Tell OpenSSL that the data is gone

diff --git a/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c b/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c
index 19f3fe068292f8cde94f9781f0cafdd990916bcb..77e994aeced0db93bae933b4a10faa560d3f53e5 100644 (file)
--- a/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c
+++ b/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c
@@ -214,6 +214,8 @@ static void cbtls_remove_session(UNUSED SSL_CTX *ctx, SSL_SESSION *sess)
        vp = SSL_SESSION_get_ex_data(sess, eaptls_session_idx);
        if (vp) pairfree(&vp);
 
+       SSL_SESSION_set_ex_data(sess, eaptls_session_idx, NULL);
+
         DEBUG2("  SSL: Removing session %s from the cache", buffer);
         SSL_SESSION_free(sess);