Change CCS_OK to EXPECT_CCS. Now that the flag is set accurately, use it to enforce that the handshake and CCS synchronization. If EXPECT_CCS is set, enforce that: (a) No handshake records may be received before ChangeCipherSpec. (b) There is no pending handshake data at the point EXPECT_CCS is set. Change-Id: I04b228fe6a7a771cf6600b7d38aa762b2d553f08 Reviewed-on: https://boringssl-review.googlesource.com/1299 Reviewed-by: Adam Langley <agl@google.com>

commit: 86271ee9f866cd83d9e37ab1ba1218ebefb336aa [log] [tgz]
author: David Benjamin <davidben@chromium.org> Mon Jul 21 16:14:03 2014 -0400
committer: Adam Langley <agl@google.com> Fri Jul 25 17:58:58 2014 +0000
tree: 99c36d2f90a7c908639d4c210bcd6aef8d6ee36e
parent: cb5abad717d9ef77209071813376fd06b2ede294 [diff] [blame]
diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h
index 63307b4..3505581 100644
--- a/include/openssl/ssl.h
+++ b/include/openssl/ssl.h

@@ -2522,6 +2522,7 @@
 #define SSL_F_tls1_change_cipher_state_aead 279
 #define SSL_F_tls1_aead_ctx_init 280
 #define SSL_F_tls1_check_duplicate_extensions 281
+#define SSL_F_ssl3_expect_change_cipher_spec 282
 #define SSL_R_UNABLE_TO_FIND_ECDH_PARAMETERS 100
 #define SSL_R_DECRYPTION_FAILED_OR_BAD_RECORD_MAC 101
 #define SSL_R_INVALID_NULL_CMD_NAME 102
@@ -2832,6 +2833,8 @@
 #define SSL_R_CLIENTHELLO_PARSE_FAILED 437
 #define SSL_R_CONNECTION_REJECTED 438
 #define SSL_R_DECODE_ERROR 439
+#define SSL_R_UNPROCESSED_HANDSHAKE_DATA 440
+#define SSL_R_HANDSHAKE_RECORD_BEFORE_CCS 441
 #define SSL_R_SSLV3_ALERT_UNEXPECTED_MESSAGE 1010
 #define SSL_R_SSLV3_ALERT_BAD_RECORD_MAC 1020
 #define SSL_R_TLSV1_ALERT_DECRYPTION_FAILED 1021
commit	86271ee9f866cd83d9e37ab1ba1218ebefb336aa	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Mon Jul 21 16:14:03 2014 -0400
committer	Adam Langley <agl@google.com>	Fri Jul 25 17:58:58 2014 +0000
tree	99c36d2f90a7c908639d4c210bcd6aef8d6ee36e
parent	cb5abad717d9ef77209071813376fd06b2ede294 [diff] [blame]