Skip to content

gh-74020: Raise ValueError for negative values converted to unsigned #121114

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 8 commits into
base: main
Choose a base branch
from
Open

gh-74020: Raise ValueError for negative values converted to unsigned #121114

wants to merge 8 commits into from
+131 −77

Conversation

serhiy-storchaka
Copy link
Member

@serhiy-storchaka serhiy-storchaka commented Jun 28, 2024
edited by github-actions bot
Loading

Converting negative Python integer to a C unsigned integer type now raises ValueError, not OverflowError.

Affected C API: PyLong_AsUnsignedLong(), PyLong_AsUnsignedLongLong(), PyLong_AsSize_t() and the "b" format unit in PyArg_Parse().

📚 Documentation preview 📚: https://cpython-previews--121114.org.readthedocs.build/

@serhiy-storchaka
pythongh-74020: Raise ValueError for negative values converted to uns…
ff4cfc8 
…igned

Converting negative Python integer to a C unsigned integer type now raises
ValueError, not OverflowError.

Affected C API: PyLong_AsUnsignedLong(), PyLong_AsUnsignedLongLong(),
PyLong_AsSize_t() and the "b" format unit in PyArg_Parse().
@bedevere-app bedevere-app bot mentioned this pull request Jun 28, 2024
Open
@serhiy-storchaka serhiy-storchaka mentioned this pull request Jul 1, 2024
Open
@ericsnowcurrently ericsnowcurrently removed their request for review November 19, 2024 21:30
StanFromIreland
StanFromIreland reviewed Apr 23, 2025
View reviewed changes
skirpichev
skirpichev reviewed Apr 29, 2025
View reviewed changes
Copy link
Contributor

@skirpichev skirpichev left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would expect this breaks a lot of people code.

Lets do this with a deprecation period.

Lib/test/test_long.py
Comment on lines +1380 to +1381
self.assertRaises(ValueError, (-1).to_bytes, 2, 'big', signed=False)
self.assertRaises(ValueError, (-1).to_bytes, 2, 'little', signed=False)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You should adjust int.to_bytes() docs (both docstring and sphinx).

BTW, I think there could be a test with a negative input and signed=True.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated docs.

There is a test with a negative input and signed=True above.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There is a test with a negative input and signed=True above.

Hmm, maybe. I don't see it.

picnixz
picnixz reviewed May 9, 2025
View reviewed changes
Copy link
Member

@picnixz picnixz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm really worried that now, anyone using PyLong_AsUnsignedLong would need to either change how they handle the exception or now be dealing with two different exceptions.

I'm not confident enough to actually just make this change. OverflowError fits in the sense that it's outside of the expected range, but the transition is too hard. I suggested raising DomainError which would inherit from OverflowError and ValueError but code paths with distinct handling of ValueError and OverflowError could be broken.

An easy way to make it work is to introduce a new function that would properly raise what is meant to be raised, and deprecate those functions.

So I'm not -1 as strong as @rhettinger, but I still think it's better to be continue with this, even if it's annoying on our side. We could have some private helpers that would do something like:

try:
	x = asulong(X)
except OverflowError:
	if X < 0:
		raise ValueError
	raise

Or something that can store in addition the fact that something is < 0 or not, like PyLong_AsLongAndOverflow but for ULong instead where we add also a isnegative flag:

int _PyLong_AsUnsignedLong(PyObject *long, int *overflow, int *negative);

Doc/whatsnew/3.14.rst
@@ -1920,6 +1920,10 @@ Others
integer must implement either :meth:`~object.__int__` or
:meth:`~object.__index__`. (Contributed by Mark Dickinson in :gh:`119743`.)

* Converting negative Python integer to a C unsigned integer type now raises
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This will need to be moved to 3.15 and marked as an incompatible change.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@skirpichev skirpichev skirpichev left review comments

@picnixz picnixz picnixz left review comments

@StanFromIreland StanFromIreland StanFromIreland left review comments

@gpshead gpshead Awaiting requested review from gpshead

Assignees
No one assigned
Labels
awaiting core review
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@serhiy-storchaka @skirpichev @picnixz @StanFromIreland