1 /* $OpenBSD: e_des.c,v 1.11 2014/07/11 08:44:48 jsing Exp $ */ 2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 3 * All rights reserved. 4 * 5 * This package is an SSL implementation written 6 * by Eric Young (eay@cryptsoft.com). 7 * The implementation was written so as to conform with Netscapes SSL. 8 * 9 * This library is free for commercial and non-commercial use as long as 10 * the following conditions are aheared to. The following conditions 11 * apply to all code found in this distribution, be it the RC4, RSA, 12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation 13 * included with this distribution is covered by the same copyright terms 14 * except that the holder is Tim Hudson (tjh@cryptsoft.com). 15 * 16 * Copyright remains Eric Young's, and as such any Copyright notices in 17 * the code are not to be removed. 18 * If this package is used in a product, Eric Young should be given attribution 19 * as the author of the parts of the library used. 20 * This can be in the form of a textual message at program startup or 21 * in documentation (online or textual) provided with the package. 22 * 23 * Redistribution and use in source and binary forms, with or without 24 * modification, are permitted provided that the following conditions 25 * are met: 26 * 1. Redistributions of source code must retain the copyright 27 * notice, this list of conditions and the following disclaimer. 28 * 2. Redistributions in binary form must reproduce the above copyright 29 * notice, this list of conditions and the following disclaimer in the 30 * documentation and/or other materials provided with the distribution. 31 * 3. All advertising materials mentioning features or use of this software 32 * must display the following acknowledgement: 33 * "This product includes cryptographic software written by 34 * Eric Young (eay@cryptsoft.com)" 35 * The word 'cryptographic' can be left out if the rouines from the library 36 * being used are not cryptographic related :-). 37 * 4. If you include any Windows specific code (or a derivative thereof) from 38 * the apps directory (application code) you must include an acknowledgement: 39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 40 * 41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 51 * SUCH DAMAGE. 52 * 53 * The licence and distribution terms for any publically available version or 54 * derivative of this code cannot be changed. i.e. this code cannot simply be 55 * copied and put under another distribution licence 56 * [including the GNU Public Licence.] 57 */ 58 59 #include <stdio.h> 60 61 #include <openssl/opensslconf.h> 62 63 #ifndef OPENSSL_NO_DES 64 65 #include <openssl/evp.h> 66 #include <openssl/des.h> 67 #include <openssl/objects.h> 68 #include <openssl/rand.h> 69 70 #include "evp_locl.h" 71 72 static int des_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, 73 const unsigned char *iv, int enc); 74 static int des_ctrl(EVP_CIPHER_CTX *c, int type, int arg, void *ptr); 75 76 /* Because of various casts and different names can't use IMPLEMENT_BLOCK_CIPHER */ 77 78 static int 79 des_ecb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, 80 const unsigned char *in, size_t inl) 81 { 82 BLOCK_CIPHER_ecb_loop() 83 DES_ecb_encrypt((DES_cblock *)(in + i), (DES_cblock *)(out + i), 84 ctx->cipher_data, ctx->encrypt); 85 return 1; 86 } 87 88 static int 89 des_ofb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, 90 const unsigned char *in, size_t inl) 91 { 92 while (inl >= EVP_MAXCHUNK) { 93 DES_ofb64_encrypt(in, out, (long)EVP_MAXCHUNK, ctx->cipher_data, 94 (DES_cblock *)ctx->iv, &ctx->num); 95 inl -= EVP_MAXCHUNK; 96 in += EVP_MAXCHUNK; 97 out += EVP_MAXCHUNK; 