ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/JSON-XS/XS.pm
(Generate patch)

Comparing JSON-XS/XS.pm (file contents):
Revision 1.113 by root, Thu Nov 20 03:59:53 2008 UTC vs.
Revision 1.169 by root, Thu Nov 15 20:49:12 2018 UTC

40Beginning with version 2.0 of the JSON module, when both JSON and 40Beginning with version 2.0 of the JSON module, when both JSON and
41JSON::XS are installed, then JSON will fall back on JSON::XS (this can be 41JSON::XS are installed, then JSON will fall back on JSON::XS (this can be
42overridden) with no overhead due to emulation (by inheriting constructor 42overridden) with no overhead due to emulation (by inheriting constructor
43and methods). If JSON::XS is not available, it will fall back to the 43and methods). If JSON::XS is not available, it will fall back to the
44compatible JSON::PP module as backend, so using JSON instead of JSON::XS 44compatible JSON::PP module as backend, so using JSON instead of JSON::XS
45gives you a portable JSON API that can be fast when you need and doesn't 45gives you a portable JSON API that can be fast when you need it and
46require a C compiler when that is a problem. 46doesn't require a C compiler when that is a problem.
47 47
48As this is the n-th-something JSON module on CPAN, what was the reason 48As this is the n-th-something JSON module on CPAN, what was the reason
49to write yet another JSON module? While it seems there are many JSON 49to write yet another JSON module? While it seems there are many JSON
50modules, none of them correctly handle all corner cases, and in most cases 50modules, none of them correctly handle all corner cases, and in most cases
51their maintainers are unresponsive, gone missing, or not listening to bug 51their maintainers are unresponsive, gone missing, or not listening to bug
64so, and even documents what "correct" means. 64so, and even documents what "correct" means.
65 65
66=item * round-trip integrity 66=item * round-trip integrity
67 67
68When you serialise a perl data structure using only data types supported 68When you serialise a perl data structure using only data types supported
69by JSON, the deserialised data structure is identical on the Perl level. 69by JSON and Perl, the deserialised data structure is identical on the Perl
70(e.g. the string "2.0" doesn't suddenly become "2" just because it looks 70level. (e.g. the string "2.0" doesn't suddenly become "2" just because
71like a number). There minor I<are> exceptions to this, read the MAPPING 71it looks like a number). There I<are> minor exceptions to this, read the
72section below to learn about those. 72MAPPING section below to learn about those.
73 73
74=item * strict checking of JSON correctness 74=item * strict checking of JSON correctness
75 75
76There is no guessing, no generating of illegal JSON texts by default, 76There is no guessing, no generating of illegal JSON texts by default,
77and only JSON is accepted as input by default (the latter is a security 77and only JSON is accepted as input by default (the latter is a security
83this module usually compares favourably in terms of speed, too. 83this module usually compares favourably in terms of speed, too.
84 84
85=item * simple to use 85=item * simple to use
86 86
87This module has both a simple functional interface as well as an object 87This module has both a simple functional interface as well as an object
88oriented interface interface. 88oriented interface.
89 89
90=item * reasonably versatile output formats 90=item * reasonably versatile output formats
91 91
92You can choose between the most compact guaranteed-single-line format 92You can choose between the most compact guaranteed-single-line format
93possible (nice for simple line-based protocols), a pure-ASCII format 93possible (nice for simple line-based protocols), a pure-ASCII format
99 99
100=cut 100=cut
101 101
102package JSON::XS; 102package JSON::XS;
103 103
104no warnings; 104use common::sense;
105use strict;
106 105
107our $VERSION = '2.231'; 106our $VERSION = 3.04;
108our @ISA = qw(Exporter); 107our @ISA = qw(Exporter);
109 108
110our @EXPORT = qw(encode_json decode_json to_json from_json); 109our @EXPORT = qw(encode_json decode_json);
111
112sub to_json($) {
113 require Carp;
114 Carp::croak ("JSON::XS::to_json has been renamed to encode_json, either downgrade to pre-2.0 versions of JSON::XS or rename the call");
115}
116
117sub from_json($) {
118 require Carp;
119 Carp::croak ("JSON::XS::from_json has been renamed to decode_json, either downgrade to pre-2.0 versions of JSON::XS or rename the call");
120}
121 110
122use Exporter; 111use Exporter;
123use XSLoader; 112use XSLoader;
124 113
114use Types::Serialiser ();
115
125=head1 FUNCTIONAL INTERFACE 116=head1 FUNCTIONAL INTERFACE
126 117
127The following convenience methods are provided by this module. They are 118The following convenience methods are provided by this module. They are
128exported by default: 119exported by default:
129 120
140 131
141Except being faster. 132Except being faster.
142 133
143=item $perl_scalar = decode_json $json_text 134=item $perl_scalar = decode_json $json_text
144 135
145The opposite of C<encode_json>: expects an UTF-8 (binary) string and tries 136The opposite of C<encode_json>: expects a UTF-8 (binary) string and tries
146to parse that as an UTF-8 encoded JSON text, returning the resulting 137to parse that as a UTF-8 encoded JSON text, returning the resulting
147reference. Croaks on error. 138reference. Croaks on error.
148 139
149This function call is functionally identical to: 140This function call is functionally identical to:
150 141
151 $perl_scalar = JSON::XS->new->utf8->decode ($json_text) 142 $perl_scalar = JSON::XS->new->utf8->decode ($json_text)
152 143
153Except being faster. 144Except being faster.
154
155=item $is_boolean = JSON::XS::is_bool $scalar
156
157Returns true if the passed scalar represents either JSON::XS::true or
158JSON::XS::false, two constants that act like C<1> and C<0>, respectively
159and are used to represent JSON C<true> and C<false> values in Perl.
160
161See MAPPING, below, for more information on how JSON values are mapped to
162Perl.
163 145
164=back 146=back
165 147
166 148
167=head1 A FEW NOTES ON UNICODE AND PERL 149=head1 A FEW NOTES ON UNICODE AND PERL
220=over 4 202=over 4
221 203
222=item $json = new JSON::XS 204=item $json = new JSON::XS
223 205
224Creates a new JSON::XS object that can be used to de/encode JSON 206Creates a new JSON::XS object that can be used to de/encode JSON
225strings. All boolean flags described below are by default I<disabled>. 207strings. All boolean flags described below are by default I<disabled>
208(with the exception of C<allow_nonref>, which defaults to I<enabled> since
209version C<4.0>).
226 210
227The mutators for flags all return the JSON object again and thus calls can 211The mutators for flags all return the JSON object again and thus calls can
228be chained: 212be chained:
229 213
230 my $json = JSON::XS->new->utf8->space_after->encode ({a => [1,2]}) 214 my $json = JSON::XS->new->utf8->space_after->encode ({a => [1,2]})
288 272
289=item $enabled = $json->get_utf8 273=item $enabled = $json->get_utf8
290 274
291If C<$enable> is true (or missing), then the C<encode> method will encode 275If C<$enable> is true (or missing), then the C<encode> method will encode
292the JSON result into UTF-8, as required by many protocols, while the 276the JSON result into UTF-8, as required by many protocols, while the
293C<decode> method expects to be handled an UTF-8-encoded string. Please 277C<decode> method expects to be handed a UTF-8-encoded string. Please
294note that UTF-8-encoded strings do not contain any characters outside the 278note that UTF-8-encoded strings do not contain any characters outside the
295range C<0..255>, they are thus useful for bytewise/binary I/O. In future 279range C<0..255>, they are thus useful for bytewise/binary I/O. In future
296versions, enabling this option might enable autodetection of the UTF-16 280versions, enabling this option might enable autodetection of the UTF-16
297and UTF-32 encoding families, as described in RFC4627. 281and UTF-32 encoding families, as described in RFC4627.
