Detecting Bad OpenSSL Usage

Salz, Rich rsalz at
Sun May 31 13:50:24 UTC 2020

It would be really interesting to run this over the apps.  Maybe reach out to the author for help with that?

From: Dmitry Belyavsky <beldmit at>
Date: Sunday, May 31, 2020 at 5:44 AM
To: "openssl-project at" <openssl-project at>
Subject: Detecting Bad OpenSSL Usage


Here is a nice article about a tool desired to catch misuse of the OpenSSL API.<>

I'm not sure whether it's worth using by the team but maybe it's worth mentioning in OpenSSL Wiki.

SY, Dmitry Belyavsky
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the openssl-project mailing list