ChaCha20 error?

0x8000 · June 11, 2020, 3:37pm

Hey. I want to use ChaCha20 Cipher, but when i want to use it with TLS 1.3 it gives me a Error.
ssl_session_cache shared:le_nginx_SSL:10m;
ssl_session_timeout 1440m;
ssl_session_tickets off;

ssl_protocols TLSv1.3;
ssl_ecdh_curve secp384r1;
ssl_ciphers TLS_CHACHA20_POLY1305_SHA256;
ssl_prefer_server_ciphers on;

is the nginx config which is included in my nginx/conf.d.

sudo certbot --nginx
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Error while running nginx -c /etc/nginx/nginx.conf -t.

nginx: [emerg] SSL_CTX_set_cipher_list(“TLS_CHACHA20_POLY1305_SHA256”) failed (SSL: error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match)
nginx: configuration file /etc/nginx/nginx.conf test failed

openssl ciphers -v | grep TLS_CHACHA20_POLY1305_SHA256
TLS_CHACHA20_POLY1305_SHA256 TLSv1.3 Kx=any Au=any Enc=CHACHA20/POLY1305(256) Mac=AEAD

Osiris · June 11, 2020, 4:28pm

Seems to be a bug in ~~OpenSSL~~nginx: https://github.com/openssl/openssl/issues/11564

system · July 11, 2020, 4:28pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to enable TLS 1.3 in nginx configuration? [SOLVED] Help	10	12406	November 18, 2020
Chacha20_Poly1305 Server	50	20152	August 18, 2016
TLSv1.3 not working on Fedora 31 and Nginx 1.16.1 Help	7	2455	January 4, 2020
Ssl_stapling error nginx Server	2	5741	April 1, 2018
A lot of SSL_do_handshake() failed erors in nginx logs Help	19	22863	April 26, 2019

ChaCha20 error?

Related topics