298 282
383 367
384=item $enabled = $json->get_relaxed 368=item $enabled = $json->get_relaxed
385 369
386If C<$enable> is true (or missing), then C<decode> will accept some 370If C<$enable> is true (or missing), then C<decode> will accept some
387extensions to normal JSON syntax (see below). C<encode> will not be 371extensions to normal JSON syntax (see below). C<encode> will not be
388affected in anyway. I<Be aware that this option makes you accept invalid 372affected in any way. I<Be aware that this option makes you accept invalid
389JSON texts as if they were valid!>. I suggest only to use this option to 373JSON texts as if they were valid!>. I suggest only to use this option to
390parse application-specific files written by humans (configuration files, 374parse application-specific files written by humans (configuration files,
391resource files etc.) 375resource files etc.)
392 376
393If C<$enable> is false (the default), then C<decode> will only accept 377If C<$enable> is false (the default), then C<decode> will only accept
422 [ 406 [
423 1, # this comment not allowed in JSON 407 1, # this comment not allowed in JSON
424 # neither this one... 408 # neither this one...
425 ] 409 ]
426 410
411=item * literal ASCII TAB characters in strings
412
413Literal ASCII TAB characters are now allowed in strings (and treated as
414C<\t>).
415
416 [
417 "Hello\tWorld",
418 "Hello<TAB>World", # literal <TAB> would not normally be allowed
419 ]
420
427=back 421=back
428 422
429=item $json = $json->canonical ([$enable]) 423=item $json = $json->canonical ([$enable])
430 424
431=item $enabled = $json->get_canonical 425=item $enabled = $json->get_canonical
433If C<$enable> is true (or missing), then the C<encode> method will output JSON objects 427If C<$enable> is true (or missing), then the C<encode> method will output JSON objects
434by sorting their keys. This is adding a comparatively high overhead. 428by sorting their keys. This is adding a comparatively high overhead.
435 429
436If C<$enable> is false, then the C<encode> method will output key-value 430If C<$enable> is false, then the C<encode> method will output key-value
437pairs in the order Perl stores them (which will likely change between runs 431pairs in the order Perl stores them (which will likely change between runs
438of the same script). 432of the same script, and can change even within the same run from 5.18
433onwards).
439 434
440This option is useful if you want the same data structure to be encoded as 435This option is useful if you want the same data structure to be encoded as
441the same JSON text (given the same overall settings). If it is disabled, 436the same JSON text (given the same overall settings). If it is disabled,
442the same hash might be encoded differently even if contains the same data, 437the same hash might be encoded differently even if contains the same data,
443as key-value pairs have no inherent ordering in Perl. 438as key-value pairs have no inherent ordering in Perl.
444 439
445This setting has no effect when decoding JSON texts. 440This setting has no effect when decoding JSON texts.
446 441
442This setting has currently no effect on tied hashes.
443
447=item $json = $json->allow_nonref ([$enable]) 444=item $json = $json->allow_nonref ([$enable])
448 445
449=item $enabled = $json->get_allow_nonref 446=item $enabled = $json->get_allow_nonref
447
448Unlike other boolean options, this opotion is enabled by default beginning
449with version C<4.0>. See L<SECURITY CONSIDERATIONS> for the gory details.
450 450
451If C<$enable> is true (or missing), then the C<encode> method can convert a 451If C<$enable> is true (or missing), then the C<encode> method can convert a
452non-reference into its corresponding string, number or null JSON value, 452non-reference into its corresponding string, number or null JSON value,
453which is an extension to RFC4627. Likewise, C<decode> will accept those JSON 453which is an extension to RFC4627. Likewise, C<decode> will accept those JSON
454values instead of croaking. 454values instead of croaking.
456If C<$enable> is false, then the C<encode> method will croak if it isn't 456If C<$enable> is false, then the C<encode> method will croak if it isn't
457passed an arrayref or hashref, as JSON texts must either be an object 457passed an arrayref or hashref, as JSON texts must either be an object
458or array. Likewise, C<decode> will croak if given something that is not a 458or array. Likewise, C<decode> will croak if given something that is not a
459JSON object or array. 459JSON object or array.
460 460
461Example, encode a Perl scalar as JSON value with enabled C<allow_nonref>, 461Example, encode a Perl scalar as JSON value without enabled C<allow_nonref>,
462resulting in an invalid JSON text: 462resulting in an error:
463 463
464 JSON::XS->new->allow_nonref->encode ("Hello, World!") 464 JSON::XS->new->allow_nonref (0)->encode ("Hello, World!")
465 => "Hello, World!" 465 => hash- or arrayref expected...
466 466
467=item $json = $json->allow_unknown ([$enable]) 467=item $json = $json->allow_unknown ([$enable])
468 468
469=item $enabled = $json->get_allow_unknown 469=item $enabled = $json->get_allow_unknown
470 470
482 482
483=item $json = $json->allow_blessed ([$enable]) 483=item $json = $json->allow_blessed ([$enable])
484 484
485=item $enabled = $json->get_allow_blessed 485=item $enabled = $json->get_allow_blessed
486 486
487See L<OBJECT SERIALISATION> for details.
488
487If C<$enable> is true (or missing), then the C<encode> method will not 489If C<$enable> is true (or missing), then the C<encode> method will not
488barf when it encounters a blessed reference. Instead, the value of the 490barf when it encounters a blessed reference that it cannot convert
489B<convert_blessed> option will decide whether C<null> (C<convert_blessed> 491otherwise. Instead, a JSON C<null> value is encoded instead of the object.
490disabled or no C<TO_JSON> method found) or a representation of the
491object (C<convert_blessed> enabled and C<TO_JSON> method found) is being
492encoded. Has no effect on C<decode>.
493 492
494If C<$enable> is false (the default), then C<encode> will throw an 493If C<$enable> is false (the default), then C<encode> will throw an
495exception when it encounters a blessed object. 494exception when it encounters a blessed object that it cannot convert
495otherwise.
496
497This setting has no effect on C<decode>.
496 498
497=item $json = $json->convert_blessed ([$enable]) 499=item $json = $json->convert_blessed ([$enable])
498 500
499=item $enabled = $json->get_convert_blessed 501=item $enabled = $json->get_convert_blessed
502
503See L<OBJECT SERIALISATION> for details.
500 504
501If C<$enable> is true (or missing), then C<encode>, upon encountering a 505If C<$enable> is true (or missing), then C<encode>, upon encountering a
502blessed object, will check for the availability of the C<TO_JSON> method 506blessed object, will check for the availability of the C<TO_JSON> method
503on the object's class. If found, it will be called in scalar context 507on the object's class. If found, it will be called in scalar context and
504and the resulting scalar will be encoded instead of the object. If no 508the resulting scalar will be encoded instead of the object.
505C<TO_JSON> method is found, the value of C<allow_blessed> will decide what
506to do.
507 509
508The C<TO_JSON> method may safely call die if it wants. If C<TO_JSON> 510The C<TO_JSON> method may safely call die if it wants. If C<TO_JSON>
509returns other blessed objects, those will be handled in the same 511returns other blessed objects, those will be handled in the same
510way. C<TO_JSON> must take care of not causing an endless recursion cycle 512way. C<TO_JSON> must take care of not causing an endless recursion cycle
511(== crash) in this case. The name of C<TO_JSON> was chosen because other 513(== crash) in this case. The name of C<TO_JSON> was chosen because other
512methods called by the Perl core (== not by the user of the object) are 514methods called by the Perl core (== not by the user of the object) are
513usually in upper case letters and to avoid collisions with any C<to_json> 515usually in upper case letters and to avoid collisions with any C<to_json>
514function or method. 516function or method.
515 517
516This setting does not yet influence C<decode> in any way, but in the 518If C<$enable> is false (the default), then C<encode> will not consider
517future, global hooks might get installed that influence C<decode> and are 519this type of conversion.
518enabled by this setting.
