[openssl] OpenSSL_1_1_1-stable update

kaishen.yy at antfin.com kaishen.yy at antfin.com
Wed Aug 14 02:31:39 UTC 2019

The branch OpenSSL_1_1_1-stable has been updated
       via  5c9261aa07d197a94380e6f5d0e0b9f855924bc4 (commit)
      from  8ab99435c0c6e993af090759fea8879bcabaae6c (commit)

- Log -----------------------------------------------------------------
commit 5c9261aa07d197a94380e6f5d0e0b9f855924bc4
Author: Paul Yang <kaishen.yy at antfin.com>
Date:   Wed Aug 14 10:28:07 2019 +0800

    Add description in X509_STORE manipulation
    Add memory management description in X509_STORE_add_cert, otherwise
    users will not be aware that they are leaking memory...
    Reviewed-by: Dmitry Belyavskiy <beldmit at gmail.com>
    Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre at ncp-e.com>
    Reviewed-by: Matt Caswell <matt at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/9484)
    (cherry picked from commit 86333b6e0c5c488130ab237e95b8520891b81bf6)


Summary of changes:
 doc/man3/X509_STORE_add_cert.pod | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/doc/man3/X509_STORE_add_cert.pod b/doc/man3/X509_STORE_add_cert.pod
index 8ac9729bc3..3ea5b8b127 100644
--- a/doc/man3/X509_STORE_add_cert.pod
+++ b/doc/man3/X509_STORE_add_cert.pod
@@ -55,7 +55,9 @@ operate on pointers to B<X509> objects, though.
 X509_STORE_add_cert() and X509_STORE_add_crl() add the respective object
 to the B<X509_STORE>'s local storage.  Untrusted objects should not be
-added in this way.
+added in this way.  The added object's reference count is incremented by one,
+hence the caller retains ownership of the object and needs to free it when it
+is no longer needed.
 X509_STORE_set_depth(), X509_STORE_set_flags(), X509_STORE_set_purpose(),
 X509_STORE_set_trust(), and X509_STORE_set1_param() set the default values
@@ -90,7 +92,7 @@ L<X509_STORE_get0_param(3)>
-Copyright 2017-2018 The OpenSSL Project Authors. All Rights Reserved.
+Copyright 2017-2019 The OpenSSL Project Authors. All Rights Reserved.
 Licensed under the OpenSSL license (the "License").  You may not use
 this file except in compliance with the License.  You can obtain a copy

More information about the openssl-commits mailing list