Add X509_up_ref function.

author Dr. Stephen Henson <steve@openssl.org>

Mon, 31 Aug 2015 19:29:57 +0000 (20:29 +0100)

committer Dr. Stephen Henson <steve@openssl.org>

Mon, 31 Aug 2015 22:18:55 +0000 (23:18 +0100)
author Dr. Stephen Henson <steve@openssl.org>
Mon, 31 Aug 2015 19:29:57 +0000 (20:29 +0100)
committer Dr. Stephen Henson <steve@openssl.org>
Mon, 31 Aug 2015 22:18:55 +0000 (23:18 +0100)
diff --git a/crypto/cms/cms_env.c b/crypto/cms/cms_env.c

index 5c86dd997212c974d54cd2755c2b9fceb79a4da0..f677a9bc4d9b5f2f90173e8de3ab9dfa278547d6 100644 (file)
--- a/crypto/cms/cms_env.c
+++ b/crypto/cms/cms_env.c
@@ -206,7 +206,7 @@ static int cms_RecipientInfo_ktri_init(CMS_RecipientInfo *ri, X509 *recip,
      if (!cms_set1_SignerIdentifier(ktri->rid, recip, idtype))
          return 0;
  
      if (!cms_set1_SignerIdentifier(ktri->rid, recip, idtype))
          return 0;
  
-    CRYPTO_add(&recip->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(recip);
      CRYPTO_add(&pk->references, 1, CRYPTO_LOCK_EVP_PKEY);
      ktri->pkey = pk;
      ktri->recip = recip;
      CRYPTO_add(&pk->references, 1, CRYPTO_LOCK_EVP_PKEY);
      ktri->pkey = pk;
      ktri->recip = recip;
diff --git a/crypto/cms/cms_lib.c b/crypto/cms/cms_lib.c

index e698c006bfcbadcb3ccdbcb021cd78915333cca1..0bfad69f27a4f0bd869937cc3f92a66a4596abc6 100644 (file)
--- a/crypto/cms/cms_lib.c
+++ b/crypto/cms/cms_lib.c
@@ -457,7 +457,7 @@ int CMS_add1_cert(CMS_ContentInfo *cms, X509 *cert)
      int r;
      r = CMS_add0_cert(cms, cert);
      if (r > 0)
      int r;
      r = CMS_add0_cert(cms, cert);
      if (r > 0)
-        CRYPTO_add(&cert->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(cert);
      return r;
  }
  
      return r;
  }
  
@@ -542,7 +542,7 @@ STACK_OF(X509) *CMS_get1_certs(CMS_ContentInfo *cms)
                  sk_X509_pop_free(certs, X509_free);
                  return NULL;
              }
                  sk_X509_pop_free(certs, X509_free);
                  return NULL;
              }
-            CRYPTO_add(&cch->d.certificate->references, 1, CRYPTO_LOCK_X509);
+            X509_up_ref(cch->d.certificate);
          }
      }
      return certs;
          }
      }
      return certs;
diff --git a/crypto/cms/cms_sd.c b/crypto/cms/cms_sd.c

index ab574fc3342de9971cd19500e1299a3225f3a3a3..338e51535893ac3a6c7502bca6a9f06503a02ec1 100644 (file)
--- a/crypto/cms/cms_sd.c
+++ b/crypto/cms/cms_sd.c
@@ -285,7 +285,7 @@ CMS_SignerInfo *CMS_add1_signer(CMS_ContentInfo *cms,
      X509_check_purpose(signer, -1, -1);
  
      CRYPTO_add(&pk->references, 1, CRYPTO_LOCK_EVP_PKEY);
      X509_check_purpose(signer, -1, -1);
  
      CRYPTO_add(&pk->references, 1, CRYPTO_LOCK_EVP_PKEY);
-    CRYPTO_add(&signer->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(signer);
  
      si->pkey = pk;
      si->signer = signer;
  
      si->pkey = pk;
      si->signer = signer;
@@ -485,7 +485,7 @@ STACK_OF(X509) *CMS_get0_signers(CMS_ContentInfo *cms)
  void CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer)
  {
      if (signer) {
  void CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer)
  {
      if (signer) {
-        CRYPTO_add(&signer->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(signer);
          EVP_PKEY_free(si->pkey);
          si->pkey = X509_get_pubkey(signer);
      }
          EVP_PKEY_free(si->pkey);
          si->pkey = X509_get_pubkey(signer);
      }
diff --git a/crypto/ocsp/ocsp_cl.c b/crypto/ocsp/ocsp_cl.c