519 520
520If C<$enable> is false, then the C<allow_blessed> setting will decide what 521This setting has no effect on C<decode>.
521to do when a blessed object is found. 522
523=item $json = $json->allow_tags ([$enable])
524
525=item $enabled = $json->get_allow_tags
526
527See L<OBJECT SERIALISATION> for details.
528
529If C<$enable> is true (or missing), then C<encode>, upon encountering a
530blessed object, will check for the availability of the C<FREEZE> method on
531the object's class. If found, it will be used to serialise the object into
532a nonstandard tagged JSON value (that JSON decoders cannot decode).
533
534It also causes C<decode> to parse such tagged JSON values and deserialise
535them via a call to the C<THAW> method.
536
537If C<$enable> is false (the default), then C<encode> will not consider
538this type of conversion, and tagged JSON values will cause a parse error
539in C<decode>, as if tags were not part of the grammar.
522 540
523=item $json = $json->filter_json_object ([$coderef->($hashref)]) 541=item $json = $json->filter_json_object ([$coderef->($hashref)])
524 542
525When C<$coderef> is specified, it will be called from C<decode> each 543When C<$coderef> is specified, it will be called from C<decode> each
526time it decodes a JSON object. The only argument is a reference to the 544time it decodes a JSON object. The only argument is a reference to
527newly-created hash. If the code references returns a single scalar (which 545the newly-created hash. If the code reference returns a single scalar
528need not be a reference), this value (i.e. a copy of that scalar to avoid 546(which need not be a reference), this value (or rather a copy of it) is
529aliasing) is inserted into the deserialised data structure. If it returns 547inserted into the deserialised data structure. If it returns an empty
530an empty list (NOTE: I<not> C<undef>, which is a valid scalar), the 548list (NOTE: I<not> C<undef>, which is a valid scalar), the original
531original deserialised hash will be inserted. This setting can slow down 549deserialised hash will be inserted. This setting can slow down decoding
532decoding considerably. 550considerably.
533 551
534When C<$coderef> is omitted or undefined, any existing callback will 552When C<$coderef> is omitted or undefined, any existing callback will
535be removed and C<decode> will not change the deserialised hash in any 553be removed and C<decode> will not change the deserialised hash in any
536way. 554way.
537 555
665 683
666See SECURITY CONSIDERATIONS, below, for more info on why this is useful. 684See SECURITY CONSIDERATIONS, below, for more info on why this is useful.
667 685
668=item $json_text = $json->encode ($perl_scalar) 686=item $json_text = $json->encode ($perl_scalar)
669 687
670Converts the given Perl data structure (a simple scalar or a reference 688Converts the given Perl value or data structure to its JSON
671to a hash or array) to its JSON representation. Simple scalars will be 689representation. Croaks on error.
672converted into JSON string or number sequences, while references to arrays
673become JSON arrays and references to hashes become JSON objects. Undefined
674Perl values (e.g. C<undef>) become JSON C<null> values. Neither C<true>
675nor C<false> values will be generated.
676 690
677=item $perl_scalar = $json->decode ($json_text) 691=item $perl_scalar = $json->decode ($json_text)
678 692
679The opposite of C<encode>: expects a JSON text and tries to parse it, 693The opposite of C<encode>: expects a JSON text and tries to parse it,
680returning the resulting simple scalar or reference. Croaks on error. 694returning the resulting simple scalar or reference. Croaks on error.
681
682JSON numbers and strings become simple Perl scalars. JSON arrays become
683Perl arrayrefs and JSON objects become Perl hashrefs. C<true> becomes
684C<1>, C<false> becomes C<0> and C<null> becomes C<undef>.
685 695
686=item ($perl_scalar, $characters) = $json->decode_prefix ($json_text) 696=item ($perl_scalar, $characters) = $json->decode_prefix ($json_text)
687 697
688This works like the C<decode> method, but instead of raising an exception 698This works like the C<decode> method, but instead of raising an exception
689when there is trailing garbage after the first JSON object, it will 699when there is trailing garbage after the first JSON object, it will
690silently stop parsing there and return the number of characters consumed 700silently stop parsing there and return the number of characters consumed
691so far. 701so far.
692 702
693This is useful if your JSON texts are not delimited by an outer protocol 703This is useful if your JSON texts are not delimited by an outer protocol
694(which is not the brightest thing to do in the first place) and you need
695to know where the JSON text ends. 704and you need to know where the JSON text ends.
696 705
697 JSON::XS->new->decode_prefix ("[1] the tail") 706 JSON::XS->new->decode_prefix ("[1] the tail")
698 => ([], 3) 707 => ([1], 3)
699 708
700=back 709=back
701 710
702 711
703=head1 INCREMENTAL PARSING 712=head1 INCREMENTAL PARSING
712calls). 721calls).
713 722
714JSON::XS will only attempt to parse the JSON text once it is sure it 723JSON::XS will only attempt to parse the JSON text once it is sure it
715has enough text to get a decisive result, using a very simple but 724has enough text to get a decisive result, using a very simple but
716truly incremental parser. This means that it sometimes won't stop as 725truly incremental parser. This means that it sometimes won't stop as
717early as the full parser, for example, it doesn't detect parenthese 726early as the full parser, for example, it doesn't detect mismatched
718mismatches. The only thing it guarantees is that it starts decoding as 727parentheses. The only thing it guarantees is that it starts decoding as
719soon as a syntactically valid JSON text has been seen. This means you need 728soon as a syntactically valid JSON text has been seen. This means you need
720to set resource limits (e.g. C<max_size>) to ensure the parser will stop 729to set resource limits (e.g. C<max_size>) to ensure the parser will stop
721parsing in the presence if syntax errors. 730parsing in the presence if syntax errors.
722 731
723The following methods implement this incremental parser. 732The following methods implement this incremental parser.
739 748
740If the method is called in scalar context, then it will try to extract 749If the method is called in scalar context, then it will try to extract
741exactly I<one> JSON object. If that is successful, it will return this 750exactly I<one> JSON object. If that is successful, it will return this
742object, otherwise it will return C<undef>. If there is a parse error, 751object, otherwise it will return C<undef>. If there is a parse error,
743this method will croak just as C<decode> would do (one can then use 752this method will croak just as C<decode> would do (one can then use
744C<incr_skip> to skip the errornous part). This is the most common way of 753C<incr_skip> to skip the erroneous part). This is the most common way of
745using the method. 754using the method.
746 755
747And finally, in list context, it will try to extract as many objects 756And finally, in list context, it will try to extract as many objects
748from the stream as it can find and return them, or the empty list 757from the stream as it can find and return them, or the empty list
749otherwise. For this to work, there must be no separators between the JSON 758otherwise. For this to work, there must be no separators (other than
750objects or arrays, instead they must be concatenated back-to-back. If 759whitespace) between the JSON objects or arrays, instead they must be
751an error occurs, an exception will be raised as in the scalar context 760concatenated back-to-back. If an error occurs, an exception will be
752case. Note that in this case, any previously-parsed JSON texts will be 761raised as in the scalar context case. Note that in this case, any
753lost. 762previously-parsed JSON texts will be lost.
763
764Example: Parse some JSON arrays/objects in a given string and return
765them.
766
767 my @objs = JSON::XS->new->incr_parse ("[5][7][1,2]");
754 768
755=item $lvalue_string = $json->incr_text 769=item $lvalue_string = $json->incr_text
756 770
757This method returns the currently stored JSON fragment as an lvalue, that 771This method returns the currently stored JSON fragment as an lvalue, that
758is, you can manipulate it. This I<only> works when a preceding call to 772is, you can manipulate it. This I<only> works when a preceding call to
760all other circumstances you must not call this function (I mean it. 774all other circumstances you must not call this function (I mean it.
