[xmlsec] Memory Leak with signing a "Large Node Count" document

Ed Shallow ed.shallow at rogers.com
Mon Nov 13 11:02:23 PST 2006


Hi Aleksey,
- libxml2-2.6.26.win32
- xmlsec 1.2.10
- openssl-0.9.8a.win32
Ed
-----Original Message-----
From: Aleksey Sanin [mailto:aleksey at aleksey.com] 
Sent: Monday, November 13, 2006 1:14 PM
To: Ed Shallow
Cc: xmlsec at aleksey.com
Subject: Re: [xmlsec] Memory Leak with signing a "Large Node Count" document

Which crypto library do you use (openssl, mscrypto, nss, ...)? Which
version of libxml2/xmlsec do you use?

Thanks,
Aleksey

Ed Shallow wrote:
> Hi Aleksey,
> 
>    I seem to have tripped on a memory leak when signing a file with a very
> large quantity of child nodes in the document being signed. The memory
leak
> does not appear if, for example all the 500K of content is in a few nodes.
> However when the 500K is spread out over 1000 nodes for example, the
memory
> leak appears.
> 
>    I tried the xmlsec command line tool using the --repeat option to rule
> out my application, and the memory leak was still there.
> 
>    Attached is the template and below is the command which leaks memory on
> Windows XP SP2 using openssl with xmlsec 1.2.10.    
> 
>> xmlsec sign --repeat 1000 --pkcs12 keys/edshallow.p12 --pwd password
> --output inout/edsigned-enveloped-ot500K.xml
> tmpl/tmpl-EPM-sign-enveloped-500K.xml
> 
> You will see the memory grow about 300-400 bytes per iteration. I would
not
> be surprised if the leak is actually in libxml2.
> 
> Let me know what you see,
> Ed 
> 
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec

-- 
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.409 / Virus Database: 268.14.2/528 - Release Date: 11/10/2006
 

-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.409 / Virus Database: 268.14.2/528 - Release Date: 11/10/2006
 



More information about the xmlsec mailing list