On Thu, Aug 19, 2021 at 05:59:30AM +, Bala Duvvuri wrote:
> We invoke X509_verify_cert() during the certification verification and
> this fails (expectedly due to the missing CA certificate), so we
> invoke X509_STORE_CTX_free to clean up the "X509_STORE_CTX" context
> and hit this crash (this
Viktor,
Thank you for taking a look.
We are not invoking either of the API
X509_STORE_CTX_get0_chain/X509_STORE_CTX_get1_chain
We invoke X509_verify_cert() during the certification verification and this
fails (expectedly due to the missing CA certificate), so we invoke
X509_STORE_CTX_free t
> On 16 Aug 2021, at 5:58 am, Bala Duvvuri via openssl-users
> wrote:
>
> We are using OpenSSl version 1.1.1d in our program and crash is being seen in
> "OPENSSL_sk_pop_free" API, we invoke this API in our certificate verification
> API. Since crash is not seen always, trying to understand fr
