Clean up tls1_change_cipher_state().

Replace flag gymnastics at call sites with separate read and write, functions which call the common code. Condition on s->server instead of using SSL_ST_ACCEPT, for consistency and more readable code. ok inoguchi@ tb@
author: jsing <> 2021-05-02 17:46:58 +0000
committer: jsing <> 2021-05-02 17:46:58 +0000
commit: 138d879b1616ace5c1ae9d93e2d734b08892691d (patch)
tree: 50c9893a25ead9ba252f8ac28a27688e77d6f79d /src/lib/libssl/ssl_clnt.c
parent: 9f7bc5899b5335b444e8b9f837aee040b51730e7 (diff)
download: openbsd-138d879b1616ace5c1ae9d93e2d734b08892691d.tar.gz
openbsd-138d879b1616ace5c1ae9d93e2d734b08892691d.tar.bz2
openbsd-138d879b1616ace5c1ae9d93e2d734b08892691d.zip
1 files changed, 3 insertions, 5 deletions
diff --git a/src/lib/libssl/ssl_clnt.c b/src/lib/libssl/ssl_clnt.c
index 022efd8b3b..1874d22b94 100644
--- a/src/lib/libssl/ssl_clnt.c
+++ b/src/lib/libssl/ssl_clnt.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_clnt.c,v 1.95 2021/05/02 17:18:10 jsing Exp $ */
+/* $OpenBSD: ssl_clnt.c,v 1.96 2021/05/02 17:46:58 jsing Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -474,15 +474,13 @@ ssl3_connect(SSL *s)
                        S3I(s)->hs.state = SSL3_ST_CW_FINISHED_A;
                        s->internal->init_num = 0;
                        s->session->cipher = S3I(s)->hs.cipher;
                        if (!tls1_setup_key_block(s)) {
                                ret = -1;
                                goto end;
                        }
+                        if (!tls1_change_write_cipher_state(s)) {
-                        if (!tls1_change_cipher_state(s,
-                            SSL3_CHANGE_CIPHER_CLIENT_WRITE)) {
                                ret = -1;
                                goto end;
                        }
author	jsing <>	2021-05-02 17:46:58 +0000
committer	jsing <>	2021-05-02 17:46:58 +0000
commit	138d879b1616ace5c1ae9d93e2d734b08892691d (patch)
tree	50c9893a25ead9ba252f8ac28a27688e77d6f79d /src/lib/libssl/ssl_clnt.c
parent	9f7bc5899b5335b444e8b9f837aee040b51730e7 (diff)
download	openbsd-138d879b1616ace5c1ae9d93e2d734b08892691d.tar.gz openbsd-138d879b1616ace5c1ae9d93e2d734b08892691d.tar.bz2 openbsd-138d879b1616ace5c1ae9d93e2d734b08892691d.zip

diff --git a/src/lib/libssl/ssl_clnt.c b/src/lib/libssl/ssl_clnt.c index 022efd8b3b..1874d22b94 100644 --- a/src/lib/libssl/ssl_clnt.c +++ b/src/lib/libssl/ssl_clnt.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssl_clnt.c,v 1.95 2021/05/02 17:18:10 jsing Exp $ */	1	/* $OpenBSD: ssl_clnt.c,v 1.96 2021/05/02 17:46:58 jsing Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -474,15 +474,13 @@ ssl3_connect(SSL *s)
474		474
475	S3I(s)->hs.state = SSL3_ST_CW_FINISHED_A;	475	S3I(s)->hs.state = SSL3_ST_CW_FINISHED_A;
476	s->internal->init_num = 0;	476	s->internal->init_num = 0;
477
478	s->session->cipher = S3I(s)->hs.cipher;	477	s->session->cipher = S3I(s)->hs.cipher;
		478
479	if (!tls1_setup_key_block(s)) {	479	if (!tls1_setup_key_block(s)) {
480	ret = -1;	480	ret = -1;
481	goto end;	481	goto end;
482	}	482	}
483		483	if (!tls1_change_write_cipher_state(s)) {
484	if (!tls1_change_cipher_state(s,
485	SSL3_CHANGE_CIPHER_CLIENT_WRITE)) {
486	ret = -1;	484	ret = -1;
487	goto end;	485	goto end;
488	}	486	}