1/*	$NetBSD: des.h,v 1.1 2009/07/19 23:30:57 christos Exp $	*/
2
3/* crypto/des/des.h */
4/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
5 * All rights reserved.
6 *
7 * This package is an SSL implementation written
8 * by Eric Young (eay@cryptsoft.com).
9 * The implementation was written so as to conform with Netscapes SSL.
10 *
11 * This library is free for commercial and non-commercial use as long as
12 * the following conditions are aheared to.  The following conditions
13 * apply to all code found in this distribution, be it the RC4, RSA,
14 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
15 * included with this distribution is covered by the same copyright terms
16 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
17 *
18 * Copyright remains Eric Young's, and as such any Copyright notices in
19 * the code are not to be removed.
20 * If this package is used in a product, Eric Young should be given attribution
21 * as the author of the parts of the library used.
22 * This can be in the form of a textual message at program startup or
23 * in documentation (online or textual) provided with the package.
24 *
25 * Redistribution and use in source and binary forms, with or without
26 * modification, are permitted provided that the following conditions
27 * are met:
28 * 1. Redistributions of source code must retain the copyright
29 *    notice, this list of conditions and the following disclaimer.
30 * 2. Redistributions in binary form must reproduce the above copyright
31 *    notice, this list of conditions and the following disclaimer in the
32 *    documentation and/or other materials provided with the distribution.
33 * 3. All advertising materials mentioning features or use of this software
34 *    must display the following acknowledgement:
35 *    "This product includes cryptographic software written by
36 *     Eric Young (eay@cryptsoft.com)"
37 *    The word 'cryptographic' can be left out if the rouines from the library
38 *    being used are not cryptographic related :-).
39 * 4. If you include any Windows specific code (or a derivative thereof) from
40 *    the apps directory (application code) you must include an acknowledgement:
41 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
42 *
43 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
44 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
45 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
46 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
47 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
48 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
49 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
50 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
51 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
52 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * SUCH DAMAGE.
54 *
55 * The licence and distribution terms for any publically available version or
56 * derivative of this code cannot be changed.  i.e. this code cannot simply be
57 * copied and put under another distribution licence
58 * [including the GNU Public Licence.]
59 */
60
61#ifndef HEADER_DES_H
62#define HEADER_DES_H
63
64#ifdef _KERBEROS_DES_H
65#error <openssl/des.h> replaces <kerberos/des.h>.
66#endif
67
68#include <sys/types.h>
69#define DES_LONG	u_int32_t
70
71#ifdef  __cplusplus
72extern "C" {
73#endif
74
75typedef unsigned char des_cblock[8];
76typedef /* const */ unsigned char const_des_cblock[8];
77/* With "const", gcc 2.8.1 on Solaris thinks that des_cblock *
78 * and const_des_cblock * are incompatible pointer types. */
79
80#define DES_KEY_SZ 	8	/*(sizeof(des_cblock))*/
81#define DES_SCHEDULE_SZ 128	/*(sizeof(des_key_schedule))*/
82
83typedef DES_LONG des_key_schedule[DES_SCHEDULE_SZ / sizeof(DES_LONG)];
84
85#define DES_ENCRYPT	1
86#define DES_DECRYPT	0
87
88#define DES_CBC_MODE	0
89#define DES_PCBC_MODE	1
90
91#define des_ecb2_encrypt(i,o,k1,k2,e) \
92	des_ecb3_encrypt((i),(o),(k1),(k2),(k1),(e))
93
94#define des_ede2_cbc_encrypt(i,o,l,k1,k2,iv,e) \
95	des_ede3_cbc_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(e))
96
97#define des_ede2_cfb64_encrypt(i,o,l,k1,k2,iv,n,e) \
98	des_ede3_cfb64_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(n),(e))
99
100#define des_ede2_ofb64_encrypt(i,o,l,k1,k2,iv,n) \
101	des_ede3_ofb64_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(n))
102
103extern int des_check_key;	/* defaults to false */
104extern int des_rw_mode;		/* defaults to DES_PCBC_MODE */
105extern int des_set_weak_key_flag; /* set the weak key flag */
106
107const char *des_options(void);
108void des_ecb3_encrypt(const_des_cblock *, des_cblock *,
109		      des_key_schedule,des_key_schedule,
110		      des_key_schedule, int);
111DES_LONG des_cbc_cksum(const unsigned char *,des_cblock *,
112		       long,des_key_schedule,
113		       const_des_cblock *);
114/* des_cbc_encrypt does not update the IV!  Use des_ncbc_encrypt instead. */
115void des_cbc_encrypt(const unsigned char *input,unsigned char *,
116		     long,des_key_schedule,des_cblock *,
117		     int);
118void des_ncbc_encrypt(const unsigned char *input,unsigned char *,
119		      long,des_key_schedule,des_cblock *,
120		      int);
121void des_xcbc_encrypt(const unsigned char *input,unsigned char *,
122		      long,des_key_schedule,des_cblock *,
123		      const_des_cblock *inw,const_des_cblock *w,int);
124void des_cfb_encrypt(const unsigned char *,unsigned char *,int,
125		     long,des_key_schedule,des_cblock *,
126		     int);
127void des_ecb_encrypt(const_des_cblock *input,des_cblock *,
128		     des_key_schedule,int);
129
130/* 	This is the DES encryption function that gets called by just about
131	every other DES routine in the library.  You should not use this
132	function except to implement 'modes' of DES.  I say this because the
133	functions that call this routine do the conversion from 'char *' to
134	long, and this needs to be done to make sure 'non-aligned' memory
135	access do not occur.  The characters are loaded 'little endian'.
