[openssl-dev] [openssl.org #3662] [bug report]DTLS memory leak in dtls1_accept when use PSK in opensll 1.0.1j

Fri Jan 16 08:00:33 UTC 2015

Hi:
         I am using DTLS PSK, and I found memory leak in DTLS establishment.
         I use valgrind to check memory and find some unreachable point.
valgrind --tool=memcheck --leak-check=full --show-reachable=yes

24 bytes in 1 blocks are still reachable in loss record 539 of 622
==12007==    at 0x4A069EE: malloc (vg_replace_malloc.c:270)
==12007==    by 0x463E1D: CRYPTO_malloc (mem.c:308)
==12007==    by 0x465AF3: def_get_class (ex_data.c:308)
==12007==    by 0x465D98: int_new_ex_data (ex_data.c:408)
==12007==    by 0x438BD6: SSL_SESSION_new (ssl_sess.c:216)
==12007==    by 0x438C52: ssl_get_new_session (ssl_sess.c:280)
==12007==    by 0x445BBF: ssl3_get_client_hello (s3_srvr.c:1028)
==12007==    by 0x42A1FE: dtls1_accept (d1_srvr.c:299)
==12007==
==12007== 24 bytes in 1 blocks are still reachable in loss record 540 of 622
==12007==    at 0x4A069EE: malloc (vg_replace_malloc.c:270)
==12007==    by 0x463E1D: CRYPTO_malloc (mem.c:308)
==12007==    by 0x486FD8: lh_insert (lhash.c:193)
==12007==    by 0x465B25: def_get_class (ex_data.c:320)
==12007==    by 0x465D98: int_new_ex_data (ex_data.c:408)
==12007==    by 0x438BD6: SSL_SESSION_new (ssl_sess.c:216)
==12007==    by 0x438C52: ssl_get_new_session (ssl_sess.c:280)
==12007==    by 0x445BBF: ssl3_get_client_hello (s3_srvr.c:1028)
==12007==    by 0x42A1FE: dtls1_accept (d1_srvr.c:299)


32 bytes in 1 blocks are still reachable in loss record 553 of 622
==12007==    at 0x4A069EE: malloc (vg_replace_malloc.c:270)
==12007==    by 0x463E1D: CRYPTO_malloc (mem.c:308)
==12007==    by 0x486844: sk_new_null (stack.c:125)
==12007==    by 0x465B09: def_get_class (ex_data.c:313)
==12007==    by 0x465D98: int_new_ex_data (ex_data.c:408)
==12007==    by 0x438BD6: SSL_SESSION_new (ssl_sess.c:216)
==12007==    by 0x438C52: ssl_get_new_session (ssl_sess.c:280)
==12007==    by 0x445BBF: ssl3_get_client_hello (s3_srvr.c:1028)
==12007==    by 0x42A1FE: dtls1_accept (d1_srvr.c:299)
==12007==
==12007== 32 bytes in 1 blocks are still reachable in loss record 554 of 622
==12007==    at 0x4A069EE: malloc (vg_replace_malloc.c:270)
==12007==    by 0x463E1D: CRYPTO_malloc (mem.c:308)
==12007==    by 0x486860: sk_new_null (stack.c:127)
==12007==    by 0x465B09: def_get_class (ex_data.c:313)
==12007==    by 0x465D98: int_new_ex_data (ex_data.c:408)
==12007==    by 0x438BD6: SSL_SESSION_new (ssl_sess.c:216)
==12007==    by 0x438C52: ssl_get_new_session (ssl_sess.c:280)
==12007==    by 0x445BBF: ssl3_get_client_hello (s3_srvr.c:1028)
==12007==    by 0x42A1FE: dtls1_accept (d1_srvr.c:299)


thanks