On 25/04/2014 12:58 p.m., Alex Rousskov wrote: > Do not leak ex_data for SSL state that survived reconfigure. > > SSL_get_ex_new_index() allocates a new index on every call, even if its > parameters remain unchanged. It should be called once per process lifetime. > > Besides leaking, this 12 year-old(!) bug could probably make some SSL > code misbehave during reconfigure because reconfigure would change the > supposedly constant ex_data indexes. > > Alex. >
+1. Amos