136	Data is a pointer to 2 unsigned long's and ks is the
137	des_key_schedule to use.  enc, is non zero specifies encryption,
138	zero if decryption. */
139void des_encrypt1(DES_LONG *,des_key_schedule, int);
140
141/* 	This functions is the same as des_encrypt1() except that the DES
142	initial permutation (IP) and final permutation (FP) have been left
143	out.  As for des_encrypt1(), you should not use this function.
144	It is used by the routines in the library that implement triple DES.
145	IP() des_encrypt2() des_encrypt2() des_encrypt2() FP() is the same
146	as des_encrypt1() des_encrypt1() des_encrypt1() except faster :-). */
147void des_encrypt2(DES_LONG *,des_key_schedule, int);
148
149void des_encrypt3(DES_LONG *, des_key_schedule,
150	des_key_schedule, des_key_schedule);
151void des_decrypt3(DES_LONG *, des_key_schedule,
152	des_key_schedule, des_key_schedule);
153void des_ede3_cbc_encrypt(const unsigned char *,unsigned char *,
154			  long,
155			  des_key_schedule,des_key_schedule,
156			  des_key_schedule,des_cblock *,int);
157void des_ede3_cbcm_encrypt(const unsigned char *,unsigned char *,
158			   long,
159			   des_key_schedule,des_key_schedule,
160			   des_key_schedule,
161			   des_cblock *,des_cblock *,
162			   int);
163void des_ede3_cfb64_encrypt(const unsigned char *,unsigned char *,
164			    long,des_key_schedule,
165			    des_key_schedule,des_key_schedule,
166			    des_cblock *,int *,int);
167void des_ede3_ofb64_encrypt(const unsigned char *,unsigned char *,
168			    long,des_key_schedule,
169			    des_key_schedule,des_key_schedule,
170			    des_cblock *,int *);
171
172void des_xwhite_in2out(const_des_cblock *des_key,const_des_cblock *in_white,
173		       des_cblock *_white);
174
175int des_enc_read(int fd,void *,int len,des_key_schedule,
176		 des_cblock *);
177int des_enc_write(int fd,const void *,int len,des_key_schedule,
178		  des_cblock *);
179char *des_fcrypt(const char *,const char *, char *);
180char *des_crypt(const char *,const char *);
181void des_ofb_encrypt(const unsigned char *,unsigned char *,int,
182		     long,des_key_schedule,des_cblock *);
183void des_pcbc_encrypt(const unsigned char *input,unsigned char *,
184		      long,des_key_schedule,des_cblock *,
185		      int);
186DES_LONG des_quad_cksum(const unsigned char *,des_cblock [],
187			long,int,des_cblock *);
188void des_random_seed(des_cblock *);
189int des_random_key(des_cblock *);
190int des_read_password(des_cblock *,const char *,int);
191int des_read_2passwords(des_cblock *,des_cblock *,
192			const char *,int);
193int des_read_pw_string(char *,int,const char *,int);
194void des_set_odd_parity(des_cblock *);
195void des_fixup_key_parity(des_cblock *);
196int des_check_key_parity(const_des_cblock *);
197int des_is_weak_key(const_des_cblock *);
198/* des_set_key (= set_key = des_key_sched = key_sched) calls
199 * des_set_key_checked if global variable des_check_key is set,
200 * des_set_key_unchecked otherwise. */
201int des_set_key(const_des_cblock *,des_key_schedule);
202int des_key_sched(const_des_cblock *,des_key_schedule);
203int des_set_key_checked(const_des_cblock *,des_key_schedule);
204void des_set_key_unchecked(const_des_cblock *,des_key_schedule);
205void des_string_to_key(const char *,des_cblock *);
206void des_string_to_2keys(const char *,des_cblock *,des_cblock *);
207void des_cfb64_encrypt(const unsigned char *,unsigned char *,long,
208		       des_key_schedule,des_cblock *,int *,
209		       int);
210void des_ofb64_encrypt(const unsigned char *,unsigned char *,long,
211		       des_key_schedule,des_cblock *,int *);
212int des_read_pw(char *,char *,int size,const char *,int);
213
214/* The following functions are not in the normal unix build or the
215 * SSLeay build.  When using the SSLeay build, use RAND_seed()
216 * and RAND_bytes() instead. */
217int des_new_random_key(des_cblock *);
218void des_init_random_number_generator(des_cblock *);
219void des_set_random_generator_seed(des_cblock *);
220
221/* The following definitions provide compatibility with the MIT Kerberos
222 * library. The des_key_schedule structure is not binary compatible. */
223
224#define _KERBEROS_DES_H
225
226#define KRBDES_ENCRYPT DES_ENCRYPT
227#define KRBDES_DECRYPT DES_DECRYPT
228
229#ifdef KERBEROS
230#  define ENCRYPT DES_ENCRYPT
231#  define DECRYPT DES_DECRYPT
232#endif
233
234#ifndef NCOMPAT
235#  define C_Block des_cblock
236#  define Key_schedule des_key_schedule
237#  define KEY_SZ DES_KEY_SZ
238#  define string_to_key des_string_to_key
239#  define read_pw_string des_read_pw_string
240#  define random_key des_random_key
241#  define pcbc_encrypt des_pcbc_encrypt
242#  define set_key des_set_key
243#  define key_sched des_key_sched
244#  define ecb_encrypt des_ecb_encrypt
245#  define cbc_encrypt des_cbc_encrypt
246#  define ncbc_encrypt des_ncbc_encrypt
247#  define xcbc_encrypt des_xcbc_encrypt
248#  define cbc_cksum des_cbc_cksum
249#  define quad_cksum des_quad_cksum
250#  define check_parity des_check_key_parity
251#endif
252
253typedef des_key_schedule bit_64;
254
255#ifdef  __cplusplus
256}
257#endif
258
259#endif
260