This corrects the reference count handling in SSL_get_session. Previously, the returned SSL_SESSION didn't have its reference count incremented so the SSL_SESSION could be freed at any time causing seg-faults if the pointer was subsequently used. Code that uses SSL_get_session must now make a corresponding SSL_SESSION_free() call when it is done to avoid memory leaks (or blocked up session caches). Submitted By: Geoff Thorpe <geoff@eu.c2.net>

commit: b7cfcfb7f8e17c17f457b3384010eb027f3aad72 [log] [tgz]
author: Mark J. Cox <mark@openssl.org> Mon Nov 15 16:31:31 1999 +0000
committer: Mark J. Cox <mark@openssl.org> Mon Nov 15 16:31:31 1999 +0000
tree: 5b5789625f7de0a23738f3e56bf4b6838456ae44
parent: 06556a1744dced40a2a77d7b6e4bb73f6e611b8d [diff] [blame]
diff --git a/CHANGES b/CHANGES
index c4b95c8..f37645a 100644
--- a/CHANGES
+++ b/CHANGES

@@ -4,6 +4,10 @@
 
  Changes between 0.9.4 and 0.9.5  [xx XXX 1999]
 
+  *) Correctly increment the reference count in the SSL_SESSION pointer 
+     returned from SSL_get_session().
+     [Geoff Thorpe <geoff@eu.c2.net>]
+
   *) Fix for 'req': it was adding a null to request attributes.
      Also change the X509_LOOKUP and X509_INFO code to handle
      certificate auxiliary information.
commit	b7cfcfb7f8e17c17f457b3384010eb027f3aad72	[log] [tgz]
author	Mark J. Cox <mark@openssl.org>	Mon Nov 15 16:31:31 1999 +0000
committer	Mark J. Cox <mark@openssl.org>	Mon Nov 15 16:31:31 1999 +0000
tree	5b5789625f7de0a23738f3e56bf4b6838456ae44
parent	06556a1744dced40a2a77d7b6e4bb73f6e611b8d [diff] [blame]