761although in simple tests it might actually work, it I<will> fail under 775although in simple tests it might actually work, it I<will> fail under
762real world conditions). As a special exception, you can also call this 776real world conditions). As a special exception, you can also call this
763method before having parsed anything. 777method before having parsed anything.
764 778
779That means you can only use this function to look at or manipulate text
780before or after complete JSON objects, not while the parser is in the
781middle of parsing a JSON object.
782
765This function is useful in two cases: a) finding the trailing text after a 783This function is useful in two cases: a) finding the trailing text after a
766JSON object or b) parsing multiple JSON objects separated by non-JSON text 784JSON object or b) parsing multiple JSON objects separated by non-JSON text
767(such as commas). 785(such as commas).
768 786
769=item $json->incr_skip 787=item $json->incr_skip
770 788
771This will reset the state of the incremental parser and will remove the 789This will reset the state of the incremental parser and will remove
772parsed text from the input buffer. This is useful after C<incr_parse> 790the parsed text from the input buffer so far. This is useful after
773died, in which case the input buffer and incremental parser state is left 791C<incr_parse> died, in which case the input buffer and incremental parser
774unchanged, to skip the text parsed so far and to reset the parse state. 792state is left unchanged, to skip the text parsed so far and to reset the
793parse state.
794
795The difference to C<incr_reset> is that only text until the parse error
796occurred is removed.
775 797
776=item $json->incr_reset 798=item $json->incr_reset
777 799
778This completely resets the incremental parser, that is, after this call, 800This completely resets the incremental parser, that is, after this call,
779it will be as if the parser had never parsed anything. 801it will be as if the parser had never parsed anything.
780 802
781This is useful if you want ot repeatedly parse JSON objects and want to 803This is useful if you want to repeatedly parse JSON objects and want to
782ignore any trailing data, which means you have to reset the parser after 804ignore any trailing data, which means you have to reset the parser after
783each successful decode. 805each successful decode.
784 806
785=back 807=back
786 808
787=head2 LIMITATIONS 809=head2 LIMITATIONS
788 810
789All options that affect decoding are supported, except 811All options that affect decoding are supported, except
790C<allow_nonref>. The reason for this is that it cannot be made to 812C<allow_nonref>. The reason for this is that it cannot be made to work
791work sensibly: JSON objects and arrays are self-delimited, i.e. you can concatenate 813sensibly: JSON objects and arrays are self-delimited, i.e. you can
792them back to back and still decode them perfectly. This does not hold true 814concatenate them back to back and still decode them perfectly. This does
793for JSON numbers, however. 815not hold true for JSON numbers, however.
794 816
795For example, is the string C<1> a single JSON number, or is it simply the 817For example, is the string C<1> a single JSON number, or is it simply the
796start of C<12>? Or is C<12> a single JSON number, or the concatenation 818start of C<12>? Or is C<12> a single JSON number, or the concatenation
797of C<1> and C<2>? In neither case you can tell, and this is why JSON::XS 819of C<1> and C<2>? In neither case you can tell, and this is why JSON::XS
798takes the conservative route and disallows this case. 820takes the conservative route and disallows this case.
977If the number consists of digits only, JSON::XS will try to represent 999If the number consists of digits only, JSON::XS will try to represent
978it as an integer value. If that fails, it will try to represent it as 1000it as an integer value. If that fails, it will try to represent it as
979a numeric (floating point) value if that is possible without loss of 1001a numeric (floating point) value if that is possible without loss of
980precision. Otherwise it will preserve the number as a string value (in 1002precision. Otherwise it will preserve the number as a string value (in
981which case you lose roundtripping ability, as the JSON number will be 1003which case you lose roundtripping ability, as the JSON number will be
982re-encoded toa JSON string). 1004re-encoded to a JSON string).
983 1005
984Numbers containing a fractional or exponential part will always be 1006Numbers containing a fractional or exponential part will always be
985represented as numeric (floating point) values, possibly at a loss of 1007represented as numeric (floating point) values, possibly at a loss of
986precision (in which case you might lose perfect roundtripping ability, but 1008precision (in which case you might lose perfect roundtripping ability, but
987the JSON number will still be re-encoded as a JSON number). 1009the JSON number will still be re-encoded as a JSON number).
988 1010
1011Note that precision is not accuracy - binary floating point values cannot
1012represent most decimal fractions exactly, and when converting from and to
1013floating point, JSON::XS only guarantees precision up to but not including
1014the least significant bit.
1015
989=item true, false 1016=item true, false
990 1017
991These JSON atoms become C<JSON::XS::true> and C<JSON::XS::false>, 1018These JSON atoms become C<Types::Serialiser::true> and
992respectively. They are overloaded to act almost exactly like the numbers 1019C<Types::Serialiser::false>, respectively. They are overloaded to act
993C<1> and C<0>. You can check whether a scalar is a JSON boolean by using 1020almost exactly like the numbers C<1> and C<0>. You can check whether
994the C<JSON::XS::is_bool> function. 1021a scalar is a JSON boolean by using the C<Types::Serialiser::is_bool>
1022function (after C<use Types::Serialier>, of course).
995 1023
996=item null 1024=item null
997 1025
998A JSON null atom becomes C<undef> in Perl. 1026A JSON null atom becomes C<undef> in Perl.
1027
1028=item shell-style comments (C<< # I<text> >>)
1029
1030As a nonstandard extension to the JSON syntax that is enabled by the
1031C<relaxed> setting, shell-style comments are allowed. They can start
1032anywhere outside strings and go till the end of the line.
1033
1034=item tagged values (C<< (I<tag>)I<value> >>).
1035
1036Another nonstandard extension to the JSON syntax, enabled with the
1037C<allow_tags> setting, are tagged values. In this implementation, the
1038I<tag> must be a perl package/class name encoded as a JSON string, and the
1039I<value> must be a JSON array encoding optional constructor arguments.
1040
1041See L<OBJECT SERIALISATION>, below, for details.
999 1042
1000=back 1043=back
1001 1044
1002 1045
1003=head2 PERL -> JSON 1046=head2 PERL -> JSON
1008 1051
1009=over 4 1052=over 4
1010 1053
1011=item hash references 1054=item hash references
1012 1055
1013Perl hash references become JSON objects. As there is no inherent ordering 1056Perl hash references become JSON objects. As there is no inherent
1014in hash keys (or JSON objects), they will usually be encoded in a 1057ordering in hash keys (or JSON objects), they will usually be encoded
1015pseudo-random order that can change between runs of the same program but 1058in a pseudo-random order. JSON::XS can optionally sort the hash keys
1016stays generally the same within a single run of a program. JSON::XS can 1059(determined by the I<canonical> flag), so the same datastructure will
1017optionally sort the hash keys (determined by the I<canonical> flag), so 1060serialise to the same JSON text (given same settings and version of
1018the same datastructure will serialise to the same JSON text (given same 1061JSON::XS), but this incurs a runtime overhead and is only rarely useful,
1019settings and version of JSON::XS), but this incurs a runtime overhead 1062e.g. when you want to compare some JSON text against another for equality.
1020and is only rarely useful, e.g. when you want to compare some JSON text
1021against another for equality.
1022 1063
1023=item array references 1064=item array references
1024 1065
1025Perl array references become JSON arrays. 1066Perl array references become JSON arrays.
1026 1067
1027=item other references 1068=item other references
1028 1069
1029Other unblessed references are generally not allowed and will cause an 1070Other unblessed references are generally not allowed and will cause an
1030exception to be thrown, except for references to the integers C<0> and 1071exception to be thrown, except for references to the integers C<0> and
1031C<1>, which get turned into C<false> and C<true> atoms in JSON. You can 1072C<1>, which get turned into C<false> and C<true> atoms in JSON.
1032also use C<JSON::XS::false> and C<JSON::XS::true> to improve readability.
