mirror of https://github.com/python/cpython
[3.13] gh-123431: Harmonize extension code checks in pickle (GH-123434) (#123459)
gh-123431: Harmonize extension code checks in pickle (GH-123434)
This checks are redundant in normal circumstances and can only work if
the extension registry was intentionally broken.
* The Python implementation now raises exception for the extension code
with false boolean value.
* Simplify the C code. RuntimeError is now raised in explicit checks.
* Add many tests.
(cherry picked from commit 0c3ea30238)
Co-authored-by: Serhiy Storchaka <storchaka@gmail.com>
This commit is contained in:
Miss Islington (bot)
GitHub
parent
5c408e333d
commit
ab29053784
|
|
@ -1093,11 +1093,16 @@ class _Pickler:
|
||||||
(obj, module_name, name))
|
(obj, module_name, name))
|
||||||
|
|
||||||
if self.proto >= 2:
|
if self.proto >= 2:
|
||||||
code = _extension_registry.get((module_name, name))
|
code = _extension_registry.get((module_name, name), _NoValue)
|
||||||
if code:
|
if code is not _NoValue:
|
||||||
assert code > 0
|
|
||||||
if code <= 0xff:
|
if code <= 0xff:
|
||||||
write(EXT1 + pack("<B", code))
|
data = pack("<B", code)
|
||||||
|
if data == b'\0':
|
||||||
|
# Should never happen in normal circumstances,
|
||||||
|
# since the type and the value of the code are
|
||||||
|
# checked in copyreg.add_extension().
|
||||||
|
raise RuntimeError("extension code 0 is out of range")
|
||||||
|
write(EXT1 + data)
|
||||||
elif code <= 0xffff:
|
elif code <= 0xffff:
|
||||||
write(EXT2 + pack("<H", code))
|
write(EXT2 + pack("<H", code))
|
||||||
else:
|
else:
|
||||||
|
|
@ -1591,9 +1596,8 @@ class _Unpickler:
|
||||||
dispatch[EXT4[0]] = load_ext4
|
dispatch[EXT4[0]] = load_ext4
|
||||||
|
|
||||||
def get_extension(self, code):
|
def get_extension(self, code):
|
||||||
nil = []
|
obj = _extension_cache.get(code, _NoValue)
|
||||||
obj = _extension_cache.get(code, nil)
|
if obj is not _NoValue:
|
||||||
if obj is not nil:
|
|
||||||
self.append(obj)
|
self.append(obj)
|
||||||
return
|
return
|
||||||
key = _inverted_registry.get(code)
|
key = _inverted_registry.get(code)
|
||||||
|
|
|
||||||
|
|
@ -1297,6 +1297,35 @@ class AbstractUnpickleTests:
|
||||||
self.assertEqual(loads(b'cmath\nlog\n.'), ('math', 'log'))
|
self.assertEqual(loads(b'cmath\nlog\n.'), ('math', 'log'))
|
||||||
self.assertEqual(loads(b'\x8c\x04math\x8c\x03log\x93.'), ('math', 'log'))
|
self.assertEqual(loads(b'\x8c\x04math\x8c\x03log\x93.'), ('math', 'log'))
|
||||||
|
|
||||||
|
def test_bad_ext_code(self):
|
||||||
|
# unregistered extension code
|
||||||
|
self.check_unpickling_error(ValueError, b'\x82\x01.')
|
||||||
|
self.check_unpickling_error(ValueError, b'\x82\xff.')
|
||||||
|
self.check_unpickling_error(ValueError, b'\x83\x01\x00.')
|
||||||
|
self.check_unpickling_error(ValueError, b'\x83\xff\xff.')
|
||||||
|
self.check_unpickling_error(ValueError, b'\x84\x01\x00\x00\x00.')
|
||||||
|
self.check_unpickling_error(ValueError, b'\x84\xff\xff\xff\x7f.')
|
||||||
|
# EXT specifies code <= 0
|
||||||
|
self.check_unpickling_error(pickle.UnpicklingError, b'\x82\x00.')
|
||||||
|
self.check_unpickling_error(pickle.UnpicklingError, b'\x83\x00\x00.')
|
||||||
|
self.check_unpickling_error(pickle.UnpicklingError, b'\x84\x00\x00\x00\x00.')
|
||||||
|
self.check_unpickling_error(pickle.UnpicklingError, b'\x84\x00\x00\x00\x80.')
|
||||||
|
self.check_unpickling_error(pickle.UnpicklingError, b'\x84\xff\xff\xff\xff.')
|
||||||
|
|
||||||
|
@support.cpython_only
|
||||||
|
def test_bad_ext_inverted_registry(self):
|
||||||
|
code = 1
|
||||||
|
def check(key, exc):
|
||||||
|
with support.swap_item(copyreg._inverted_registry, code, key):
|
||||||
|
with self.assertRaises(exc):
|
||||||
|
self.loads(b'\x82\x01.')
