plaintext, data) } func (g *GCMForTLS12) Open(dst, nonce, ciphertext, data []byte) ([]byte, error) { fips140.RecordApproved() return g.g.Open(dst, nonce, ciphertext, data) } // NewGCMForTLS13 returns a new AEAD that works like GCM, but enforces the // construction of nonces as specified in RFC 8446, Section 5.3. func NewGCMForTLS13(cipher *aes.Block) (*GCMForTLS13, error) { g, err := newGCM(&GCM{}, cipher, gcmStandardNonceSize, gcmTagSize) if err != nil { return nil, err } return &GCMForTLS13{g: *g},...

err := newGCM(&GCM{}, cipher, gcmStandardNonceSize, gcmTagSize) if err != nil { return nil, err } return &GCMWithXORCounterNon{g: *g}, nil } // NewGCMForTLS13 returns a new AEAD that works like GCM, but enforces the // construction of nonces as specified in RFC 8446, Section 5.3. // // This complies with FIPS 140-3 IG C.H Scenario 1.a. func NewGCMForTLS13(cipher *aes.Block) (*GCMWithXORCounterNon, error) { g, err := newGCM(&GCM{}, cipher, gcmStandardNonceSize, gcmTagSize) if err != nil { return nil,...