Welcome to Centmin Mod Community
Become a Member

OpenSSL OpenSSL 1.1.1 - draft / old CHACHA20-POLY1305

Discussion in 'CentOS, Redhat & Oracle Linux News' started by buik, Oct 6, 2018.

Tags:
  1. buik

    buik “The best traveler is one without a camera.”

    2,026
    524
    113
    Apr 29, 2016
    Flanders
    Ratings:
    +1,674
    Local Time:
    5:32 PM
    Found this patch on the internet.
    To enable the draft / old CHACHA20-POLY1305 on OpenSSL 1.1.1.
    Perhaps interesting for OpenSSL users.

    hakasenyang/openssl-patch

     
  2. eva2000

    eva2000 Administrator Staff Member

    54,582
    12,224
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,793
    Local Time:
    2:32 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    Yeah seen that patch but not sure how useful it is as clients/browsers should have moved to final chacha20 version and not drafts ?
     
  3. buik

    buik “The best traveler is one without a camera.”

    2,026
    524
    113
    Apr 29, 2016
    Flanders
    Ratings:
    +1,674
    Local Time:
    5:32 PM
    51.5% of all Android users, uses an old version of the Android OS which is not compatible with new Chacha.
    The most used Android system is version 6 which is again old Chacha.

    It seems obvious to me that this is the reason that Cloudflare is still implementing old Chacha.

    The patch (although not formally tested by me) seems still very usable for website owners with a lot of old Android.
     
  4. eva2000

    eva2000 Administrator Staff Member

    54,582
    12,224
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,793
    Local Time:
    2:32 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    sweet good to know :D