2014-11-10 1:04 GMT+03:00 Miod Vallat <m...@online.fr>: > ... and while I'm mopping this code, I believe the following change is > correct: > > Index: gostr341001_pmeth.c > =================================================================== > RCS file: /cvs/src/lib/libssl/src/crypto/gost/gostr341001_pmeth.c,v > retrieving revision 1.4 > diff -u -p -r1.4 gostr341001_pmeth.c > --- gostr341001_pmeth.c 9 Nov 2014 19:28:44 -0000 1.4 > +++ gostr341001_pmeth.c 9 Nov 2014 22:03:37 -0000 > @@ -316,7 +316,7 @@ static int gost01_VKO_key(EVP_PKEY * pub > case NID_id_tc26_gost3411_2012_512: > GOST_bn2le(X, hashbuf, 64); > GOST_bn2le(Y, hashbuf + 64, 64); > - STREEBOG256(hashbuf, 128, key); > + STREEBOG512(hashbuf, 128, key); > ret = 1; > break; > default:
No. The generated session key should be exactly 256 bits long - it is used for GOST 28147-89 later. -- With best wishes Dmitry