gh-85283: Add PySys_AuditTuple() function

vstinner · vstinner · commit 579731bd7319 · 2023-09-19T16:56:37.000+02:00
PySys_Audit() now raises an exception if the event argument is NULL
or if the "N" format is used in the *format* argument.

Add tests on PySys_AuditTuple() and on new PySys_Audit() error code
paths.
diff --git a/Doc/c-api/sys.rst b/Doc/c-api/sys.rst
@@ -291,19 +291,21 @@ accessible to C code.  They all work with the current interpreter thread's
    Raise an auditing event with any active hooks. Return zero for success
    and non-zero with an exception set on failure.
 
+   The *event* string argument must not be *NULL*.
+
    If any hooks have been added, *format* and other arguments will be used
    to construct a tuple to pass. Apart from ``N``, the same format characters
    as used in :c:func:`Py_BuildValue` are available. If the built value is not
-   a tuple, it will be added into a single-element tuple. (The ``N`` format
-   option consumes a reference, but since there is no way to know whether
-   arguments to this function will be consumed, using it may cause reference
-   leaks.)
+   a tuple, it will be added into a single-element tuple. The ``N`` format
+   must not be used in *format*.
 
    Note that ``#`` format characters should always be treated as
    :c:type:`Py_ssize_t`, regardless of whether ``PY_SSIZE_T_CLEAN`` was defined.
 
    :func:`sys.audit` performs the same function from Python code.
 
+   See also :c:func:`PySys_AuditTuple`.
+
    .. versionadded:: 3.8
 
    .. versionchanged:: 3.8.2
@@ -312,6 +314,14 @@ accessible to C code.  They all work with the current interpreter thread's
       unavoidable deprecation warning was raised.
 
 
+.. c:function:: int PySys_AuditTuple(const char *event, PyObject *args)
+
+   Similar to :c:func:`PySys_Audit`, but pass arguments as a Python object. To
+   pass no arguments, *args* can be *NULL*.
+
+   .. versionadded:: 3.13
+
+
 .. c:function:: int PySys_AddAuditHook(Py_AuditHookFunction hook, void *userData)
 
    Append the callable *hook* to the list of active auditing hooks.
diff --git a/Doc/whatsnew/3.13.rst b/Doc/whatsnew/3.13.rst
@@ -975,6 +975,10 @@ New Features
   references) now supports the :ref:`Limited API <limited-c-api>`.
   (Contributed by Victor Stinner in :gh:`108634`.)
 
+* Add :c:func:`PySys_AuditTuple` function: similar to :c:func:`PySys_Audit`,
+  but pass event arguments as a Python :class:`tuple` object.
+  (Contributed by Victor Stinner in :gh:`85283`.)
+
 Porting to Python 3.13
 ----------------------
 
diff --git a/Include/cpython/sysmodule.h b/Include/cpython/sysmodule.h
@@ -6,6 +6,10 @@ typedef int(*Py_AuditHookFunction)(const char *, PyObject *, void *);
 
 PyAPI_FUNC(int) PySys_Audit(
     const char *event,
-    const char *argFormat,
+    const char *format,
     ...);
 PyAPI_FUNC(int) PySys_AddAuditHook(Py_AuditHookFunction, void*);
+
+PyAPI_FUNC(int) PySys_AuditTuple(
+    const char *event,
+    PyObject *args);
diff --git a/Lib/test/test_embed.py b/Lib/test/test_embed.py
@@ -1712,6 +1712,9 @@ def test_open_code_hook(self):
     def test_audit(self):
         self.run_embedded_interpreter("test_audit")
 
