Comments (3)
nhorman
commented on June 17, 2024
1
Its going to be very difficult to tell what exactly is going on here, without having some significant interrogation of the sources for the python libraries you are using. I say that because, looking at your backtrace:
#0 X509_LOOKUP_by_subject_ex (ctx=0x0, type=type@entry=X509_LU_X509, name=name@entry=0x7fdad0017370, ret=ret@entry=0x7fdadee44550,
libctx=0x0, propq=0x0) at crypto/x509/x509_lu.c:96
#1 0x00007fdae562f67e in X509_STORE_CTX_get_by_subject (vs=vs@entry=0x7fdad005e500, type=type@entry=X509_LU_X509,
name=name@entry=0x7fdad0017370, ret=ret@entry=0x7fdad00ee420) at crypto/x509/x509_lu.c:333
#2 0x00007fdae5633982 in X509_STORE_CTX_get1_issuer (issuer=0x7fdadee44660, ctx=0x7fdad005e500, x=0x7fdad001cae0)
at crypto/x509/x509_lu.c:736
#3 0x00007fdae563c4a8 in get1_trusted_issuer (cert=0x7fdad001cae0, ctx=0x7fdad005e500, issuer=0x7fdadee44660)
at crypto/x509/x509_vfy.c:2982
#4 build_chain (ctx=0x7fdad005e500) at crypto/x509/x509_vfy.c:3103
In stack frame (2) we see X509_STORE_CTX_get1_issuer is being called, which was passed ctx=0x7fdad005e500, which, so far so good.
In stack frame (1) We see X509_STORE_CTX_get_by_subject is being called, with the first argument being vs=vs@entry=0x7fdad005e500. If I remember my gdb syntax properly, the vs@entry emission is gdbs way of opportunistically saying "when we entered the function, the value of this parameter was 0x7fdad005e500". The address matches the ctx pointer from frame (2), so thats good. The significance of the @entry notation however is that gdb detected an unexpected change to the value.
in stack frame (0) we see this alteration was realized, based on the fact that ctx is now NULL.
Looking at the source for these three stack frames, we can see that ctx is passed from one to the other without alteration, so something external to those functions is impacting its value
My guess is that, given the python code you've posted, that something in the boto3 client is sharing library contexts between threads, and one client is exiting, possibly deallocating the context while another thread is still using it. Of course, thats just a guess, we would have to go digging through the boto3 client library and its subordonates to figure out exactly whats going on.
from openssl.
Related Issues (20)
- There is a memory leak defect at line 83 in the file /openssl/test/cmp_hdr_test.c.
- There is a memory leak defect at line 141 in the file /openssl/test/cmp_hdr_test.c.
- There is a memory leak defect at line 304 in the file /openssl/test/cmp_hdr_test.c. HOT 2
- There is a memory leak defect at line 82 in the file /openssl/test/ecstresstest.c.
- Additional smaller build targets HOT 3
- OpenSC + Smartcard-HSM + secp521r1 + OpenSSH = signing failed for ECDSA "secp521r1": error in libcrypto HOT 1
- ML-KEM in TLS HOT 5
- Changing Modules directory
- Update SmtpUTF8Mailbox support to RFC 9598
- Not getting Expected output for tls13-kdf EXTRACT-ONLY testcase
- Improve BIO_s_accept api call documentation HOT 1
- CMP: the iterationCount of PBMParameter should be configurable
- aix-cc : 32-bit : compilation issue HOT 1
- isatty()-driven suppression of stdin warning is insufficient HOT 1
- OpenSSL 3.x.How to enable legacy algorithm support? HOT 3
- [QAT_Engine] Could you please provide the purpose of EVP_MD_CTX_FLAG_FINALISE flag in EVP_DigestSignFinal() for SM2
- Enablement of certificate_authorities TLS extension via openssl.cnf not working HOT 8
- Latent bugs due to slight misuse of CRYPTO_THREAD locking APIs HOT 1
- The test βtest_quic_multistream.tβ is unstabled when running with ASAN HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openssl.