Issue #12856: Ensure child processes do not inherit the parent's random seed...

Issue #12856: Ensure child processes do not inherit the parent's random seed for filename generation in the tempfile module. Patch by Brian Harring.

Issue #12856: Ensure child processes do not inherit the parent's random seed...
Issue #12856: Ensure child processes do not inherit the parent's random seed for filename generation in the tempfile module. Patch by Brian Harring.
4558bad7 · Antoine Pitrou · fd9ebd4a · 4558bad7 · 4558bad7 · 4558bad7
Commit 4558bad7 authored Nov 25, 2011 by Antoine Pitrou
Hide whitespace changes
Inline Side-by-side

Showing with 43 additions and 2 deletions

Lib/tempfile.py Lib/tempfile.py +7 -2

Lib/test/test_tempfile.py Lib/test/test_tempfile.py +32 -0

Misc/NEWS Misc/NEWS +4 -0

No files found.
--- a/Lib/tempfile.py
+++ b/Lib/tempfile.py
@@ -112,8 +112,13 @@ class _RandomNameSequence:

    characters = "abcdefghijklmnopqrstuvwxyz0123456789_"

-    def __init__(self):
-        self.rng = _Random()
+    @property
+    def rng(self):
+        cur_pid = _os.getpid()
+        if cur_pid != getattr(self, '_rng_pid', None):
+            self._rng = _Random()
+            self._rng_pid = cur_pid
+        return self._rng

    def __iter__(self):
        return self

--- a/Lib/test/test_tempfile.py
+++ b/Lib/test/test_tempfile.py
 # tempfile.py unit tests.
 import tempfile
 import os
+import signal
 import sys
 import re
 import warnings
@@ -135,6 +136,37 @@ class test__RandomNameSequence(TC):
        except:
            self.failOnException("iteration")

+    @unittest.skipUnless(hasattr(os, 'fork'),
+        "os.fork is required for this test")
+    def test_process_awareness(self):
+        # ensure that the random source differs between
+        # child and parent.
+        read_fd, write_fd = os.pipe()
+        pid = None
+        try:
+            pid = os.fork()
+            if not pid:
+                os.close(read_fd)
+                os.write(write_fd, next(self.r).encode("ascii"))
+                os.close(write_fd)
+                # bypass the normal exit handlers- leave those to
+                # the parent.
+                os._exit(0)
+            parent_value = next(self.r)
+            child_value = os.read(read_fd, len(parent_value)).decode("ascii")
+        finally:
+            if pid:
+                # best effort to ensure the process can't bleed out
+                # via any bugs above
+                try:
+                    os.kill(pid, signal.SIGKILL)
+                except EnvironmentError:
+                    pass
+            os.close(read_fd)
+            os.close(write_fd)
+        self.assertNotEqual(child_value, parent_value)
+
+
 test_classes.append(test__RandomNameSequence)



--- a/Misc/NEWS
+++ b/Misc/NEWS
@@ -83,6 +83,10 @@ Core and Builtins
 Library
 -------

+- Issue #12856: Ensure child processes do not inherit the parent's random
+  seed for filename generation in the tempfile module.  Patch by Brian
+  Harring.
+
 - Issue #13458: Fix a memory leak in the ssl module when decoding a
  certificate with a subjectAltName.  Patch by Robert Xiao.