QR Code: fix broken Kanji encoding in some corner cases (found via fuzzing)

gredler · gredler · commit 43c996cc065a · 2024-02-13T02:00:22.000+01:00
diff --git a/README.md b/README.md
@@ -127,7 +127,9 @@ and data.
 ### Recent Releases
 
 #### Okapi Barcode 0.4.2
+- QR Code: improved encoding performance
 - Code 128: further optimize data encoding in some scenarios
+- QR Code: fix broken Kanji encoding in some corner cases (found via fuzzing)
 - Data Matrix: fix encoding of trailing extended ASCII characters in TEXT/C40 mode (found via fuzzing)
 - Add OkapiInputException and OkapiInternalException, so users can distinguish user vs. library errors
 
diff --git a/src/main/java/uk/org/okapibarcode/backend/QrCode.java b/src/main/java/uk/org/okapibarcode/backend/QrCode.java
@@ -267,13 +267,13 @@ protected void encode() {
         eciProcess(); // Get ECI mode
 
         if (eciMode == 20) {
-            /* Shift-JIS encoding, use Kanji mode */
-            Charset c = Charset.forName("Shift_JIS");
+            /* Shift-JIS encoding, 2-byte Kanji characters need to be combined */
+            Charset sjis = Charset.forName("Shift_JIS");
             inputData = new int[content.length()];
             for (i = 0; i < inputData.length; i++) {
                 CharBuffer buffer = CharBuffer.wrap(content, i, i + 1);
-                byte[] bytes = c.encode(buffer).array();
-                int value = (bytes.length == 2 ? ((bytes[0] & 0xff) << 8) | (bytes[1] & 0xff) : bytes[0]);
+                byte[] bytes = sjis.encode(buffer).array();
+                int value = (bytes.length == 2 && bytes[1] != 0 ? ((bytes[0] & 0xff) << 8) | (bytes[1] & 0xff) : bytes[0]);
                 inputData[i] = value;
             }
         } else {
@@ -592,53 +592,52 @@ private static int getBinaryLength(int version, QrMode[] inputModeUnoptimized, i
                 switch (inputMode[i]) {
                     case KANJI:
                         count += tribus(version, 8, 10, 12);
-                        count += (blockLength(i, inputMode) * 13);
+                        count += (blockLength(i, inputMode) * 13); // 2-byte SJIS character -> 13 bits
                         break;
                     case BINARY:
                         count += tribus(version, 8, 16, 16);
                         for (j = i; j < (i + blockLength(i, inputMode)); j++) {
                             if (inputData[j] > 0xff) {
-                                count += 16;
+                                count += 16; // actually a 2-byte SJIS character
                             } else {
-                                count += 8;
+                                count += 8; // just a normal byte
                             }
                         }
                         break;
                     case ALPHANUM:
                         count += tribus(version, 9, 11, 13);
                         alphaLength = blockLength(i, inputMode);
-                        // In GS1 and alphanumeric mode % becomes %%
                         if (gs1) {
                             for (j = i; j < (i + alphaLength); j++) {
                                 if (inputData[j] == '%') {
-                                    percent++;
+                                    percent++; // in GS1 and alphanumeric mode % becomes %%
                                 }
                             }
                         }
                         alphaLength += percent;
                         switch (alphaLength % 2) {
                             case 0:
-                                count += (alphaLength / 2) * 11;
+                                count += (alphaLength / 2) * 11; // 2 characters -> 11 bits
                                 break;
                             case 1:
-                                count += ((alphaLength - 1) / 2) * 11;
-                                count += 6;
+                                count += ((alphaLength - 1) / 2) * 11; // 2 characters -> 11 bits
+                                count += 6; // trailing character -> 6 bits
                                 break;
                         }
                         break;
                     case NUMERIC:
                         count += tribus(version, 10, 12, 14);
                         switch (blockLength(i, inputMode) % 3) {
                             case 0:
-                                count += (blockLength(i, inputMode) / 3) * 10;
+                                count += (blockLength(i, inputMode) / 3) * 10; // 3 digits -> 10 bits
                                 break;
                             case 1:
-                                count += ((blockLength(i, inputMode) - 1) / 3) * 10;
-                                count += 4;
+                                count += ((blockLength(i, inputMode) - 1) / 3) * 10; // 3 digits -> 10 bits
+                                count += 4; // trailing digit -> 4 bits
                                 break;
                             case 2:
-                                count += ((blockLength(i, inputMode) - 2) / 3) * 10;
-                                count += 7;
+                                count += ((blockLength(i, inputMode) - 2) / 3) * 10; // 3 digits -> 10 bits
+                                count += 7; // trailing 2 digits -> 7 bits
                                 break;
                         }
                         break;
@@ -686,7 +685,7 @@ private static QrMode[] applyOptimisation(int version, QrMode[] inputMode) {
 
