[stunnel-users] Possible leak in client.c:init_ssl()

• Previous message (by thread): [stunnel-users] Possible leak in client.c:init_ssl()
• Next message (by thread): [stunnel-users] Weird error when trying to use 512bit RSA key
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This concerns me. Does the leak occur on badly handled disconnects only, 
or will the leak happen even when the disconnect is handled in an 
orderly manner?

On 4/12/2011 3:48 PM, Michal Trojnara wrote:
> Sven Ulland wrote:
>> Is it so that the
>> number of ssl/connections allocated by stunnel is always the maximum
>> observed throughout the entire runtime, i.e. it never frees up idle
>> connections? That's not really a problem, I'm just curious.
>
> In order to free up an idle connection stunnel would have to close 
> it.  In many cases connections supposed to be persistent.  The timeout 
> is controlled with TIMEOUTidle option.  The default value is 43200 
> seconds = 12 hours.
>
>> I recompiled 0.9.8r with zlib enabled again, but it's not clear to me
>> if zlib was actually used in the following run or not. At least there
>> were no zlib or libz strings in the massif output.
>>
>> I'll assume it's the OpenSSL issues that were at fault, and then
>> continue to run with the new lib version. If there is any new
>> development in the upcoming days, I'll send a follow-up.
>
> I'll appreciate it.
>
> Mike
>
>
> _______________________________________________
> stunnel-users mailing list
> stunnel-users at stunnel.org
> http://stunnel.mirt.net/mailman/listinfo/stunnel-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20110416/8dcdb071/attachment.html>

• Previous message (by thread): [stunnel-users] Possible leak in client.c:init_ssl()
• Next message (by thread): [stunnel-users] Weird error when trying to use 512bit RSA key
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]