index ef8ff30031ef18a973a8937abc3c72d9d16b02df..81433898735482f7e03d18a48d9476769fd5e87e 100644 (file)
--- a/crypto/ocsp/ocsp_cl.c
+++ b/crypto/ocsp/ocsp_cl.c
@@ -138,7 +138,7 @@ int OCSP_request_add1_cert(OCSP_REQUEST *req, X509 *cert)
  
      if (!sk_X509_push(sig->certs, cert))
          return 0;
  
      if (!sk_X509_push(sig->certs, cert))
          return 0;
-    CRYPTO_add(&cert->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(cert);
      return 1;
  }
  
      return 1;
  }
  
diff --git a/crypto/ocsp/ocsp_srv.c b/crypto/ocsp/ocsp_srv.c

index 740b11c5a0d97a724968f2ad5b793f7906ea7818..948eff9864cab26d62bb032688bedf8198a19cbe 100644 (file)
--- a/crypto/ocsp/ocsp_srv.c
+++ b/crypto/ocsp/ocsp_srv.c
@@ -213,7 +213,7 @@ int OCSP_basic_add1_cert(OCSP_BASICRESP *resp, X509 *cert)
  
      if (!sk_X509_push(resp->certs, cert))
          return 0;
  
      if (!sk_X509_push(resp->certs, cert))
          return 0;
-    CRYPTO_add(&cert->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(cert);
      return 1;
  }
  
      return 1;
  }
  
diff --git a/crypto/pkcs7/pk7_lib.c b/crypto/pkcs7/pk7_lib.c

index d8347419f440ef6d56d1ee2676315dc17d7729ed..b116f5a8065e3ad8ffef0e774bb24fc381408b57 100644 (file)
--- a/crypto/pkcs7/pk7_lib.c
+++ b/crypto/pkcs7/pk7_lib.c
@@ -308,7 +308,7 @@ int PKCS7_add_certificate(PKCS7 *p7, X509 *x509)
          PKCS7err(PKCS7_F_PKCS7_ADD_CERTIFICATE, ERR_R_MALLOC_FAILURE);
          return 0;
      }
          PKCS7err(PKCS7_F_PKCS7_ADD_CERTIFICATE, ERR_R_MALLOC_FAILURE);
          return 0;
      }
-    CRYPTO_add(&x509->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(x509);
      if (!sk_X509_push(*sk, x509)) {
          X509_free(x509);
          return 0;
      if (!sk_X509_push(*sk, x509)) {
          X509_free(x509);
          return 0;
@@ -545,7 +545,7 @@ int PKCS7_RECIP_INFO_set(PKCS7_RECIP_INFO *p7i, X509 *x509)
  
      EVP_PKEY_free(pkey);
  
  
      EVP_PKEY_free(pkey);
  
-    CRYPTO_add(&x509->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(x509);
      p7i->cert = x509;
  
      return 1;
      p7i->cert = x509;
  
      return 1;
diff --git a/crypto/store/str_lib.c b/crypto/store/str_lib.c

index 585752add12cdce09c9e92e89701aa63b2a234f3..3201da953667432315239ce95d5b2b2b2493f246 100644 (file)
--- a/crypto/store/str_lib.c
+++ b/crypto/store/str_lib.c
@@ -251,8 +251,7 @@ X509 *STORE_get_certificate(STORE *s, OPENSSL_ITEM attributes[],
                   STORE_R_FAILED_GETTING_CERTIFICATE);
          return 0;
      }
                   STORE_R_FAILED_GETTING_CERTIFICATE);
          return 0;
      }
-    CRYPTO_add(&object->data.x509.certificate->references, 1,
-               CRYPTO_LOCK_X509);
+    X509_up_ref(object->data.x509.certificate);
  #ifdef REF_PRINT
      REF_PRINT("X509", data);
  #endif
  #ifdef REF_PRINT
      REF_PRINT("X509", data);
  #endif
@@ -276,7 +275,7 @@ int STORE_store_certificate(STORE *s, X509 *data, OPENSSL_ITEM attributes[],
          return 0;
      }
  