         if (blockCount > 1) {
             // Search forward
-            for (i = 0; i <= (blockCount - 2); i++) {
+            for (i = 0; i < blockCount - 1; i++) {
                 if (blockMode[i] == QrMode.BINARY) {
                     switch (blockMode[i + 1]) {
                         case KANJI:
@@ -894,19 +893,35 @@ private void qrBinary(int[] datastream, int version, int target_binlen, QrMode[]
                     /* Mode indicator */
                     binary.append("0100");
 
-                    /* Character count indicator */
-                    binaryAppend(short_data_block_length, tribus(version, 8, 16, 16), binary);
+                    /* Character count indicator (watch for packed 2-byte values, Kanji prior to optimization) */
+                    int bytes = 0;
+                    for (i = 0; i < short_data_block_length; i++) {
+                        int b = inputData[position + i];
+                        bytes += (b > 0xff ? 2 : 1);
+                    }
+                    binaryAppend(bytes, tribus(version, 8, 16, 16), binary);
 
                     info("BYTE ");
 
                     /* Character representation */
                     for (i = 0; i < short_data_block_length; i++) {
                         int b = inputData[position + i];
-                        if (b == FNC1) {
-                            b = 0x1d; /* FNC1 */
+                        if (b > 0xff) {
+                            // actually 2 packed Kanji bytes
+                            int b1 = b >> 8;
+                            int b2 = b & 0xff;
+                            binaryAppend(b1, 8, binary);
+                            infoSpace(b1);
+                            binaryAppend(b2, 8, binary);
+                            infoSpace(b2);
+                        } else {
+                            // a single byte
+                            if (b == FNC1) {
+                                b = 0x1d; /* FNC1 */
+                            }
+                            binaryAppend(b, 8, binary);
+                            infoSpace(b);
                         }
-                        binaryAppend(b, 8, binary);
-                        infoSpace(b);
                     }
 
                     break;
diff --git a/src/test/java/uk/org/okapibarcode/fuzzing/QrCodeFuzzer.java b/src/test/java/uk/org/okapibarcode/fuzzing/QrCodeFuzzer.java
@@ -66,8 +66,10 @@ private static void check(String content, int version, DataType type, EccLevel e
 
