to detect usage of uninitialized objects.
* Ensure that functions which can clear or replace the current exception are
not called with an exception raised.
+ * Check that deallocator functions don't change the current exception.
* The garbage collector (:func:`gc.collect` function) runs some basic checks
on objects consistency.
* The :c:macro:`Py_SAFE_DOWNCAST()` macro checks for integer underflow and
del subclass_instance
# Test that setting __class__ modified the reference counts of the types
- self.assertEqual(type_refcnt - 1, B.refcnt_in_del)
+ if Py_DEBUG:
+ # gh-89373: In debug mode, _Py_Dealloc() keeps a strong reference
+ # to the type while calling tp_dealloc()
+ self.assertEqual(type_refcnt, B.refcnt_in_del)
+ else:
+ self.assertEqual(type_refcnt - 1, B.refcnt_in_del)
self.assertEqual(new_type_refcnt + 1, A.refcnt_in_del)
# Test that the original type already has decreased its refcnt
del subclass_instance
# Test that setting __class__ modified the reference counts of the types
- self.assertEqual(type_refcnt - 1, _testcapi.HeapCTypeSubclassWithFinalizer.refcnt_in_del)
+ if Py_DEBUG:
+ # gh-89373: In debug mode, _Py_Dealloc() keeps a strong reference
+ # to the type while calling tp_dealloc()
+ self.assertEqual(type_refcnt, _testcapi.HeapCTypeSubclassWithFinalizer.refcnt_in_del)
+ else:
+ self.assertEqual(type_refcnt - 1, _testcapi.HeapCTypeSubclassWithFinalizer.refcnt_in_del)
self.assertEqual(new_type_refcnt + 1, _testcapi.HeapCTypeSubclass.refcnt_in_del)
# Test that the original type already has decreased its refcnt
--- /dev/null
+If Python is built in debug mode, Python now ensures that deallocator
+functions leave the current exception unchanged. Patch by Victor Stinner.
void
_Py_Dealloc(PyObject *op)
{
- destructor dealloc = Py_TYPE(op)->tp_dealloc;
+ PyTypeObject *type = Py_TYPE(op);
+ destructor dealloc = type->tp_dealloc;
+#ifdef Py_DEBUG
+ PyThreadState *tstate = _PyThreadState_GET();
+ PyObject *old_exc_type = tstate->curexc_type;
+ // Keep the old exception type alive to prevent undefined behavior
+ // on (tstate->curexc_type != old_exc_type) below
+ Py_XINCREF(old_exc_type);
+ // Make sure that type->tp_name remains valid
+ Py_INCREF(type);
+#endif
+
#ifdef Py_TRACE_REFS
_Py_ForgetReference(op);
#endif
(*dealloc)(op);
+
+#ifdef Py_DEBUG
+ // gh-89373: The tp_dealloc function must leave the current exception
+ // unchanged.
+ if (tstate->curexc_type != old_exc_type) {
+ const char *err;
+ if (old_exc_type == NULL) {
+ err = "Deallocator of type '%s' raised an exception";
+ }
+ else if (tstate->curexc_type == NULL) {
+ err = "Deallocator of type '%s' cleared the current exception";
+ }
+ else {
+ // It can happen if dealloc() normalized the current exception.
+ // A deallocator function must not change the current exception,
+ // not even normalize it.
+ err = "Deallocator of type '%s' overrode the current exception";
+ }
+ _Py_FatalErrorFormat(__func__, err, type->tp_name);
+ }
+ Py_XDECREF(old_exc_type);
+ Py_DECREF(type);
+#endif
}
projects / thirdparty / Python / cpython.git / commitdiff
