Skip to content

avoid leaving hanging object references in helper functions #44

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
mattsb42-aws opened this issue Feb 21, 2018 · 3 comments · Fixed by #264
Closed

avoid leaving hanging object references in helper functions #44

mattsb42-aws opened this issue Feb 21, 2018 · 3 comments · Fixed by #264
Labels
good first issue maintenance

Comments

@mattsb42-aws
Copy link
Member

The encrypt and decrypt helper functions in the top-level aws_encryption_sdk module currently return the header object from the EncryptionStream objects. To avoid any possibility of those objects not being released for garbage collection because of active reference, we should copy the header object and return the copy.
@mattsb42-aws mattsb42-aws self-assigned this Feb 21, 2018
@mattsb42-aws mattsb42-aws removed their assignment Dec 6, 2018
@abdulsmapara
Copy link
Contributor

@mattsb42-aws, I am interested in solving this issue.
Does the return value of encrypt function at https://github.com/aws/aws-encryption-sdk-python/blob/master/src/aws_encryption_sdk/internal/crypto/encryption.py#L76
and decrypt function at https://github.com/aws/aws-encryption-sdk-python/blob/master/src/aws_encryption_sdk/internal/crypto/encryption.py#L135 need to be modified ?

@mattsb42-aws
Copy link
Member Author

Hi @abdulsmapara, thanks for the interest!

This is referring to the top-level single-step interfaces for encrypt[1] and decrypt[2]. The concern is that the reference to the attribute on the stream object will keep the stream object around in memory. This is not a concern for the streaming interface because in that case the caller has direct control of the stream object.

Poking around at this a bit today, actually the only thing that we would need to do here is to use copy.deepcopy to copy the header and keyring trace objects from the managed stream before passing them to CryptoResult. It looks like attrs is already handling all the complicated bits. :)

[1]

aws-encryption-sdk-python/src/aws_encryption_sdk/__init__.py

Lines 84 to 87 in 82e2156

with StreamEncryptor(**kwargs) as encryptor:
ciphertext = encryptor.read()
return CryptoResult(result=ciphertext, header=encryptor.header, keyring_trace=encryptor.keyring_trace)

[2]

aws-encryption-sdk-python/src/aws_encryption_sdk/__init__.py

Lines 143 to 146 in 82e2156

with StreamDecryptor(**kwargs) as decryptor:
plaintext = decryptor.read()
return CryptoResult(result=plaintext, header=decryptor.header, keyring_trace=decryptor.keyring_trace)

@abdulsmapara abdulsmapara mentioned this issue Apr 28, 2020
Merged
@abdulsmapara
Copy link
Contributor

I think this PR should complete the task !

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
good first issue maintenance
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

hanging object references in helper functions avoided
2 participants
@mattsb42-aws @abdulsmapara