Simplify key_exchange_expected() logic

The static function key_exchange_expected() used to return -1 on error.
Commit 361a1191

 changed that so that it can never fail. This means that
some tidy up can be done to simplify error handling in callers of that
function.

Reviewed-by: Emilia Käsper <emilia@openssl.org>