[openssl-commits] [openssl] OpenSSL_1_0_2-stable update

Matt Caswell matt at openssl.org
Tue Apr 24 08:25:17 UTC 2018

The branch OpenSSL_1_0_2-stable has been updated
       via  9668efbcf3b924f23320b58b8f44bbe8b9490e5e (commit)
      from  279bf3e0a07d6c84043a316ca8494cbc3b51f731 (commit)

- Log -----------------------------------------------------------------
commit 9668efbcf3b924f23320b58b8f44bbe8b9490e5e
Author: Matt Caswell <matt at openssl.org>
Date:   Mon Apr 23 11:23:43 2018 +0100

    Document when a session gets removed from cache
    Document the fact that if a session is not closed down cleanly then the
    session gets removed from the cache and marked as non-resumable.
    Fixes #4720
    Reviewed-by: Rich Salz <rsalz at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/6054)
    (cherry picked from commit 0abb903b7618ad404c83ac9b44b2c1bf162b90de)


Summary of changes:
 doc/ssl/SSL_get_session.pod | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/doc/ssl/SSL_get_session.pod b/doc/ssl/SSL_get_session.pod
index 0c41caa..921d316 100644
--- a/doc/ssl/SSL_get_session.pod
+++ b/doc/ssl/SSL_get_session.pod
@@ -28,6 +28,11 @@ count of the B<SSL_SESSION> is incremented by one.
 The ssl session contains all information required to re-establish the
 connection without a new handshake.
+A session will be automatically removed from the session cache and marked as
+non-resumable if the connection is not closed down cleanly, e.g. if a fatal
+error occurs on the connection or L<SSL_shutdown(3)> is not called prior to
 SSL_get0_session() returns a pointer to the actual session. As the
 reference counter is not incremented, the pointer is only valid while
 the connection is in use. If L<SSL_clear(3)|SSL_clear(3)> or

More information about the openssl-commits mailing list