1033 1073
1074Since C<JSON::XS> uses the boolean model from L<Types::Serialiser>, you
1075can also C<use Types::Serialiser> and then use C<Types::Serialiser::false>
1076and C<Types::Serialiser::true> to improve readability.
1077
1078 use Types::Serialiser;
1034 encode_json [\0, JSON::XS::true] # yields [false,true] 1079 encode_json [\0, Types::Serialiser::true] # yields [false,true]
1035 1080
1036=item JSON::XS::true, JSON::XS::false 1081=item Types::Serialiser::true, Types::Serialiser::false
1037 1082
1038These special values become JSON true and JSON false values, 1083These special values from the L<Types::Serialiser> module become JSON true
1039respectively. You can also use C<\1> and C<\0> directly if you want. 1084and JSON false values, respectively. You can also use C<\1> and C<\0>
1085directly if you want.
1040 1086
1041=item blessed objects 1087=item blessed objects
1042 1088
1043Blessed objects are not directly representable in JSON. See the 1089Blessed objects are not directly representable in JSON, but C<JSON::XS>
1044C<allow_blessed> and C<convert_blessed> methods on various options on 1090allows various ways of handling objects. See L<OBJECT SERIALISATION>,
1045how to deal with this: basically, you can choose between throwing an 1091below, for details.
1046exception, encoding the reference as if it weren't blessed, or provide
1047your own serialiser method.
1048 1092
1049=item simple scalars 1093=item simple scalars
1050 1094
1051Simple Perl scalars (any scalar that is not a reference) are the most 1095Simple Perl scalars (any scalar that is not a reference) are the most
1052difficult objects to encode: JSON::XS will encode undefined scalars as 1096difficult objects to encode: JSON::XS will encode undefined scalars as
1080 1124
1081You can not currently force the type in other, less obscure, ways. Tell me 1125You can not currently force the type in other, less obscure, ways. Tell me
1082if you need this capability (but don't forget to explain why it's needed 1126if you need this capability (but don't forget to explain why it's needed
1083:). 1127:).
1084 1128
1129Note that numerical precision has the same meaning as under Perl (so
1130binary to decimal conversion follows the same rules as in Perl, which
1131can differ to other languages). Also, your perl interpreter might expose
1132extensions to the floating point numbers of your platform, such as
1133infinities or NaN's - these cannot be represented in JSON, and it is an
1134error to pass those in.
1135
1085=back 1136=back
1137
1138=head2 OBJECT SERIALISATION
1139
1140As JSON cannot directly represent Perl objects, you have to choose between
1141a pure JSON representation (without the ability to deserialise the object
1142automatically again), and a nonstandard extension to the JSON syntax,
1143tagged values.
1144
1145=head3 SERIALISATION
1146
1147What happens when C<JSON::XS> encounters a Perl object depends on the
1148C<allow_blessed>, C<convert_blessed> and C<allow_tags> settings, which are
1149used in this order:
1150
1151=over 4
1152
1153=item 1. C<allow_tags> is enabled and the object has a C<FREEZE> method.
1154
1155In this case, C<JSON::XS> uses the L<Types::Serialiser> object
1156serialisation protocol to create a tagged JSON value, using a nonstandard
1157extension to the JSON syntax.
1158
1159This works by invoking the C<FREEZE> method on the object, with the first
1160argument being the object to serialise, and the second argument being the
1161constant string C<JSON> to distinguish it from other serialisers.
1162
1163The C<FREEZE> method can return any number of values (i.e. zero or
1164more). These values and the paclkage/classname of the object will then be
1165encoded as a tagged JSON value in the following format:
1166
1167 ("classname")[FREEZE return values...]
1168
1169e.g.:
1170
1171 ("URI")["http://www.google.com/"]
1172 ("MyDate")[2013,10,29]
1173 ("ImageData::JPEG")["Z3...VlCg=="]
1174
1175For example, the hypothetical C<My::Object> C<FREEZE> method might use the
1176objects C<type> and C<id> members to encode the object:
1177
1178 sub My::Object::FREEZE {
1179 my ($self, $serialiser) = @_;
1180
1181 ($self->{type}, $self->{id})
1182 }
1183
1184=item 2. C<convert_blessed> is enabled and the object has a C<TO_JSON> method.
1185
1186In this case, the C<TO_JSON> method of the object is invoked in scalar
1187context. It must return a single scalar that can be directly encoded into
1188JSON. This scalar replaces the object in the JSON text.
1189
1190For example, the following C<TO_JSON> method will convert all L<URI>
1191objects to JSON strings when serialised. The fatc that these values
1192originally were L<URI> objects is lost.
1193
1194 sub URI::TO_JSON {
1195 my ($uri) = @_;
1196 $uri->as_string
1197 }
1198
1199=item 3. C<allow_blessed> is enabled.
1200
1201The object will be serialised as a JSON null value.
1202
1203=item 4. none of the above
1204
1205If none of the settings are enabled or the respective methods are missing,
1206C<JSON::XS> throws an exception.
1207
1208=back
1209
1210=head3 DESERIALISATION
1211
1212For deserialisation there are only two cases to consider: either
1213nonstandard tagging was used, in which case C<allow_tags> decides,
1214or objects cannot be automatically be deserialised, in which
1215case you can use postprocessing or the C<filter_json_object> or
1216C<filter_json_single_key_object> callbacks to get some real objects our of
1217your JSON.
1218
1219This section only considers the tagged value case: I a tagged JSON object
1220is encountered during decoding and C<allow_tags> is disabled, a parse
1221error will result (as if tagged values were not part of the grammar).
1222
1223If C<allow_tags> is enabled, C<JSON::XS> will look up the C<THAW> method
1224of the package/classname used during serialisation (it will not attempt
1225to load the package as a Perl module). If there is no such method, the
1226decoding will fail with an error.
1227
1228Otherwise, the C<THAW> method is invoked with the classname as first
1229argument, the constant string C<JSON> as second argument, and all the
1230values from the JSON array (the values originally returned by the
1231C<FREEZE> method) as remaining arguments.
1232
1233The method must then return the object. While technically you can return
1234any Perl scalar, you might have to enable the C<enable_nonref> setting to
1235make that work in all cases, so better return an actual blessed reference.
1236
1237As an example, let's implement a C<THAW> function that regenerates the
1238C<My::Object> from the C<FREEZE> example earlier:
1239
1240 sub My::Object::THAW {
1241 my ($class, $serialiser, $type, $id) = @_;
1242
1243 $class->new (type => $type, id => $id)
1244 }
1086 1245
1087 1246
1088=head1 ENCODING/CODESET FLAG NOTES 1247=head1 ENCODING/CODESET FLAG NOTES
1089 1248
1090The interested reader might have seen a number of flags that signify 1249The interested reader might have seen a number of flags that signify
1115=item C<utf8> flag disabled 1274=item C<utf8> flag disabled
1116 1275
1117When C<utf8> is disabled (the default), then C<encode>/C<decode> generate 1276When C<utf8> is disabled (the default), then C<encode>/C<decode> generate
1118and expect Unicode strings, that is, characters with high ordinal Unicode 1277and expect Unicode strings, that is, characters with high ordinal Unicode
1119values (> 255) will be encoded as such characters, and likewise such 1278values (> 255) will be encoded as such characters, and likewise such
1120characters are decoded as-is, no canges to them will be done, except 1279characters are decoded as-is, no changes to them will be done, except
1121"(re-)interpreting" them as Unicode codepoints or Unicode characters, 1280"(re-)interpreting" them as Unicode codepoints or Unicode characters,
1122respectively (to Perl, these are the same thing in strings unless you do 1281respectively (to Perl, these are the same thing in strings unless you do
1123funny/weird/dumb stuff). 1282funny/weird/dumb stuff).