+    def test_audit_tuple(self):
+        self.run_embedded_interpreter("test_audit_tuple")
+
     def test_audit_subinterpreter(self):
         self.run_embedded_interpreter("test_audit_subinterpreter")
 
diff --git a/Misc/NEWS.d/next/C API/2023-09-06-00-14-49.gh-issue-85283.GKY0Cc.rst b/Misc/NEWS.d/next/C API/2023-09-06-00-14-49.gh-issue-85283.GKY0Cc.rst
@@ -0,0 +1,3 @@
+Add :c:func:`PySys_AuditTuple` function: similar to :c:func:`PySys_Audit`,
+but pass event arguments as a Python :class:`tuple` object.  Patch by Victor
+Stinner.
diff --git a/Programs/_testembed.c b/Programs/_testembed.c
@@ -1283,7 +1283,30 @@ static int _test_audit(Py_ssize_t setValue)
         printf("Failed to see *userData change\n");
         return 5;
     }
+
+    // event argument must not be NULL (format can be NULL)
+    assert(!PyErr_Occurred());
+    assert(PySys_Audit(NULL, NULL) == -1);
+    assert(PyErr_ExceptionMatches(PyExc_ValueError));
+    PyErr_Clear();
+
+    // 'N' must not be used in the format
+    PyObject *arg = PyUnicode_FromString("arg");
+    if (arg == NULL) {
+        goto error;
+    }
+    Py_ssize_t refcnt = Py_REFCNT(arg);
+    assert(PySys_Audit("_testembed.raise", "N", arg) == -1);
+    assert(PyErr_ExceptionMatches(PyExc_ValueError));
+    PyErr_Clear();
+    assert(Py_REFCNT(arg) == refcnt);
+    Py_DECREF(arg);
+
     return 0;
+
+error:
+    PyErr_Print();
+    return 1;
 }
 
 static int test_audit(void)
@@ -1296,6 +1319,49 @@ static int test_audit(void)
     return result;
 }
 
+static int test_audit_tuple(void)
+{
+    Py_ssize_t sawSet = 0;
+
+    // we need at least one hook, otherwise code checking for
+    // PySys_AuditTuple() is skipped.
+    PySys_AddAuditHook(_audit_hook, &sawSet);
+    _testembed_Py_InitializeFromConfig();
+
+    assert(!PyErr_Occurred());
+
+    // pass Python tuple object
+    PyObject *tuple = Py_BuildValue("(i)", 444);
+    if (tuple == NULL) {
+        goto error;
+    }
+    assert(PySys_AuditTuple("_testembed.set", tuple) == 0);
+    assert(!PyErr_Occurred());
+    assert(sawSet == 444);
+    Py_DECREF(tuple);
+
+    // pass Python int object
+    PyObject *int_arg = PyLong_FromLong(555);
+    if (int_arg == NULL) {
+        goto error;
+    }
+    assert(PySys_AuditTuple("_testembed.set", int_arg) == 0);
+    assert(!PyErr_Occurred());
+    assert(sawSet == 555);
+    Py_DECREF(int_arg);
+
+    // NULL is accepted and means "no arguments"
+    assert(PySys_AuditTuple("_testembed.test_audit_tuple", NULL) == 0);
+    assert(!PyErr_Occurred());
+
+    Py_Finalize();
+    return 0;
+
+error:
+    PyErr_Print();
+    return 1;
+}
+
 static volatile int _audit_subinterpreter_interpreter_count = 0;
 
 static int _audit_subinterpreter_hook(const char *event, PyObject *args, void *userdata)
@@ -2140,6 +2206,7 @@ static struct TestCase TestCases[] = {
     // Audit
     {"test_open_code_hook", test_open_code_hook},
     {"test_audit", test_audit},
+    {"test_audit_tuple", test_audit_tuple},
     {"test_audit_subinterpreter", test_audit_subinterpreter},
     {"test_audit_run_command", test_audit_run_command},
     {"test_audit_run_file", test_audit_run_file},
diff --git a/Python/sysmodule.c b/Python/sysmodule.c
@@ -336,6 +336,17 @@ PySys_Audit(const char *event, const char *argFormat, ...)
     return res;
 }
 
+int
+PySys_AuditTuple(const char *event, PyObject *args)
+{
+    if (args) {
+        return PySys_Audit(event, "O", args);
+    }
+    else {
+        return PySys_Audit(event, NULL);
+    }
+}
+
 /* We expose this function primarily for our own cleanup during
  * finalization. In general, it should not need to be called,
  * and as such the function is not exported.

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	+Add :c:func:`PySys_AuditTuple` function: similar to :c:func:`PySys_Audit`,
	`2`	+but pass event arguments as a Python :class:`tuple` object. Patch by Victor
	`3`	`+Stinner.`