From owner-freebsd-security@freebsd.org  Mon Jul 11 22:35:43 2016
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id B9091B92B4E
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Mon, 11 Jul 2016 22:35:43 +0000 (UTC)
 (envelope-from mailing-machine@vniz.net)
Received: from mail-lf0-f51.google.com (mail-lf0-f51.google.com
 [209.85.215.51])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 463A31BFC
 for <freebsd-security@freebsd.org>; Mon, 11 Jul 2016 22:35:42 +0000 (UTC)
 (envelope-from mailing-machine@vniz.net)
Received: by mail-lf0-f51.google.com with SMTP id b199so1622333lfe.0
 for <freebsd-security@freebsd.org>; Mon, 11 Jul 2016 15:35:42 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:subject:to:references:from:message-id:date
 :user-agent:mime-version:in-reply-to:content-transfer-encoding;
 bh=H3KEtWkaVb2ASYIsjA2McuG5x3PfOKn4dcj7p3KHA/o=;
 b=U48pIbBM5nxFvE0xxyQsydHw0a4QS6kLPrT1Cn9hE4Htb+DyKMHRiWEokmFLyJ0Y7y
 R1eqZnKniyOYtKZLZ4t6yeZ+iSHqXhe652iGCyGgJzltaKA5QzMep8YlcQPzMaQOyJax
 ScdBA3fbgXYXVGi9z/FmFrdfpSksw8GIZV+3zE01E0T2t9CZVrA/s0J1SocP8G5YHQq9
 3rhqKr0Or3xoJ8o/12f3bpJXxs9+CyfiYKFGWWWNDTyBfYjfDRJlAQI9ZQzzYq2HDRJq
 izPCal5MGlA3R3wR0GZXJIlwTwv7ji09RtZeDgVZ55IFfn7dkN6Q3Imk94sLiCO7lI1L
 Y4aQ==
X-Gm-Message-State: ALyK8tLzVjQJoIUJBAlZmvGxbBujhmGdfMSpzef3PbGbcCkXpMpAe52uUIYUfeaGimvekg==
X-Received: by 10.46.1.222 with SMTP id f91mr282149lji.1.1468276535018;
 Mon, 11 Jul 2016 15:35:35 -0700 (PDT)
Received: from [192.168.1.2] ([89.169.173.68])
 by smtp.gmail.com with ESMTPSA id o7sm5344415lfg.45.2016.07.11.15.35.34
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Mon, 11 Jul 2016 15:35:34 -0700 (PDT)
Subject: Re: GOST in OPENSSL_BASE
To: Andrei <az@azsupport.com>, freebsd-security@freebsd.org
References: <20160710133019.GD20831@zxy.spb.ru>
 <f35c1806-c06d-0d46-1c8a-58a56adef9a7@freebsd.org>
 <20160710150143.GK46309@zxy.spb.ru>
 <cb12083d-445a-ea19-5538-d670a89fcc6d@freebsd.org>
 <9ead7cd7-7d1b-2dd8-eea8-43f7766d92a9@freebsd.org>
 <d4329543-0503-cfc0-eb17-378d561d4c0f@freebsd.org>
 <20160711102906.GN46309@zxy.spb.ru>
 <1468253073.695754.662984777.1E8F9C28@webmail.messagingengine.com>
 <20160711163934.GD95302@home.opsec.eu>
 <20160711185409.640b2d4d@azsupport.com>
 <ff8156f0-720f-6ff6-559e-836905492746@freebsd.org>
 <20160711200754.5abf2ae3@azsupport.com>
From: Andrey Chernov <ache@freebsd.org>
Message-ID: <15c796c8-6512-da19-7155-81fc4a1bb424@freebsd.org>
Date: Tue, 12 Jul 2016 01:35:33 +0300
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101
 Thunderbird/45.2.0
MIME-Version: 1.0
In-Reply-To: <20160711200754.5abf2ae3@azsupport.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jul 2016 22:35:43 -0000

On 11.07.2016 21:07, Andrei wrote:
> On Mon, 11 Jul 2016 20:09:35 +0300
> Andrey Chernov <ache@freebsd.org> wrote:
>> Unfortunately, it affects normal people and organizations here,
>> including internet providers f.e. and not affects Putin or government
>> in any way. Documents workflow require digital signatures by GOST.

> Maybe russian GOST made with options to decrypt.. Nice backdoor from FSB? ;) 

Official documents workflow use GOST signatures for authenticity and
consistency verification, so there is no harm to have FSB backdoor in
the algo, unless some hacker will find it. Just don't use GOST for
something else to stay on safe side.

BTW, latest GOST based on elliptic curves, so from math point of view
probability of having backdoor here is minimal.
See
https://ru.wikipedia.org/wiki/%D0%93%D0%9E%D0%A1%D0%A2_%D0%A0_34.10-2012
You can consider GOST goals are the same as FIPS ones with the reason to
have things "domestically produced".