subject:"\[issue47182\] _PyUnicode_Fini should invalidate ucnhash

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

2022-04-04 Thread neonene



Change by neonene :


--
nosy: +neonene
nosy_count: 5.0 -> 6.0
pull_requests: +30375
pull_request: https://github.com/python/cpython/pull/32313

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

2022-04-01 Thread Christian Heimes



Christian Heimes  added the comment:


New changeset 55d5c96c57738766eb6f3b5ccfa6599d5f094c18 by Christian Heimes in 
branch '3.10':
[3.10] bpo-47182: Fix crash by named unicode characters after interpreter 
reinitialization (GH-32212) (GH-32216)
https://github.com/python/cpython/commit/55d5c96c57738766eb6f3b5ccfa6599d5f094c18


--

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

2022-03-31 Thread Christian Heimes



Change by Christian Heimes :


--
versions:  -Python 3.7, Python 3.8, Python 3.9

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

2022-03-31 Thread Christian Heimes



Change by Christian Heimes :


--
pull_requests: +30293
pull_request: https://github.com/python/cpython/pull/32217

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

2022-03-31 Thread Christian Heimes



Change by Christian Heimes :


--
pull_requests: +30292
pull_request: https://github.com/python/cpython/pull/32216

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

2022-03-31 Thread miss-islington



miss-islington  added the comment:


New changeset 44e915028d75f7cef141aa1aada962465a5907d6 by Christian Heimes in 
branch 'main':
bpo-47182: Fix crash by named unicode characters after interpreter 
reinitialization (GH-32212)
https://github.com/python/cpython/commit/44e915028d75f7cef141aa1aada962465a5907d6


--
nosy: +miss-islington

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

2022-03-31 Thread Christian Heimes



Change by Christian Heimes :


--
keywords: +patch
pull_requests: +30288
stage:  -> patch review
pull_request: https://github.com/python/cpython/pull/32212

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

2022-03-31 Thread Christian Heimes



New submission from Christian Heimes :

unicodeobject.c has a static pointer to a unicode name CAPI capsule:

   static _PyUnicode_Name_CAPI *ucnhash_capi = NULL;

The capsule is initialized on demand when the parser encounters a named unicode 
representation like "\N{digit nine}". Once the capsule pointer ucnhash_capi has 
been initialized, it is never reset. Not even a full interpreter shutdown 
invalidates the pointer.

A shutdown of the main interpreter with Py_Finalize() renders the pointer 
invalid. If the interpreter is re-initialized again, the invalid pointer causes 
a segfault. The problem was first discovered by Trey Hunner in 
https://github.com/ethanhs/python-wasm/issues/69

python.js:219 Uncaught RuntimeError: null function or function signature 
mismatch
at _PyUnicode_DecodeUnicodeEscapeInternal (unicodeobject.c:6493:25)
at decode_unicode_with_escapes (string_parser.c:121:13)
at _PyPegen_parsestr (string_parser.c:273:1)
at strings_rule (action_helpers.c:901:20)
at atom_rule (parser.c:14293:27)
at primary_rule (parser.c:13916:17)
at await_primary_rule (parser.c:13666:17)
at factor_rule (parser.c:13542:29)
at term_rule (parser.c:13330:17)
at sum_rule (parser.c:13044:17)

I can reproduce the issue with pure C code:

$ gcc -Xlinker -export-dynamic -g -IInclude/ -I. -o ucnbug ucnbug.c 
libpython3.11.a -lm -ldl
$ gdb ucnbug
(gdb) run
0
9
Done

1

Program received signal SIGSEGV, Segmentation fault.
0x in ?? ()
(gdb) bt
#0  0x in ?? ()
#1  0x005729a8 in _PyUnicode_DecodeUnicodeEscapeInternal (s=, s@entry=0x7fffea53b6d0 "\\N{digit nine}", size=, 
errors=errors@entry=0x0, 
consumed=consumed@entry=0x0, 
first_invalid_escape=first_invalid_escape@entry=0x7fffc748) at 
Objects/unicodeobject.c:6490
#2  0x00644fe3 in decode_unicode_with_escapes 
(parser=parser@entry=0x7fffea5e45d0, s=0x7fffea53b6d0 "\\N{digit nine}", 
s@entry=0x7fffea6af1d1 "\\N{digit nine}'", len=, 
len@entry=14, t=t@entry=0x7fffea606910) at Parser/string_parser.c:118
#3  0x00645675 in _PyPegen_parsestr (p=p@entry=0x7fffea5e45d0, 
bytesmode=bytesmode@entry=0x7fffc838, rawmode=rawmode@entry=0x7fffc83c, 
result=result@entry=0x7fffc848, 
fstr=fstr@entry=0x7fffc850, fstrlen=fstrlen@entry=0x7fffc858, 
t=0x7fffea606910) at Parser/string_parser.c:269
#4  0x00644163 in _PyPegen_concatenate_strings 
(p=p@entry=0x7fffea5e45d0, strings=strings@entry=0x94e310) at 
Parser/action_helpers.c:896
#5  0x004791e6 in strings_rule (p=p@entry=0x7fffea5e45d0) at 
Parser/parser.c:15463
#6  0x0047c498 in atom_rule (p=p@entry=0x7fffea5e45d0) at 
Parser/parser.c:14274
#7  0x0047e159 in primary_raw (p=0x7fffea5e45d0) at 
Parser/parser.c:13908
#8  primary_rule (p=p@entry=0x7fffea5e45d0) at Parser/parser.c:13706

--
components: Interpreter Core
files: ucnbug.c
messages: 416432
nosy: christian.heimes, lukasz.langa, pablogsal, vstinner
priority: high
severity: normal
status: open
title: _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer
type: crash
versions: Python 3.10, Python 3.11, Python 3.7, Python 3.8, Python 3.9
Added file: https://bugs.python.org/file50708/ucnbug.c

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

[issue47182] _PyUnicode_Fini should invalidate ucnhash_capi capsule pointer

8 matches

Site Navigation

Mail list logo

Footer information