[Pkg-swan-devel] Bug#814927: Bug#814927: strongSwan misses ChaCha/POLY support
StarBrilliant
coder at poorlab.com
Wed Aug 22 14:58:11 BST 2018
On Tue, 16 Feb 2016 17:15:46 +0100, Alessandro Guido
<alessandro.guido at unimore.it> wrote:
>
> strongSwan supports the ChaCha20/Poly1305 algorithm since version 5.3.3.
> Such algo is supposedly faster than AES on machines w/o hardware
> acceleration.
> I suggest to include --enable-chapoly [1] when running the configure script.
I just checked the sid and experimental repo, still not fixed.
This patch has been submitted for over 2 years, and is actually working.
I recommend merging the patch now.
Benefit for the fix: strongSwan has a certain problem that does not
warn you if you configure ChaCha20Poly1305 with this plugin missing,
but stops working with weird errors if any client tries to negotiate
this cipher, making system administrators puzzled troubleshooting this
problem. By merging the patch can we solve the problem.
Best regards,
StarBrilliant
More information about the Pkg-swan-devel
mailing list