Apparently s->ctx could be NULL. (Coverity ID 147).

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 7c2eb027eb6d0e43ae330c26e82bd2683de9b978..3c6907f608faeef8ed2fd12d283baa1550311dbf 100644 (file)
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1197,7 +1197,7 @@ int ssl_check_clienthello_tlsext(SSL *s)
         * Note: this must be called after servername callbacks in case 
         * the certificate has changed.
         */
-       if ((s->tlsext_status_type != -1) && s->ctx->tlsext_status_cb)
+       if ((s->tlsext_status_type != -1) && s->ctx && s->ctx->tlsext_status_cb)
                {
                int r;
                r = s->ctx->tlsext_status_cb(s, s->ctx->tlsext_status_arg);