Message 412972 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	anthonypjshaw
Recipients	anthonypjshaw, lys.nikolaou, pablogsal
Date	2022-02-10.03:00:43
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1644462043.51.0.510568323188.issue46707@roundup.psfhosted.org>
In-reply-to

Content
Providing an (invalid) input to the parser causes an exponentially-slow DoS to the Python executable in 3.10. e.g. python3.10 -c "{{{{{{{{{{{{{{{{{{{{{:" takes ~2 seconds python3.10 -c "{{{{{{{{{{{{{{{{{{{{{{{{:" takes ~22 seconds Tested this all the way up to d{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{```{{{{{{{ef f():y which took over an hour

Providing an (invalid) input to the parser causes an exponentially-slow DoS to the Python executable in 3.10.

e.g.

python3.10 -c "{{{{{{{{{{{{{{{{{{{{{:"

takes ~2 seconds

python3.10 -c "{{{{{{{{{{{{{{{{{{{{{{{{:"

takes ~22 seconds

Tested this all the way up to 
d{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{{```{{{{{{{ef f():y

which took over an hour

History
Date	User	Action	Args
2022-02-10 03:00:43	anthonypjshaw	set	recipients: + anthonypjshaw, lys.nikolaou, pablogsal
2022-02-10 03:00:43	anthonypjshaw	set	messageid: <1644462043.51.0.510568323188.issue46707@roundup.psfhosted.org>
2022-02-10 03:00:43	anthonypjshaw	link	issue46707 messages
2022-02-10 03:00:43	anthonypjshaw	create