8000 gh-135543: emit ``sys.remote_exec`` audit event when ``sys.remote_exec`` has been called by Zheaoli · Pull Request #135544 · python/cpython · GitHub
[go: up one dir, main page]
Skip to content

gh-135543: emit sys.remote_exec audit event when sys.remote_exec has been called #135544

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 24 commits into from
Jun 19, 2025
Merged

gh-135543: emit sys.remote_exec audit event when sys.remote_exec has been called #135544

Show file tree
Hide file tree
Changes from 4 commits
Commits
Show all changes
24 commits
Select commit Hold shift + click to select a range
b125c78
gh-135543: emit sys.remote_exec audit event when sys.remote_exec has …
Zheaoli Jun 15, 2025
afab662
add news
Zheaoli Jun 15, 2025
31c6575
fix code
Zheaoli Jun 15, 2025
22207f1
Merge main
Zheaoli Jun 15, 2025
55e3470
Update Doc/library/sys.rst
Zheaoli Jun 16, 2025
e3fd3ca
Update Doc/library/sys.rst
Zheaoli Jun 16, 2025
732e3fd
Update Misc/NEWS.d/next/Core_and_Builtins/2025-06-16-02-31-42.gh-issu…
Zheaoli Jun 16, 2025
daed532
fix review idea
Zheaoli Jun 16, 2025
183387a
Merge branch 'main' into manjusaka/fix135543
Zheaoli Jun 16, 2025
f1c6f03
update test
Zheaoli Jun 16, 2025
baa0032
Merge branch 'manjusaka/fix135543' of github.com:Zheaoli/cpython into…
Zheaoli Jun 16, 2025
b9bc94e
Fix review idea
Zheaoli Jun 17, 2025
b158a2b
Fix review idea
Zheaoli Jun 17, 2025
2394b27
Fix review idea
Zheaoli Jun 17, 2025
9302ef3
Update Lib/test/support/__init__.py
Zheaoli Jun 17, 2025
70dd353
Update Lib/test/support/__init__.py
Zheaoli Jun 17, 2025
1424d0e
Update Lib/test/audit-tests.py
Zheaoli Jun 17, 2025
914f8a1
Fix review idea
Zheaoli Jun 17, 2025
2fcb502
Update code
Zheaoli Jun 18, 2025
6561e81
Update code
Zheaoli Jun 18, 2025
4e7c384
Update code
Zheaoli Jun 18, 2025
20ac399
fix review idea
Zheaoli Jun 18, 2025
8682689
update news
Zheaoli Jun 18, 2025
60725af
fix review idea
Zheaoli Jun 19, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions Doc/library/sys.rst
8000
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1933,6 +1933,11 @@ always available. Unless explicitly noted otherwise, all variables are read-only
interpreter is pre-release (alpha, beta, or release candidate) then the
local and remote interpreters must be the same exact version.

.. audit-event:: remove_exec pid script_path

When the code is executed in the remote process, an :ref:`auditing event <auditing>`
``remove_exec`` is raised with the *pid* and the path to the script file.

.. audit-event:: remote_debugger_script script_path

When the script is executed in the remote process, an
Expand Down
7 changes: 7 additions & 0 deletions Lib/test/test_sys.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2114,11 +2114,18 @@ def audit_hook(event, arg):
script = '''
print("Remote script executed successfully!")
'''
remote_exec_event_triggered = False
def audit_hook(event, arg):
if event == "remote_exec":
nonlocal remote_exec_event_triggered
remote_exec_event_triggered = True
sys.addaudithook(audit_hook)
returncode, stdout, stderr = self._run_remote_exec_test(script, prologue=prologue)
self.assertEqual(returncode, 0)
self.assertIn(b"Remote script executed successfully!", stdout)
self.assertIn(b"Audit event: remote_debugger_script, arg: ", stdout)
self.assertEqual(stderr, b"")
self.assertTrue(remote_exec_event_triggered)

def test_remote_exec_with_exception(self):
"""Test remote exec with an exception raised in the target process
Expand Down
2 changes: 2 additions & 0 deletions Misc/NEWS.d/next/Core_and_Builtins/2025-06-16-02-31-42.gh-issue-135543.6b0HOF.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
emit ``sys.remote_exec`` audit event when ``sys.remote_exec`` has been
called
4 changes: 4 additions & 0 deletions Python/sysmodule.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2485,6 +2485,10 @@ sys_remote_exec_impl(PyObject *module, int pid, PyObject *script)
PyObject *path;
const char *debugger_script_path;

if (PySys_Audit("remote_exec", "iO", pid, script) < 0) {
return NULL;
}

if (PyUnicode_FSConverter(script, &path) == 0) {
return NULL;
}
Expand Down
Loading
0