NotificationsYou must be signed in to change notification settings
Fork32k
Star67.3k

Commit57e727a

authored

[3.11]gh-99110: Initialize frame->previous in init_frame to fix segmentation fault (GH-100182) (#100478)

(cherry picked from commit88d565f)Co-authored-by: Bill Fisher <william.w.fisher@gmail.com>

1 parentb914054 commit57e727aCopy full SHA for 57e727a

File tree

5 files changed

+35

-1

lines changed

Include/internal
- pycore_frame.h
Lib/test/test_capi
- test_misc.py
Misc/NEWS.d/next/Core and Builtins
- 2022-12-12-01-05-16.gh-issue-99110.1JqtIg.rst
Modules
- _testcapimodule.c
Objects
- frameobject.c

5 files changed

+35

-1

lines changed

`‎Include/internal/pycore_frame.h`

Lines changed: 4 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -94,7 +94,10 @@ static inline void _PyFrame_StackPush(_PyInterpreterFrame f, PyObject value) {`
`94`	`94`
`95`	`95`	`void_PyFrame_Copy(_PyInterpreterFramesrc,_PyInterpreterFramedest);`
`96`	`96`
`97`		`-/* Consumes reference to func */`
	`97`	`+/* Consumes reference to func and locals.`
	`98`	`+ Does not initialize frame->previous, which happens`
	`99`	`+ when frame is linked into the frame stack.`
	`100`	`+ */`
`98`	`101`	`staticinlinevoid`
`99`	`102`	`_PyFrame_InitializeSpecials(`
`100`	`103`	`_PyInterpreterFrameframe,PyFunctionObjectfunc,`

`‎Lib/test/test_capi/test_misc.py`

Lines changed: 10 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -1335,6 +1335,16 @@ def test_frame_get_generator(self):`
`1335`	`1335`	`frame=next(gen)`
`1336`	`1336`	`self.assertIs(gen,_testcapi.frame_getgenerator(frame))`
`1337`	`1337`
	`1338`	`+deftest_frame_fback_api(self):`
	`1339`	+"""Test that accessing `f_back` does not cause a segmentation fault on
	`1340`	+ a frame created with `PyFrame_New` (GH-99110)."""
	`1341`	`+defdummy():`
	`1342`	`+pass`
	`1343`	`+`
	`1344`	`+frame=_testcapi.frame_new(dummy.__code__,globals(),locals())`
	`1345`	`+# The following line should not cause a segmentation fault.`
	`1346`	`+self.assertIsNone(frame.f_back)`
	`1347`	`+`
`1338`	`1348`
`1339`	`1349`	`SUFFICIENT_TO_DEOPT_AND_SPECIALIZE=100`
`1340`	`1350`

`‎Misc/NEWS.d/next/Core and Builtins/2022-12-12-01-05-16.gh-issue-99110.1JqtIg.rst`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+Initialize frame->previous in frameobject.c to fix a segmentation fault when`
	`2`	+accessing frames created by:c:func:`PyFrame_New`.

`‎Modules/_testcapimodule.c`

Lines changed: 18 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,7 @@`
`22`	`22`
`23`	`23`	`#include"Python.h"`
`24`	`24`	`#include"datetime.h"// PyDateTimeAPI`
	`25`	`+#include"frameobject.h"// PyFrame_New`
`25`	`26`	`#include"marshal.h"// PyMarshal_WriteLongToFile`
`26`	`27`	`#include"structmember.h"// PyMemberDef`
`27`	`28`	`#include<float.h>// FLT_MAX`
`@@ -6000,6 +6001,22 @@ frame_getlasti(PyObject self, PyObject frame)`
`6000`	`6001`	`returnPyLong_FromLong(lasti);`
`6001`	`6002`	`}`
`6002`	`6003`
	`6004`	`+staticPyObject*`
	`6005`	`+frame_new(PyObjectself,PyObjectargs)`
	`6006`	`+{`
	`6007`	`+PyObjectcode,globals,*locals;`
	`6008`	`+if (!PyArg_ParseTuple(args,"OOO",&code,&globals,&locals)) {`
	`6009`	`+returnNULL;`
	`6010`	`+ }`
	`6011`	`+if (!PyCode_Check(code)) {`
	`6012`	`+PyErr_SetString(PyExc_TypeError,"argument must be a code object");`
	`6013`	`+returnNULL;`
	`6014`	`+ }`
	`6015`	`+PyThreadState*tstate=PyThreadState_Get();`
	`6016`	`+`
	`6017`	`+return (PyObject)PyFrame_New(tstate, (PyCodeObject)code,globals,locals);`
	`6018`	`+}`
	`6019`	`+`
`6003`	`6020`	`staticPyObject*`
`6004`	`6021`	`eval_get_func_name(PyObjectself,PyObjectfunc)`
`6005`	`6022`	`{`
`@@ -6492,6 +6509,7 @@ static PyMethodDef TestMethods[] = {`
`6492`	`6509`	`{"frame_getgenerator",frame_getgenerator,METH_O,NULL},`
`6493`	`6510`	`{"frame_getbuiltins",frame_getbuiltins,METH_O,NULL},`
`6494`	`6511`	`{"frame_getlasti",frame_getlasti,METH_O,NULL},`
	`6512`	`+ {"frame_new",frame_new,METH_VARARGS,NULL},`
`6495`	`6513`	`{"eval_get_func_name",eval_get_func_name,METH_O,NULL},`
`6496`	`6514`	`{"eval_get_func_desc",eval_get_func_desc,METH_O,NULL},`
`6497`	`6515`	`{"get_feature_macros",get_feature_macros,METH_NOARGS,NULL},`

`‎Objects/frameobject.c`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -1010,6 +1010,7 @@ init_frame(_PyInterpreterFrame frame, PyFunctionObject func, PyObject *locals)`
`1010`	`1010`	`Py_INCREF(func);`
`1011`	`1011`	`PyCodeObjectcode= (PyCodeObject)func->func_code;`
`1012`	`1012`	`_PyFrame_InitializeSpecials(frame,func,locals,code->co_nlocalsplus);`
	`1013`	`+frame->previous=NULL;`
`1013`	`1014`	`for (Py_ssize_ti=0;i<code->co_nlocalsplus;i++) {`
`1014`	`1015`	`frame->localsplus[i]=NULL;`
`1015`	`1016`	`}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commit57e727a

File tree

5 files changed

5 files changed

`‎Include/internal/pycore_frame.h`

`‎Lib/test/test_capi/test_misc.py`

`‎Misc/NEWS.d/next/Core and Builtins/2022-12-12-01-05-16.gh-issue-99110.1JqtIg.rst`

`‎Modules/_testcapimodule.c`

`‎Objects/frameobject.c`

0 commit comments