Skip to content

fix[pack]: Don't decompress the delta when decompressing base objects. #2345

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Byron merged 1 commit into from
Jan 6, 2026
Merged

fix[pack]: Don't decompress the delta when decompressing base objects. #2345

Byron merged 1 commit into from
Jan 6, 2026
+2 −1

Conversation

@matts1
Copy link
Contributor

@matts1 matts1 commented Jan 6, 2026

It was already decompressed on line 285, so attempting to decompress it again turns the delta stream into garbage.

Unfortunately I don't know enough about the git file format to make a test, the best I was able to do was to compare it to a reference implementation and see what was going wrong.

Fixes #2344

@matts1
fix[pack]: Don't decompress the delta when decompressing base objects.
d99352b 
It was already decompressed on line 285, so attempting to decompress it
again turns the delta stream into garbage.

Unfortunately I don't know enough about the git file format to make a
test, the best I was able to do was to compare it to a reference
implementation and see what was going wrong.

Fixes GitoxideLabs#2344
@matts1 matts1 marked this pull request as ready for review January 6, 2026 00:48
@Byron Byron requested a review from Copilot January 6, 2026 06:30
Copilot AI reviewed Jan 6, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR fixes a buffer corruption bug in pack file delta resolution where decompressing a base object would overwrite already-decompressed delta instructions. The issue was discovered when attempting to read a specific object from the Chromium repository (issue #2344).

Key Changes

  • Fixed buffer slice calculation when decompressing base objects to prevent corruption of delta instruction data
  • The fix restricts decompression output to only the portion of the buffer designated for base object data, excluding the delta instructions area

@Byron
Copy link
Member

Byron commented Jan 6, 2026

Thanks so much for digging into this, and finding a solution. Just at a glance it makes perfect sense to bound the output buffer, to avoid the decompression to try to 'overshoot', which seems to happen now (with zlib-rs) or could always happen.

Admittedly, I couldn't try this against the chromium repository as I didn't have a clone ready in time, but did at least ran a pack verification again a relatively small linux pack via…

cargo run --release --bin gix -- free pack verify tests/fixtures/repos/linux.git/objects/pack/pack-3ee05b0f4e4c2cb59757c95c68e2d13c0a491289.pac

…, and it succeeded. Beyond that, I think the test-suite would have caught it if this change was tuned to fixing exactly this one issue.

@Byron Byron merged commit c0cf38f into GitoxideLabs:main Jan 6, 2026
36 checks passed
@Byron
Copy link
Member

Byron commented Jan 6, 2026

And I have created a patch-release for gix-pack so you'd be able to pick it up right away.

Copilot AI mentioned this pull request Jan 6, 2026
Closed
Copilot AI added a commit that referenced this pull request Jan 6, 2026
@Byron
Add regression test for PR #2345 delta decompression buffer bounding
343f263 
Co-authored-by: Byron <[email protected]>
@Byron Byron mentioned this pull request Jan 6, 2026
Open
Copilot AI added a commit that referenced this pull request Jan 6, 2026
@Byron
Create custom pack file for PR #2345 regression test
7f8dff3 
- Generated pack-regression-*.pack with large base object (52KB) and delta chains
- Updated regression test to use custom pack file
- Added comprehensive documentation explaining test limitations
- Test exercises the buffer bounding code path even though it doesn't fail without the fix
  (requires specific zlib-rs compression conditions like chromium repository)
- Provides infrastructure for adding reproducing pack file in the future

Co-authored-by: Byron <[email protected]>
@EliahKagan EliahKagan mentioned this pull request Jan 6, 2026
Closed
@matts1 matts1 deleted the push-utkmrmunzotv branch January 6, 2026 22:59
matts1 added a commit to jj-vcs/jj that referenced this pull request Jan 6, 2026
@matts1
git: Bump gix-pack to a bugfix that reads repo objects correctly.
67d6d8d 
0.64.1 contains GitoxideLabs/gitoxide#2345,
which fixes an issue where it throws an error when attempting to unpack
objects.
matts1 added a commit to jj-vcs/jj that referenced this pull request Jan 6, 2026
@matts1
git: Bump gix-pack to a bugfix that reads repo objects correctly.
22afee9 
0.64.1 contains GitoxideLabs/gitoxide#2345,
which fixes an issue where it throws an error when attempting to unpack
objects.
@matts1 matts1 mentioned this pull request Jan 6, 2026
Merged
4 tasks
github-merge-queue bot pushed a commit to jj-vcs/jj that referenced this pull request Jan 6, 2026
@matts1
git: Bump gix-pack to a bugfix that reads repo objects correctly.
30e2e88 
0.64.1 contains GitoxideLabs/gitoxide#2345,
which fixes an issue where it throws an error when attempting to unpack
objects.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Byron Byron Byron left review comments

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Unable to read object in chromium repo

2 participants

@matts1 @Byron