KEMBAR78
Fix duplicate header leak in ACLK HTTPS client by ktsaou · Pull Request #21084 · netdata/netdata · GitHub
Skip to content

Fix duplicate header leak in ACLK HTTPS client #21084

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 2, 2025
Merged

Fix duplicate header leak in ACLK HTTPS client #21084

merged 1 commit into from
Oct 2, 2025

Conversation

@ktsaou
Copy link
Member

@ktsaou ktsaou commented Oct 1, 2025
edited
Loading

  • free the previous allocation when the same header key is seen again
  • keep parser init/reset safety tweaks from the local branch

Fixes #21083

In other works, aclk was leaking the value of each duplicate http response header key received. It was using the last, but all previous were leaked. Now it frees duplicates before allocating a new one (still uses the last one).

@ktsaou ktsaou requested a review from stelfrag as a code owner October 1, 2025 21:30
ktsaou
ktsaou commented Oct 1, 2025
View reviewed changes
src/aclk/https_client.c
}
void *prev_val = NULL;
if (!c_rhash_get_ptr_by_str(parse_ctx->headers, key, &prev_val))
freez(prev_val); // drop previous allocation before overwriting
Copy link
Member Author

@ktsaou ktsaou Oct 1, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@stelfrag if you don't want to keep the rest, the above 2 lines fix the actual leak.

All the others are supposed to make this more robust.

@stelfrag stelfrag merged commit 41d9554 into netdata:master Oct 2, 2025
108 checks passed
stelfrag pushed a commit to stelfrag/netdata that referenced this pull request Oct 3, 2025
@ktsaou @stelfrag
Fix duplicate header leak in ACLK HTTPS client (netdata#21084)
7bd48ca 
fix(aclk): free previous header values before overwrite

Refs: netdata#21083
(cherry picked from commit 41d9554)
@stelfrag stelfrag mentioned this pull request Oct 3, 2025
Merged
Ferroin pushed a commit that referenced this pull request Oct 15, 2025
@ktsaou @Ferroin
Fix duplicate header leak in ACLK HTTPS client (#21084)
05704e9 
fix(aclk): free previous header values before overwrite

Refs: #21083
(cherry picked from commit 41d9554)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@stelfrag stelfrag stelfrag approved these changes

Assignees

No one assigned

Labels

area/aclk

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[Bug]: aclk memory leak

2 participants

@ktsaou @stelfrag