From fc3beb5a767f6f55a61f2eb365a92d648184afbf Mon Sep 17 00:00:00 2001 From: Niklas Rousset Date: Tue, 12 Mar 2024 11:11:45 +0100 Subject: [PATCH 1/7] Upgrade libuv version to 1.48.0 --- vendor/libuv | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/vendor/libuv b/vendor/libuv index f0bb7e40..e9f29cb9 160000 --- a/vendor/libuv +++ b/vendor/libuv @@ -1 +1 @@ -Subproject commit f0bb7e40f0508bedf6fad33769b3f87bb8aedfa6 +Subproject commit e9f29cb984231524e3931aa0ae2c5dae1a32884e From 281dc2caae3fb7523829ea3b18c628f0dd91c04a Mon Sep 17 00:00:00 2001 From: Niklas Rousset Date: Tue, 12 Mar 2024 11:12:22 +0100 Subject: [PATCH 2/7] Remove test cases --- tests/test_dns.py | 28 ++++++++++------------------ 1 file changed, 10 insertions(+), 18 deletions(-) diff --git a/tests/test_dns.py b/tests/test_dns.py index f61b1e8a..1910cdd3 100644 --- a/tests/test_dns.py +++ b/tests/test_dns.py @@ -104,22 +104,14 @@ def test_getaddrinfo_7(self): self._test_getaddrinfo(None, 0, type=socket.SOCK_STREAM) def test_getaddrinfo_8(self): - self._test_getaddrinfo('', 0) - self._test_getaddrinfo('', 0, type=socket.SOCK_STREAM) - - def test_getaddrinfo_9(self): - self._test_getaddrinfo(b'', 0) - self._test_getaddrinfo(b'', 0, type=socket.SOCK_STREAM) - - def test_getaddrinfo_10(self): self._test_getaddrinfo(None, None) self._test_getaddrinfo(None, None, type=socket.SOCK_STREAM) - def test_getaddrinfo_11(self): + def test_getaddrinfo_9(self): self._test_getaddrinfo(b'example.com', '80') self._test_getaddrinfo(b'example.com', '80', type=socket.SOCK_STREAM) - def test_getaddrinfo_12(self): + def test_getaddrinfo_10(self): # musl always returns ai_canonname but we don't patch = self.implementation != 'asyncio' @@ -127,7 +119,7 @@ def test_getaddrinfo_12(self): self._test_getaddrinfo('127.0.0.1', '80', type=socket.SOCK_STREAM, _patch=patch) - def test_getaddrinfo_13(self): + def test_getaddrinfo_11(self): # musl always returns ai_canonname but we don't patch = self.implementation != 'asyncio' @@ -135,7 +127,7 @@ def test_getaddrinfo_13(self): self._test_getaddrinfo(b'127.0.0.1', b'80', type=socket.SOCK_STREAM, _patch=patch) - def test_getaddrinfo_14(self): + def test_getaddrinfo_12(self): # musl always returns ai_canonname but we don't patch = self.implementation != 'asyncio' @@ -143,7 +135,7 @@ def test_getaddrinfo_14(self): self._test_getaddrinfo(b'127.0.0.1', b'http', type=socket.SOCK_STREAM, _patch=patch) - def test_getaddrinfo_15(self): + def test_getaddrinfo_13(self): # musl always returns ai_canonname but we don't patch = self.implementation != 'asyncio' @@ -151,19 +143,19 @@ def test_getaddrinfo_15(self): self._test_getaddrinfo('127.0.0.1', 'http', type=socket.SOCK_STREAM, _patch=patch) - def test_getaddrinfo_16(self): + def test_getaddrinfo_14(self): self._test_getaddrinfo('localhost', 'http') self._test_getaddrinfo('localhost', 'http', type=socket.SOCK_STREAM) - def test_getaddrinfo_17(self): + def test_getaddrinfo_15(self): self._test_getaddrinfo(b'localhost', 'http') self._test_getaddrinfo(b'localhost', 