Bug 1093020 - Enable ChaCha20/Poly1305 support in strongswan
Enable ChaCha20/Poly1305 support in strongswan
Status: NEW
Classification: openSUSE
Product: openSUSE Tumbleweed
Classification: openSUSE
Component: Network
Current
x86-64 Other
: P5 - None : Normal (vote)
: ---
Assigned To: Manuel Buil
E-mail List
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-05-12 02:28 UTC by Edgar Anderson
Modified: 2020-12-30 13:33 UTC (History)
0 users

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Edgar Anderson 2018-05-12 02:28:32 UTC
The version of Strongswan currently shipped with Tumbleweed (5.6.0) supports ChaCha20/Poly1305 but the RPM spec doesn't enable that support.

I was able to enable this support in a locally built RPM with these changes to the spec file:

304a305,306
>       --enable-chapoly \
>       --enable-ntru \
621a624,626
> %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/chapoly.conf
> %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/mgf1.conf
> %config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/ntru.conf
823a829,831
> %{strongswan_plugins}/libstrongswan-chapoly.so
> %{strongswan_plugins}/libstrongswan-mgf1.so
> %{strongswan_plugins}/libstrongswan-ntru.so
925a934,936
> %{strongswan_templates}/config/plugins/chapoly.conf
> %{strongswan_templates}/config/plugins/mgf1.conf
> %{strongswan_templates}/config/plugins/ntru.conf