From: Fabian Keil <fk@fabiankeil.de>
Date: Wed, 4 Mar 2020 15:01:23 +0000 (+0100)
Subject: ssl_verify_callback(): Log when mbedtls_pem_write_buffer() fails
X-Git-Tag: v_3_0_29~424
X-Git-Url: http://www.privoxy.org/gitweb/user-manual/faq/@default-cgi@toggle?a=commitdiff_plain;h=b8535e524c3a8c47657636616c8490c1dab77aca;p=privoxy.git

ssl_verify_callback(): Log when mbedtls_pem_write_buffer() fails

Sponsored by: Robert Klemme
---

diff --git a/ssl.c b/ssl.c
index 4d94b2ed..32b51ad0 100644
--- a/ssl.c
+++ b/ssl.c
@@ -2127,6 +2127,12 @@ static int ssl_verify_callback(void *csp_void, mbedtls_x509_crt *crt,
       crt->raw.p, crt->raw.len, (unsigned char *)last->file_buf,
       sizeof(last->file_buf)-1, &olen)) != 0)
    {
+      char err_buf[ERROR_BUF_SIZE];
+
+      mbedtls_strerror(ret, err_buf, sizeof(err_buf));
+      log_error(LOG_LEVEL_ERROR, "mbedtls_pem_write_buffer() failed: %s",
+         err_buf);
+
       return(ret);
    }