Simplify the ChangeCipherSpec logic. It's the same between TLS and SSL 3.0. There's also no need for the do_change_cipher_spec wrapper (it no longer needs checks to ensure it isn't called at a bad place). Finally fold the setup_key_block call into change_cipher_spec. Change-Id: I7917f48e1a322f5fbafcf1dfb8ad53f66565c314 Reviewed-on: https://boringssl-review.googlesource.com/6834 Reviewed-by: Adam Langley <alangley@gmail.com>

commit: 57997da8ee2f38c7d47b7c1c1c5b4264bc061d5c [log] [tgz]
author: David Benjamin <davidben@chromium.org> Fri Dec 25 15:48:39 2015 -0500
committer: Adam Langley <alangley@gmail.com> Fri Jan 15 21:33:57 2016 +0000
tree: 6cf0cc74ad792295796e6cf2e0c58b1844225a95
parent: 0623bceb254d0dc25b8b5a1024dd36d2f8ec2be1 [diff] [blame]
diff --git a/ssl/t1_enc.c b/ssl/t1_enc.c
index 7dd6f0e..8c4b6d8 100644
--- a/ssl/t1_enc.c
+++ b/ssl/t1_enc.c

@@ -269,6 +269,11 @@
 }
 
 int tls1_change_cipher_state(SSL *ssl, int which) {
+  /* Ensure the key block is set up. */
+  if (!tls1_setup_key_block(ssl)) {
+    return 0;
+  }
+
   /* is_read is true if we have just read a ChangeCipherSpec message - i.e. we
    * need to update the read cipherspec. Otherwise we have just written one. */
   const char is_read = (which & SSL3_CC_READ) != 0;
commit	57997da8ee2f38c7d47b7c1c1c5b4264bc061d5c	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Fri Dec 25 15:48:39 2015 -0500
committer	Adam Langley <alangley@gmail.com>	Fri Jan 15 21:33:57 2016 +0000
tree	6cf0cc74ad792295796e6cf2e0c58b1844225a95
parent	0623bceb254d0dc25b8b5a1024dd36d2f8ec2be1 [diff] [blame]