On 25/04/2014 12:58 p.m., Alex Rousskov wrote:
> Do not leak ex_data for SSL state that survived reconfigure.
> 
> SSL_get_ex_new_index() allocates a new index on every call, even if its
> parameters remain unchanged. It should be called once per process lifetime.
> 
> Besides leaking, this 12 year-old(!) bug could probably make some SSL
> code misbehave during reconfigure because reconfigure would change the
> supposedly constant ex_data indexes.
> 
> Alex.
> 


+1.

Amos

Reply via email to