From 74d8fdb11755a307e7b055305a4ea1ac42c95d5d Mon Sep 17 00:00:00 2001
From: Vincent Thiberville <vthib@pm.me>
Date: Sun, 9 Mar 2025 01:41:41 +0100
Subject: [PATCH] fix: do not dup invalid file descriptor in compile method

When providing a file to the compile function, the PyObject_AsFileDescriptor
function is used, which is safe to use on any object type: if the object is
not a file, -1 is returned.

However, this value was passed straight to a call to dup() without checking
for its validity. This isn't much of an issue on unix where the dup call will
simply fail as well and return -1, but it is very much an issue on windows
where passing an invalid fd to dup will invoke the invalid parameter handler,
which isn't set, so it will simply terminate the program.

In other words, passing anything but a file to the file parameter
of the compile function will make the program crash on Windows.
---
 yara-python.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/yara-python.c b/yara-python.c
index 83c22c9..fc4fd0e 100644
--- a/yara-python.c
+++ b/yara-python.c
@@ -2816,12 +2816,12 @@ static PyObject* yara_compile(
     }
     else if (file != NULL)
     {
-      fd = dup(PyObject_AsFileDescriptor(file));
+      fd = PyObject_AsFileDescriptor(file);
 
       if (fd != -1)
       {
         Py_BEGIN_ALLOW_THREADS
-        fh = fdopen(fd, "r");
+        fh = fdopen(dup(fd), "r");
         error = yr_compiler_add_file(compiler, fh, NULL, NULL);
         fclose(fh);
         Py_END_ALLOW_THREADS