PyThreadState_Clear() should only be called from the same interpreter
#112723
Labels
Comments
colesbury
added a commit
to colesbury/cpython
that referenced
this issue
Dec 5, 2023
…reter The `PyThreadState_Clear()` function must only be called with the GIL held and must be called from the same interpreter as the passed in thread state. Otherwise, any Python objects on the thread state may be destroyed using the wrong interpreter, leading to memory corruption. This is also important for `Py_GIL_DISABLED` builds because free lists will be associated with PyThreadStates and cleared in `PyThreadState_Clear()`. This fixes two places that called `PyThreadState_Clear()` from the wrong interpreter and adds an assertion to `PyThreadState_Clear()`.
carljm
pushed a commit
that referenced
this issue
Dec 13, 2023
…112776) The `PyThreadState_Clear()` function must only be called with the GIL held and must be called from the same interpreter as the passed in thread state. Otherwise, any Python objects on the thread state may be destroyed using the wrong interpreter, leading to memory corruption. This is also important for `Py_GIL_DISABLED` builds because free lists will be associated with PyThreadStates and cleared in `PyThreadState_Clear()`. This fixes two places that called `PyThreadState_Clear()` from the wrong interpreter and adds an assertion to `PyThreadState_Clear()`.
aisk
pushed a commit
to aisk/cpython
that referenced
this issue
Feb 11, 2024
…reter (python#112776) The `PyThreadState_Clear()` function must only be called with the GIL held and must be called from the same interpreter as the passed in thread state. Otherwise, any Python objects on the thread state may be destroyed using the wrong interpreter, leading to memory corruption. This is also important for `Py_GIL_DISABLED` builds because free lists will be associated with PyThreadStates and cleared in `PyThreadState_Clear()`. This fixes two places that called `PyThreadState_Clear()` from the wrong interpreter and adds an assertion to `PyThreadState_Clear()`.
Glyphack
pushed a commit
to Glyphack/cpython
that referenced
this issue
Sep 2, 2024
…reter (python#112776) The `PyThreadState_Clear()` function must only be called with the GIL held and must be called from the same interpreter as the passed in thread state. Otherwise, any Python objects on the thread state may be destroyed using the wrong interpreter, leading to memory corruption. This is also important for `Py_GIL_DISABLED` builds because free lists will be associated with PyThreadStates and cleared in `PyThreadState_Clear()`. This fixes two places that called `PyThreadState_Clear()` from the wrong interpreter and adds an assertion to `PyThreadState_Clear()`.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
PyThreadState_Clear()includes the following comment:cpython/Python/pystate.c
Lines 1553 to 1558 in 1e4680c
We should enforce this, particularly the comment about the matching interpreters. Calling
PyThreadState_Clear()from the "wrong" interpreter is unsafe because if any of thePyObjects on thetstateare not NULL, calling their destructors from the wrong thread can lead to memory corruption.This is also important for the "free threaded" builds because they have free lists associated with the
PyThreadStateand these will be cleared inPyThreadState_Clear()-- doing this in the wrong interpreter leads to memory corruption.There are currently two places which call
PyThreadState_Clear()from the "wrong" interpreter:interp_create()in_xxsubinterpretersmodule.c. This is pretty easy to fix by setting the thread state before calling clear. `cpython/Modules/_xxsubinterpretersmodule.c
Line 266 in 1e4680c
new_interpreter()inpylifecycle.cin the error code path. This is trickier because the thread state is not fully initialized.cpython/Python/pylifecycle.c
Line 2164 in 1e4680c
Related: #101436 (comment)
cc @ericsnowcurrently
Linked PRs
PyThreadState_Clear()from the correct interpreter #112776The text was updated successfully, but these errors were encountered: