Message 32765 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	tmick
Recipients
Date	2000-06-07.03:21:52
SpamBayes Score
Marked as misclassified
Message-id
In-reply-to

Content
Various small fixes to the builtin module to ensure no buffer overflows. - chunk #1: Proper casting to ensure no truncation, and hence no surprises, in the comparison. - chunk #2: The id() function guarantees a unique return value for different objects. It does this by returning the pointer to the object. By returning a PyInt, on Win64 (sizeof(long) < sizeof(void)) the pointer is truncated and the guarantee may be proven false. The appropriate return function is PyLong_FromVoidPtr, this returns a PyLong if that is necessary to return the pointer without truncation. - chunk #3: Ensure no overflow in raw_input(). Granted the user would have to pass in >2GB of data but it is* a possible buffer overflow condition.

Various small fixes to the builtin module to ensure no buffer overflows.

- chunk #1:
  Proper casting to ensure no truncation, and hence no surprises, in the
  comparison.

- chunk #2:
  The id() function guarantees a unique return value for different objects.
  It does this by returning the pointer to the object. By returning a PyInt,
  on Win64 (sizeof(long) < sizeof(void*)) the pointer is truncated and the
  guarantee may be proven false. The appropriate return function is
  PyLong_FromVoidPtr, this returns a PyLong if that is necessary to return
  the pointer without truncation.

- chunk #3:
  Ensure no overflow in raw_input(). Granted the user would have to pass in
  >2GB of data but it *is* a possible buffer overflow condition.

History
Date	User	Action	Args
2007-08-23 14:59:32	admin	link	issue400518 messages
2007-08-23 14:59:32	admin	create