Skip to content

gh-139400: Make sure that parent parsers outlive their subparsers in pyexpat#139403

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
picnixz merged 22 commits into from
Oct 5, 2025
Merged

gh-139400: Make sure that parent parsers outlive their subparsers in pyexpat#139403

picnixz merged 22 commits into from
Oct 5, 2025

Conversation

@hartwork
Copy link
Contributor

@hartworkhartwork commented Sep 28, 2025
edited by bedevere-app bot
Loading

@hartwork
pyexpat.c: Disallow collection of in-use parent parsers
e1c0470
Within libexpat, a parser created via XML_ExternalEntityParserCreate is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected by CPython. This fixes related reference counting, to stop that from happening.
@hartwork
Add a regression test for issue 139400
3b0afda
@hartwork
Add news item for issue 139400
8f70991
@bedevere-appbedevere-appbot mentioned this pull request Sep 28, 2025
Closed
@picnixzpicnixz self-requested a review September 28, 2025 22:45
picnixz
picnixz reviewed Sep 28, 2025
View reviewed changes
Copy link
Member

@picnixzpicnixz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Now, this looks like Tcl/Tk and their callbacks. If you want to check for reference leaks, you should also run the tests with -R (python -m test -R the_test)

@hartwork
Copy link
ContributorAuthor

hartwork commented Sep 28, 2025

Now, this looks like Tcl/Tk and their callbacks.

@picnixz I'm not sure what that means 😃

If you want to check for reference leaks, you should also run the tests with -R (python -m test -R the_test)

I cannot figure out why or what to do with python -m test -R the_test. Could you spell it out for me? 🙏

@picnixz
Copy link
Member

picnixz commented Sep 28, 2025

I cannot figure out why or what to do with python -m test -R the_test. Could you spell it out for me? 🙏

Sorry, to be precise the -R : option checks if there are reference leaks. In your case run:

$ ./python -m test test_pyexpat -m test_parent_parser_outlives_its_subparsers -R :

@picnixz
Copy link
Member

picnixz commented Sep 28, 2025
edited
Loading

I'm not sure what that means

Tcl/Tk is a graphic library that allows to have delayed callbacks and the callback data is the Python object. Here, for Expat, the handler data is the XML parser itself as well. I wanted to make a parallel between those two constructions.

picnixz
picnixz reviewed Sep 28, 2025
View reviewed changes
Copy link
Member

@picnixzpicnixz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm a bit tired (it's 01:33 AM here) so the review might not be perfect. I'll have another look tomorrow.

@hartwork
Copy link
ContributorAuthor

hartwork commented Sep 28, 2025

I cannot figure out why or what to do with python -m test -R the_test. Could you spell it out for me? 🙏

Sorry, to be precise the -R : option checks if there are reference leaks. In your case run:

$ ./python -m test test_pyexpat -m test_parent_parser_outlives_its_subparsers -R :

@picnixz after a recompile with --with-pydebug that worked — thank you! 🙏

@hartwork
Copy link
ContributorAuthor

hartwork commented Sep 28, 2025

I'm a bit tired (it's 01:33 AM here) so the review might not be perfect. I'll have another look tomorrow.

@picnixz no worries, same UTC+2 here. Thank you! 👍 👍

@hartwork
Copy link
ContributorAuthor

hartwork commented Sep 28, 2025

Related: libexpat/libexpat#1066

picnixz
picnixz reviewed Sep 29, 2025
View reviewed changes
@hartworkhartwork mentioned this pull request Sep 30, 2025
Merged
picnixz
picnixz reviewed Sep 30, 2025
View reviewed changes
@picnixz
Copy link
Member

picnixz commented Oct 5, 2025

Lucky me, 3.14 has a clean backport :)

@picnixz
Copy link
Member

picnixz commented Oct 5, 2025

@hartwork Could you make the backports for 3.10-3.13 please? I'm not on my dev session now (sorry for bothering you with this).