1124 1283
1125This is useful when you want to do the encoding yourself (e.g. when you 1284This is useful when you want to do the encoding yourself (e.g. when you
1135expect your input strings to be encoded as UTF-8, that is, no "character" 1294expect your input strings to be encoded as UTF-8, that is, no "character"
1136of the input string must have any value > 255, as UTF-8 does not allow 1295of the input string must have any value > 255, as UTF-8 does not allow
1137that. 1296that.
1138 1297
1139The C<utf8> flag therefore switches between two modes: disabled means you 1298The C<utf8> flag therefore switches between two modes: disabled means you
1140will get a Unicode string in Perl, enabled means you get an UTF-8 encoded 1299will get a Unicode string in Perl, enabled means you get a UTF-8 encoded
1141octet/binary string in Perl. 1300octet/binary string in Perl.
1142 1301
1143=item C<latin1> or C<ascii> flags enabled 1302=item C<latin1> or C<ascii> flags enabled
1144 1303
1145With C<latin1> (or C<ascii>) enabled, C<encode> will escape characters 1304With C<latin1> (or C<ascii>) enabled, C<encode> will escape characters
1181proper subset of most 8-bit and multibyte encodings in use in the world. 1340proper subset of most 8-bit and multibyte encodings in use in the world.
1182 1341
1183=back 1342=back
1184 1343
1185 1344
1345=head2 JSON and ECMAscript
1346
1347JSON syntax is based on how literals are represented in javascript (the
1348not-standardised predecessor of ECMAscript) which is presumably why it is
1349called "JavaScript Object Notation".
1350
1351However, JSON is not a subset (and also not a superset of course) of
1352ECMAscript (the standard) or javascript (whatever browsers actually
1353implement).
1354
1355If you want to use javascript's C<eval> function to "parse" JSON, you
1356might run into parse errors for valid JSON texts, or the resulting data
1357structure might not be queryable:
1358
1359One of the problems is that U+2028 and U+2029 are valid characters inside
1360JSON strings, but are not allowed in ECMAscript string literals, so the
1361following Perl fragment will not output something that can be guaranteed
1362to be parsable by javascript's C<eval>:
1363
1364 use JSON::XS;
1365
1366 print encode_json [chr 0x2028];
1367
1368The right fix for this is to use a proper JSON parser in your javascript
1369programs, and not rely on C<eval> (see for example Douglas Crockford's
1370F<json2.js> parser).
1371
1372If this is not an option, you can, as a stop-gap measure, simply encode to
1373ASCII-only JSON:
1374
1375 use JSON::XS;
1376
1377 print JSON::XS->new->ascii->encode ([chr 0x2028]);
1378
1379Note that this will enlarge the resulting JSON text quite a bit if you
1380have many non-ASCII characters. You might be tempted to run some regexes
1381to only escape U+2028 and U+2029, e.g.:
1382
1383 # DO NOT USE THIS!
1384 my $json = JSON::XS->new->utf8->encode ([chr 0x2028]);
1385 $json =~ s/\xe2\x80\xa8/\\u2028/g; # escape U+2028
1386 $json =~ s/\xe2\x80\xa9/\\u2029/g; # escape U+2029
1387 print $json;
1388
1389Note that I<this is a bad idea>: the above only works for U+2028 and
1390U+2029 and thus only for fully ECMAscript-compliant parsers. Many existing
1391javascript implementations, however, have issues with other characters as
1392well - using C<eval> naively simply I<will> cause problems.
1393
1394Another problem is that some javascript implementations reserve
1395some property names for their own purposes (which probably makes
1396them non-ECMAscript-compliant). For example, Iceweasel reserves the
1397C<__proto__> property name for its own purposes.
1398
1399If that is a problem, you could parse try to filter the resulting JSON
1400output for these property strings, e.g.:
1401
1402 $json =~ s/"__proto__"\s*:/"__proto__renamed":/g;
1403
1404This works because C<__proto__> is not valid outside of strings, so every
1405occurrence of C<"__proto__"\s*:> must be a string used as property name.
1406
1407If you know of other incompatibilities, please let me know.
1408
1409
1186=head2 JSON and YAML 1410=head2 JSON and YAML
1187 1411
1188You often hear that JSON is a subset of YAML. This is, however, a mass 1412You often hear that JSON is a subset of YAML. This is, however, a mass
1189hysteria(*) and very far from the truth (as of the time of this writing), 1413hysteria(*) and very far from the truth (as of the time of this writing),
1190so let me state it clearly: I<in general, there is no way to configure 1414so let me state it clearly: I<in general, there is no way to configure
1198 my $yaml = $to_yaml->encode ($ref) . "\n"; 1422 my $yaml = $to_yaml->encode ($ref) . "\n";
1199 1423
1200This will I<usually> generate JSON texts that also parse as valid 1424This will I<usually> generate JSON texts that also parse as valid
1201YAML. Please note that YAML has hardcoded limits on (simple) object key 1425YAML. Please note that YAML has hardcoded limits on (simple) object key
1202lengths that JSON doesn't have and also has different and incompatible 1426lengths that JSON doesn't have and also has different and incompatible
1203unicode handling, so you should make sure that your hash keys are 1427unicode character escape syntax, so you should make sure that your hash
1204noticeably shorter than the 1024 "stream characters" YAML allows and that 1428keys are noticeably shorter than the 1024 "stream characters" YAML allows
1205you do not have characters with codepoint values outside the Unicode BMP 1429and that you do not have characters with codepoint values outside the
1206(basic multilingual page). YAML also does not allow C<\/> sequences in 1430Unicode BMP (basic multilingual page). YAML also does not allow C<\/>
1207strings (which JSON::XS does not I<currently> generate, but other JSON 1431sequences in strings (which JSON::XS does not I<currently> generate, but
1208generators might). 1432other JSON generators might).
1209 1433
1210There might be other incompatibilities that I am not aware of (or the YAML 1434There might be other incompatibilities that I am not aware of (or the YAML
1211specification has been changed yet again - it does so quite often). In 1435specification has been changed yet again - it does so quite often). In
1212general you should not try to generate YAML with a JSON generator or vice 1436general you should not try to generate YAML with a JSON generator or vice
1213versa, or try to parse JSON with a YAML parser or vice versa: chances are 1437versa, or try to parse JSON with a YAML parser or vice versa: chances are
1232that difficult or long) and finally make YAML compatible to it, and 1456that difficult or long) and finally make YAML compatible to it, and
1233educating users about the changes, instead of spreading lies about the 1457educating users about the changes, instead of spreading lies about the
1234real compatibility for many I<years> and trying to silence people who 1458real compatibility for many I<years> and trying to silence people who
1235point out that it isn't true. 1459point out that it isn't true.
1236 1460
1461Addendum/2009: the YAML 1.2 spec is still incompatible with JSON, even
1462though the incompatibilities have been documented (and are known to Brian)
1463for many years and the spec makes explicit claims that YAML is a superset
1464of JSON. It would be so easy to fix, but apparently, bullying people and
1465corrupting userdata is so much easier.
1466
1237=back 1467=back
1238 1468
1239 1469
1240=head2 SPEED 1470=head2 SPEED
1241 1471
1248a very short single-line JSON string (also available at 1478a very short single-line JSON string (also available at
1249L<http://dist.schmorp.de/misc/json/short.json>). 1479L<http://dist.schmorp.de/misc/json/short.json>).
