[Dovecot] Leaky dovecot-auth ?

Timo Sirainen tss at iki.fi
Tue Jul 3 05:15:19 EEST 2007


On Tue, 2007-07-03 at 11:08 +0900, Christian Balzer wrote:
> On Mon, 02 Jul 2007 17:37:05 +0300 Timo Sirainen <tss at iki.fi> wrote:
> > 
> > Hmm. Does this help: http://hg.dovecot.org/dovecot-1.0/rev/50c79521e8f5
> >
> We have a winner!
> Auth process grows to the same size as with a local DB and stays there.
> 
> Now I just have to get this into a security maintained Debian package...
> (looks around for the official package masters and backports maintainers)
> 
> Am I correct in assuming that this code did not change since 0.99, read
> that the leak I saw for the last 4 years was the same thing? ;)

Yea, I had never known about ber_free() before. Also I hadn't noticed
auth process growing in my LDAP stress tests either, so I thought the
problem was something else.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20070703/24ca7a59/attachment.bin 


More information about the dovecot mailing list