Hi, On 03/12/2020 19:22, Steffan Karger wrote: > tls-crypt-v2 was developed in parallel with the changes that allowed to > use tls-auth/tls-crypt in connection blocks. The tls-crypt-v2 patch set > was never updated to the new reality after commit 5817b49b, causing a > memory leak of about 600 bytes for each connecting client. > > It would be nicer to not reload the tls-crypt-v2 server key for each > connecting client, but that requires more refactoring (and thus more time > to get right). So for now just plug the leak by free'ing the memory when > we close a client connection. > > To test this easily, compile openvpn with -fsanity=address, run a server > with tls-crypt-v2, connect a client, stop the server. > > Signed-off-by: Steffan Karger <stef...@karger.me>
Acked-by: Antonio Quartulli <a...@unstable.cc> -- Antonio Quartulli _______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel