More fixes for AES block

2025-08-22 14:38:35 +00:00 · 2025-05-13 08:52:09 -04:00 · 2025-05-13 08:52:09 -04:00 · 514f8647ea
commit 514f8647ea
parent 2ea7e5619e
2 changed files with 4 additions and 5 deletions
--- a/cipher_suites.go
+++ b/cipher_suites.go
@ -512,11 +512,11 @@ func aeadAESGCM(key, noncePrefix []byte) aead {
 	if len(noncePrefix) != noncePrefixLength {
 		panic("tls: internal error: wrong nonce length")
 	}
-	aes, err := aes.NewCipher(key)
+	aes, err := fipsaes.New(key)
 	if err != nil {
 		panic(err)
 	}
-	aead, err := gcm.NewGCMForTLS12(aes.(*fipsaes.Block))
+	aead, err := gcm.NewGCMForTLS12(aes)
 	if err != nil {
 		panic(err)
 	}
@ -540,11 +540,11 @@ func aeadAESGCMTLS13(key, nonceMask []byte) aead {
 	if len(nonceMask) != aeadNonceLength {
 		panic("tls: internal error: wrong nonce length")
 	}
-	aes, err := aes.NewCipher(key)
+	aes, err := fipsaes.New(key)
 	if err != nil {
 		panic(err)
 	}
-	aead, err := gcm.NewGCMForTLS13(aes.(*fipsaes.Block))
+	aead, err := gcm.NewGCMForTLS13(aes)
 	if err != nil {
 		panic(err)
 	}
--- a/tls.go
+++ b/tls.go
@ -30,7 +30,6 @@ import (
 	"bytes"
 	"context"
 	"crypto"
-	"crypto/aes"
 	"crypto/cipher"
 	"crypto/ecdsa"
 	"crypto/ed25519"