[#MDEV-31653] Missing CHACHA20-POLY1305 support in WolfSSL

[MDEV-31653] Missing CHACHA20-POLY1305 support in WolfSSL Created: 2023-07-10 Updated: 2023-10-25 Resolved: 2023-10-25
Status:	Closed
Project:	MariaDB Server
Component/s:	SSL
Fix Version/s:	10.4.32, 10.5.23, 10.6.16, 10.10.7, 10.11.6, 11.0.4, 11.1.3, 11.2.2

Type:

Task

Priority:

Major

Reporter:

Georg Richter

Assignee:

Sergei Golubchik

Resolution:

Fixed

Votes:

Labels:

None

Attachments:

chacha20.patch

Description

On systems without AES hardware acceleration the preferred TLS v1.3 cipher suite is TLS_CHACHA20_POLY1305_SHA256 (about 400% faster than AES). Unfortunately this ciphersuite is not available in bundled WolfSSL.

Attached patch enables TLS_CHACHA20_POLY1305_SHA256.

Generated at Thu Feb 08 10:25:29 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.

[MDEV-31653] Missing CHACHA20-POLY1305 support in WolfSSL Created: 2023-07-10 Updated: 2023-10-25 Resolved: 2023-10-25