Dmitriy, Thanks for noticing! I do not see it either - correcting myself. :-)
You are right - according to http://tools.ietf.org/html/draft-chudov-cryptopro-cptls-04 CryptoProParamSetA is required in GOST TLS. But only for content encryption. Premaster secret encryption could use any other parameters. Also, OpenSSL usage is not limited to TLS only - for some other protocols (IPSec, for instance) other parameters can be used. This patch is for them. On 22 April 2014 12:24, Dmitry Belyavsky <beld...@gmail.com> wrote: > Hello Andrey, > > Thank you for your work, but I do not see the patch :-( > > I should say that in practice the CNT mode is used in TLS where usage of > the Gost28147_CryptoProParamSetA is required. > >
ccgost_CNT_use_params.patch
Description: Binary data