Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fixed Python memory leak in map lookup. #14583

Merged
merged 1 commit into from
Nov 1, 2023
Merged

Fixed Python memory leak in map lookup. #14583

merged 1 commit into from
Nov 1, 2023
+24 −18

Conversation

haberman
Copy link
Member

@haberman haberman commented Nov 1, 2023

Previously we were allocating memory on the message's arena every time we performed a map[key] or map.get(key) operation. This is unnecessary, as the key's data is only needed ephemerally, for the duration of the lookup, and we can therefore alias the Python object's string data instead of copying it.

This required fixing a bug in the convert.c operation. Previously in the arena==NULL case, if the user passes a bytes object instead of a unicode string, the code would return a pointer to a temporary Python object that had already been freed, leading to use-after-free. I fixed this by referencing the bytes object's data directly, and using utf8_range to verify the UTF-8.

Fixes: #14571
PiperOrigin-RevId: 578563555

@haberman
Fixed Python memory leak in map lookup.
1711ebd 
Previously we were allocating memory on the message's arena every time we performed a `map[key]` or `map.get(key)` operation.  This is unnecessary, as the key's data is only needed ephemerally, for the duration of the lookup, and we can therefore alias the Python object's string data instead of copying it.

This required fixing a bug in the convert.c operation.  Previously in the `arena==NULL` case, if the user passes a bytes object instead of a unicode string, the code would return a pointer to a temporary Python object that had already been freed, leading to use-after-free.  I fixed this by referencing the bytes object's data directly, and using utf8_range to verify the UTF-8.

Fixes: protocolbuffers#14571
PiperOrigin-RevId: 578563555
@haberman haberman requested a review from a team as a code owner November 1, 2023 17:37
@haberman haberman requested review from anandolee and removed request for a team November 1, 2023 17:37
@haberman haberman added the 🅰️ safe for tests Mark a commit as safe to run presubmits over label Nov 1, 2023
@github-actions github-actions bot removed the 🅰️ safe for tests Mark a commit as safe to run presubmits over label Nov 1, 2023
@haberman haberman merged commit 59a66af into protocolbuffers:25.x Nov 1, 2023
147 of 148 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mkruskal-google mkruskal-google mkruskal-google approved these changes

@anandolee anandolee Awaiting requested review from anandolee anandolee is a code owner automatically assigned from protocolbuffers/protobuf-python

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@haberman @mkruskal-google