CTR mode

mancha mancha1 at zoho.com
Tue Apr 1 03:11:19 EST 2014


On Mon, Mar 31, 2014 at 08:40:26AM -0700, no_spam_98 at yahoo.com wrote:
> OpenSSH uses its own CTR mode implementation, correct?  I seem to
> recall some discussion about why it hasn't/won't switch over to using
> OpenSSL's implementation, but I can't find the thread anymore.
> 
> So... why doesn't OpenSSH use OpenSSL's CTR mode implementation?

I believe as of 6.2, OpenSSH defaults to using OpenSSL's EVP_aes_*_ctr.

I'm unaware of the history (hopefully one of the devs can jump in and
help us there). What I do know is OpenSSL introduced AES-CTR support
with 0.9.7.

--mancha
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20140331/cb5f2bba/attachment.bin>


More information about the openssh-unix-dev mailing list