On Sunday 12 of April 2009 23:51:01 Daniel Stenberg wrote: > On Fri, 10 Apr 2009, Kamil Dudka wrote: > > An incremental patch is attached. It is also changed to destroy objects > > in reverse order. I am not sure if the initialization of the new > > variables is necessary. We can drop it if it is already initialized by > > caller. > > > > I am going to apply it on Fedora next week. > > So I take it this cures Toshio's remaining leaks too then?
It still leaks heavily while using a client certificate. I suspect the PEM reader module. But I am not sure if the leak is caused by the module itself or the way how it is used within lib/nss.c. I am going to look at it deeper. Anyway the patch destroying "generic objects" works well AFAIK. Kamil