Commit 572fa024 authored by Dmitry Yakovlev's avatar Dmitry Yakovlev Committed by Rich Salz
Browse files

Move SSL_DEBUG md fprintf after assignment 



To avoid crash (same as #5138 fixed in 44f23cd2)

CLA: trivial

Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6937)
parent 80162ad6

ssl/statem/statem_lib.c

+5 −3
Original line number Diff line number Diff line
@@ -381,9 +381,6 @@ MSG_PROCESS_RETURN tls_process_cert_verify(SSL *s, PACKET *pkt) 
            /* SSLfatal() already called */

            goto err;

        }

#ifdef SSL_DEBUG

        fprintf(stderr, "USING TLSv1.2 HASH %s\n", EVP_MD_name(md));

#endif

    } else if (!tls1_set_peer_legacy_sigalg(s, pkey)) {

            SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_TLS_PROCESS_CERT_VERIFY,

                     ERR_R_INTERNAL_ERROR);
@@ -396,6 +393,11 @@ MSG_PROCESS_RETURN tls_process_cert_verify(SSL *s, PACKET *pkt) 
        goto err;

    }



#ifdef SSL_DEBUG

    if (SSL_USE_SIGALGS(s))

        fprintf(stderr, "USING TLSv1.2 HASH %s\n", EVP_MD_name(md));

#endif



    /* Check for broken implementations of GOST ciphersuites */

    /*

     * If key is GOST and len is exactly 64 or 128, it is signature without