The pandemic of incomplete OpenSSL error handling
Summary
The article argues that widespread use of ERR_clear_error() around OpenSSL calls is a risky, systemic pattern that masks unrelated errors. It warns that discarding errors can undermine security and trust, and suggests proper error-stack management with ERR_set_mark and better error handling in library code.