1/* $OpenBSD: e_cast.c,v 1.18 2024/04/09 13:52:41 beck Exp $ */ 2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 3 * All rights reserved. 4 * 5 * This package is an SSL implementation written 6 * by Eric Young (eay@cryptsoft.com). 7 * The implementation was written so as to conform with Netscapes SSL. 8 * 9 * This library is free for commercial and non-commercial use as long as 10 * the following conditions are aheared to. The following conditions 11 * apply to all code found in this distribution, be it the RC4, RSA, 12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation 13 * included with this distribution is covered by the same copyright terms 14 * except that the holder is Tim Hudson (tjh@cryptsoft.com). 15 * 16 * Copyright remains Eric Young's, and as such any Copyright notices in 17 * the code are not to be removed. 18 * If this package is used in a product, Eric Young should be given attribution 19 * as the author of the parts of the library used. 20 * This can be in the form of a textual message at program startup or 21 * in documentation (online or textual) provided with the package. 22 * 23 * Redistribution and use in source and binary forms, with or without 24 * modification, are permitted provided that the following conditions 25 * are met: 26 * 1. Redistributions of source code must retain the copyright 27 * notice, this list of conditions and the following disclaimer. 28 * 2. Redistributions in binary form must reproduce the above copyright 29 * notice, this list of conditions and the following disclaimer in the 30 * documentation and/or other materials provided with the distribution. 31 * 3. All advertising materials mentioning features or use of this software 32 * must display the following acknowledgement: 33 * "This product includes cryptographic software written by 34 * Eric Young (eay@cryptsoft.com)" 35 * The word 'cryptographic' can be left out if the rouines from the library 36 * being used are not cryptographic related :-). 37 * 4. If you include any Windows specific code (or a derivative thereof) from 38 * the apps directory (application code) you must include an acknowledgement: 39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 40 * 41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 51 * SUCH DAMAGE. 52 * 53 * The licence and distribution terms for any publically available version or 54 * derivative of this code cannot be changed. i.e. this code cannot simply be 55 * copied and put under another distribution licence 56 * [including the GNU Public Licence.] 57 */ 58 59#include <limits.h> 60#include <stdio.h> 61 62#include <openssl/opensslconf.h> 63 64#ifndef OPENSSL_NO_CAST 65 66#include <openssl/cast.h> 67#include <openssl/evp.h> 68#include <openssl/objects.h> 69 70#include "evp_local.h" 71 72typedef struct { 73 CAST_KEY ks; 74} EVP_CAST_KEY; 75 76#define data(ctx) ((EVP_CAST_KEY *)(ctx)->cipher_data) 77 78static int 79cast_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, 80 const unsigned char *iv, int enc) 81{ 82 CAST_set_key(&data(ctx)->ks, EVP_CIPHER_CTX_key_length(ctx), key); 83 return 1; 84} 85 86static int 87cast5_cbc_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, const unsigned char *in, size_t inl) 88{ 89 size_t chunk = LONG_MAX & ~0xff; 90 91 while (inl >= chunk) { 92 CAST_cbc_encrypt(in, out, (long)chunk, &((EVP_CAST_KEY *)ctx->cipher_data)->ks, ctx->iv, ctx->encrypt); 93 inl -= chunk; 94 in += chunk; 95 out += chunk; 96 } 97 98 if (inl) 99 CAST_cbc_encrypt(in, out, (long)inl, &((EVP_CAST_KEY *)ctx->cipher_data)->ks, ctx->iv, ctx->encrypt); 100 101 return 1; 102} 103 104static int 