On 12/22/2017 9:24 AM, Salz, Rich via openssl-users wrote:
That shouldn’t be necessary for OpenSSL. If you find places where it is, please open an issue.
if (ptr!= NULL) free(ptr);
OK. I'll mention a few, but it's a global issue.
The code may handle NULL. However, conservative users won't go by what
the code happens to do today. We have to go by the API documentation,
which is the contract between the library and the user. If the API is
silent, we cautiously assume it's not guaranteed, and can change in the
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev