Tidy up keyblock and CCS logic slightly. Move the actual SSL_AEAD_CTX swap into the record layer. Also revise the intermediate state we store between setup_key_block and change_cipher_state. With SSL_AEAD_CTX_new abstracted out, keeping the EVP_AEAD around doesn't make much sense. Just store enough to partition the key block. Change-Id: I773fb46a2cb78fa570f00c0a89339c15bbb1d719 Reviewed-on: https://boringssl-review.googlesource.com/6832 Reviewed-by: Adam Langley <alangley@gmail.com>

commit: 4119d42e7c240ad7a651b0871e1f5ac9bbae7e68 [log] [tgz]
author: David Benjamin <davidben@chromium.org> Fri Dec 25 15:34:23 2015 -0500
committer: Adam Langley <alangley@gmail.com> Fri Jan 15 20:40:44 2016 +0000
tree: ab2d0b93589942e3323df27033285bfe149e24e2
parent: 1db2156ce8cfc8fc247691e630dd8d85a3074f5d [diff] [blame]
diff --git a/ssl/internal.h b/ssl/internal.h
index 15f590a..1096cb7 100644
--- a/ssl/internal.h
+++ b/ssl/internal.h

@@ -436,6 +436,14 @@
                      uint8_t type, const uint8_t *in, size_t in_len,
                      enum dtls1_use_epoch_t use_epoch);
 
+/* ssl_set_read_state sets |ssl|'s read cipher state to |aead_ctx|. It takes
+ * ownership of |aead_ctx|. */
+void ssl_set_read_state(SSL *ssl, SSL_AEAD_CTX *aead_ctx);
+
+/* ssl_set_write_state sets |ssl|'s write cipher state to |aead_ctx|. It takes
+ * ownership of |aead_ctx|. */
+void ssl_set_write_state(SSL *ssl, SSL_AEAD_CTX *aead_ctx);
+
 
 /* Private key operations. */
commit	4119d42e7c240ad7a651b0871e1f5ac9bbae7e68	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Fri Dec 25 15:34:23 2015 -0500
committer	Adam Langley <alangley@gmail.com>	Fri Jan 15 20:40:44 2016 +0000
tree	ab2d0b93589942e3323df27033285bfe149e24e2
parent	1db2156ce8cfc8fc247691e630dd8d85a3074f5d [diff] [blame]