diff options
| author | Mark Shannon <mark@hotpy.org> | 2022-09-06 15:45:43 (GMT) |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-09-06 15:45:43 (GMT) |
| commit | 222f10ca2d01c86fa2c53c2edd6884f117324297 (patch) | |
| tree | c20d440c56d7dcb87c3c083dc737d0443c22b1b3 | |
| parent | cd0ff9bd14d6a60e841d10f8415827db556ae622 (diff) | |
| download | cpython-222f10ca2d01c86fa2c53c2edd6884f117324297.zip cpython-222f10ca2d01c86fa2c53c2edd6884f117324297.tar.gz cpython-222f10ca2d01c86fa2c53c2edd6884f117324297.tar.bz2 | |
GH-96569: Add two NULL checks to avoid undefined behavior. (GH-96585)
| -rw-r--r-- | Include/internal/pycore_frame.h | 9 | ||||
| -rw-r--r-- | Misc/NEWS.d/next/Core and Builtins/2022-09-05-16-43-44.gh-issue-96569.9lmTCC.rst | 1 | ||||
| -rw-r--r-- | Python/pystate.c | 13 |
3 files changed, 13 insertions, 10 deletions
diff --git a/Include/internal/pycore_frame.h b/Include/internal/pycore_frame.h index decaafd..5bd0a7f 100644 --- a/Include/internal/pycore_frame.h +++ b/Include/internal/pycore_frame.h @@ -190,11 +190,16 @@ _PyFrame_FastToLocalsWithError(_PyInterpreterFrame *frame); void _PyFrame_LocalsToFast(_PyInterpreterFrame *frame, int clear); - static inline bool _PyThreadState_HasStackSpace(PyThreadState *tstate, int size) { - return tstate->datastack_top + size < tstate->datastack_limit; + assert( + (tstate->datastack_top == NULL && tstate->datastack_limit == NULL) + || + (tstate->datastack_top != NULL && tstate->datastack_limit != NULL) + ); + return tstate->datastack_top != NULL && + size < tstate->datastack_limit - tstate->datastack_top; } extern _PyInterpreterFrame * diff --git a/Misc/NEWS.d/next/Core and Builtins/2022-09-05-16-43-44.gh-issue-96569.9lmTCC.rst b/Misc/NEWS.d/next/Core and Builtins/2022-09-05-16-43-44.gh-issue-96569.9lmTCC.rst new file mode 100644 index 0000000..4734d3d --- /dev/null +++ b/Misc/NEWS.d/next/Core and Builtins/2022-09-05-16-43-44.gh-issue-96569.9lmTCC.rst @@ -0,0 +1 @@ +Remove two cases of undefined behavoir, by adding NULL checks. diff --git a/Python/pystate.c b/Python/pystate.c index a11f162..1c96f4f 100644 --- a/Python/pystate.c +++ b/Python/pystate.c @@ -2195,15 +2195,12 @@ _PyInterpreterFrame * _PyThreadState_PushFrame(PyThreadState *tstate, size_t size) { assert(size < INT_MAX/sizeof(PyObject *)); - PyObject **base = tstate->datastack_top; - PyObject **top = base + size; - if (top >= tstate->datastack_limit) { - base = push_chunk(tstate, (int)size); + if (_PyThreadState_HasStackSpace(tstate, (int)size)) { + _PyInterpreterFrame *res = (_PyInterpreterFrame *)tstate->datastack_top; + tstate->datastack_top += size; + return res; } - else { - tstate->datastack_top = top; - } - return (_PyInterpreterFrame *)base; + return (_PyInterpreterFrame *)push_chunk(tstate, (int)size); } void |