Update the SSL_set_session() documentation

Update the SSL_set_session() documentation to reflect the fact that old bad sessions are removed from the cache if necessary. Reviewed-by: Rich Salz <rsalz@openssl.org>
author: Matt Caswell <matt@openssl.org> 2016-06-09 13:46:34 +0100
committer: Matt Caswell <matt@openssl.org> 2016-06-13 17:35:18 +0100
commit: ec02df83e6f41bce3a2b4d97ff013a3fd632259d (patch)
tree: 7da3e998000b44b98916765b4d9c728da15efda1 /doc/ssl
parent: 2cb4b5f63ac8d78506652725d0afe299f99d1437 (diff)
download: openssl-ec02df83e6f41bce3a2b4d97ff013a3fd632259d.tar.gz
1 files changed, 5 insertions, 1 deletions
diff --git a/doc/ssl/SSL_set_session.pod b/doc/ssl/SSL_set_session.pod
index 0a8a208a97..1de533f4c5 100644
--- a/doc/ssl/SSL_set_session.pod
+++ b/doc/ssl/SSL_set_session.pod
@@ -21,7 +21,11 @@ with the L<SSL_session_reused(3)> call.
 
 If there is already a session set inside B<ssl> (because it was set with
 SSL_set_session() before or because the same B<ssl> was already used for
-a connection), SSL_SESSION_free() will be called for that session.
+a connection), SSL_SESSION_free() will be called for that session. If that old
+session is still B<open>, it is considered bad and will be removed from the
+session cache (if used). A session is considered open, if L<SSL_shutdown(3)> was
+not called for the connection (or at least L<SSL_set_shutdown(3)> was used to
+set the SSL_SENT_SHUTDOWN state).
 
 =head1 NOTES
author	Matt Caswell <matt@openssl.org>	2016-06-09 13:46:34 +0100
committer	Matt Caswell <matt@openssl.org>	2016-06-13 17:35:18 +0100
commit	ec02df83e6f41bce3a2b4d97ff013a3fd632259d (patch)
tree	7da3e998000b44b98916765b4d9c728da15efda1 /doc/ssl
parent	2cb4b5f63ac8d78506652725d0afe299f99d1437 (diff)
download	openssl-ec02df83e6f41bce3a2b4d97ff013a3fd632259d.tar.gz