gh-146169: correctly handle re-entrant parsing calls in Expat handlers

[picnixz]

• Issue: Segfault/UB from expat when re-entering the XML Parser #146169

[picnixz]

@hartwork I'd like your feedback here to know whether there are other places that I need to consider. I will work on the encoding issue described in the GH issue afterwards unless they are interconnected. TiA!

[hartwork]

@hartwork I'd like your feedback here to know whether there are other places that I need to consider. I will work on the encoding issue described in the GH issue afterwards unless they are interconnected. TiA!

@picnixz they seem interconnected, yes. Here's what I found:

[hartwork]

This comment seems to nee fixing:

Suggested change

	return 1 # return an integer to indicate that parsing continues
	return 1 # return a non-zero integer to indicate that parsing continues

[hartwork]

Just an idea: Use of dedent could help with readability here:

Suggested change

	payload = f"""\
	<?xml version="1.0" standalone="no"?>
	<!DOCTYPE quotations SYSTEM "quotations.dtd" [{payload_extstr}]>
	<root>&ext;</root>
	""".encode(encoding)
	payload = dedent(f"""\
	<?xml version="1.0" standalone="no"?>
	<!DOCTYPE quotations SYSTEM "quotations.dtd" [{payload_extstr}]>
	<root>&ext;</root>
	""").encode(encoding)

[hartwork]

Does ParseFile or function pyexpat_xmlparser_ParseFile_impl need something similar?

PS: Also — other than pyexpat_xmlparser_Parse_impl — it does not seem to call XML_SetEncoding. That asymmetry seems unintended (but maybe I am missing something). Maybe such a call is missing.

[picnixz]

Oh maybe, I will check. As for XML_SetEncoding, I don't know. I'll have a look at it tomorrow!