[openssl-users] FIPS, continuous tests, and error reporting

Salz, Rich rsalz at akamai.com
Thu Feb 19 16:09:47 UTC 2015

> For instance, any of the void DES_*_encrypt().  This cursory observation is
> also supported by a vendor application code such as:

Ah, okay.  Those functions are 'just math'  They depend on no external state.  They can't fail.  It's shifts and masking, etc.

> This is basically why I'm wondering about how errors propagate in the
> OpenSSL library.

Functions that can fail return a status.  Those that are just math are often void. There's an "error stack" where functions can put more detailed status, and it propagates; see ERR_get_error, ERR_clear_error, etc., for details.  

More information about the openssl-users mailing list