Skip to content

No NULL check in sqlite connection.c #129346

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wooffie opened this issue Jan 27, 2025 · 4 comments
Closed

No NULL check in sqlite connection.c #129346

wooffie opened this issue Jan 27, 2025 · 4 comments
Labels
3.12 only security fixes 3.13 bugs and security fixes 3.14 bugs and security fixes topic-sqlite3 type-bug An unexpected behavior, bug, or error

Comments

@wooffie
Copy link
Contributor

wooffie commented Jan 27, 2025
edited by bedevere-app bot
Loading

Bug report

Bug description:

cpython/Modules/_sqlite/connection.c

Line 960 in 7ec1742

aggregate_instance = (PyObject**)sqlite3_aggregate_context(context, sizeof(PyObject*));

In this case we don'y check it against NULL, and can dereference in next line:

cpython/Modules/_sqlite/connection.c

Line 961 in 7ec1742

if (*aggregate_instance == NULL) {

CPython versions tested on:

CPython main branch

Operating systems tested on:

No response

Linked PRs
@wooffie wooffie added the type-bug An unexpected behavior, bug, or error label Jan 27, 2025
@serhiy-storchaka serhiy-storchaka added 3.12 only security fixes topic-sqlite3 3.13 bugs and security fixes 3.14 bugs and security fixes labels Jan 27, 2025
@erlend-aasland
Copy link
Contributor

No, it cannot be NULL. See the SQLite C API docs for more information. We could add an assert.

@serhiy-storchaka serhiy-storchaka moved this to TODO: Bugs in sqlite3 issues Jan 27, 2025
@erlend-aasland
Copy link
Contributor

Relevant docs:

@bedevere-app bedevere-app bot mentioned this issue Jan 27, 2025
Merged
erlend-aasland added a commit to erlend-aasland/cpython that referenced this issue Jan 27, 2025
@erlend-aasland
pythongh-129346: Assert SQLite aggregate context cannot be NULL in th…
d3c6837 
…e step handler
@erlend-aasland erlend-aasland removed type-bug An unexpected behavior, bug, or error 3.12 only security fixes 3.13 bugs and security fixes 3.14 bugs and security fixes labels Jan 27, 2025
@erlend-aasland
Copy link
Contributor

I removed the bug label. This is not a bug; it is just a missing assert.

@erlend-aasland erlend-aasland added type-bug An unexpected behavior, bug, or error 3.12 only security fixes 3.13 bugs and security fixes 3.14 bugs and security fixes labels Jan 27, 2025
@erlend-aasland
Copy link
Contributor

Looking more closely at this, I agree with Serhiy it is a bug.

erlend-aasland added a commit that referenced this issue Jan 27, 2025
@erlend-aasland
gh-129346: Handle allocation errors for SQLite aggregate context (#12…
379ab85 
…9347)
miss-islington pushed a commit to miss-islington/cpython that referenced this issue Jan 27, 2025
@erlend-aasland @miss-islington
pythongh-129346: Handle allocation errors for SQLite aggregate context (
197c115 
pythonGH-129347)

(cherry picked from commit 379ab85)

Co-authored-by: Erlend E. Aasland <[email protected]>
@bedevere-app bedevere-app bot mentioned this issue Jan 27, 2025
Merged
miss-islington pushed a commit to miss-islington/cpython that referenced this issue Jan 27, 2025
@erlend-aasland @miss-islington
pythongh-129346: Handle allocation errors for SQLite aggregate context (
7929e2e 
pythonGH-129347)

(cherry picked from commit 379ab85)

Co-authored-by: Erlend E. Aasland <[email protected]>
@bedevere-app bedevere-app bot mentioned this issue Jan 27, 2025
Merged
@github-project-automation github-project-automation bot moved this from TODO: Bugs to Done in sqlite3 issues Jan 27, 2025
erlend-aasland added a commit that referenced this issue Jan 27, 2025
@miss-islington @erlend-aasland
[3.12] gh-129346: Handle allocation errors for SQLite aggregate conte…
23faf5f 
…xt (GH-129347) (#129373)

(cherry picked from commit 379ab85)

Co-authored-by: Erlend E. Aasland <[email protected]>
erlend-aasland added a commit that referenced this issue Jan 27, 2025
@miss-islington @erlend-aasland
[3.13] gh-129346: Handle allocation errors for SQLite aggregate conte…
247c3b2 
…xt (GH-129347) (#129372)

(cherry picked from commit 379ab85)

Co-authored-by: Erlend E. Aasland <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
3.12 only security fixes 3.13 bugs and security fixes 3.14 bugs and security fixes topic-sqlite3 type-bug An unexpected behavior, bug, or error
Projects
sqlite3 issues
Status: Done
Milestone
No milestone
Development

No branches or pull requests
3 participants
@serhiy-storchaka @erlend-aasland @wooffie