On Fri, Apr 11, 2014 at 05:51:17PM -0500, Reini Urban wrote: > On 04/11/2014 04:13 PM, Carlos Alberto Lopez Perez wrote: > >Probably this blog post provides more information about what Akamai has > >been doing related to this issue: > > > >https://blogs.akamai.com/2014/04/heartbleed-update.html > > > >It would be appreciated if you cared to contribute back your own custom > >secure_malloc allocator. > > just tcmalloc. which uses mmap, not sbrk. > you can build your libssl also against tcmalloc. google prefers it also I > heard.
While tcmalloc is very fast, it will not detect various forms of misuse. It does not returns memory to the OS, for example. See http://goog-perftools.sourceforge.net/doc/tcmalloc.html -Otto ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
