On Mon, 10 Jan 2022 22:04:33 -0800, Stan Sieler via cctalk wrote:
It may have been that either the routine wasn't
getting called when it
should, or that the programmer misinterpreted what the return value meant.
The Debian 4 OpenSSL disaster comes to mind, where IIRC a know-it-all
package manager beautified the source and reduced the effective length
of any generated keys to 32 bit. But that was more like 15 yrs ago...
Cheerio,
Hauke
--
Hauke Fath <hauke at Espresso.Rhein-Neckar.DE>
Linn?weg 7
64342 Seeheim-Jugenheim
Germany