Hang while opening BZip2 #641

New Issue

Closed

opened 2026-01-29 22:15:10 +00:00 by claunia · 4 comments

claunia commented 2026-01-29 22:15:10 +00:00

Owner

Copy Link

Originally created by @fuzzah on GitHub (May 15, 2024).

In continuation of #841.
The following code results in an infinite loop in SharpCompress:

using System.IO;
using SharpCompress.Readers;
Stream stream = new MemoryStream(new byte[] {0x42, 0x5a, 0x68, 0x34, 0x31, 0x41, 0x59, 0x26, 0x53, 0x59, 0x35});
ReaderFactory.Open(stream);

The stack trace (created with the dotnet stack tool):

System.Private.CoreLib!System.IO.Stream.ReadByte()
SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream.BsR(int32)
SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream.RecvDecodingTables()
SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream.GetAndMoveToFrontDecode()
SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream.InitBlock()
SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream..ctor(class System.IO.Stream,bool)
SharpCompress!SharpCompress.Compressors.BZip2.BZip2Stream..ctor(class System.IO.Stream,value class SharpCompress.Compressors.CompressionMode,bool)
SharpCompress!SharpCompress.Factories.TarFactory.TryOpenReader(class SharpCompress.IO.RewindableStream,class SharpCompress.Readers.ReaderOptions,class SharpCompress.Readers.IReader&)
SharpCompress!SharpCompress.Readers.ReaderFactory.Open(class System.IO.Stream,class SharpCompress.Readers.ReaderOptions)
app!Program.<Main>$(class System.String[])

This byte sequence written to a file gets detected as "bzip2 compressed data" by the file tool, but bzip2 fails to read it with the error message "bzip2: Compressed file ends unexpectedly".

Found by Linux Verification Center (linuxtesting.org) with AFL++ and SharpFuzz.
Reporter: Valery Korolyov (v.korolyov@gardatech.ru)
Organization: Garda Technologies (info@gardatech.ru)

Originally created by @fuzzah on GitHub (May 15, 2024). In continuation of #841. The following code results in an infinite loop in SharpCompress: ```csharp using System.IO; using SharpCompress.Readers; Stream stream = new MemoryStream(new byte[] {0x42, 0x5a, 0x68, 0x34, 0x31, 0x41, 0x59, 0x26, 0x53, 0x59, 0x35}); ReaderFactory.Open(stream); ``` The stack trace (created with the [`dotnet stack`](https://learn.microsoft.com/en-us/dotnet/core/diagnostics/dotnet-stack) tool): ``` System.Private.CoreLib!System.IO.Stream.ReadByte() SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream.BsR(int32) SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream.RecvDecodingTables() SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream.GetAndMoveToFrontDecode() SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream.InitBlock() SharpCompress!SharpCompress.Compressors.BZip2.CBZip2InputStream..ctor(class System.IO.Stream,bool) SharpCompress!SharpCompress.Compressors.BZip2.BZip2Stream..ctor(class System.IO.Stream,value class SharpCompress.Compressors.CompressionMode,bool) SharpCompress!SharpCompress.Factories.TarFactory.TryOpenReader(class SharpCompress.IO.RewindableStream,class SharpCompress.Readers.ReaderOptions,class SharpCompress.Readers.IReader&) SharpCompress!SharpCompress.Readers.ReaderFactory.Open(class System.IO.Stream,class SharpCompress.Readers.ReaderOptions) app!Program.<Main>$(class System.String[]) ``` This byte sequence written to a file gets detected as "bzip2 compressed data" by the `file` tool, but `bzip2` fails to read it with the error message "bzip2: Compressed file ends unexpectedly". _Found by Linux Verification Center (linuxtesting.org) with AFL++ and SharpFuzz. Reporter: Valery Korolyov ([v.korolyov@gardatech.ru](mailto:v.korolyov@gardatech.ru)) Organization: Garda Technologies ([info@gardatech.ru](mailto:info@gardatech.ru))_

claunia added the bugup for grabs labels 2026-01-29 22:15:10 +00:00

claunia closed this issue 2026-01-29 22:15:10 +00:00

claunia commented 2026-01-29 22:15:11 +00:00

Author

Owner

Copy Link

@Morilli commented on GitHub (May 30, 2024):

Stepping through, the code correctly identifies the EOF here:
6fc4b045fd/src/SharpCompress/Compressors/BZip2/CBZip2InputStream.cs (L394-L397)
and then proceeds to... do nothing?
6fc4b045fd/src/SharpCompress/Compressors/BZip2/CBZip2InputStream.cs (L42-L52)

Perhaps the fix is just to make this function actually throw an exception instead of silently passing?

