Are executables produced with Cython really free of the source code?

by

The code is found in the original pyx-file next to your exe. Delete/don’t distribute this pyx-file with your exe.

When you look at the generated C-code, you will see why the error message is shown by your executable:

For a raised error, Cython will emit a code similar to the following:

__PYX_ERR(0, 11, __pyx_L3_error)

where __PYX_ERR is a macro defined as:

#define __PYX_ERR(f_index, lineno, Ln_error) \
{ \
  __pyx_filename = __pyx_f[f_index]; __pyx_lineno = lineno; __pyx_clineno = __LINE__; goto Ln_error; \
}

and the variable __pyx_f is defined as 

static const char *__pyx_f[] = {
  "test.pyx",
  "stringsource",
};

Basically __pyx_f[0] tells where the original code could be found. Now, when an exception is raised, the (embedded) Python interpreter looks for your original pyx-file and finds the corresponding code (this can be looked up in __Pyx_AddTraceback which is called when an error is raised).

Once this pyx-file is not around, the original source code will no longer be known to the Python interpreter/anybody else. However, the error trace will still show the names of the functions and line-numbers but no longer any code snippets.

The resulting executable (or extension if one creates one) doesn’t content any bytecode (as in pyc-files) and cannot be decompiled with tools like uncompyle: bytecode is produced when py-file is translated into Python-opcodes which are then evaluated in a huge loop in ceval.c. Yet for builtin/cython modules no bytecode is needed because the resulting code uses directly Python’s C-API, cutting out the need to have/evaluate the opcodes – these modules skip interpretation, which a reason for them being faster. Thus no bytecode will be in the executable.

One important note though: One should check that the linker doesn’t include debug information (and thus the C-code where the pyx-file content can be found as comments). MSVC with /Z7 options is such an example.

However, the resulting executable can be disassembled to assembler and then the generated C-code can be reverse engineered – so while cythonizing is Ok to make it hard to understand the code, it is not the right tool to conceal keys or security algorithms.

More Related Contents:

  1. Make executable file from multiple pyx files using cython
  2. Compiling with cython and mingw produces gcc: error: unrecognized command line option ‘-mno-cygwin’
  3. What is the recommended way of allocating memory for a typed memory view?
  4. Force NumPy ndarray to take ownership of its memory in Cython
  5. Wrapping a C library in Python: C, Cython or ctypes?
  6. Verifying compatibility in compiling extension types, and using them with cdef
  7. Can Cython compile to an EXE?
  8. Compile main Python program using Cython
  9. How to tell distutils to use gcc?
  10. calling dot products and linear algebra operations in Cython?
  11. Why does numpy.zeros takes up little space
  12. How to profile cython functions line-by-line
  13. Simple wrapping of C code with cython
  14. Interpretation vs dynamic dispatch penalty in Python
  15. Numpy vs Cython speed
  16. Running Cython in Windows x64 – fatal error C1083: Cannot open include file: ‘basetsd.h’: No such file or directory
  17. Cython class AttributeError
  18. Mixing cdef and regular python attributes in cdef class
  19. How to compile .c code from Cython with gcc
  20. Filtering (reducing) a NumPy Array
  21. Fortran – Cython Workflow
  22. Difference between np.int, np.int_, int, and np.int_t in cython?
  23. Definition of def, cdef and cpdef in cython
  24. Using Cython To Link Python To A Shared Library
  25. Wrapping a pre-initialized pointer in a cython class
  26. Cython: (Why / When) Is it preferable to use Py_ssize_t for indexing?
  27. Large Performance difference when summing ints vs floats in Cython vs NumPy
  28. Passing numpy arrays in Cython to a C function that requires dynamically allocated arrays
  29. numpy faster than numba and cython , how to improve numba code
  30. reload module with pyximport?

Leave a Comment