         QrCode symbol = new QrCode();
         symbol.setDataType(type);
-        symbol.setPreferredVersion(version);
         symbol.setPreferredEccLevel(ecc);
+        if (version > 0) {
+            symbol.setPreferredVersion(version);
+        }
         try {
             symbol.setContent(content);
         } catch (OkapiInputException e) {
diff --git a/src/test/resources/uk/org/okapibarcode/backend/qrcode/kanji-destroy.png b/src/test/resources/uk/org/okapibarcode/backend/qrcode/kanji-destroy.png
diff --git a/src/test/resources/uk/org/okapibarcode/backend/qrcode/kanji-destroy.properties b/src/test/resources/uk/org/okapibarcode/backend/qrcode/kanji-destroy.properties
@@ -0,0 +1,46 @@
+PROPERTIES
+
+content=\u6bc0\u0000\u0000\u0000\u0000tes\u0000\u0000\u0000s
+
+LOG
+
+ECI Mode: 20
+ECI Charset: Shift_JIS
+Encoding: BYTE 154 202 0 0 0 0 116 101 115 0 0 0 115
+Codewords: 113 68 13 154 202 0 0 0 0 116 101 115 0 0 0 115
+Version: 1
+ECC Level: M
+Mask 000 Penalties: 96 198 678 678
+Mask 001 Penalties: 123 297 777 EXIT
+Mask 010 Penalties: 163 373 853 EXIT
+Mask 011 Penalties: 156 366 846 EXIT
+Mask 100 Penalties: 134 347 827 EXIT
+Mask 101 Penalties: 138 327 807 EXIT
+Mask 110 Penalties: 138 339 859 EXIT
+Mask 111 Penalties: 115 301 781 EXIT
+Mask Pattern: 000
+Blocks Merged: 122 -> 86
+
+CODEWORDS
+
+72237
+15112121151
+1131151111311
+113112112111311
+113111112211311
+151232151
+711111117
+091218
+11111114231211
+11121212131122
+1153112241
+011122531131
+0123421111131
+0811231221
+721213113
+151211131131
+1131112231122
+113112331113
+113111132211111
+1513211111121
+712222113
diff --git a/src/test/resources/uk/org/okapibarcode/backend/qrcode/shift-jis-limits.png b/src/test/resources/uk/org/okapibarcode/backend/qrcode/shift-jis-limits.png
diff --git a/src/test/resources/uk/org/okapibarcode/backend/qrcode/shift-jis-limits.properties b/src/test/resources/uk/org/okapibarcode/backend/qrcode/shift-jis-limits.properties
@@ -0,0 +1,57 @@
+PROPERTIES
+
+# https://r12a.github.io/app-encodings/
+# http://www.rikai.com/library/kanjitables/kanji_codes.sjis.shtml
+# 0x81 0x40, 0x81 0x41, 0x9F 0xFB, 0x9F 0xFC, 0xE0 0x40, 0xE0 0x41, 0xEA 0x9F
+content=.\u3000.\u3001.\u6F32.\u6ECC.\u6F3E.\u6F13.\u582F.
+
+LOG
+
+ECI Mode: 20
+ECI Charset: Shift_JIS
+Encoding: ALPH 42 KNJI 0 ALPH 42 KNJI 1 ALPH 42 KNJI 5947 ALPH 42 KNJI 5948 ALPH 42 KNJI 5952 ALPH 42 KNJI 5953 ALPH 42 KNJI 7967 ALPH 42
+Codewords: 113 66 0 213 0 32 0 32 13 80 2 0 18 0 213 0 55 59 32 13 80 3 115 194 0 213 0 55 64 32 13 80 3 116 18 0 213 0 63 31 32 13 64 236
+Version: 3
+ECC Level: M
+Mask 000 Penalties: 147 345 945 945
+Mask 001 Penalties: 205 478 1078 EXIT
+Mask 010 Penalties: 211 613 1133 EXIT
+Mask 011 Penalties: 156 462 942 942
+Mask 100 Penalties: 132 468 988 EXIT
+Mask 101 Penalties: 182 443 1083 EXIT
+Mask 110 Penalties: 180 504 1064 EXIT
+Mask 111 Penalties: 158 494 1054 EXIT
+Mask Pattern: 011
+Blocks Merged: 218 -> 175
+
+CODEWORDS
+
+71131212227
+151131321211151
+11311711122111311
+11311141413111311
+11311324122111311
+1512122431151
+71111111111111117
+0811211249
+11213312313112112
+011113252311121211
+01321111521245
+0221141212121122121
+242142121811
+2:112112211221
+22113233112121112
+011113111221142214
+112131211514123
+02121212433112121
+112151213211121121
+05112311424212
+0123114115721
+0812341113122
+71132611111112
+151117122311111
+11311412221163
+113111211122131151
+113111421411161
+1512221172131
+711151323221