@Morilli commented on GitHub (May 30, 2024): Stepping through, the code correctly identifies the EOF here: https://github.com/adamhathcock/sharpcompress/blob/6fc4b045fde70c42df738d203c453082354e9558/src/SharpCompress/Compressors/BZip2/CBZip2InputStream.cs#L394-L397 and then proceeds to... do nothing? https://github.com/adamhathcock/sharpcompress/blob/6fc4b045fde70c42df738d203c453082354e9558/src/SharpCompress/Compressors/BZip2/CBZip2InputStream.cs#L42-L52 Perhaps the fix is just to make this function actually throw an exception instead of silently passing?

claunia commented 2026-01-29 22:15:11 +00:00

Author

Owner

Copy Link

@adamhathcock commented on GitHub (Jun 4, 2024):

Seems like I should have ported the exception.

@adamhathcock commented on GitHub (Jun 4, 2024): Seems like I should have ported the exception.

claunia commented 2026-01-29 22:15:11 +00:00

Author

Owner

Copy Link

@DineshSolanki commented on GitHub (Jul 30, 2024):

So as #850 is merged, this should be closed?

@DineshSolanki commented on GitHub (Jul 30, 2024): So as #850 is merged, this should be closed?

claunia commented 2026-01-29 22:15:11 +00:00

Author

Owner

Copy Link

@adamhathcock commented on GitHub (Aug 2, 2024):

Thanks!

@adamhathcock commented on GitHub (Aug 2, 2024): Thanks!

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

release

adam/merge-release-to-master

dependabot/nuget/xunit.v3-3.2.2

adam/more-explode-async

copilot/fix-infinite-loop-rar-archive

adam/data-descriptor-fix

adam/fix-tests-with-proper-rewind

copilot/fix-data-descriptor-stream-bug

adam/lmza-investigation

adam/create-rar-async

adam/async-rar2

copilot/support-multi-threading-path

copilot/sub-pr-1132-again

adam/memory-perf

copilot/add-performance-benchmarking

copilot/sub-pr-1121

copilot/add-password-support-zip-files

copilot/add-so-optimized-zip-support

adam/rar-async-only

copilot/add-buffered-stream-async-read

copilot/sub-pr-1076

copilot/fix-decompression-exception

copilot/fix-archivefactory-issue

copilot/rationalize-sourcestream-volumes

adam/open-async

copilot/add-ace-archive-support

copilot/sub-pr-1040-again

adam/more-async-3

copilot/fix-tararchive-incomplete-iteration

adam/multi-threaded

copilot/sub-pr-1040

adam/awesome-copilot

copilot/fix-ziparchive-extraction-issue

copilot/fix-tararchive-open-crash

copilot/fix-tar-xz-file-reading-issue

copilot/setup-copilot-instructions

copilot/fix-decompression-performance-issue

copilot/convert-stream-access-to-async

adam/enable-agent

adam/async-deflate

adam/async-rar

adam/more-cleanup

adam/zstd

async-2

zstandard

net461-tests

dmg

async

build-netcore3

recycle-memory-stream

presentation

pax

netcore2

zip_encryption

dotnet-tool

tar_redux

native_zlib

Issue-197

system_buffers

TarNames

7zip_sfx

portable_crypto

WinRT

new_7zip

0.44.5

0.44.4

0.44.3

0.44.2

0.44.1

0.44.0

0.43.0

0.42.1

0.42.0

0.41.0

0.40.0

0.39.0

0.38.0

0.37.2

0.37.1

0.37.0

0.36.0

0.35.0

0.34.2

0.34.1

0.34.0

0.33.0

0.32.2

0.32.1

0.32

0.31

0.30.1

0.30

0.29

0.29.0

0.28.3

0.28.2

0.28.1

0.28

0.27.1

0.27

0.26

0.25.1

0.25

0.24

0.23

0.22

0.21.1

0.21

0.21.0

0.20.0

0.19.2

0.19.1

0.19

0.18.2

0.18.1

0.18

0.17.1

0.17.0

0.16.2

0.16.1

0.16.0

0.15.2

0.15.1

0.15.0

0.14.1

0.14.0

0.13.1

0.13.0

0.12.4

0.12.3

0.12.2

0.12.1

0.12.0

0.11.6

0.11.5

0.11.4

0.11.3

0.11.2

0.11.1

0.11

0.10.3

0.10.2

0.10.1.3

0.10.1.2

0.10.1.1

0.10.1

0.10

0.9

Labels

Clear labels

bug

duplicate

enhancement

feedback requested

not bug

pull-request

Mirrored from GitHub Pull Request

question

up for grabs

wontfix

No Label bug up for grabs

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

claunia

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/sharpcompress#641