[sr-dev] [kamailio/kamailio] stirshaken: Properly handle intermediary/chain certificates when caching certificates (PR #3289)
mrtrev
notifications at github.com
Tue Dec 6 04:02:29 CET 2022
I haven't noticed the leak myself but I'm not running on high volume.
Upon closer inspection of libstirshaken it doesn't seem to care about freeing the certificate chain in many cases which could explain it regardless if any of the recent PRs are applied. Notably stir_shaken_cert_destroy() and stir_shaken_cert_deinit() seem to free the cert->x but not cert->xchain. https://github.com/signalwire/libstirshaken/blob/master/src/stir_shaken_ssl.c#L1822
I'll see if I can get another PR submitted to that project to deal with it.
--
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/pull/3289#issuecomment-1338665057
You are receiving this because you are subscribed to this thread.
Message ID: <kamailio/kamailio/pull/3289/c1338665057 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.kamailio.org/pipermail/sr-dev/attachments/20221205/f9ff0c49/attachment.htm>
More information about the sr-dev
mailing list