1250 1480
1251 {"method": "handleMessage", "params": ["user1", 1481 {"method": "handleMessage", "params": ["user1",
1252 "we were just talking"], "id": null, "array":[1,11,234,-5,1e5,1e7, 1482 "we were just talking"], "id": null, "array":[1,11,234,-5,1e5,1e7,
1253 true, false]} 1483 1, 0]}
1254 1484
1255It shows the number of encodes/decodes per second (JSON::XS uses 1485It shows the number of encodes/decodes per second (JSON::XS uses
1256the functional interface, while JSON::XS/2 uses the OO interface 1486the functional interface, while JSON::XS/2 uses the OO interface
1257with pretty-printing and hashkey sorting enabled, JSON::XS/3 enables 1487with pretty-printing and hashkey sorting enabled, JSON::XS/3 enables
1258shrink). Higher is better: 1488shrink. JSON::DWIW/DS uses the deserialise function, while JSON::DWIW::FJ
1489uses the from_json method). Higher is better:
1259 1490
1260 module | encode | decode | 1491 module | encode | decode |
1261 -----------|------------|------------| 1492 --------------|------------|------------|
1262 JSON 1.x | 4990.842 | 4088.813 | 1493 JSON::DWIW/DS | 86302.551 | 102300.098 |
1263 JSON::DWIW | 51653.990 | 71575.154 | 1494 JSON::DWIW/FJ | 86302.551 | 75983.768 |
1264 JSON::PC | 65948.176 | 74631.744 | 1495 JSON::PP | 15827.562 | 6638.658 |
1265 JSON::PP | 8931.652 | 3817.168 | 1496 JSON::Syck | 63358.066 | 47662.545 |
1266 JSON::Syck | 24877.248 | 27776.848 | 1497 JSON::XS | 511500.488 | 511500.488 |
1267 JSON::XS | 388361.481 | 227951.304 | 1498 JSON::XS/2 | 291271.111 | 388361.481 |
1268 JSON::XS/2 | 227951.304 | 218453.333 | 1499 JSON::XS/3 | 361577.931 | 361577.931 |
1269 JSON::XS/3 | 338250.323 | 218453.333 | 1500 Storable | 66788.280 | 265462.278 |
1270 Storable | 16500.016 | 135300.129 |
1271 -----------+------------+------------+ 1501 --------------+------------+------------+
1272 1502
1273That is, JSON::XS is about five times faster than JSON::DWIW on encoding, 1503That is, JSON::XS is almost six times faster than JSON::DWIW on encoding,
1274about three times faster on decoding, and over forty times faster 1504about five times faster on decoding, and over thirty to seventy times
1275than JSON, even with pretty-printing and key sorting. It also compares 1505faster than JSON's pure perl implementation. It also compares favourably
1276favourably to Storable for small amounts of data. 1506to Storable for small amounts of data.
1277 1507
1278Using a longer test string (roughly 18KB, generated from Yahoo! Locals 1508Using a longer test string (roughly 18KB, generated from Yahoo! Locals
1279search API (L<http://dist.schmorp.de/misc/json/long.json>). 1509search API (L<http://dist.schmorp.de/misc/json/long.json>).
1280 1510
1281 module | encode | decode | 1511 module | encode | decode |
1282 -----------|------------|------------| 1512 --------------|------------|------------|
1283 JSON 1.x | 55.260 | 34.971 | 1513 JSON::DWIW/DS | 1647.927 | 2673.916 |
1284 JSON::DWIW | 825.228 | 1082.513 | 1514 JSON::DWIW/FJ | 1630.249 | 2596.128 |
1285 JSON::PC | 3571.444 | 2394.829 |
1286 JSON::PP | 210.987 | 32.574 | 1515 JSON::PP | 400.640 | 62.311 |
1287 JSON::Syck | 552.551 | 787.544 | 1516 JSON::Syck | 1481.040 | 1524.869 |
1288 JSON::XS | 5780.463 | 4854.519 | 1517 JSON::XS | 20661.596 | 9541.183 |
1289 JSON::XS/2 | 3869.998 | 4798.975 | 1518 JSON::XS/2 | 10683.403 | 9416.938 |
1290 JSON::XS/3 | 5862.880 | 4798.975 | 1519 JSON::XS/3 | 20661.596 | 9400.054 |
1291 Storable | 4445.002 | 5235.027 | 1520 Storable | 19765.806 | 10000.725 |
1292 -----------+------------+------------+ 1521 --------------+------------+------------+
1293 1522
1294Again, JSON::XS leads by far (except for Storable which non-surprisingly 1523Again, JSON::XS leads by far (except for Storable which non-surprisingly
1295decodes faster). 1524decodes a bit faster).
1296 1525
1297On large strings containing lots of high Unicode characters, some modules 1526On large strings containing lots of high Unicode characters, some modules
1298(such as JSON::PC) seem to decode faster than JSON::XS, but the result 1527(such as JSON::PC) seem to decode faster than JSON::XS, but the result
1299will be broken due to missing (or wrong) Unicode handling. Others refuse 1528will be broken due to missing (or wrong) Unicode handling. Others refuse
1300to decode or encode properly, so it was impossible to prepare a fair 1529to decode or encode properly, so it was impossible to prepare a fair
1336information you might want to make sure that exceptions thrown by JSON::XS 1565information you might want to make sure that exceptions thrown by JSON::XS
1337will not end up in front of untrusted eyes. 1566will not end up in front of untrusted eyes.
1338 1567
1339If you are using JSON::XS to return packets to consumption 1568If you are using JSON::XS to return packets to consumption
1340by JavaScript scripts in a browser you should have a look at 1569by JavaScript scripts in a browser you should have a look at
1341L<http://jpsykes.com/47/practical-csrf-and-json-security> to see whether 1570L<http://blog.archive.jpsykes.com/47/practical-csrf-and-json-security/> to
1342you are vulnerable to some common attack vectors (which really are browser 1571see whether you are vulnerable to some common attack vectors (which really
1343design bugs, but it is still you who will have to deal with it, as major 1572are browser design bugs, but it is still you who will have to deal with
1344browser developers care only for features, not about getting security 1573it, as major browser developers care only for features, not about getting
1345right). 1574security right).
1346 1575
1347 1576
1577=head2 "OLD" VS. "NEW" JSON (RFC 4627 VS. RFC 7159)
1578
1579JSON originally required JSON texts to represent an array or object -
1580scalar values were explicitly not allowed. This has changed, and versions
1581of JSON::XS beginning with C<4.0> reflect this by allowing scalar values
1582by default.
1583
1584One reason why one might not want this is that this removes a fundamental
1585property of JSON texts, namely that they are self-delimited and
1586self-contained, or in other words, you could take any number of "old"
1587JSON texts and paste them together, and the result would be unambiguously
1588parseable:
1589
1590 [1,3]{"k":5}[][null] # four JSON texts, without doubt
1591
1592By allowing scalars, this property is lost: in the following example, is
1593this one JSON text (the number 12) or two JSON texts (the numbers 1 and
15942):
1595
1596 12 # could be 12, or 1 and 2
1597
1598Another lost property of "old" JSON is that no lookahead is required to
1599know the end of a JSON text, i.e. the JSON text definitely ended at the
1600last C<]> or C<}> character, there was no need to read extra characters.
1601
1602For example, a viable network protocol with "old" JSON was to simply
1603exchange JSON texts without delimiter. For "new" JSON, you have to use a
1604suitable delimiter (such as a newline) after every JSON text or ensure you
1605never encode/decode scalar values.
1606
1607Most protocols do work by only transferring arrays or objects, and the
1608easiest way to avoid problems with the "new" JSON definition is to
1609explicitly disallow scalar values in your encoder and decoder:
1610
1611 $json_coder = JSON::XS->new->allow_nonref (0)
1612
1613This is a somewhat unhappy situation, and the blame can fully be put on
1614JSON's inmventor, Douglas Crockford, who unilaterally changed the format
1615in 2006 without consulting the IETF, forcing the IETF to either fork the
1616format or go with it (as I was told, the IETF wasn't amused).
1617
1618
1619=head1 INTEROPERABILITY WITH OTHER MODULES
1620
1621C<JSON::XS> uses the L<Types::Serialiser> module to provide boolean
1622constants. That means that the JSON true and false values will be
1623comaptible to true and false values of other modules that do the same,
1624such as L<JSON::PP> and L<CBOR::XS>.
