Don't access EVP_MD_CTX internals directly.
authorDr. Stephen Henson <steve@openssl.org>
Fri, 1 Feb 2013 13:53:43 +0000 (13:53 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Wed, 6 Feb 2013 14:19:10 +0000 (14:19 +0000)
(cherry picked from commit 04e45b52ee3be81121359cc1198fd01e38096e9f)

ssl/s3_cbc.c

index da53a6d..52e2941 100644 (file)
@@ -379,7 +379,7 @@ char ssl3_cbc_record_digest_supported(const EVP_MD_CTX *ctx)
        if (FIPS_mode())
                return 0;
 #endif
-       switch (ctx->digest->type)
+       switch (EVP_MD_CTX_type(ctx))
                {
                case NID_md5:
                case NID_sha1:
@@ -452,7 +452,7 @@ void ssl3_cbc_digest_record(
         * many possible overflows later in this function. */
        OPENSSL_assert(data_plus_mac_plus_padding_size < 1024*1024);
 
-       switch (ctx->digest->type)
+       switch (EVP_MD_CTX_type(ctx))
                {
                case NID_md5:
                        MD5_Init((MD5_CTX*)md_state.c);