From 3c12a336482821fcbc08038dc4c0949a6424cd0e Mon Sep 17 00:00:00 2001 From: "Erlend E. Aasland" Date: Wed, 28 Jul 2021 22:28:56 +0200 Subject: [PATCH] bpo-31746: Prevent segfaults when sqlite3.Connection is uninitialised --- Lib/sqlite3/test/dbapi.py | 21 +++++++++++++++++++++ Modules/_sqlite/connection.c | 30 +++++++++++++++++++++++------- 2 files changed, 44 insertions(+), 7 deletions(-) diff --git a/Lib/sqlite3/test/dbapi.py b/Lib/sqlite3/test/dbapi.py index 20cca33e23834b..408f9945f2c970 100644 --- a/Lib/sqlite3/test/dbapi.py +++ b/Lib/sqlite3/test/dbapi.py @@ -243,6 +243,26 @@ def test_drop_unused_refs(self): self.assertEqual(cu.fetchone()[0], n) +class UninitialisedConnectionTests(unittest.TestCase): + def setUp(self): + self.cx = sqlite.Connection.__new__(sqlite.Connection) + + def test_uninit_operations(self): + funcs = ( + lambda: self.cx.isolation_level, + lambda: self.cx.total_changes, + lambda: self.cx.in_transaction, + lambda: self.cx.iterdump(), + lambda: self.cx.cursor(), + lambda: self.cx.close(), + ) + for func in funcs: + with self.subTest(func=func): + self.assertRaisesRegex(sqlite.ProgrammingError, + "Base Connection.__init__ not called", + func) + + class OpenTests(unittest.TestCase): _sql = "create table test(id integer)" @@ -951,6 +971,7 @@ def suite(): ModuleTests, SqliteOnConflictTests, ThreadTests, + UninitialisedConnectionTests, ] return unittest.TestSuite( [unittest.TestLoader().loadTestsFromTestCase(t) for t in tests] diff --git a/Modules/_sqlite/connection.c b/Modules/_sqlite/connection.c index af093c3319c8b2..3338af4653d493 100644 --- a/Modules/_sqlite/connection.c +++ b/Modules/_sqlite/connection.c @@ -108,8 +108,6 @@ pysqlite_connection_init_impl(pysqlite_Connection *self, const char *database = PyBytes_AsString(database_obj); - self->initialized = 1; - self->begin_statement = NULL; Py_CLEAR(self->statement_cache); @@ -144,7 +142,7 @@ pysqlite_connection_init_impl(pysqlite_Connection *self, Py_INCREF(isolation_level); } Py_CLEAR(self->isolation_level); - if (pysqlite_connection_set_isolation_level(self, isolation_level, NULL) < 0) { + if (pysqlite_connection_set_isolation_level(self, isolation_level, NULL) != 0) { Py_DECREF(isolation_level); return -1; } @@ -193,6 +191,8 @@ pysqlite_connection_init_impl(pysqlite_Connection *self, return -1; } + self->initialized = 1; + return 0; } @@ -370,6 +370,13 @@ pysqlite_connection_close_impl(pysqlite_Connection *self) return NULL; } + if (!self->initialized) { + pysqlite_state *state = pysqlite_get_state(NULL); + PyErr_SetString(state->ProgrammingError, + "Base Connection.__init__ not called."); + return NULL; + } + pysqlite_do_all_statements(self, ACTION_FINALIZE, 1); connection_close(self); @@ -1257,6 +1264,9 @@ int pysqlite_check_thread(pysqlite_Connection* self) static PyObject* pysqlite_connection_get_isolation_level(pysqlite_Connection* self, void* unused) { + if (!pysqlite_check_connection(self)) { + return NULL; + } return Py_NewRef(self->isolation_level); } @@ -1288,11 +1298,17 @@ pysqlite_connection_set_isolation_level(pysqlite_Connection* self, PyObject* iso return -1; } if (isolation_level == Py_None) { - PyObject *res = pysqlite_connection_commit(self, NULL); - if (!res) { - return -1; + /* We might get called during connection init, so we cannot use + * pysqlite_connection_commit() here. */ + if (self->db && !sqlite3_get_autocommit(self->db)) { + int rc; + Py_BEGIN_ALLOW_THREADS + rc = sqlite3_exec(self->db, "COMMIT", NULL, NULL, NULL); + Py_END_ALLOW_THREADS + if (rc != SQLITE_OK) { + return _pysqlite_seterror(self->db); + } } - Py_DECREF(res); self->begin_statement = NULL; } else {