          return 0;
      }
  
-    CRYPTO_add(&data->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(data);
  #ifdef REF_PRINT
      REF_PRINT("X509", data);
  #endif
  #ifdef REF_PRINT
      REF_PRINT("X509", data);
  #endif
@@ -378,8 +377,7 @@ X509 *STORE_list_certificate_next(STORE *s, void *handle)
                   STORE_R_FAILED_LISTING_CERTIFICATES);
          return 0;
      }
                   STORE_R_FAILED_LISTING_CERTIFICATES);
          return 0;
      }
-    CRYPTO_add(&object->data.x509.certificate->references, 1,
-               CRYPTO_LOCK_X509);
+    X509_up_ref(object->data.x509.certificate);
  #ifdef REF_PRINT
      REF_PRINT("X509", data);
  #endif
  #ifdef REF_PRINT
      REF_PRINT("X509", data);
  #endif
diff --git a/crypto/ts/ts_rsp_sign.c b/crypto/ts/ts_rsp_sign.c

index d90d33ffeac73aed45e4ec82fe5b239535a51216..f0fc503aff02bf6c5b79336812d379742b681567 100644 (file)
--- a/crypto/ts/ts_rsp_sign.c
+++ b/crypto/ts/ts_rsp_sign.c
@@ -209,7 +209,7 @@ int TS_RESP_CTX_set_signer_cert(TS_RESP_CTX *ctx, X509 *signer)
      }
      X509_free(ctx->signer_cert);
      ctx->signer_cert = signer;
      }
      X509_free(ctx->signer_cert);
      ctx->signer_cert = signer;
-    CRYPTO_add(&ctx->signer_cert->references, +1, CRYPTO_LOCK_X509);
+    X509_up_ref(ctx->signer_cert);
      return 1;
  }
  
      return 1;
  }
  
diff --git a/crypto/ts/ts_rsp_verify.c b/crypto/ts/ts_rsp_verify.c

index 342c524c7ca6f1fffe50bd160637840b8221db08..5784e3dc5ae4146433175a8eca82fa965aacc9ba 100644 (file)
--- a/crypto/ts/ts_rsp_verify.c
+++ b/crypto/ts/ts_rsp_verify.c
@@ -212,7 +212,7 @@ int TS_RESP_verify_signature(PKCS7 *token, STACK_OF(X509) *certs,
      /* Return the signer certificate if needed. */
      if (signer_out) {
          *signer_out = signer;
      /* Return the signer certificate if needed. */
      if (signer_out) {
          *signer_out = signer;
-        CRYPTO_add(&signer->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(signer);
      }
  
      ret = 1;
      }
  
      ret = 1;
diff --git a/crypto/x509/x509_cmp.c b/crypto/x509/x509_cmp.c

index 9308249570060955954bfd4e898b2cb2d840689a..47791c73d3bc6ac23373725c925bd39a0c584667 100644 (file)
--- a/crypto/x509/x509_cmp.c
+++ b/crypto/x509/x509_cmp.c
@@ -487,7 +487,7 @@ STACK_OF(X509) *X509_chain_up_ref(STACK_OF(X509) *chain)
      ret = sk_X509_dup(chain);
      for (i = 0; i < sk_X509_num(ret); i++) {
          X509 *x = sk_X509_value(ret, i);
      ret = sk_X509_dup(chain);
      for (i = 0; i < sk_X509_num(ret); i++) {
          X509 *x = sk_X509_value(ret, i);
-        CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(x);
      }
      return ret;
  }
      }
      return ret;
  }
diff --git a/crypto/x509/x509_lu.c b/crypto/x509/x509_lu.c