105cast5_cfb64_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, const unsigned char *in, size_t inl) 106{ 107 size_t chunk = LONG_MAX & ~0xff; 108 109 if (inl < chunk) 110 chunk = inl; 111 112 while (inl && inl >= chunk) { 113 CAST_cfb64_encrypt(in, out, (long)chunk, &((EVP_CAST_KEY *)ctx->cipher_data)->ks, ctx->iv, &ctx->num, ctx->encrypt); 114 inl -= chunk; 115 in += chunk; 116 out += chunk; 117 if (inl < chunk) 118 chunk = inl; 119 } 120 121 return 1; 122} 123 124static int 125cast5_ecb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, const unsigned char *in, size_t inl) 126{ 127 size_t i, bl; 128 129 bl = ctx->cipher->block_size; 130 131 if (inl < bl) 132 return 1; 133 134 inl -= bl; 135 136 for (i = 0; i <= inl; i += bl) 137 CAST_ecb_encrypt(in + i, out + i, &((EVP_CAST_KEY *)ctx->cipher_data)->ks, ctx->encrypt); 138 139 return 1; 140} 141 142static int 143cast5_ofb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, const unsigned char *in, size_t inl) 144{ 145 size_t chunk = LONG_MAX & ~0xff; 146 147 while (inl >= chunk) { 148 CAST_ofb64_encrypt(in, out, (long)chunk, &((EVP_CAST_KEY *)ctx->cipher_data)->ks, ctx->iv, &ctx->num); 149 inl -= chunk; 150 in += chunk; 151 out += chunk; 152 } 153 154 if (inl) 155 CAST_ofb64_encrypt(in, out, (long)inl, &((EVP_CAST_KEY *)ctx->cipher_data)->ks, ctx->iv, &ctx->num); 156 157 return 1; 158} 159 160static const EVP_CIPHER cast5_cbc = { 161 .nid = NID_cast5_cbc, 162 .block_size = 8, 163 .key_len = CAST_KEY_LENGTH, 164 .iv_len = 8, 165 .flags = EVP_CIPH_VARIABLE_LENGTH | EVP_CIPH_CBC_MODE, 166 .init = cast_init_key, 167 .do_cipher = cast5_cbc_cipher, 168 .cleanup = NULL, 169 .ctx_size = sizeof(EVP_CAST_KEY), 170 .set_asn1_parameters = EVP_CIPHER_set_asn1_iv, 171 .get_asn1_parameters = EVP_CIPHER_get_asn1_iv, 172 .ctrl = NULL, 173}; 174 175const EVP_CIPHER * 176EVP_cast5_cbc(void) 177{ 178 return &cast5_cbc; 179} 180LCRYPTO_ALIAS(EVP_cast5_cbc); 181 182static const EVP_CIPHER cast5_cfb64 = { 183 .nid = NID_cast5_cfb64, 184 .block_size = 1, 185 .key_len = CAST_KEY_LENGTH, 186 .iv_len = 8, 187 .flags = EVP_CIPH_VARIABLE_LENGTH | EVP_CIPH_CFB_MODE, 188 .init = cast_init_key, 189 .do_cipher = cast5_cfb64_cipher, 190 .cleanup = NULL, 191 .ctx_size = sizeof(EVP_CAST_KEY), 192 .set_asn1_parameters = EVP_CIPHER_set_asn1_iv, 193 .get_asn1_parameters = EVP_CIPHER_get_asn1_iv, 194 .ctrl = NULL, 195}; 196 197const EVP_CIPHER * 198EVP_cast5_cfb64(void) 199{ 200 return &cast5_cfb64; 201} 202LCRYPTO_ALIAS(EVP_cast5_cfb64); 203 204static const EVP_CIPHER cast5_ofb = { 205 .nid = NID_cast5_ofb64, 206 .block_size = 1, 207 .key_len = CAST_KEY_LENGTH, 208 .iv_len = 8, 209 .flags = EVP_CIPH_VARIABLE_LENGTH | EVP_CIPH_OFB_MODE, 210 .init = cast_init_key, 211 .do_cipher = cast5_ofb_cipher, 212 .cleanup = NULL, 213 .ctx_size = sizeof(EVP_CAST_KEY), 214 .set_asn1_parameters = EVP_CIPHER_set_asn1_iv, 215 .get_asn1_parameters = EVP_CIPHER_get_asn1_iv, 216 .ctrl = NULL, 217}; 218 219const EVP_CIPHER * 220EVP_cast5_ofb(void) 221{ 222 return &cast5_ofb; 223} 224LCRYPTO_ALIAS(EVP_cast5_ofb); 225 226static const EVP_CIPHER cast5_ecb = { 227 .nid = NID_cast5_ecb, 228 .block_size = 8, 229 .key_len = CAST_KEY_LENGTH, 230 .iv_len = 0, 231 .flags = EVP_CIPH_VARIABLE_LENGTH | EVP_CIPH_ECB_MODE, 232 .init = cast_init_key, 233 .do_cipher = cast5_ecb_cipher, 234 .cleanup = NULL, 235 .ctx_size = sizeof(EVP_CAST_KEY), 236 .set_asn1_parameters = EVP_CIPHER_set_asn1_iv, 237 .get_asn1_parameters = EVP_CIPHER_get_asn1_iv, 238 .ctrl = NULL, 239}; 240 241const EVP_CIPHER * 242EVP_cast5_ecb(void) 243{ 244 return &cast5_ecb; 245} 246LCRYPTO_ALIAS(EVP_cast5_ecb); 247#endif 248