Message 384865 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	kalekundert
Recipients	kalekundert
Date	2021-01-11.21:12:27
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1610399547.98.0.314580970043.issue42898@roundup.psfhosted.org>
In-reply-to

Content
I expect `pickle.loads()` to raise `_pickle.UnpicklingError` for any invalid input, but for the specific example shown below, the interpreter crashes after attempting to allocate >16GB of memory. Note that this input does not have the pickle header (b'0x80'), so it should be easy to distinguish from valid input. $ python Python 3.8.2 (default, Apr 13 2020, 11:02:04) [Clang 9.0.1 ] on linux Type "help", "copyright", "credits" or "license" for more information. >>> import pickle >>> pickle.loads(b'January 11') [1] 624227 killed python3

I expect `pickle.loads()` to raise `_pickle.UnpicklingError` for any invalid input, but for the specific example shown below, the interpreter crashes after attempting to allocate >16GB of memory.  Note that this input does not have the pickle header (b'0x80'), so it should be easy to distinguish from valid input.

$ python
Python 3.8.2 (default, Apr 13 2020, 11:02:04) 
[Clang 9.0.1 ] on linux
Type "help", "copyright", "credits" or "license" for more information.
>>> import pickle
>>> pickle.loads(b'January 11')
[1]    624227 killed     python3

History
Date	User	Action	Args
2021-01-11 21:12:28	kalekundert	set	recipients: + kalekundert
2021-01-11 21:12:27	kalekundert	set	messageid: <1610399547.98.0.314580970043.issue42898@roundup.psfhosted.org>
2021-01-11 21:12:27	kalekundert	link	issue42898 messages
2021-01-11 21:12:27	kalekundert	create