So... I've finally done some testing with gcc's -fsanitize=leak, and after a few false starts I now have managed to get some results. I've submitted my findings in https://github.com/NLnetLabs/unbound/issues/1264 The TL;DR; of it is that the leak sanitizer found leaks related to use of libnghttp2. Regards, - Håvard