On Fri, Nov 12, 2010, Andrey Kulikov wrote: > Hello, > > OpenSSL 1.0.0a, Linux i386 > > I have ccgost statically linked in openssl. > I've add following liens to openssl config file: > > ============================================= > openssl_conf = openssl_def > > [openssl_def] > engines = engine_section > > [engine_section] > gost = gost_section > > [gost_section] > engine_id = gost > default_algorithms = ALL > CRYPT_PARAMS = id-Gost28147-89-CryptoPro-A-ParamSet > ============================================= > > Then execute > export OPENSSL_CONF=<path to >/openssl.cnf > ./apps/openssl s_server -www -engine gost -accept 433 -state -debug > > and request root page using browser. > It responds with status page, where all ciphersuites, enabled in a server > shown. > > GOST2001-GOST89-GOST89 and GOST94-GOST89-GOST89 > are there, but GOST2001-NULL-GOST94 and GOST94-NULL-GOST94 are not. > > How to enable these suites with no encryption?? >
By defualt ciphersuite with no encryption are disabled. If you include the explicit cipherstring eNULL they should appear. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