@hartwork
Copy link
ContributorAuthor

hartwork commented Oct 5, 2025

@picnixz thanks for your help getting this over the finish line 🙏 🎉 I can look into the backports for this and report back if I hit any roadblocks.

@picnixz
Copy link
Member

picnixz commented Oct 5, 2025

Thank you for writing libexpat :')

hartwork added a commit to hartwork/cpython that referenced this pull request Oct 5, 2025
@hartwork
pythongh-139400: Make sure that parent parsers outlive their subparse…
ae0a3c3
…rs in `pyexpat` (python#139403) * Modules/pyexpat.c: Disallow collection of in-use parent parsers. Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd)
@bedevere-app
Copy link

bedevere-appbot commented Oct 5, 2025

GH-139608 is a backport of this pull request to the 3.13 branch.

@bedevere-appbedevere-appbot removed the needs backport to 3.13 bugs and security fixes label Oct 5, 2025
hugovk pushed a commit that referenced this pull request Oct 5, 2025
@miss-islington@hartwork
[3.14]gh-139400: Make sure that parent parsers outlive their subpars…
66ca0d9
…ers in `pyexpat` (GH-139403) (#139606) Co-authored-by: Sebastian Pipping <sebastian@pipping.org>
hartwork added a commit to hartwork/cpython that referenced this pull request Oct 5, 2025
@hartwork
pythongh-139400: Make sure that parent parsers outlive their subparse…
65730f3
…rs in `pyexpat` (python#139403) * Modules/pyexpat.c: Disallow collection of in-use parent parsers. Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd)
@bedevere-app
Copy link

bedevere-appbot commented Oct 5, 2025

GH-139609 is a backport of this pull request to the 3.12 branch.

@bedevere-appbedevere-appbot removed the needs backport to 3.12 only security fixes label Oct 5, 2025
hartwork added a commit to hartwork/cpython that referenced this pull request Oct 5, 2025
@hartwork
pythongh-139400: Make sure that parent parsers outlive their subparse…
37f71cb
…rs in `pyexpat` (python#139403) * Modules/pyexpat.c: Disallow collection of in-use parent parsers. Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd)
@bedevere-app
Copy link

bedevere-appbot commented Oct 5, 2025

GH-139612 is a backport of this pull request to the 3.11 branch.

@bedevere-appbedevere-appbot removed the needs backport to 3.11 only security fixes label Oct 5, 2025
@bedevere-app
Copy link

bedevere-appbot commented Oct 5, 2025

GH-139608 is a backport of this pull request to the 3.13 branch.

@bedevere-app
Copy link

bedevere-appbot commented Oct 5, 2025

GH-139609 is a backport of this pull request to the 3.12 branch.

@bedevere-app
Copy link

bedevere-appbot commented Oct 5, 2025

GH-139612 is a backport of this pull request to the 3.11 branch.

hartwork added a commit to hartwork/cpython that referenced this pull request Oct 5, 2025
@hartwork
pythongh-139400: Make sure that parent parsers outlive their subparse…
135a66e
…rs in `pyexpat` (python#139403) * Modules/pyexpat.c: Disallow collection of in-use parent parsers. Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd)
@bedevere-app
Copy link

bedevere-appbot commented Oct 5, 2025

GH-139613 is a backport of this pull request to the 3.10 branch.

@bedevere-appbedevere-appbot removed the needs backport to 3.10 only security fixes label Oct 5, 2025
hartwork added a commit to hartwork/cpython that referenced this pull request Oct 5, 2025
@hartwork
pythongh-139400: Make sure that parent parsers outlive their subparse…
3334e29
…rs in `pyexpat` (python#139403) * Modules/pyexpat.c: Disallow collection of in-use parent parsers. Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd)
@bedevere-app
Copy link

bedevere-appbot commented Oct 5, 2025

GH-139614 is a backport of this pull request to the 3.9 branch.

encukou pushed a commit that referenced this pull request Oct 6, 2025
@hartwork
[3.13]gh-139400: Make sure that parent parsers outlive their subpars…
69ab8fb
…ers in `pyexpat` (GH-139403) (GH-139608) Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd)
@hartworkhartwork mentioned this pull request Oct 6, 2025
Merged
pablogsal pushed a commit that referenced this pull request Oct 6, 2025
@hartwork
[3.11]gh-139400: Make sure that parent parsers outlive their subpars…
1459d1f
…ers in `pyexpat` (GH-139403) (#139612) * gh-139400: Make sure that parent parsers outlive their subparsers in `pyexpat` (#139403) * Modules/pyexpat.c: Disallow collection of in-use parent parsers. Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd) * Move news item from section "Core and Builtins" to section "Security"
pablogsal pushed a commit that referenced this pull request Oct 6, 2025
@hartwork
[3.10]gh-139400: Make sure that parent parsers outlive their subpars…
8ea678d
…ers in `pyexpat` (GH-139403) (#139613) * gh-139400: Make sure that parent parsers outlive their subparsers in `pyexpat` (#139403) * Modules/pyexpat.c: Disallow collection of in-use parent parsers. Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd) * Move news item to from section "Core and Builtins" to section "Security"
@bedevere-bot
Copy link

bedevere-bot commented Oct 7, 2025

⚠️⚠️⚠️ Buildbot failure ⚠️⚠️⚠️

Hi! The buildbot AMD64 Fedora Stable Refleaks 3.11 (tier-1) has failed when building commit 1459d1f.

What do you need to do:

  1. Don't panic.
  2. Check the buildbot page in the devguide if you don't know what the buildbots are or how they work.
  3. Go to the page of the buildbot that failed (https://buildbot.python.org/#/builders/1027/builds/823) and take a look at the build logs.
  4. Check if the failure is related to this commit (1459d1f) or if it is a false positive.
  5. If the failure is related to this commit, please, reflect that on the issue and make a new Pull Request with a fix.

You can take a look at the buildbot page here:

https://buildbot.python.org/#/builders/1027/builds/823

Failed tests:

  • test_socket

Failed subtests:

  • test_aead_aes_gcm - test.test_socket.LinuxKernelCryptoAPI.test_aead_aes_gcm

Summary of the results of the build (if available):

==

Click to see traceback logs
Traceback (most recent call last): File "/home/buildbot/buildarea/3.11.cstratak-fedora-stable-x86_64.refleak/build/Lib/test/test_socket.py", line 6557, in test_aead_aes_gcm op.sendall(plain) OSError: [Errno 22] Invalid argument

danigm pushed a commit to openSUSE-Python/cpython that referenced this pull request Oct 7, 2025
@hartwork@danigm
pythongh-139400: Make sure that parent parsers outlive their subparse…
4e450d1
…rs in `pyexpat` (python#139403) * Modules/pyexpat.c: Disallow collection of in-use parent parsers. Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early.
ambv pushed a commit that referenced this pull request Oct 7, 2025
@hartwork
[3.9]gh-139400: Make sure that parent parsers outlive their subparse…
598165e
…rs in `pyexpat` (GH-139403) (GH-139614) Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd)
ambv pushed a commit that referenced this pull request Oct 7, 2025
@hartwork
[3.12]gh-139400: Make sure that parent parsers outlive their subpars…
dea7e3d
…ers in `pyexpat` (GH-139403) (GH-139609) Within libexpat, a parser created via `XML_ExternalEntityParserCreate` is relying on its parent parser throughout its entire lifetime. Prior to this fix, is was possible for the parent parser to be garbage-collected too early. (cherry picked from commit 6edb2dd)
Sign up for freeto join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@picnixzpicnixzpicnixz approved these changes

@ZeroIntensityZeroIntensityZeroIntensity left review comments

Assignees

@picnixzpicnixz

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@hartwork@picnixz@hugovk@bedevere-bot@ZeroIntensity