alt.hn

7/4/2026 at 12:37:16 PM

The pandemic of incomplete OpenSSL error handling

https://blog.jak-linux.org/2026/07/03/openssl-pandemic/

by teddyh

7/4/2026 at 12:59:36 PM

Recklessly discarding OpenSSL errors is really bad and could lead to security vulnerabilities.

Calling ERR_clear_error before operations is widely recommended: https://github.com/openssl/openssl/discussions/23025

which matches the blog author's point.

How widespread is this OpenSSL error discarding practice? It might explain a lot of security vulnerabilities.

by thesuperbigfrog