From 233c669c9f9ab5af7db10889c3a31af7d67ce02f Mon Sep 17 00:00:00 2001
From: Monis Khan <i@monis.app>
Date: Thu, 31 Mar 2022 06:38:48 -0400
Subject: [PATCH] See if the FIPS ciphers tests fails on a diff

Signed-off-by: Monis Khan <mok@vmware.com>
---
 internal/crypto/ptls/fips_strict.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/internal/crypto/ptls/fips_strict.go b/internal/crypto/ptls/fips_strict.go
index e35a30a5..08d3306a 100644
--- a/internal/crypto/ptls/fips_strict.go
+++ b/internal/crypto/ptls/fips_strict.go
@@ -47,6 +47,7 @@ func Default(rootCAs *x509.CertPool) *tls.Config {
 		// This is all of the fips-approved ciphers.
 		// The list is hard-coded for convenience of testing.
 		CipherSuites: []uint16{
+			tls.TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,
 			tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
 			tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
 			tls.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,