index d8ba14c39a1f7603e979a49bc6313ff868ca6464..3dae7fa41a5d26d99153dfcff3e8a8eda8f398b9 100644 (file)
--- a/crypto/x509/x509_lu.c
+++ b/crypto/x509/x509_lu.c
@@ -406,7 +406,7 @@ void X509_OBJECT_up_ref_count(X509_OBJECT *a)
      default:
          break;
      case X509_LU_X509:
      default:
          break;
      case X509_LU_X509:
-        CRYPTO_add(&a->data.x509->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(a->data.x509);
          break;
      case X509_LU_CRL:
          X509_CRL_up_ref(a->data.crl);
          break;
      case X509_LU_CRL:
          X509_CRL_up_ref(a->data.crl);
@@ -521,7 +521,7 @@ STACK_OF(X509) *X509_STORE_get1_certs(X509_STORE_CTX *ctx, X509_NAME *nm)
      for (i = 0; i < cnt; i++, idx++) {
          obj = sk_X509_OBJECT_value(ctx->ctx->objs, idx);
          x = obj->data.x509;
      for (i = 0; i < cnt; i++, idx++) {
          obj = sk_X509_OBJECT_value(ctx->ctx->objs, idx);
          x = obj->data.x509;
-        CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(x);
          if (!sk_X509_push(sk, x)) {
              CRYPTO_w_unlock(CRYPTO_LOCK_X509_STORE);
              X509_free(x);
          if (!sk_X509_push(sk, x)) {
              CRYPTO_w_unlock(CRYPTO_LOCK_X509_STORE);
              X509_free(x);
@@ -676,7 +676,7 @@ int X509_STORE_CTX_get1_issuer(X509 **issuer, X509_STORE_CTX *ctx, X509 *x)
      }
      CRYPTO_w_unlock(CRYPTO_LOCK_X509_STORE);
      if (*issuer)
      }
      CRYPTO_w_unlock(CRYPTO_LOCK_X509_STORE);
      if (*issuer)
-        CRYPTO_add(&(*issuer)->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(*issuer);
      return ret;
  }
  
      return ret;
  }
  
diff --git a/crypto/x509/x509_set.c b/crypto/x509/x509_set.c

index 486e90acea457204aadc52649671f9c892f0de7d..1ccfdb9d9c3110dbc6cec3aa624873726939c1f9 100644 (file)
--- a/crypto/x509/x509_set.c
+++ b/crypto/x509/x509_set.c
@@ -150,3 +150,8 @@ int X509_set_pubkey(X509 *x, EVP_PKEY *pkey)
          return (0);
      return (X509_PUBKEY_set(&(x->cert_info->key), pkey));
  }
          return (0);
      return (X509_PUBKEY_set(&(x->cert_info->key), pkey));
  }
+
+void X509_up_ref(X509 *x)
+{
+    CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
+}
diff --git a/crypto/x509/x509_vfy.c b/crypto/x509/x509_vfy.c

index 332a8c0f6c191dc3e5a9455331826f983a348d9c..7d770c52ab5493eae0d78464d5b833e2f9b76c56 100644 (file)
--- a/crypto/x509/x509_vfy.c
+++ b/crypto/x509/x509_vfy.c
@@ -172,7 +172,7 @@ static X509 *lookup_cert_match(X509_STORE_CTX *ctx, X509 *x)
              break;
      }
      if (i < sk_X509_num(certs))
              break;
      }
      if (i < sk_X509_num(certs))
-        CRYPTO_add(&xtmp->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(xtmp);
      else
          xtmp = NULL;
      sk_X509_pop_free(certs, X509_free);
      else
          xtmp = NULL;
      sk_X509_pop_free(certs, X509_free);
@@ -212,7 +212,7 @@ int X509_verify_cert(X509_STORE_CTX *ctx)
          X509err(X509_F_X509_VERIFY_CERT, ERR_R_MALLOC_FAILURE);
          goto end;
      }
          X509err(X509_F_X509_VERIFY_CERT, ERR_R_MALLOC_FAILURE);
          goto end;
      }
-    CRYPTO_add(&ctx->cert->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(ctx->cert);
      ctx->last_untrusted = 1;
  
      /* We use a temporary STACK so we can chop and hack at it */
      ctx->last_untrusted = 1;
  
      /* We use a temporary STACK so we can chop and hack at it */
@@ -262,7 +262,7 @@ int X509_verify_cert(X509_STORE_CTX *ctx)
                      X509err(X509_F_X509_VERIFY_CERT, ERR_R_MALLOC_FAILURE);
                      goto end;
                  }
                      X509err(X509_F_X509_VERIFY_CERT, ERR_R_MALLOC_FAILURE);
                      goto end;
                  }
-                CRYPTO_add(&xtmp->references, 1, CRYPTO_LOCK_X509);
+                X509_up_ref(xtmp);
                  (void)sk_X509_delete_ptr(sktmp, xtmp);
                  ctx->last_untrusted++;
                  x = xtmp;
                  (void)sk_X509_delete_ptr(sktmp, xtmp);
                  ctx->last_untrusted++;
                  x = xtmp;
@@ -566,7 +566,7 @@ static int get_issuer_sk(X509 **issuer, X509_STORE_CTX *ctx, X509 *x)
  {
      *issuer = find_issuer(ctx, ctx->other_ctx, x);
      if (*issuer) {
  {
      *issuer = find_issuer(ctx, ctx->other_ctx, x);
      if (*issuer) {
-        CRYPTO_add(&(*issuer)->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(*issuer);
          return 1;
      } else
          return 0;
          return 1;
      } else
          return 0;
diff --git a/crypto/x509v3/pcy_tree.c b/crypto/x509v3/pcy_tree.c

