Skip to content

_ssl._SSLContext construction crashes when a bad build results in an empty PY_SSL_DEFAULT_CIPHER_STRING #define #117310

New issue
New issue
Closed
Closed
_ssl._SSLContext construction crashes when a bad build results in an empty PY_SSL_DEFAULT_CIPHER_STRING #define#117310
Assignees
gpshead
Labels
type-bugAn unexpected behavior, bug, or errortype-crashA hard crash of the interpreter, possibly with a core dump
@gpshead

Description

@gpshead
gpshead
opened on Mar 28, 2024

Bug report

What happened?

This doesn't come up in practice as nobody would ever have such a misbehaving build in a supported released config.

Not a security issue.

I stumbled upon this while working on my draft #116399 BoringSSL linkage branch in my own non-OpenSSL Linux environment.

Steps to reproduce

./configure --with-ssl-default-suites="" && make -j24
./python -m test test_ssl
... SIGSEGV ...

The desired result is a Python exception. Clearly nobody builds intentionally with the above flag as it would've crashed when they tried to use their build. I encountered this error a different way due to a non-functional ssl library config.

CPython versions tested on:

CPython main branch

Linked PRs

Metadata

Metadata

Assignees

Labels

type-bugAn unexpected behavior, bug, or errortype-crashA hard crash of the interpreter, possibly with a core dump

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions