From bebc0c7d85a7484f1c5d0123f24cdc3c6b150243 Mon Sep 17 00:00:00 2001
From: Matt Caswell <matt@openssl.org>
Date: Thu, 17 Nov 2016 18:00:17 +0000
Subject: Use the TLSv1.3 nonce construction

This updates the record layer to use the TLSv1.3 style nonce construciton.
It also updates TLSProxy and ossltest to be able to recognise the new
layout.

Reviewed-by: Rich Salz <rsalz@openssl.org>
---
 util/TLSProxy/Record.pm | 2 --
 1 file changed, 2 deletions(-)

(limited to 'util/TLSProxy')

diff --git a/util/TLSProxy/Record.pm b/util/TLSProxy/Record.pm
index 7189035fb4..5a35925aeb 100644
--- a/util/TLSProxy/Record.pm
+++ b/util/TLSProxy/Record.pm
@@ -242,8 +242,6 @@ sub decrypt()
             #an unecrypted alert, so don't try to decrypt
             return $data if (length($data) == 2);
         }
-        #8 bytes for a GCM IV
-        $data = substr($data, 8);
         $mactaglen = 16;
     } elsif ($self->version >= VERS_TLS_1_1()) {
         #16 bytes for a standard IV
-- 
cgit v1.2.3