doc: Clarify that calling SSL_set_session(ssl, NULL) is a correct use case.

Reviewed-by: Ben Kaduk <kaduk@mit.edu> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/18101) (cherry picked from commit e763b1861fb2a138371464b7d3996dbde85ff5e8)
author: EasySec <easy.sec@free.fr> 2022-04-13 13:02:44 +0200
committer: Tomas Mraz <tomas@openssl.org> 2022-04-19 13:56:32 +0200
commit: 279e66f76ac3e66f20f0af4cd6de214879797d08 (patch)
tree: 55eee2a24d6026823787ef34b762f851a7030826
parent: 0699e96f1f65a89222f1dfe054e69957801a4f1c (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/doc/man3/SSL_set_session.pod b/doc/man3/SSL_set_session.pod
index c3eca2565a..f1c0193bf3 100644
--- a/doc/man3/SSL_set_session.pod
+++ b/doc/man3/SSL_set_session.pod
@@ -21,7 +21,8 @@ with the L<SSL_session_reused(3)> call.
 
 If there is already a session set inside B<ssl> (because it was set with
 SSL_set_session() before or because the same B<ssl> was already used for
-a connection), SSL_SESSION_free() will be called for that session. If that old
+a connection), SSL_SESSION_free() will be called for that session.
+This is also the case when B<session> is a NULL pointer. If that old
 session is still B<open>, it is considered bad and will be removed from the
 session cache (if used). A session is considered open, if L<SSL_shutdown(3)> was
 not called for the connection (or at least L<SSL_set_shutdown(3)> was used to
author	EasySec <easy.sec@free.fr>	2022-04-13 13:02:44 +0200
committer	Tomas Mraz <tomas@openssl.org>	2022-04-19 13:56:32 +0200
commit	279e66f76ac3e66f20f0af4cd6de214879797d08 (patch)
tree	55eee2a24d6026823787ef34b762f851a7030826
parent	0699e96f1f65a89222f1dfe054e69957801a4f1c (diff)