The http vfs implementation leaks http sessions.
Firstly, in vfs::http::Mount, there is a line:
set token [http::geturl $dirurl -validate 1]
There doesn't seem to be a reason for this to be there, as it's
result is never checked, and $token is not referenced ever again.
Leak number 2 is in vfs::http::open, where the url is retrieved with
http::geturl and then copied into a memchan. This is missing a
http::cleanup after the copy has been done.
Log in to post a comment.