CTR mode

Tomas Kuthan tomas.kuthan at oracle.com
Tue Apr 1 02:54:03 EST 2014

On 03/31/14 05:40 PM, no_spam_98 at yahoo.com wrote:
> OpenSSH uses its own CTR mode implementation, correct?  I seem to recall some discussion about why it hasn't/won't switch over to using OpenSSL's implementation, but I can't find the thread anymore.
> So... why doesn't OpenSSH use OpenSSL's CTR mode implementation?

If you are speaking of CTR mode to AES, it does use OpenSSL for that.

For some time it didn't, because OpenSSL's envelope API didn't provide 
it, but when OpenSSL introduced it, OpenSSH's own implementation was 
ditched [1].


[1] http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/cipher.c#rev1.84

More information about the openssh-unix-dev mailing list