From 3a047c6de85dcf6e20dfe24674321e555ce5cbd4 Mon Sep 17 00:00:00 2001
From: Sasha Romijn <github@mxsasha.eu>
Date: Wed, 17 Sep 2025 16:35:09 +0200
Subject: [PATCH] Ignore incidental OpenSSLError in cert scan

---
 sslyze/plugins/certificate_info/implementation.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/sslyze/plugins/certificate_info/implementation.py b/sslyze/plugins/certificate_info/implementation.py
index 4c798839..48ba4d49 100644
--- a/sslyze/plugins/certificate_info/implementation.py
+++ b/sslyze/plugins/certificate_info/implementation.py
@@ -122,7 +122,7 @@ def result_for_completed_scan_jobs(
                 received_chain_as_pem, ocsp_response, custom_ca_file, was_sni_used = completed_job.get_result()
                 assert received_chain_as_pem, "Should never happen as we always retrieve a certificate chain"
 
-            except TlsHandshakeFailed as exc:
+            except (TlsHandshakeFailed, nassl._nassl.OpenSSLError) as exc:
                 # Can happen when trying to connect with specific cipher suites (such as RSA or non-RSA)
                 # or when connectivity is bad
                 all_handshake_failed_exceptions.append(exc)