git.notmuchmail.org Git - notmuch/commit

author	Anton Khirnov <anton@khirnov.net>
	Mon, 15 Jun 2020 20:58:49 +0000 (22:58 +0200)
committer	David Bremner <david@tethera.net>
	Tue, 16 Jun 2020 11:02:02 +0000 (08:02 -0300)
commit	131757907907380213b32934d9e73cec942ace43
tree	193d7bfa3977a7035993694aacb9c9b16933f2e6	tree \| snapshot
parent	1bca41698a03980b701558fb5c481ef0a340460d	commit \| diff

python/notmuch2: do not destroy messages owned by a query

Any messages retrieved from a query - either directly via
search_messages() or indirectly via thread objects - are owned by that
query. Retrieving the same message (i.e. corresponding to the same
message ID / database object) several times will always yield the same
C object.

The caller is allowed to destroy message objects owned by a query before
the query itself - which can save memory for long-lived queries.
However, that message must then never be retrieved again from that
query.

The python-notmuch2 bindings will currently destroy every message object
in Message._destroy(), which will lead to an invalid free if the same
message is then retrieved again. E.g. the following python program leads
to libtalloc abort()ing:

import notmuch2
db = notmuch2.Database(mode = notmuch2.Database.MODE.READ_ONLY)
t = next(db.threads('*'))
msgs = list(zip(t.toplevel(), t.toplevel()))
msgs = list(zip(t.toplevel(), t.toplevel()))

Fix this issue by creating a subclass of Message, which is used for
"standalone" message which have to be freed by the caller. Message class
is then used only for messages descended from a query, which do not need
to be freed by the caller.

bindings/python-cffi/notmuch2/_database.py		diff \| blob \| history
bindings/python-cffi/notmuch2/_message.py		diff \| blob \| history