"Could not compute correct GOST key blob: using byte[0]" when connecting to openssl with gost-engine

[TQ86]

Hello, I've just tried to connect to openssl with gost-engine from TLS-Client.jar.

java -jar TLS-Client.jar -connect localhost:
4433 -cipher TLS_GOSTR341112_256_WITH_28147_CNT_IMIT -version TLS12

Openssl works in a docker from this image: https://github.com/rnixik/docker-openssl-gost

openssl req -x509 -newkey gost2012_256 -pkeyopt paramset:A -nodes -keyout key.pem -out cert.pem
openssl s_server -key key.pem -cert cert.pem

debug.log

[ic0ns]

Hm, our GOST support is not so good. I had a student implement it for fun, but as we ourselves literally nether use it I don't know if the code is actually functional anymore. But even back then, we noticed that the different GOST implementations like in Openssl and Libressl are not always compatible with each other. Since there might be a regression maybe an older version will still work. Does the openssl debug output give any hints why it throws a decode alert?

[TQ86]

An error occurs not only with openssl but with tls-server too. Public key built at GOSTClientKeyExchange.prepareEphemeralKey() couldn't be converted to java.security.PublicKey at prepareKeyBlob() using GOSTUtils.convertPointToPublicKey()