gh-119182: Add checks to PyUnicodeWriter APIs (#120870)

author Victor Stinner <vstinner@python.org>

Sat, 22 Jun 2024 15:25:55 +0000 (17:25 +0200)

committer GitHub <noreply@github.com>

Sat, 22 Jun 2024 15:25:55 +0000 (17:25 +0200)
author Victor Stinner <vstinner@python.org>
Sat, 22 Jun 2024 15:25:55 +0000 (17:25 +0200)
committer GitHub <noreply@github.com>
Sat, 22 Jun 2024 15:25:55 +0000 (17:25 +0200)
diff --git a/Objects/unicodeobject.c b/Objects/unicodeobject.c

index 4c174cbc7510914e8f0c1e06cdb01b5b1658e0e0..279cdaa668e2914ae8df23f0a1d283c12f41a327 100644 (file)
--- a/Objects/unicodeobject.c
+++ b/Objects/unicodeobject.c
@@ -13347,6 +13347,12 @@ _PyUnicodeWriter_Init(_PyUnicodeWriter *writer)
  PyUnicodeWriter*
  PyUnicodeWriter_Create(Py_ssize_t length)
  {
+    if (length < 0) {
+        PyErr_SetString(PyExc_TypeError,
+                        "length must be positive");
+        return NULL;
+    }
+
      const size_t size = sizeof(_PyUnicodeWriter);
      PyUnicodeWriter *pub_writer = (PyUnicodeWriter *)PyMem_Malloc(size);
      if (pub_writer == NULL) {
@@ -13390,6 +13396,7 @@ _PyUnicodeWriter_PrepareInternal(_PyUnicodeWriter *writer,
      Py_ssize_t newlen;
      PyObject *newbuffer;
  
+    assert(length >= 0);
      assert(maxchar <= MAX_UNICODE);
  
      /* ensure that the _PyUnicodeWriter_Prepare macro was used */
@@ -13501,6 +13508,12 @@ _PyUnicodeWriter_WriteChar(_PyUnicodeWriter *writer, Py_UCS4 ch)
  int
  PyUnicodeWriter_WriteChar(PyUnicodeWriter *writer, Py_UCS4 ch)
  {
+    if (ch > MAX_UNICODE) {
+        PyErr_SetString(PyExc_ValueError,
+                        "character must be in range(0x110000)");
+        return -1;
+    }
+
      return _PyUnicodeWriter_WriteChar((_PyUnicodeWriter*)writer, ch);
  }
author	Victor Stinner <vstinner@python.org>
	Sat, 22 Jun 2024 15:25:55 +0000 (17:25 +0200)
committer	GitHub <noreply@github.com>
	Sat, 22 Jun 2024 15:25:55 +0000 (17:25 +0200)