cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: SSL certificates and increasing memory usage

From: Kamil Dudka <kdudka_at_redhat.com>
Date: Tue, 20 Aug 2013 10:52:40 +0200

On Tuesday 20 August 2013 10:39:02 Daniel Stenberg wrote:
> On Mon, 19 Aug 2013, Jerry Blakley wrote:
> > What seems to be happening is that while the session is open and the
> > connection reused, we make the repeated allocations in nss_create_object,
> > increasing memory usage, until the session ends and curl_easy_cleanup is
> > called.
> >
> > Is this the case, and should it be so? Or is there/should there be some
> > intermediary cleanup routine, or an ability to reuse the certificate
> > information without the reallocation?
>
> Hi,
>
> I'm not an NSS expert but it looks to me like there's no need to reload the
> cert/key when the connection is re-used (as it is only re-used when the
> same cert/key is set). What about a patch like the attached?

Thanks for the patch! I see cert_stuff() is called only when doing a SSL
handshake. Can it actually happen that a new handshake is initiated on a
reused connection?

Kamil
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2013-08-20