;
 
   public JsonObjectReader(Reader in) {
     this.jsonReader = new JsonReader(in);
@@ -84,10 +85,18 @@ public float nextFloat() throws IOException {
 
   @Override
   public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name) {
+    final int startDepth = depth;
+    JsonToken startToken = JsonToken.END_DOCUMENT;
     try {
+      startToken = peek();
       unknown.put(name, nextObjectOrNull());
     } catch (Exception exception) {
       logger.log(SentryLevel.ERROR, exception, "Error deserializing unknown key: %s", name);
+      try {
+        recoverValue(startDepth, startToken);
+      } catch (Exception ignored) {
+        // stream is unrecoverable
+      }
     }
   }
 
@@ -98,18 +107,28 @@ public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name
       jsonReader.nextNull();
       return null;
     }
-    jsonReader.beginArray();
+    beginArray();
     List<T> list = new ArrayList<>();
     if (jsonReader.hasNext()) {
       do {
+        final int startDepth = depth;
+        final JsonToken startToken = peek();
         try {
           list.add(deserializer.deserialize(this, logger));
         } catch (Exception e) {
-          logger.log(SentryLevel.WARNING, "Failed to deserialize object in list.", e);
+          if (!recoverAfterValueFailure(
+              logger,
+              e,
+              "Failed to deserialize object in list.",
+              "Stream unrecoverable, aborting list deserialization.",
+              startDepth,
+              startToken)) {
+            break;
+          }
         }
       } while (jsonReader.peek() == JsonToken.BEGIN_OBJECT);
     }
-    jsonReader.endArray();
+    endArray();
     return list;
   }
 
@@ -120,20 +139,30 @@ public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name
       jsonReader.nextNull();
       return null;
     }
-    jsonReader.beginObject();
+    beginObject();
     Map<String, T> map = new HashMap<>();
     if (jsonReader.hasNext()) {
       do {
+        final String key = jsonReader.nextName();
+        final int startDepth = depth;
+        final JsonToken startToken = peek();
         try {
-          String key = jsonReader.nextName();
           map.put(key, deserializer.deserialize(this, logger));
         } catch (Exception e) {
-          logger.log(SentryLevel.WARNING, "Failed to deserialize object in map.", e);
+          if (!recoverAfterValueFailure(
+              logger,
+              e,
+              "Failed to deserialize object in map.",
+              "Stream unrecoverable, aborting map deserialization.",
+              startDepth,
+              startToken)) {
+            break;
+          }
         }
       } while (jsonReader.peek() == JsonToken.BEGIN_OBJECT || jsonReader.peek() == JsonToken.NAME);
     }
 
-    jsonReader.endObject();
+    endObject();
     return map;
   }
 
@@ -151,9 +180,23 @@ public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name
     if (hasNext()) {
       do {
         final @NotNull String key = nextName();
-        final @Nullable List<T> list = nextListOrNull(logger, deserializer);
-        if (list != null) {
-          result.put(key, list);
+        final int startDepth = depth;
+        final JsonToken startToken = peek();
+        try {
+          final @Nullable List<T> list = nextListOrNull(logger, deserializer);
+          if (list != null) {
+            result.put(key, list);
+          }
+        } catch (Exception e) {
+          if (!recoverAfterValueFailure(
+              logger,
+              e,
+              "Failed to deserialize list in map.",
+              "Stream unrecoverable, aborting map-of-lists deserialization.",
+              startDepth,
+              startToken)) {
+            break;
+          }
         }
       } while (peek() == JsonToken.BEGIN_OBJECT || peek() == JsonToken.NAME);
     }
@@ -219,21 +262,25 @@ public void nextUnknown(ILogger logger, Map<String, Object> unknown, String name
   @Override
   public void beginObject() throws IOException {
     jsonReader.beginObject();
+    depth++;
   }
 
   @Override
   public void endObject() throws IOException {
     jsonReader.endObject();
+    depth--;
   }
 
   @Override
   public void beginArray() throws IOException {
     jsonReader.beginArray();
+    depth++;
   }
 
   @Override
   public void endArray() throws IOException {
     jsonReader.endArray();
+    depth--;
   }
 
   @Override
@@ -281,6 +328,42 @@ public void skipValue() throws IOException {
     jsonReader.skipValue();
   }
 
+  private boolean recoverAfterValueFailure(
+      final @NotNull ILogger logger,
+      final @NotNull Exception error,
+      final @NotNull String warningMessage,
+      final @NotNull String unrecoverableMessage,
+      final int startDepth,
+      final @NotNull JsonToken startToken) {
+    logger.log(SentryLevel.WARNING, warningMessage, error);
+    try {
+      recoverValue(startDepth, startToken);
+      return true;
+    } catch (Exception recoveryException) {
+      logger.log(SentryLevel.ERROR, unrecoverableMessage, recoveryException);
+      return false;
+    }
+  }
+
+  private void recoverValue(final int startDepth, final @NotNull JsonToken startToken)
+      throws IOException {
+    final boolean enteredNestedValue = depth > startDepth;
+    while (depth > startDepth) {
+      final JsonToken token = peek();
+      if (token == JsonToken.END_OBJECT) {
+        endObject();
+      } else if (token == JsonToken.END_ARRAY) {
+        endArray();
+      } else {
+        skipValue();
+      }
+    }
+
+    if (!enteredNestedValue && peek() == startToken) {
+      skipValue();
+    }
+  }
+
   @Override
   public void close() throws IOException {
     jsonReader.close();
 
