Closed mys721tx closed 7 years ago
Confirmed, under this patch the ChaCha20 ciphers aren't being made available.
Try now
No go for me, I'm not seeing the server offer any of the ChaCha20 ciphers, and yes they are on the list and I did restart the server after recompiling openssl + cloudflare patch.
2c72c7f works for me.
@zxcvbn4038, did you try with commit 2c72c7fb235f66d01b7f0a1c3613f01935a4dd20? If not, please try again.
I'm pretty sure I did but I'm going to go through the steps again, I'll write back in a bit.
Ah ha! I did miss a step last night and can confirm that chacha20 is being offered. I'll proceed with my testing and open a new issue if I still have issues negotiating connections with browsers. Thanks @vkrasnov !
Cool! You're welcome @zxcvbn4038.
I use this PKGBUILD to build the patched openssl-1.0.2j on an Arch Linux box and run into the error below. The complete logs are in this gist.