From 7c7eac4808f49d1b7bba67ade896788d25f7baa6 Mon Sep 17 00:00:00 2001
From: Fabian Keil <fk@fabiankeil.de>
Date: Wed, 26 Aug 2020 15:45:08 +0200
Subject: [PATCH] ssl_verify_callback(): Handle html_encode() failures

Sponsored by: Robert Klemme
---
 ssl.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/ssl.c b/ssl.c
index 30b6f583..1eb6e827 100644
--- a/ssl.c
+++ b/ssl.c
@@ -1726,6 +1726,12 @@ static int ssl_verify_callback(void *csp_void, mbedtls_x509_crt *crt,
 
       mbedtls_x509_crt_info(buf, sizeof(buf), CERT_INFO_PREFIX, crt);
       encoded_text = html_encode(buf);
+      if (encoded_text == NULL)
+      {
+         log_error(LOG_LEVEL_ERROR,
+            "Failed to HTML-encode the certificate information");
+         return -1;
+      }
       strlcpy(last->info_buf, encoded_text, sizeof(last->info_buf));
       freez(encoded_text);
    }
-- 
2.39.2