How to repair a serialized string which has been corrupted by an incorrect byte count length?

后端 未结 15 1819
后悔当初
后悔当初 2020-11-22 11:46

I am using Hotaru CMS with the Image Upload plugin, I get this error if I try to attach an image to a post, otherwise there is no error:

unserialize()

相关标签:
15条回答
  • 2020-11-22 12:35

    You can fix broken serialize string using following function, with multibyte character handling.

    function repairSerializeString($value)
    {
    
        $regex = '/s:([0-9]+):"(.*?)"/';
    
        return preg_replace_callback(
            $regex, function($match) {
                return "s:".mb_strlen($match[2]).":\"".$match[2]."\""; 
            },
            $value
        );
    }
    
    0 讨论(0)
  • 2020-11-22 12:36

    After having tried some things on this page without success I had a look in the page-source and remarked that all quotes in the serialized string have been replaced by html-entities. Decoding these entities helps avoiding much headache:

    $myVar = html_entity_decode($myVar);
    
    0 讨论(0)
  • 2020-11-22 12:38

    You will have to alter the collation type to utf8_unicode_ci and the problem will be fixed.

    0 讨论(0)
  • 2020-11-22 12:40

    Quick Fix

    Recalculating the length of the elements in serialized array - but don't use (preg_replace) it's deprecated - better use preg_replace_callback:

    Edit: New Version now not just wrong length but it also fix line-breaks and count correct characters with aczent (thanks to mickmackusa)

    // New Version
    $data = preg_replace_callback('!s:\d+:"(.*?)";!s', function($m) { return "s:" . strlen($m[1]) . ':"'.$m[1].'";'; }, $data);
    
    0 讨论(0)
  • 2020-11-22 12:44
    public function unserializeKeySkills($string) {
        $output = array();
        $string = trim(preg_replace('/\s\s+/', ' ',$string));
        $string = preg_replace_callback('!s:(\d+):"(.*?)";!', function($m) { return 's:'.strlen($m[2]).':"'.$m[2].'";'; }, utf8_encode( trim(preg_replace('/\s\s+/', ' ',$string)) ));
        try {
            $output =  unserialize($string);
        } catch (\Exception $e) {
            \Log::error("unserialize Data : " .print_r($string,true));
        }
        return $output;
    }
    
    0 讨论(0)
  • unserialize() [function.unserialize]: Error at offset was dues to invalid serialization data due to invalid length

    Quick Fix

    What you can do is is recalculating the length of the elements in serialized array

    You current serialized data

    $data = 'a:10:{s:16:"submit_editorial";b:0;s:15:"submit_orig_url";s:13:"www.bbc.co.uk";s:12:"submit_title";s:14:"No title found";s:14:"submit_content";s:12:"dnfsdkfjdfdf";s:15:"submit_category";i:2;s:11:"submit_tags";s:3:"bbc";s:9:"submit_id";b:0;s:16:"submit_subscribe";i:0;s:15:"submit_comments";s:4:"open";s:5:"image";s:19:"C:fakepath100.jpg";}';
    

    Example without recalculation

    var_dump(unserialize($data));
    

    Output

    Notice: unserialize() [function.unserialize]: Error at offset 337 of 338 bytes
    

    Recalculating

    $data = preg_replace('!s:(\d+):"(.*?)";!e', "'s:'.strlen('$2').':\"$2\";'", $data);
    var_dump(unserialize($data));
    

    Output

    array
      'submit_editorial' => boolean false
      'submit_orig_url' => string 'www.bbc.co.uk' (length=13)
      'submit_title' => string 'No title found' (length=14)
      'submit_content' => string 'dnfsdkfjdfdf' (length=12)
      'submit_category' => int 2
      'submit_tags' => string 'bbc' (length=3)
      'submit_id' => boolean false
      'submit_subscribe' => int 0
      'submit_comments' => string 'open' (length=4)
      'image' => string 'C:fakepath100.jpg' (length=17)
    

    Recommendation .. I

    Instead of using this kind of quick fix ... i"ll advice you update the question with

    • How you are serializing your data

    • How you are Saving it ..

    ================================ EDIT 1 ===============================

    The Error

    The Error was generated because of use of double quote " instead single quote ' that is why C:\fakepath\100.png was converted to C:fakepath100.jpg

    To fix the error

    You need to change $h->vars['submitted_data'] From (Note the singe quite ' )

    Replace

     $h->vars['submitted_data']['image'] = "C:\fakepath\100.png" ;
    

    With

     $h->vars['submitted_data']['image'] = 'C:\fakepath\100.png' ;
    

    Additional Filter

    You can also add this simple filter before you call serialize

    function satitize(&$value, $key)
    {
        $value = addslashes($value);
    }
    
    array_walk($h->vars['submitted_data'], "satitize");
    

    If you have UTF Characters you can also run

     $h->vars['submitted_data'] = array_map("utf8_encode",$h->vars['submitted_data']);
    

    How to detect the problem in future serialized data

      findSerializeError ( $data1 ) ;
    

    Output

    Diffrence 9 != 7
        -> ORD number 57 != 55
        -> Line Number = 315
        -> Section Data1  = pen";s:5:"image";s:19:"C:fakepath100.jpg
        -> Section Data2  = pen";s:5:"image";s:17:"C:fakepath100.jpg
                                                ^------- The Error (Element Length)
    

    findSerializeError Function

    function findSerializeError($data1) {
        echo "<pre>";
        $data2 = preg_replace ( '!s:(\d+):"(.*?)";!e', "'s:'.strlen('$2').':\"$2\";'",$data1 );
        $max = (strlen ( $data1 ) > strlen ( $data2 )) ? strlen ( $data1 ) : strlen ( $data2 );
    
        echo $data1 . PHP_EOL;
        echo $data2 . PHP_EOL;
    
        for($i = 0; $i < $max; $i ++) {
    
            if (@$data1 {$i} !== @$data2 {$i}) {
    
                echo "Diffrence ", @$data1 {$i}, " != ", @$data2 {$i}, PHP_EOL;
                echo "\t-> ORD number ", ord ( @$data1 {$i} ), " != ", ord ( @$data2 {$i} ), PHP_EOL;
                echo "\t-> Line Number = $i" . PHP_EOL;
    
                $start = ($i - 20);
                $start = ($start < 0) ? 0 : $start;
                $length = 40;
    
                $point = $max - $i;
                if ($point < 20) {
                    $rlength = 1;
                    $rpoint = - $point;
                } else {
                    $rpoint = $length - 20;
                    $rlength = 1;
                }
    
                echo "\t-> Section Data1  = ", substr_replace ( substr ( $data1, $start, $length ), "<b style=\"color:green\">{$data1 {$i}}</b>", $rpoint, $rlength ), PHP_EOL;
                echo "\t-> Section Data2  = ", substr_replace ( substr ( $data2, $start, $length ), "<b style=\"color:red\">{$data2 {$i}}</b>", $rpoint, $rlength ), PHP_EOL;
            }
    
        }
    
    }
    

    A better way to save to Database

    $toDatabse = base64_encode(serialize($data));  // Save to database
    $fromDatabase = unserialize(base64_decode($data)); //Getting Save Format 
    
    0 讨论(0)
提交回复
热议问题