Issue 1697916: Segfaults on memory error (original) (raw)
Issue1697916
➜
This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.
This issue has been migrated to GitHub: https://github.com/python/cpython/issues/44826
classification
| Title: | Segfaults on memory error | ||
|---|---|---|---|
| Type: | Stage: | ||
| Components: | Interpreter Core | Versions: | Python 2.5 |
process
| Status: | closed | Resolution: | fixed |
|---|---|---|---|
| Dependencies: | Superseder: | ||
| Assigned To: | georg.brandl | Nosy List: | georg.brandl, vstinner |
| Priority: | high | Keywords: |
Created on 2007-04-10 19:47 by vstinner, last changed 2022-04-11 14:56 by admin. This issue is now closed.
| Files | |||
|---|---|---|---|
| File name | Uploaded | Description | Edit |
| python_segfault.patch | vstinner,2007-04-10 19:47 | Patch for three errors |
| Messages (5) | ||
|---|---|---|
| msg31750 - (view) | Author: STINNER Victor (vstinner) *  |
Date: 2007-04-10 19:47 |
| Hi, I'm playing with resource.setrlimit(resource.RLIMIT_AS) to limit memory usage during fuzzing tests. It works quite well but Python crashs sometimes (with SEGFAULT). I downloaded Python source code and recompiled it with EXTRA_FLAGS="-g -O0" to find errors. I found three bugs and wrote a patch for all of them. Comments: * Objects/exceptions.c:33: allocation may returns NULL on memory error * Objects/longobject.c:2511: long_divrem() may allocate new long integers but l_divmod() doesn't check that div and mod are not NULL * Objects/object.c:1284: problem with NULL mro. I don't understand how mro works, but I think that the error may be catched when mro is assigned. Problem: where is it done? in Objects/typeobject.c? So don't apply my patch directly: fix for object.c may be wrong. | ||
| msg31751 - (view) | Author: Georg Brandl (georg.brandl) * |
Date: 2007-04-11 16:11 |
| Status update: Fixed the first two bugs locally, and a third one discovered by Victor on #python-dev. The mro one is unclear -- we've asked him to reproduce it and poke around in gdb to see why tp_mro is NULL, which it shouldn't be. | ||
| msg31752 - (view) | Author: STINNER Victor (vstinner) * |
Date: 2007-04-11 16:53 |
| Ignore my bug about NULL mro since i'm not able to reproduce it. Thanks for the 3 other fixes ;-) | ||
| msg31753 - (view) | Author: Georg Brandl (georg.brandl) * |
Date: 2007-04-11 20:11 |
| Reopening until I can backport this to the 2.5 branch. | ||
| msg31754 - (view) | Author: Georg Brandl (georg.brandl) * |
Date: 2007-05-11 11:08 |
| Backported in rev 54902. |
| History | |||
|---|---|---|---|
| Date | User | Action | Args |
| 2022-04-11 14:56:23 | admin | set | github: 44826 |
| 2007-04-10 19:47:49 | vstinner | create |