openssl: OpenSSL 3.0.0-alpha2 missing error codes in headers

The new PROV_R_* error codes (and PROV_F_* function codes) aren’t exposed in the public headers, but their values can be returned in OpenSSL errors in 3.0.0-alpha2 (e.g. PROV_R_WRONG_FINAL_BLOCK_LENGTH).

About this issue

  • Original URL
  • State: closed
  • Created 4 years ago
  • Comments: 15 (15 by maintainers)

Most upvoted comments

Nope, we haven’t touched the topic, as far as I recall.

This is really a dodgy subject, especially in view of different providers having their own set of error codes (it’s absolutely permissible), so another external provider that supplies really cool RSA acceleration will throw any checks of specific OpenSSL generated error codes off.

Mind you that we do have a “global” set of errors, those named ERR_R_, and I for one would rather expand those… a lot, and use them, as well as encourage everyone else to do the same when applicable. That would be the most reliable source of error codes.

If that’s feasible for 3.0, I have no idea. @paulidale, @mattcaswell, @slontis, @romen, @mspncp, can we remind each other to have a talk about this next tuesday?

+1
levitte on Sep 15, 2020
Read more comments on GitHub
← openssl: OpenSSL 3.0 : segmentation fault with devcrypto engine
openssl: OpenSSL 3.0.0-alpha6 6 Aug 2020 breaks perl Net::DNS::SEC ECDSA signature generation →