> On Sep 18, 2018, at 12:30 PM, Maxwell Dreytser <admin@xxxxxxxxx> wrote: > >> X509_STORE_free() decrements a reference count, and frees the object only >> when the count reaches zero. >> > Was this behavior the same in older versions? Yes. > If so, then there is no reason to clear cert_store even in older version, right? That depends on whether setting the cert_store element was done properly (in a way that incremented the reference count) or not. See the documentation of: SSL_CTX_set1_cert_store(3) SSL_CTX_set_cert_store(3) the latter does not facilitate sharing the store across multiple SSL_CTX instances. -- Viktor. -- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
