Don't initialize enc_method before version negotiation. Move it into ssl->s3 so it automatically behaves correctly on SSL_clear. ssl->version is still a mess though. Change-Id: I17a692a04a845886ec4f8de229fa6cf99fa7e24a Reviewed-on: https://boringssl-review.googlesource.com/6844 Reviewed-by: Adam Langley <alangley@gmail.com>

commit: b83003ebc62d9683b2ebdb119fb9c63f4271c171 [log] [tgz]
author: David Benjamin <davidben@chromium.org> Wed Dec 30 17:39:26 2015 -0500
committer: Adam Langley <alangley@gmail.com> Wed Jan 27 21:38:12 2016 +0000
tree: 921afa6732f4fb31508acd9ba2ab7b8feefdf6ad
parent: a565d29ce65c7a3ae8083f31e58b131eb35c0add [diff] [blame]
diff --git a/ssl/s3_lib.c b/ssl/s3_lib.c
index 0d4a821..fa25579 100644
--- a/ssl/s3_lib.c
+++ b/ssl/s3_lib.c

@@ -197,11 +197,11 @@
 
   ssl->s3 = s3;
 
-  /* Set the version to the highest supported version for TLS. This controls the
-   * initial state of |ssl->enc_method| and what the API reports as the version
-   * prior to negotiation.
+  /* Set the version to the highest supported version.
    *
-   * TODO(davidben): This is fragile and confusing. */
+   * TODO(davidben): Move this field into |s3|, have it store the normalized
+   * protocol version, and implement this pre-negotiation quirk in |SSL_version|
+   * at the API boundary rather than in internal state. */
   ssl->version = TLS1_2_VERSION;
   return 1;
 err:
commit	b83003ebc62d9683b2ebdb119fb9c63f4271c171	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Wed Dec 30 17:39:26 2015 -0500
committer	Adam Langley <alangley@gmail.com>	Wed Jan 27 21:38:12 2016 +0000
tree	921afa6732f4fb31508acd9ba2ab7b8feefdf6ad
parent	a565d29ce65c7a3ae8083f31e58b131eb35c0add [diff] [blame]