> The buffer is _supposed_ to be big enough. We know of no path through 
> the code that should cause it to be not big enough. So if this condition 
> occurs something we don't understand has happened. Continuing under 
> these circumstances as if nothing were wrong strikes me as foolhardy.

If you know of no paths through the code that cause the problem, why
bother checking for it at all?

Aborting an entire, possibly mission critical, application because of
this is equally foolhardy.

The best solution I can see is that you should give *me*, the
application developer, the choice.

-- 
Harald Koch     <[EMAIL PROTECTED]>

"It takes a child to raze a village."
                -Michael T. Fry
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to