Uploaded image for project: 'XMLBeans'
  1. XMLBeans
  2. XMLBEANS-641

Fuzzing XMLBeans triggers an assert() for an input-file via Apache POI

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • Version 5.2.0
    • None
    • None

    Description

      Fuzzing Apache POI via oss-fuzz shows the following assert() being triggered via an input-file.

       

      Would be good to convert to IllegalArgumentException or IllegalStateException so that fuzzy testing can continue to flag other places where assert() is used incorrectly.

       

       at org.apache.xmlbeans.impl.store.Saver$TextSaver.emitName(Saver.java:1099)
 at org.apache.xmlbeans.impl.store.Saver$TextSaver.emitElement(Saver.java:894)
 at org.apache.xmlbeans.impl.store.Saver.processElement(Saver.java:461)
 at org.apache.xmlbeans.impl.store.Saver.process(Saver.java:291)
 at org.apache.xmlbeans.impl.store.Saver$TextSaver.write(Saver.java:1696)
 at org.apache.xmlbeans.impl.store.Saver$InputStreamSaver.ensure(Saver.java:2348)
 at org.apache.xmlbeans.impl.store.Saver$InputStreamSaver.access$200(Saver.java:2234)
 at org.apache.xmlbeans.impl.store.Saver$InputStreamSaver$OutputStreamImpl.read(Saver.java:2393)
 at org.apache.xmlbeans.impl.store.Saver$InputStreamSaver.lambda$read$0(Saver.java:2332)
 at org.apache.xmlbeans.impl.store.Saver.syncWrap(Saver.java:2184)
 at org.apache.xmlbeans.impl.store.Saver.access$000(Saver.java:33)
 at org.apache.xmlbeans.impl.store.Saver$InputStreamSaver.read(Saver.java:2332)
 at java.base/java.io.InputStream.read(InputStream.java:218)
 at org.apache.xmlbeans.impl.store.Cursor._save(Cursor.java:570)
 at org.apache.xmlbeans.impl.store.Cursor.lambda$save$17(Cursor.java:2006)
 at org.apache.xmlbeans.impl.store.Cursor.syncWrapHelper(Cursor.java:2551)
 at org.apache.xmlbeans.impl.store.Cursor.syncWrapIOEx(Cursor.java:2504)
 at org.apache.xmlbeans.impl.store.Cursor.save(Cursor.java:2006)
 at org.apache.xmlbeans.impl.values.XmlObjectBase.save(XmlObjectBase.java:190)
 at org.apache.poi.xwpf.usermodel.XWPFTheme.commit(XWPFTheme.java:178)
 at org.apache.poi.ooxml.POIXMLDocumentPart.onSave(POIXMLDocumentPart.java:467)
 at org.apache.poi.ooxml.POIXMLDocumentPart.onSave(POIXMLDocumentPart.java:472)
 at org.apache.poi.ooxml.POIXMLDocument.write(POIXMLDocument.java:221)

      Attachments

        Activity

          People

            fanningpj PJ Fanning
            dominik.stadler@gmx.at Dominik Stadler
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 10m
                10m