Unexport the handshake's internal state. Code which manages to constrain itself on this will limit our ability to rework the handshake. I believe, at this point, we only need to expose one bit of information (there's some code that compares SSL_state to SSL_ST_OK), if even that. BUG=177 Change-Id: Ie1c43006737db0b974811f1819755c629ae68e7b Reviewed-on: https://boringssl-review.googlesource.com/13826 CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Reviewed-by: Steven Valdez <svaldez@google.com> Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com>

commit: 9e766d7532412b41b7d87c367c934b20baa85566 [log] [tgz]
author: David Benjamin <davidben@google.com> Fri Feb 10 23:14:17 2017 -0500
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Mon Feb 13 19:44:30 2017 +0000
tree: cee4d3ed819b4896cac2cb2df8050302891cb9c9
parent: 07ab5d44d9f8e73d621940bf64a7cd457641d189 [diff] [blame]
diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h
index 497093d..7f4e87c 100644
--- a/include/openssl/ssl.h
+++ b/include/openssl/ssl.h

@@ -3589,7 +3589,10 @@
 
 typedef struct ssl_conf_ctx_st SSL_CONF_CTX;
 
-/* SSL_state returns the current state of the handshake state machine. */
+/* SSL_state returns |SSL_ST_INIT| if a handshake is in progress and |SSL_ST_OK|
+ * otherwise.
+ *
+ * Use |SSL_is_init| instead. */
 OPENSSL_EXPORT int SSL_state(const SSL *ssl);
 
 #define SSL_get_state(ssl) SSL_state(ssl)
commit	9e766d7532412b41b7d87c367c934b20baa85566	[log] [tgz]
author	David Benjamin <davidben@google.com>	Fri Feb 10 23:14:17 2017 -0500
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Mon Feb 13 19:44:30 2017 +0000
tree	cee4d3ed819b4896cac2cb2df8050302891cb9c9
parent	07ab5d44d9f8e73d621940bf64a7cd457641d189 [diff] [blame]