[issue9602] PyObject_AsCharBuffer() should only accept read-only objects

STINNER Victor report at bugs.python.org
Sat Aug 14 15:42:32 CEST 2010 

New submission from STINNER Victor <victor.stinner at haypocalc.com>:

mmap, buffer, bytearray, string and unicode objects set the char buffer callback (bf_getcharbuffer). The bytearray object sets also the release buffer callback (bf_releasebuffer).

In Python 2.7, PyObject_AsCharBuffer() accepts bytearray objects, whereas the "t#" format of PyArg_Parse functions rejects byte bytearray objects (expect an "pinned buffer object").

In Python 3.2, PyObject_AsCharBuffer() releases the buffer.

PyObject_AsCharBuffer() documentation (in 2.7 and 3.2) says that the function only accepts read-only objects.

Something is wrong here. If the caller doesn't hold a kind of lock, the object cannot be protected against futher modifications. The caller has to ensure that the object is not modifiable until it finishs to use the char* pointer.

I think that it would be safer to respect the documentation: PyObject_AsCharBuffer() should only accept read-only objects. The most important change is that functions using PyObject_AsCharBuffer() will not accept bytearray objects anymore.

Attached patch (for Python 2.7) changes PyObject_AsCharBuffer() to reject modifiable objects. It removes also the character buffer callback from the bytearray type. To avoid breaking compatibility too much, I patched int(), long() and float() to still support bytearray objects.

Examples of functions rejecting bytearray with the patch:
 - int(), long(), float(), complex()
 - many str methods: split, partition, rpartition, rsplit, index, find, count, translate, replace, startswith, endswith
 - writelines() of file objects (eg. sys.stdout.writelines)
 - writelines() method of a bz2 file

--

My patch breaks backward compatibility, and I don't know that it is acceptable in Python 2.7.

I will write a similar patch for Python 3.2.

----------
components: Interpreter Core
files: PyObject_AsCharBuffer-2.7.patch
keywords: patch
messages: 113895
nosy: haypo, pitrou
priority: normal
severity: normal
status: open
title: PyObject_AsCharBuffer() should only accept read-only objects
versions: Python 2.7, Python 3.2
Added file: http://bugs.python.org/file18523/PyObject_AsCharBuffer-2.7.patch

_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue9602>
_______________________________________

More information about the Python-bugs-list mailing list