Skip to content

bpo-41631: Check that importing _ast returns the right module #21973

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
encukou wants to merge 4 commits into from
Closed

bpo-41631: Check that importing _ast returns the right module #21973

encukou wants to merge 4 commits into from

Conversation

@encukou
Copy link
Member

@encukou encukou commented Aug 26, 2020
edited
Loading

Hopefully #21961 will be OK, but if not: here is a relatively minimal fix for bpo-41631, which basically makes compiling to/from AST fail gracefully (with a proper exception rather than a NULL without exception) if the _ast module has been tampered with.
For example, it looks like Mercurial's lazy-loading scheme replaces _astwith a proxy object; this will make AST unusable.

The second commit deals with a hack in pegen's tests – please review the commits separately, and see comments.

https://bugs.python.org/issue41631

@encukou
Copy link
Member Author

encukou commented Sep 8, 2020

@pablogsal, does this make sense for peg_generator? (Keeping in mind this would be a last-minute fix for 3.9, with a better solution hopefully coming in 3.10.)

@pablogsal
Copy link
Member

pablogsal commented Sep 8, 2020

@pablogsal, does this make sense for peg_generator? (Keeping in mind this would be a last-minute fix for 3.9, with a better solution hopefully coming in 3.10.)

Yup, it does sense to me as a temporary solution 👍

pablogsal
pablogsal reviewed Sep 8, 2020
View reviewed changes
encukou and others added 2 commits September 9, 2020 10:38
@encukou @pablogsal
Update Tools/peg_generator/pegen/build.py
be66256 
Co-authored-by: Pablo Galindo <[email protected]>
@encukou
Don't mention "segfault" from the blurb
a95c6f7 
The previous behavior didn't always segfault -- in fact, it usually
raised a SystemError as well. A segfault (or any other behavior,
depending on the module object imported as _ast) was still *possible*,
but for that level of detail people should see the bpo issue.
@encukou encukou requested a review from vstinner September 10, 2020 13:11
@vstinner vstinner mentioned this pull request Sep 11, 2020
Merged
@vstinner
Copy link
Member

vstinner commented Sep 16, 2020

Thanks for the workaround. PR 21961 fix has been merged instead.

@vstinner vstinner closed this Sep 16, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pablogsal pablogsal pablogsal approved these changes

@lysnikolaou lysnikolaou Awaiting requested review from lysnikolaou

@vstinner vstinner Awaiting requested review from vstinner

Assignees

No one assigned

Labels

awaiting merge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@encukou @pablogsal @vstinner @the-knights-who-say-ni @bedevere-bot