index e7ab7cd8b1bbfebde53bf1d093b93cff5f750e93..4b0ea15b6dd37ddd4433971b94005cdbdb184684 100644 (file)
--- a/crypto/x509v3/pcy_tree.c
+++ b/crypto/x509v3/pcy_tree.c
@@ -249,7 +249,7 @@ static int tree_init(X509_POLICY_TREE **ptree, STACK_OF(X509) *certs,
          level++;
          x = sk_X509_value(certs, i);
          cache = policy_cache_set(x);
          level++;
          x = sk_X509_value(certs, i);
          cache = policy_cache_set(x);
-        CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(x);
          level->cert = x;
  
          if (!cache->anyPolicy)
          level->cert = x;
  
          if (!cache->anyPolicy)
diff --git a/include/openssl/x509.h b/include/openssl/x509.h

index a77f2ba3343eeab4cb41d48e65277da2649f9072..4e816ea3c77663667914466e68b3e0a86726308b 100644 (file)
--- a/include/openssl/x509.h
+++ b/include/openssl/x509.h
@@ -798,6 +798,7 @@ X509_NAME *X509_get_subject_name(X509 *a);
  int X509_set_notBefore(X509 *x, const ASN1_TIME *tm);
  int X509_set_notAfter(X509 *x, const ASN1_TIME *tm);
  int X509_set_pubkey(X509 *x, EVP_PKEY *pkey);
  int X509_set_notBefore(X509 *x, const ASN1_TIME *tm);
  int X509_set_notAfter(X509 *x, const ASN1_TIME *tm);
  int X509_set_pubkey(X509 *x, EVP_PKEY *pkey);
+void X509_up_ref(X509 *x);
  EVP_PKEY *X509_get_pubkey(X509 *x);
  ASN1_BIT_STRING *X509_get0_pubkey_bitstr(const X509 *x);
  int X509_certificate_type(X509 *x, EVP_PKEY *pubkey /* optional */ );
  EVP_PKEY *X509_get_pubkey(X509 *x);
  ASN1_BIT_STRING *X509_get0_pubkey_bitstr(const X509 *x);
  int X509_certificate_type(X509 *x, EVP_PKEY *pubkey /* optional */ );
diff --git a/ssl/s3_clnt.c b/ssl/s3_clnt.c

index e7bbfc90ed100b2cf4a09e281d3d35a8216e27b9..ba35fb9ca5e4cc1eca6dc8b6cdf2ff01b988083b 100644 (file)
--- a/ssl/s3_clnt.c
+++ b/ssl/s3_clnt.c
@@ -1359,7 +1359,7 @@ int ssl3_get_server_certificate(SSL *s)
      s->session->peer_type = i;
  
      X509_free(s->session->peer);
      s->session->peer_type = i;
  
      X509_free(s->session->peer);
-    CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(x);
      s->session->peer = x;
      s->session->verify_result = s->verify_result;
  
      s->session->peer = x;
      s->session->verify_result = s->verify_result;
  
diff --git a/ssl/ssl_cert.c b/ssl/ssl_cert.c

index 5e9b8ffe7aaaad7d618b8b8d0d5a49eb4e0259bf..11839612f25a58d0379982dadd5c0b133f045659 100644 (file)
--- a/ssl/ssl_cert.c
+++ b/ssl/ssl_cert.c
@@ -250,7 +250,7 @@ CERT *ssl_cert_dup(CERT *cert)
          CERT_PKEY *rpk = ret->pkeys + i;
          if (cpk->x509 != NULL) {
              rpk->x509 = cpk->x509;
          CERT_PKEY *rpk = ret->pkeys + i;
          if (cpk->x509 != NULL) {
              rpk->x509 = cpk->x509;
-            CRYPTO_add(&rpk->x509->references, 1, CRYPTO_LOCK_X509);
+            X509_up_ref(rpk->x509);
          }
  