'http', type=socket.SOCK_STREAM) - def test_getaddrinfo_18(self): + def test_getaddrinfo_16(self): self._test_getaddrinfo('localhost', b'http') self._test_getaddrinfo('localhost', b'http', type=socket.SOCK_STREAM) - def test_getaddrinfo_19(self): + def test_getaddrinfo_17(self): # musl always returns ai_canonname while macOS never return for IPs, # but we strictly follow the docs to use the AI_CANONNAME flag in a # shortcut __static_getaddrinfo_pyaddr() @@ -175,7 +167,7 @@ def test_getaddrinfo_19(self): self._test_getaddrinfo('::1', 80, type=socket.SOCK_STREAM, flags=socket.AI_CANONNAME, _patch=patch) - def test_getaddrinfo_20(self): + def test_getaddrinfo_18(self): # musl always returns ai_canonname while macOS never return for IPs, # but we strictly follow the docs to use the AI_CANONNAME flag in a # shortcut __static_getaddrinfo_pyaddr() From 7764b3fe68fea7c3a9c834577d76c200c3080b3d Mon Sep 17 00:00:00 2001 From: Fantix King Date: Tue, 13 Aug 2024 23:49:52 -0400 Subject: [PATCH 3/7] Revert "Remove test cases" This reverts commit 281dc2caae3fb7523829ea3b18c628f0dd91c04a. --- tests/test_dns.py | 28 ++++++++++++++++++---------- 1 file changed, 18 insertions(+), 10 deletions(-) diff --git a/tests/test_dns.py b/tests/test_dns.py index 1910cdd3..f61b1e8a 100644 --- a/tests/test_dns.py +++ b/tests/test_dns.py @@ -104,14 +104,22 @@ def test_getaddrinfo_7(self): self._test_getaddrinfo(None, 0, type=socket.SOCK_STREAM) def test_getaddrinfo_8(self): + self._test_getaddrinfo('', 0) + self._test_getaddrinfo('', 0, type=socket.SOCK_STREAM) + + def test_getaddrinfo_9(self): + self._test_getaddrinfo(b'', 0) + self._test_getaddrinfo(b'', 0, type=socket.SOCK_STREAM) + + def test_getaddrinfo_10(self): self._test_getaddrinfo(None, None) self._test_getaddrinfo(None, None, type=socket.SOCK_STREAM) - def test_getaddrinfo_9(self): + def test_getaddrinfo_11(self): self._test_getaddrinfo(b'example.com', '80') self._test_getaddrinfo(b'example.com', '80', type=socket.SOCK_STREAM) - def test_getaddrinfo_10(self): + def test_getaddrinfo_12(self): # musl always returns ai_canonname but we don't patch = self.implementation != 'asyncio' @@ -119,7 +127,7 @@ def test_getaddrinfo_10(self): self._test_getaddrinfo('127.0.0.1', '80', type=socket.SOCK_STREAM, _patch=patch) - def test_getaddrinfo_11(self): + def test_getaddrinfo_13(self): # musl always returns ai_canonname but we don't patch = self.implementation != 'asyncio' @@ -127,7 +135,7 @@ def test_getaddrinfo_11(self): self._test_getaddrinfo(b'127.0.0.1', b'80', type=socket.SOCK_STREAM, _patch=patch) - def test_getaddrinfo_12(self): + def test_getaddrinfo_14(self): # musl always returns ai_canonname but we don't patch = self.implementation != 'asyncio' @@ -135,7 +143,7 @@ def test_getaddrinfo_12(self): self._test_getaddrinfo(b'127.0.0.1', b'http', type=socket.SOCK_STREAM, _patch=patch) - def test_getaddrinfo_13(self): + def test_getaddrinfo_15(self): # musl always returns ai_canonname but we don't patch = self.implementation != 'asyncio' @@ -143,19 +151,19 @@ def test_getaddrinfo_13(self): self._test_getaddrinfo('127.0.0.1', 'http', type=socket.SOCK_STREAM, _patch=patch) - def test_getaddrinfo_14(self): + def test_getaddrinfo_16(self): self._test_getaddrinfo('localhost', 'http') self._test_getaddrinfo('localhost', 'http', type=socket.SOCK_STREAM) - def test_getaddrinfo_15(self): + def test_getaddrinfo_17(self): self._test_getaddrinfo(b'localhost', 'http') self._test_getaddrinfo(b'localhost', 'http', type=socket.SOCK_STREAM) - def test_getaddrinfo_16(self): + def test_getaddrinfo_18(self): self._test_getaddrinfo('localhost', b'http') self._test_getaddrinfo('localhost', b'http', type=socket.SOCK_STREAM) - def test_getaddrinfo_17(self): + def test_getaddrinfo_19(self): # musl always returns ai_canonname while macOS never return for IPs, # but we strictly follow the docs to use the AI_CANONNAME flag in a # shortcut __static_getaddrinfo_pyaddr() @@ -167,7 +175,7 @@ def test_getaddrinfo_17(self): self._test_getaddrinfo('::1', 80, type=socket.SOCK_STREAM, flags=socket.AI_CANONNAME, _patch=patch) - def test_getaddrinfo_18(self): + def test_getaddrinfo_20(self): # musl always returns ai_canonname while macOS never return for IPs, # but we strictly follow the docs to use the AI_CANONNAME flag in a # shortcut __static_getaddrinfo_pyaddr() From f3446e4683f21947fcec32d9bb6d28d91203dbc5 Mon Sep 17 00:00:00 2001 From: Fantix King Date: Tue, 13 Aug 2024 23:55:53 -0400 Subject: [PATCH 4/7] Fix for libuv 1.48 --- uvloop/dns.pyx | 15 +++++++-------- 1 file changed, 7 insertions(+), 8 deletions(-) diff --git a/uvloop/dns.pyx b/uvloop/dns.pyx index 7aad6319..3688e26f 100644 --- a/uvloop/dns.pyx +++ b/uvloop/dns.pyx @@ -356,13 +356,6 @@ cdef class AddrInfoRequest(UVRequest): else: cport = port - if cport is NULL and chost is NULL: - self.on_done() - msg = system.gai_strerror(socket_EAI_NONAME).decode('utf-8') - ex = socket_gaierror(socket_EAI_NONAME, msg) - callback(ex) - return - memset(&self.hints, 0, sizeof(system.addrinfo)) self.hints.ai_flags = flags self.hints.ai_family = family @@ -382,7 +375,13 @@ cdef class AddrInfoRequest(UVRequest): if err < 0: self.on_done() - callback(convert_error(err)) + if err == uv.UV_EINVAL: + # Convert UV_EINVAL to EAI_NONAME to match libc behavior + msg = system.gai_strerror(socket_EAI_NONAME).decode('utf-8') + ex = socket_gaierror(socket_EAI_NONAME, msg) + callback(ex) + else: + callback(convert_error(err)) cdef class NameInfoRequest(UVRequest): From bbe09cc6414d1a195a8535eb302e07a10e02956a Mon Sep 17 00:00:00 2001 From: Fantix King Date: Wed, 14 Aug 2024 00:36:54 -0400 Subject: [PATCH 5/7] Fix for macOS It seems getaddrinfo('', ...) on macOS is equivalent to nodename='localhost'. This is inconsistent with libuv 1.48 which treats empty nodename as EINVAL. --- uvloop/dns.pyx | 2 ++ 1 file changed, 2 insertions(+) diff --git a/uvloop/dns.pyx b/uvloop/dns.pyx index 3688e26f..6a26011f 100644 --- a/uvloop/dns.pyx +++ b/uvloop/dns.pyx @@ -348,6 +348,8 @@ cdef class AddrInfoRequest(UVRequest): if host is None: chost = NULL + elif host == b'' and sys.platform == 'darwin': + chost = 'localhost' else: