I have changed from openssl to openssl-cryptodev on one of them and checked openssl speed with aes128-cbc. Acceleration worked. Then I closed ssh session and tried to re-connect. No luck. See ssh response below.
$this->bbcode_second_pass_code('', 'debug1: Authenticating to 192.168.1.102:22 as 'root'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256@libssh.org
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: aes128-cbc MAC: umac-64-etm@openssh.com compression: none
debug1: kex: client->server cipher: aes128-cbc MAC: umac-64-etm@openssh.com compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
Connection closed by 192.168.1.102 port 22
')
Now on the second machine I did the same except I commented out Ciphers line. After reboot it re-connected fine with non -accelerated server->client cipher:
chacha20-poly1305@openssh.com I un-commented Ciphers line that reads
$this->bbcode_second_pass_code('', 'Ciphers aes128-cbc,aes256-cbc,3des-cbc')
Rebooted , and that was it : I cannot connect anymore.
So the problem seems to be not in openssl-cryptodev but somewhere in sshd where it calls accelerated encryption engine.
sshd works fine with non-accelerated openssl using the same ciphers (though I noticed I cannot tunnel over ssh anymore, but the console works).
Would you try to reproduce this?