1625
1626
1627=head1 INTEROPERABILITY WITH OTHER JSON DECODERS
1628
1629As long as you only serialise data that can be directly expressed in JSON,
1630C<JSON::XS> is incapable of generating invalid JSON output (modulo bugs,
1631but C<JSON::XS> has found more bugs in the official JSON testsuite (1)
1632than the official JSON testsuite has found in C<JSON::XS> (0)).
1633
1634When you have trouble decoding JSON generated by this module using other
1635decoders, then it is very likely that you have an encoding mismatch or the
1636other decoder is broken.
1637
1638When decoding, C<JSON::XS> is strict by default and will likely catch all
1639errors. There are currently two settings that change this: C<relaxed>
1640makes C<JSON::XS> accept (but not generate) some non-standard extensions,
1641and C<allow_tags> will allow you to encode and decode Perl objects, at the
1642cost of not outputting valid JSON anymore.
1643
1644=head2 TAGGED VALUE SYNTAX AND STANDARD JSON EN/DECODERS
1645
1646When you use C<allow_tags> to use the extended (and also nonstandard and
1647invalid) JSON syntax for serialised objects, and you still want to decode
1648the generated When you want to serialise objects, you can run a regex
1649to replace the tagged syntax by standard JSON arrays (it only works for
1650"normal" package names without comma, newlines or single colons). First,
1651the readable Perl version:
1652
1653 # if your FREEZE methods return no values, you need this replace first:
1654 $json =~ s/\( \s* (" (?: [^\\":,]+|\\.|::)* ") \s* \) \s* \[\s*\]/[$1]/gx;
1655
1656 # this works for non-empty constructor arg lists:
1657 $json =~ s/\( \s* (" (?: [^\\":,]+|\\.|::)* ") \s* \) \s* \[/[$1,/gx;
1658
1659And here is a less readable version that is easy to adapt to other
1660languages:
1661
1662 $json =~ s/\(\s*("([^\\":,]+|\\.|::)*")\s*\)\s*\[/[$1,/g;
1663
1664Here is an ECMAScript version (same regex):
1665
1666 json = json.replace (/\(\s*("([^\\":,]+|\\.|::)*")\s*\)\s*\[/g, "[$1,");
1667
1668Since this syntax converts to standard JSON arrays, it might be hard to
1669distinguish serialised objects from normal arrays. You can prepend a
1670"magic number" as first array element to reduce chances of a collision:
1671
1672 $json =~ s/\(\s*("([^\\":,]+|\\.|::)*")\s*\)\s*\[/["XU1peReLzT4ggEllLanBYq4G9VzliwKF",$1,/g;
1673
1674And after decoding the JSON text, you could walk the data
1675structure looking for arrays with a first element of
1676C<XU1peReLzT4ggEllLanBYq4G9VzliwKF>.
1677
1678The same approach can be used to create the tagged format with another
1679encoder. First, you create an array with the magic string as first member,
1680the classname as second, and constructor arguments last, encode it as part
1681of your JSON structure, and then:
1682
1683 $json =~ s/\[\s*"XU1peReLzT4ggEllLanBYq4G9VzliwKF"\s*,\s*("([^\\":,]+|\\.|::)*")\s*,/($1)[/g;
1684
1685Again, this has some limitations - the magic string must not be encoded
1686with character escapes, and the constructor arguments must be non-empty.
1687
1688
1689=head1 RFC7159
1690
1691Since this module was written, Google has written a new JSON RFC, RFC 7159
1692(and RFC7158). Unfortunately, this RFC breaks compatibility with both the
1693original JSON specification on www.json.org and RFC4627.
1694
1695As far as I can see, you can get partial compatibility when parsing by
1696using C<< ->allow_nonref >>. However, consider the security implications
1697of doing so.
1698
1699I haven't decided yet when to break compatibility with RFC4627 by default
1700(and potentially leave applications insecure) and change the default to
1701follow RFC7159, but application authors are well advised to call C<<
1702->allow_nonref(0) >> even if this is the current default, if they cannot
1703handle non-reference values, in preparation for the day when the default
1704will change.
1705
1706
1348=head1 THREADS 1707=head1 (I-)THREADS
1349 1708
1350This module is I<not> guaranteed to be thread safe and there are no 1709This module is I<not> guaranteed to be ithread (or MULTIPLICITY-) safe
1351plans to change this until Perl gets thread support (as opposed to the 1710and there are no plans to change this. Note that perl's builtin so-called
1352horribly slow so-called "threads" which are simply slow and bloated 1711threads/ithreads are officially deprecated and should not be used.
1353process simulations - use fork, it's I<much> faster, cheaper, better).
1354 1712
1355(It might actually work, but you have been warned). 1713
1714=head1 THE PERILS OF SETLOCALE
1715
1716Sometimes people avoid the Perl locale support and directly call the
1717system's setlocale function with C<LC_ALL>.
1718
1719This breaks both perl and modules such as JSON::XS, as stringification of
1720numbers no longer works correctly (e.g. C<$x = 0.1; print "$x"+1> might
1721print C<1>, and JSON::XS might output illegal JSON as JSON::XS relies on
1722perl to stringify numbers).
1723
1724The solution is simple: don't call C<setlocale>, or use it for only those
1725categories you need, such as C<LC_MESSAGES> or C<LC_CTYPE>.
1726
1727If you need C<LC_NUMERIC>, you should enable it only around the code that
1728actually needs it (avoiding stringification of numbers), and restore it
1729afterwards.
1356 1730
1357 1731
1358=head1 BUGS 1732=head1 BUGS
1359 1733
1360While the goal of this module is to be correct, that unfortunately does 1734While the goal of this module is to be correct, that unfortunately does
1364Please refrain from using rt.cpan.org or any other bug reporting 1738Please refrain from using rt.cpan.org or any other bug reporting
1365service. I put the contact address into my modules for a reason. 1739service. I put the contact address into my modules for a reason.
1366 1740
1367=cut 1741=cut
1368 1742
1369our $true = do { bless \(my $dummy = 1), "JSON::XS::Boolean" }; 1743BEGIN {
1370our $false = do { bless \(my $dummy = 0), "JSON::XS::Boolean" }; 1744 *true = \$Types::Serialiser::true;
1745 *true = \&Types::Serialiser::true;
1746 *false = \$Types::Serialiser::false;
1747 *false = \&Types::Serialiser::false;
1748 *is_bool = \&Types::Serialiser::is_bool;
1371 1749
1372sub true() { $true } 1750 *JSON::XS::Boolean:: = *Types::Serialiser::Boolean::;
1373sub false() { $false }
1374
1375sub is_bool($) {
1376 UNIVERSAL::isa $_[0], "JSON::XS::Boolean"
1377# or UNIVERSAL::isa $_[0], "JSON::Literal"
1378} 1751}
1379 1752
1380XSLoader::load "JSON::XS", $VERSION; 1753XSLoader::load "JSON::XS", $VERSION;
1381
1382package JSON::XS::Boolean;
1383
1384use overload
1385 "0+" => sub { ${$_[0]} },
1386 "++" => sub { $_[0] = ${$_[0]} + 1 },
1387 "--" => sub { $_[0] = ${$_[0]} - 1 },
1388 fallback => 1;
1389
13901;
1391 1754
1392=head1 SEE ALSO 1755=head1 SEE ALSO
1393 1756
1394The F<json_xs> command line utility for quick experiments. 1757The F<json_xs> command line utility for quick experiments.
1395 1758
1398 Marc Lehmann <schmorp@schmorp.de> 1761 Marc Lehmann <schmorp@schmorp.de>
1399 http://home.schmorp.de/ 1762 http://home.schmorp.de/
1400 1763
1401=cut 1764=cut
1402 1765
17661
1767

Diff Legend

Removed lines
+ Added lines
< Changed lines
> Changed lines