chost = host From 7768f08b84968b5496abafbc98f8b28b26deca3b Mon Sep 17 00:00:00 2001 From: Fantix King Date: Wed, 14 Aug 2024 00:15:06 -0400 Subject: [PATCH 6/7] Add test Thanks to @tapple-cisco for the repro --- tests/test_dns.py | 16 ++++++++++++++-- 1 file changed, 14 insertions(+), 2 deletions(-) diff --git a/tests/test_dns.py b/tests/test_dns.py index f61b1e8a..66da026b 100644 --- a/tests/test_dns.py +++ b/tests/test_dns.py @@ -31,13 +31,13 @@ def _test_getaddrinfo(self, *args, _patch=False, **kwargs): a1 = patched_getaddrinfo(*args, **kwargs) else: a1 = socket.getaddrinfo(*args, **kwargs) - except socket.gaierror as ex: + except (socket.gaierror, UnicodeError) as ex: err = ex try: a2 = self.loop.run_until_complete( self.loop.getaddrinfo(*args, **kwargs)) - except socket.gaierror as ex: + except (socket.gaierror, UnicodeError) as ex: if err is not None: self.assertEqual(ex.args, err.args) else: @@ -187,6 +187,18 @@ def test_getaddrinfo_20(self): self._test_getaddrinfo('127.0.0.1', 80, type=socket.SOCK_STREAM, flags=socket.AI_CANONNAME, _patch=patch) + # https://github.com/libuv/libuv/security/advisories/GHSA-f74f-cvh7-c6q6 + # See also: https://github.com/MagicStack/uvloop/pull/600 + def test_getaddrinfo_21(self): + payload = f'0x{"0" * 246}7f000001.example.com'.encode('ascii') + self._test_getaddrinfo(payload, 80) + self._test_getaddrinfo(payload, 80, type=socket.SOCK_STREAM) + + def test_getaddrinfo_22(self): + payload = f'0x{"0" * 246}7f000001.example.com' + self._test_getaddrinfo(payload, 80) + self._test_getaddrinfo(payload, 80, type=socket.SOCK_STREAM) + ###### def test_getnameinfo_1(self): From c9ff4e4678cfc9c716af61a1e7fb2450c628074d Mon Sep 17 00:00:00 2001 From: Fantix King Date: Wed, 14 Aug 2024 14:42:45 -0400 Subject: [PATCH 7/7] crf: add comments and handle possible errors in error handling --- uvloop/dns.pyx | 17 ++++++++++++----- 1 file changed, 12 insertions(+), 5 deletions(-) diff --git a/uvloop/dns.pyx b/uvloop/dns.pyx index 6a26011f..c6be7cbe 100644 --- a/uvloop/dns.pyx +++ b/uvloop/dns.pyx @@ -349,6 +349,9 @@ cdef class AddrInfoRequest(UVRequest): if host is None: chost = NULL elif host == b'' and sys.platform == 'darwin': + # It seems `getaddrinfo("", ...)` on macOS is equivalent to + # `getaddrinfo("localhost", ...)`. This is inconsistent with + # libuv 1.48 which treats empty nodename as EINVAL. chost = 'localhost' else: chost = host @@ -377,13 +380,17 @@ cdef class AddrInfoRequest(UVRequest): if err < 0: self.on_done() - if err == uv.UV_EINVAL: - # Convert UV_EINVAL to EAI_NONAME to match libc behavior - msg = system.gai_strerror(socket_EAI_NONAME).decode('utf-8') - ex = socket_gaierror(socket_EAI_NONAME, msg) + try: + if err == uv.UV_EINVAL: + # Convert UV_EINVAL to EAI_NONAME to match libc behavior + msg = system.gai_strerror(socket_EAI_NONAME).decode('utf-8') + ex = socket_gaierror(socket_EAI_NONAME, msg) + else: + ex = convert_error(err) + except Exception as ex: callback(ex) else: - callback(convert_error(err)) + callback(ex) cdef class NameInfoRequest(UVRequest):