openssl: try to avoid accessing OCSP structs when possible

diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c
index f0c97f044694c44d98d88428089f8153fe7e1ec6..3f93e220b0a07bb10cbeacd66b3cee49c721ae62 100644 (file)
--- a/lib/vtls/openssl.c
+++ b/lib/vtls/openssl.c
@@ -1390,17 +1390,15 @@ static CURLcode verifystatus(struct connectdata *conn,
     goto end;
   }
 
-  for(i = 0; i < sk_OCSP_SINGLERESP_num(br->tbsResponseData->responses); i++) {
+  for(i = 0; i < OCSP_resp_count(br); i++) {
     int cert_status, crl_reason;
     OCSP_SINGLERESP *single = NULL;
 
     ASN1_GENERALIZEDTIME *rev, *thisupd, *nextupd;
 
-    if(!sk_OCSP_SINGLERESP_value(br->tbsResponseData->responses, i))
+    if(!(single = OCSP_resp_get0(br, i)))
       continue;
 
-    single = sk_OCSP_SINGLERESP_value(br->tbsResponseData->responses, i);
-
     cert_status = OCSP_single_get0_status(single, &crl_reason, &rev,
                                           &thisupd, &nextupd);