search for: evp_aes_256_ctr

...possible. The gain here is that OpenSSH's version uses software AES implementation and OpenSSL's version will use AES-NI if available. Just FYI, unfortunately I cannot prepare nice and clean patch for this right now, but changing all evp_aes_128_ctr to EVP_aes_128_ctr, EVP_aes_192_ctr and EVP_aes_256_ctr respectively in ciphers[] array just works (thanks to the fact that 'c->evptype == evp_aes_128_ctr' is no longer true and IV is taken from cc->evp.iv).. -- Pawel Jakub Dawidek http://www.wheelsystems.com FreeBSD committer http://www.Free...

...vs/openssh/openbsd-compat/openssl-compat.h,v retrieving revision 1.21 diff -u -r1.21 openssl-compat.h --- openbsd-compat/openssl-compat.h 9 Jan 2013 05:42:49 -0000 1.21 +++ openbsd-compat/openssl-compat.h 14 Jan 2013 18:39:27 -0000 @@ -68,7 +68,7 @@ #define EVP_aes_192_ctr evp_aes_128_ctr #define EVP_aes_256_ctr evp_aes_128_ctr extern const EVP_CIPHER *evp_aes_128_ctr(void); -extern void ssh_aes_ctr_iv(EVP_CIPHER_CTX *, int, u_char *, u_int); +extern void ssh_aes_ctr_iv(EVP_CIPHER_CTX *, int, u_char *, size_t); #endif /* Avoid some #ifdef. Code that uses these is unreachable without GCM */ -- Iain M...