98 } 99 if (inl) 100 DES_ofb64_encrypt(in, out, (long)inl, ctx->cipher_data, 101 (DES_cblock *)ctx->iv, &ctx->num); 102 return 1; 103 } 104 105 static int 106 des_cbc_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, 107 const unsigned char *in, size_t inl) 108 { 109 while (inl >= EVP_MAXCHUNK) { 110 DES_ncbc_encrypt(in, out, (long)EVP_MAXCHUNK, ctx->cipher_data, 111 (DES_cblock *)ctx->iv, ctx->encrypt); 112 inl -= EVP_MAXCHUNK; 113 in += EVP_MAXCHUNK; 114 out += EVP_MAXCHUNK; 115 } 116 if (inl) 117 DES_ncbc_encrypt(in, out, (long)inl, ctx->cipher_data, 118 (DES_cblock *)ctx->iv, ctx->encrypt); 119 return 1; 120 } 121 122 static int 123 des_cfb64_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, 124 const unsigned char *in, size_t inl) 125 { 126 while (inl >= EVP_MAXCHUNK) { 127 DES_cfb64_encrypt(in, out, (long)EVP_MAXCHUNK, ctx->cipher_data, 128 (DES_cblock *)ctx->iv, &ctx->num, ctx->encrypt); 129 inl -= EVP_MAXCHUNK; 130 in += EVP_MAXCHUNK; 131 out += EVP_MAXCHUNK; 132 } 133 if (inl) 134 DES_cfb64_encrypt(in, out, (long)inl, ctx->cipher_data, 135 (DES_cblock *)ctx->iv, &ctx->num, ctx->encrypt); 136 return 1; 137 } 138 139 /* Although we have a CFB-r implementation for DES, it doesn't pack the right 140 way, so wrap it here */ 141 static int 142 des_cfb1_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, 143 const unsigned char *in, size_t inl) 144 { 145 size_t n, chunk = EVP_MAXCHUNK/8; 146 unsigned char c[1], d[1]; 147 148 if (inl < chunk) 149 chunk = inl; 150 151 while (inl && inl >= chunk) { 152 for (n = 0; n < chunk*8; ++n) { 153 c[0] = (in[n / 8] & (1 << (7 - n % 8))) ? 0x80 : 0; 154 DES_cfb_encrypt(c, d, 1, 1, ctx->cipher_data, 155 (DES_cblock *)ctx->iv, ctx->encrypt); 156 out[n / 8] = (out[n / 8] & 157 ~(0x80 >> (unsigned int)(n % 8))) | 158 ((d[0] & 0x80) >> (unsigned int)(n % 8)); 159 } 160 inl -= chunk; 161 in += chunk; 162 out += chunk; 163 if (inl < chunk) 164 chunk = inl; 165 } 166 167 return 1; 168 } 169 170 static int 171 des_cfb8_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, 172 const unsigned char *in, size_t inl) 173 { 174 while (inl >= EVP_MAXCHUNK) { 175 DES_cfb_encrypt(in, out, 8, (long)EVP_MAXCHUNK, 176 ctx->cipher_data, (DES_cblock *)ctx->iv, ctx->encrypt); 177 inl -= EVP_MAXCHUNK; 178 in += EVP_MAXCHUNK; 179 out += EVP_MAXCHUNK; 180 } 181 if (inl) 182 DES_cfb_encrypt(in, out, 8, (long)inl, ctx->cipher_data, 183 (DES_cblock *)ctx->iv, ctx->encrypt); 184 return 1; 185 } 186 187 BLOCK_CIPHER_defs(des, DES_key_schedule, NID_des, 8, 8, 8, 64, 188 EVP_CIPH_RAND_KEY, des_init_key, NULL, 189 EVP_CIPHER_set_asn1_iv, 190 EVP_CIPHER_get_asn1_iv, 191 des_ctrl) 192 193 BLOCK_CIPHER_def_cfb(des, DES_key_schedule, NID_des, 8, 8, 1, 194 EVP_CIPH_RAND_KEY, des_init_key, NULL, 195 EVP_CIPHER_set_asn1_iv, 196 EVP_CIPHER_get_asn1_iv, des_ctrl) 197 198 BLOCK_CIPHER_def_cfb(des, DES_key_schedule, NID_des, 8, 8, 8, 199 EVP_CIPH_RAND_KEY, des_init_key, NULL, 200 EVP_CIPHER_set_asn1_iv, 201 EVP_CIPHER_get_asn1_iv, des_ctrl) 202 203 static int 204 des_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, 205 const unsigned char *iv, int enc) 206 { 207 DES_cblock *deskey = (DES_cblock *)key; 208 209 #ifdef EVP_CHECK_DES_KEY 210 if (DES_set_key_checked(deskey, ctx->cipher_data) != 0) 211 return 0; 212 #else 213 DES_set_key_unchecked(deskey, ctx->cipher_data); 214 #endif 215 return 1; 216 } 217 218 static int 219 des_ctrl(EVP_CIPHER_CTX *c, int type, int arg, void *ptr) 220 { 221 switch (type) { 222 case EVP_CTRL_RAND_KEY: 223 if (RAND_bytes(ptr, 8) <= 0) 224 return 0; 225 DES_set_odd_parity((DES_cblock *)ptr); 226 return 1; 227 228 default: 229 return -1; 230 } 231 } 232 233 #endif 234