clear OpenSSL thread error queue each time, might help with certain f… #8103
Conversation
|
Could you try setup a spec for this? |
I think the point here is that having multiple errors is extremely unlikely (which is why things work at all as they are). So this would likely make the average slower. |
|
Are there specs somewhere else I can see as an example of mocking out LibCrypto? Is that possible? Do you still want an IO? (Yes it's very rare AFAIK). |
In that case, there is still a concatenation because message is initialized to |
|
Yes, that should be fixed. Perhaps there's a way to combine 2 different desired properties: "no concatenation by default" and "add newlines". Something like this: if !error
error = get_error()
else
error += "\n" + get_error()
end |
It is! It returns the non-empty string :-) |
|
You'd like an exception whose message contains newlines? Might that mess up logging and loggers or some odd? |
|
I had hoped this would fix this bug: #8108 but it turned out it didn't. It might be worth pursuing sometime for "better OpenSSL error messages" but I lack the expertise to finish it at this point, love for anybody else to finish it, cheers! |
|
After some further research, it appears that it's too dangerous to "trust yourself" to having cleared it perfectly before, and the safest option is to insert a call to ERR_clear_error before any OpenSSL call: |
|
So do we need a new issue to track this? |
|
Yeah. |
…ailure cases.
It wasn't clear if this is absolutely necessary but it does follow the spec:
6d08357
And apparently some people have run into problems if they don't do it this way:
nodejs/node-v0.x-archive#1719
I think if you call it more than once it's supposed to give "more detailed" error messages with each invocation or something along those lines.