Forums & community:FwpmNetEventEnum5 have a lot of memory leak in windows10

Question

Forums & community:FwpmNetEventEnum5 have a lot of memory leak in windows10

继勤丁 1

After executing FwpmNetEventEnum5, there is a lot of memory leak after calling FwpmFreeMemory0.

The current operating system version is windows 10.0.19042

And I have raised the bug in the GitHub sample：https://github.com/microsoft/Windows-classic-samples/issues/202

Answer 1

Xiaopo Yang - MSFT 7,106 Microsoft Vendor

After replacing FwpmNetEventEnum0 with FwpmNetEventEnum5, I did not find memory leak in diagevents sample but I used an invalid remoteAddr. My windows10 OS build is 19042.928.

继勤丁 1 Reputation point

2021-09-24T09:28:32.067+00:00

Do you have a loop call to getmatchingevents and fwpmfreememory0 in the main function? Is the value num returned by getmatchingevents greater than 0?
For example:

void main() {
while(true) {
...
result = GetMatchingEvents(mins,
version,
&remoteAddr,
&matchedEvents,
&Num); / / the returned value for the test is generally at least 32, so the memory leak is very obvious
...
FwpmFreeMemory0((VOID**)&matchedEvents);
...
}
}
Xiaopo Yang - MSFT 7,106 Reputation points Microsoft Vendor

2021-09-27T05:32:41.147+00:00

I just make a little change. But the value num returned by getmatchingevents is 0.

Forums & community:FwpmNetEventEnum5 have a lot of memory leak in windows10

1 answer

Activity