@@ -31,10 +31,12 @@ public MapObjectReader(final Map<String, Object> root) {
   @Override
   public void nextUnknown(
       final @NotNull ILogger logger, final Map<String, Object> unknown, final String name) {
+    final int stackSizeBefore = stack.size();
     try {
       unknown.put(name, nextObjectOrNull());
     } catch (Exception exception) {
       logger.log(SentryLevel.ERROR, exception, "Error deserializing unknown key: %s", name);
+      recoverValue(stackSizeBefore);
     }
   }
 
@@ -52,10 +54,12 @@ public <T> List<T> nextListOrNull(
       List<T> list = new ArrayList<>();
       if (hasNext()) {
         do {
+          final int stackSizeBefore = stack.size();
           try {
             list.add(deserializer.deserialize(this, logger));
           } catch (Exception e) {
             logger.log(SentryLevel.WARNING, "Failed to deserialize object in list.", e);
+            recoverValue(stackSizeBefore);
           }
         } while (peek() == JsonToken.BEGIN_OBJECT);
       }
@@ -80,11 +84,13 @@ public <T> Map<String, T> nextMapOrNull(
       Map<String, T> map = new HashMap<>();
       if (hasNext()) {
         do {
+          final String key = nextName();
+          final int stackSizeBefore = stack.size();
           try {
-            String key = nextName();
             map.put(key, deserializer.deserialize(this, logger));
           } catch (Exception e) {
             logger.log(SentryLevel.WARNING, "Failed to deserialize object in map.", e);
+            recoverValue(stackSizeBefore);
           }
         } while (peek() == JsonToken.BEGIN_OBJECT || peek() == JsonToken.NAME);
       }
@@ -109,9 +115,15 @@ public <T> Map<String, T> nextMapOrNull(
       if (hasNext()) {
         do {
           final @NotNull String key = nextName();
-          final @Nullable List<T> list = nextListOrNull(logger, deserializer);
-          if (list != null) {
-            result.put(key, list);
+          final int stackSizeBefore = stack.size();
+          try {
+            final @Nullable List<T> list = nextListOrNull(logger, deserializer);
+            if (list != null) {
+              result.put(key, list);
+            }
+          } catch (Exception e) {
+            logger.log(SentryLevel.WARNING, "Failed to deserialize list in map.", e);
+            recoverValue(stackSizeBefore);
           }
         } while (peek() == JsonToken.BEGIN_OBJECT || peek() == JsonToken.NAME);
       }
@@ -197,12 +209,13 @@ public String nextName() throws IOException {
 
   @Override
   public void beginObject() throws IOException {
-    final Map.Entry<String, Object> currentEntry = stack.removeLast();
+    final Map.Entry<String, Object> currentEntry = stack.peekLast();
     if (currentEntry == null) {
       throw new IOException("No more entries");
     }
     final Object value = currentEntry.getValue();
     if (value instanceof Map) {
+      stack.removeLast();
       // insert a dummy entry to indicate end of an object
       stack.addLast(new AbstractMap.SimpleEntry<>(null, JsonToken.END_OBJECT));
       // extract map entries onto the stack
@@ -223,12 +236,13 @@ public void endObject() throws IOException {
 
   @Override
   public void beginArray() throws IOException {
-    final Map.Entry<String, Object> currentEntry = stack.removeLast();
+    final Map.Entry<String, Object> currentEntry = stack.peekLast();
     if (currentEntry == null) {
       throw new IOException("No more entries");
     }
     final Object value = currentEntry.getValue();
     if (value instanceof List) {
+      stack.removeLast();
       // insert a dummy entry to indicate end of an object
       stack.addLast(new AbstractMap.SimpleEntry<>(null, JsonToken.END_ARRAY));
       // extract map entries onto the stack
@@ -377,7 +391,17 @@ public void nextNull() throws IOException {
   public void setLenient(final boolean lenient) {}
 
   @Override
-  public void skipValue() throws IOException {}
+  public void skipValue() throws IOException {
+    if (!stack.isEmpty()) {
+      stack.removeLast();
+    }
+  }
+
+  private void recoverValue(final int stackSizeBefore) {
+    while (!stack.isEmpty() && stack.size() >= stackSizeBefore) {
+      stack.removeLast();
+    }
+  }
 
   @SuppressWarnings("TypeParameterUnusedInFormals")
   @Nullable