Re: [sr-dev] [kamailio/kamailio] stirshaken: Properly handle intermediary/chain certificates when caching certificates (PR #3289)

6 Dec 2022

I haven't noticed the leak myself but I'm not running on high volume.

Upon closer inspection of libstirshaken it doesn't seem to care about freeing the
certificate chain in many cases which could explain it regardless if any of the recent PRs
are applied.  Notably stir_shaken_cert_destroy() and stir_shaken_cert_deinit() seem to
free the cert->x but not cert->xchain. 
https://github.com/signalwire/libstirshaken/blob/master/src/stir_shaken_ssl…

I'll see if I can get another PR submitted to that project to deal with it.

-- 
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/pull/3289#issuecomment-1338665057
You are receiving this because you are subscribed to this thread.

Message ID: &lt;kamailio/kamailio/pull/3289/c1338665057(a)github.com&gt;

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

Re: [sr-dev] [kamailio/kamailio] stirshaken: Properly handle intermediary/chain certificates when caching certificates (PR #3289)