-/* $OpenBSD: t1_enc.c,v 1.109 2017/05/06 22:24:58 beck Exp $ */
+/* $OpenBSD: t1_enc.c,v 1.110 2018/08/31 18:31:34 jsing Exp $ */
/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
* All rights reserved.
*
* tls1_change_cipher_state_cipher performs the work needed to switch cipher
* states when using EVP_CIPHER. The argument is_read is true iff this function
* is being called due to reading, as opposed to writing, a ChangeCipherSpec
- * message. In order to support export ciphersuites, use_client_keys indicates
- * whether the key material provided is in the "client write" direction.
+ * message.
*/
static int
-tls1_change_cipher_state_cipher(SSL *s, char is_read, char use_client_keys,
+tls1_change_cipher_state_cipher(SSL *s, char is_read,
const unsigned char *mac_secret, unsigned int mac_secret_size,
const unsigned char *key, unsigned int key_len, const unsigned char *iv,
unsigned int iv_len)
const EVP_AEAD *aead;
char is_read, use_client_keys;
-
cipher = S3I(s)->tmp.new_sym_enc;
aead = S3I(s)->tmp.new_aead;
use_client_keys = ((which == SSL3_CHANGE_CIPHER_CLIENT_WRITE) ||
(which == SSL3_CHANGE_CIPHER_SERVER_READ));
-
/*
* Reset sequence number to zero - for DTLS this is handled in
* dtls1_reset_seq_numbers().
iv, iv_len);
}
- return tls1_change_cipher_state_cipher(s, is_read, use_client_keys,
+ return tls1_change_cipher_state_cipher(s, is_read,
mac_secret, mac_secret_size, key, key_len, iv, iv_len);
err2:
projects / openbsd / commitdiff