[issue27581] Fix overflow check in PySequence_Tuple
Martin Panter
report at bugs.python.org
Sun Jul 24 02:31:22 EDT 2016
Martin Panter added the comment:
I don’t accept that the bltinmodule.c code is similar to your patch. It gets a size_t from calling strlen() on a string that potentially comes from outside Python, so it is definitely valid to check for PY_SSIZE_T_MAX.
However I did find PyByteArray_Resize() (revision 1590c594550e), where this technique of calculating in size_t and then checking for overflow is used. And also in your favour is the definition in Include/pyport.h which currently guarantees size_t can store up to double PY_SSIZE_T_MAX:
/* Largest positive value of type Py_ssize_t. */
#define PY_SSIZE_T_MAX ((Py_ssize_t)(((size_t)-1)>>1))
So I am convinced there should be no real problem with your patch.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue27581>
_______________________________________
More information about the Python-bugs-list
mailing list