          if (cpk->privatekey != NULL) {
          }
  
          if (cpk->privatekey != NULL) {
@@ -463,7 +463,7 @@ int ssl_cert_add1_chain_cert(SSL *s, SSL_CTX *ctx, X509 *x)
  {
      if (!ssl_cert_add0_chain_cert(s, ctx, x))
          return 0;
  {
      if (!ssl_cert_add0_chain_cert(s, ctx, x))
          return 0;
-    CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(x);
      return 1;
  }
  
      return 1;
  }
  
diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c

index 2a2eb7827c187bd4c9d978d3ed550e9332934a31..fd1561e52d82acd0fc62c9d1e9e1953f9495142b 100644 (file)
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -825,7 +825,7 @@ X509 *SSL_get_peer_certificate(const SSL *s)
      if (r == NULL)
          return (r);
  
      if (r == NULL)
          return (r);
  
-    CRYPTO_add(&r->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(r);
  
      return (r);
  }
  
      return (r);
  }
diff --git a/ssl/ssl_rsa.c b/ssl/ssl_rsa.c

index f4851266a160345afe3a0a3233a0882c3d5852bb..6772441d100e265a9ea998d01b534858b1739a3d 100644 (file)
--- a/ssl/ssl_rsa.c
+++ b/ssl/ssl_rsa.c
@@ -415,7 +415,7 @@ static int ssl_set_cert(CERT *c, X509 *x)
      EVP_PKEY_free(pkey);
  
      X509_free(c->pkeys[i].x509);
      EVP_PKEY_free(pkey);
  
      X509_free(c->pkeys[i].x509);
-    CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
+    X509_up_ref(x);
      c->pkeys[i].x509 = x;
      c->key = &(c->pkeys[i]);
  
      c->pkeys[i].x509 = x;
      c->key = &(c->pkeys[i]);
  
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c

index 26a3c43f246145406e987c80995c212eaf613f03..69e6d7fea52e3b57cd06cc6b4204d48d8541d81a 100644 (file)
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -266,7 +266,7 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
      dest->references = 1;
  
      if (src->peer != NULL)
      dest->references = 1;
  
      if (src->peer != NULL)
-        CRYPTO_add(&src->peer->references, 1, CRYPTO_LOCK_X509);
+        X509_up_ref(src->peer);
  
      if (src->peer_chain != NULL) {
          dest->peer_chain = X509_chain_up_ref(src->peer_chain);
  
      if (src->peer_chain != NULL) {
          dest->peer_chain = X509_chain_up_ref(src->peer_chain);
author	Dr. Stephen Henson <steve@openssl.org>
	Mon, 31 Aug 2015 19:29:57 +0000 (20:29 +0100)
committer	Dr. Stephen Henson <steve@openssl.org>
	Mon, 31 Aug 2015 22:18:55 +0000 (23:18 +0100)
crypto/cms/cms_env.c		patch \| blob \| history
crypto/cms/cms_lib.c		patch \| blob \| history
crypto/cms/cms_sd.c		patch \| blob \| history
crypto/ocsp/ocsp_cl.c		patch \| blob \| history
crypto/ocsp/ocsp_srv.c		patch \| blob \| history
crypto/pkcs7/pk7_lib.c		patch \| blob \| history
crypto/store/str_lib.c		patch \| blob \| history
crypto/ts/ts_rsp_sign.c		patch \| blob \| history
crypto/ts/ts_rsp_verify.c		patch \| blob \| history
crypto/x509/x509_cmp.c		patch \| blob \| history
crypto/x509/x509_lu.c		patch \| blob \| history
crypto/x509/x509_set.c		patch \| blob \| history
crypto/x509/x509_vfy.c		patch \| blob \| history
crypto/x509v3/pcy_tree.c		patch \| blob \| history
include/openssl/x509.h		patch \| blob \| history
ssl/s3_clnt.c		patch \| blob \| history
ssl/ssl_cert.c		patch \| blob \| history
ssl/ssl_lib.c		patch \| blob \| history
ssl/ssl_rsa.c		patch \| blob \| history
ssl/ssl_sess.c		patch \| blob \| history