|
||||||
|
check(None, ValueError)
|
||||||
|
check((), ValueError)
|
||||||
|
check((__name__,), (TypeError, ValueError))
|
||||||
|
check((__name__, "MyList", "x"), (TypeError, ValueError))
|
||||||
|
check((__name__, None), (TypeError, ValueError))
|
||||||
|
check((None, "MyList"), (TypeError, ValueError))
|
||||||
|
|
||||||
def test_bad_reduce(self):
|
def test_bad_reduce(self):
|
||||||
self.assertEqual(self.loads(b'cbuiltins\nint\n)R.'), 0)
|
self.assertEqual(self.loads(b'cbuiltins\nint\n)R.'), 0)
|
||||||
self.check_unpickling_error(TypeError, b'N)R.')
|
self.check_unpickling_error(TypeError, b'N)R.')
|
||||||
|
|
@ -2031,6 +2060,28 @@ class AbstractPicklingErrorTests:
|
||||||
check({Clearer(): 1, Clearer(): 2})
|
check({Clearer(): 1, Clearer(): 2})
|
||||||
check({1: Clearer(), 2: Clearer()})
|
check({1: Clearer(), 2: Clearer()})
|
||||||
|
|
||||||
|
@support.cpython_only
|
||||||
|
def test_bad_ext_code(self):
|
||||||
|
# This should never happen in normal circumstances, because the type
|
||||||
|
# and the value of the extesion code is checked in copyreg.add_extension().
|
||||||
|
key = (__name__, 'MyList')
|
||||||
|
def check(code, exc):
|
||||||
|
assert key not in copyreg._extension_registry
|
||||||
|
assert code not in copyreg._inverted_registry
|
||||||
|
with (support.swap_item(copyreg._extension_registry, key, code),
|
||||||
|
support.swap_item(copyreg._inverted_registry, code, key)):
|
||||||
|
for proto in protocols[2:]:
|
||||||
|
with self.assertRaises(exc):
|
||||||
|
self.dumps(MyList, proto)
|
||||||
|
|
||||||
|
check(object(), TypeError)
|
||||||
|
check(None, TypeError)
|
||||||
|
check(-1, (RuntimeError, struct.error))
|
||||||
|
check(0, RuntimeError)
|
||||||
|
check(2**31, (RuntimeError, OverflowError, struct.error))
|
||||||
|
check(2**1000, (OverflowError, struct.error))
|
||||||
|
check(-2**1000, (OverflowError, struct.error))
|
||||||
|
|
||||||
|
|
||||||
class AbstractPickleTests:
|
class AbstractPickleTests:
|
||||||
# Subclass must define self.dumps, self.loads.
|
# Subclass must define self.dumps, self.loads.
|
||||||
|
|
|
||||||
|
|
@ -3663,34 +3663,24 @@ save_global(PickleState *st, PicklerObject *self, PyObject *obj,
|
||||||
if (extension_key == NULL) {
|
if (extension_key == NULL) {
|
||||||
goto error;
|
goto error;
|
||||||
}
|
}
|
||||||
code_obj = PyDict_GetItemWithError(st->extension_registry,
|
if (PyDict_GetItemRef(st->extension_registry, extension_key, &code_obj) < 0) {
|
||||||
extension_key);
|
Py_DECREF(extension_key);
|
||||||
|
goto error;
|
||||||
|
}
|
||||||
Py_DECREF(extension_key);
|
Py_DECREF(extension_key);
|
||||||
/* The object is not registered in the extension registry.
|
|
||||||
This is the most likely code path. */
|
|
||||||
if (code_obj == NULL) {
|
if (code_obj == NULL) {
|
||||||
if (PyErr_Occurred()) {
|
/* The object is not registered in the extension registry.
|
||||||
goto error;
|
This is the most likely code path. */
|
||||||
}
|
|
||||||
goto gen_global;
|
goto gen_global;
|
||||||
}
|
}
|
||||||
|
|
||||||
/* XXX: pickle.py doesn't check neither the type, nor the range
|
code = PyLong_AsLong(code_obj);
|
||||||
of the value returned by the extension_registry. It should for
|
Py_DECREF(code_obj);
|
||||||
consistency. */
|
|
||||||
|
|
||||||
/* Verify code_obj has the right type and value. */
|
|
||||||
if (!PyLong_Check(code_obj)) {
|
|
||||||
PyErr_Format(st->PicklingError,
|
|
||||||
"Can't pickle %R: extension code %R isn't an integer",
|
|
||||||
obj, code_obj);
|
|
||||||
goto error;
|
|
||||||
}
|
|
||||||
code = PyLong_AS_LONG(code_obj);
|
|
||||||
if (code <= 0 || code > 0x7fffffffL) {
|
if (code <= 0 || code > 0x7fffffffL) {
|
||||||
|
/* Should never happen in normal circumstances, since the type and
|
||||||
|
the value of the code are checked in copyreg.add_extension(). */
|
||||||
if (!PyErr_Occurred())
|
if (!PyErr_Occurred())
|
||||||
PyErr_Format(st->PicklingError, "Can't pickle %R: extension "
|
PyErr_Format(PyExc_RuntimeError, "extension code %ld is out of range", code);
|
||||||
"code %ld is out of range", obj, code);
|
|
||||||
goto error;
|
goto error;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue