Add some TODOs related to draft-josefsson-salsa20-tls-02

1 files changed, 14 insertions, 0 deletions

diff --git a/core/src/main/java/org/bouncycastle/crypto/tls/TlsStreamCipher.java b/core/src/main/java/org/bouncycastle/crypto/tls/TlsStreamCipher.java
index effa6545..178731d3 100644
--- a/core/src/main/java/org/bouncycastle/crypto/tls/TlsStreamCipher.java
+++ b/core/src/main/java/org/bouncycastle/crypto/tls/TlsStreamCipher.java
@@ -89,6 +89,13 @@ public class TlsStreamCipher
 
     public byte[] encodePlaintext(long seqNo, short type, byte[] plaintext, int offset, int len)
     {
+        /*
+         * TODO[draft-josefsson-salsa20-tls-02] Note that Salsa20 requires a 64-bit nonce. That
+         * nonce is updated on the encryption of every TLS record, and is set to be the 64-bit TLS
+         * record sequence number. In case of DTLS the 64-bit nonce is formed as the concatenation
+         * of the 16-bit epoch with the 48-bit sequence number.
+         */
+
         byte[] outBuf = new byte[len + writeMac.getSize()];
 
         encryptCipher.processBytes(plaintext, offset, len, outBuf, 0);
@@ -110,6 +117,13 @@ public class TlsStreamCipher
     public byte[] decodeCiphertext(long seqNo, short type, byte[] ciphertext, int offset, int len)
         throws IOException
     {
+        /*
+         * TODO[draft-josefsson-salsa20-tls-02] Note that Salsa20 requires a 64-bit nonce. That
+         * nonce is updated on the encryption of every TLS record, and is set to be the 64-bit TLS
+         * record sequence number. In case of DTLS the 64-bit nonce is formed as the concatenation
+         * of the 16-bit epoch with the 48-bit sequence number.
+         */
+
         int macSize = readMac.getSize();
         if (len < macSize)
         {