Your patch has been applied to the master branch.
I have done a cursory stare-at code and it matches the grumblings given
on the way to dinner ("check not only for GCM but accept all save ciphers
using this API", IIRC). My current test rig is too old to do a full
client-server test easily, but at least the mbedTLS and the OpenSSL
1.1.0 build both claim support...
CHACHA20-POLY1305 (256 bit key, 8 bit block, TLS client/server mode only)
CHACHA20-POLY1305 (256 bit key, 8 bit block, TLS client/server mode only)
.. and pass t_client tests both for OpenSSL and mbedTLS...
commit 6d0d0af9883b9ae266c0468f2739557a53e94b68
Author: Steffan Karger
Date: Mon Oct 8 00:30:34 2018 +0200
Add support for CHACHA20-POLY1305 in the data channel
Signed-off-by: Steffan Karger <[email protected]>
Acked-by: Antonio Quartulli <[email protected]>
Message-Id: <[email protected]>
URL:
https://www.mail-archive.com/[email protected]/msg17629.html
Signed-off-by: Gert Doering <[email protected]>
--
kind regards,
Gert Doering
_______________________________________________
Openvpn-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
