f4401cd869
alter des.h to be friendly with openssl/des.h (you can include both in the same file) make libkrb to depend on libdes. bump major. massage various portioin of heimdal to be friendly with openssl 0.9.7b.
271 lines
11 KiB
C
271 lines
11 KiB
C
/* $NetBSD: des.h,v 1.4 2003/07/24 14:16:30 itojun Exp $ */
|
|
|
|
/* crypto/des/des.h */
|
|
/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
|
|
* All rights reserved.
|
|
*
|
|
* This package is an SSL implementation written
|
|
* by Eric Young (eay@cryptsoft.com).
|
|
* The implementation was written so as to conform with Netscapes SSL.
|
|
*
|
|
* This library is free for commercial and non-commercial use as long as
|
|
* the following conditions are aheared to. The following conditions
|
|
* apply to all code found in this distribution, be it the RC4, RSA,
|
|
* lhash, DES, etc., code; not just the SSL code. The SSL documentation
|
|
* included with this distribution is covered by the same copyright terms
|
|
* except that the holder is Tim Hudson (tjh@cryptsoft.com).
|
|
*
|
|
* Copyright remains Eric Young's, and as such any Copyright notices in
|
|
* the code are not to be removed.
|
|
* If this package is used in a product, Eric Young should be given attribution
|
|
* as the author of the parts of the library used.
|
|
* This can be in the form of a textual message at program startup or
|
|
* in documentation (online or textual) provided with the package.
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
* 1. Redistributions of source code must retain the copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
* 3. All advertising materials mentioning features or use of this software
|
|
* must display the following acknowledgement:
|
|
* "This product includes cryptographic software written by
|
|
* Eric Young (eay@cryptsoft.com)"
|
|
* The word 'cryptographic' can be left out if the rouines from the library
|
|
* being used are not cryptographic related :-).
|
|
* 4. If you include any Windows specific code (or a derivative thereof) from
|
|
* the apps directory (application code) you must include an acknowledgement:
|
|
* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
* SUCH DAMAGE.
|
|
*
|
|
* The licence and distribution terms for any publically available version or
|
|
* derivative of this code cannot be changed. i.e. this code cannot simply be
|
|
* copied and put under another distribution licence
|
|
* [including the GNU Public Licence.]
|
|
*/
|
|
|
|
#ifndef HEADER_DES_H
|
|
#define HEADER_DES_H
|
|
|
|
#ifdef _KERBEROS_DES_H
|
|
#error <openssl/des.h> replaces <kerberos/des.h>.
|
|
#endif
|
|
|
|
#include <sys/types.h>
|
|
#define DES_LONG u_int32_t
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
typedef unsigned char des_cblock[8];
|
|
typedef /* const */ unsigned char const_des_cblock[8];
|
|
/* With "const", gcc 2.8.1 on Solaris thinks that des_cblock *
|
|
* and const_des_cblock * are incompatible pointer types. */
|
|
|
|
typedef struct des_ks_struct
|
|
{
|
|
union {
|
|
des_cblock cblock;
|
|
/* make sure things are correct size on machines with
|
|
* 8 byte longs */
|
|
DES_LONG deslong[2];
|
|
} ks;
|
|
#if 0
|
|
int weak_key;
|
|
#endif
|
|
} des_key_schedule[16];
|
|
|
|
#define DES_KEY_SZ 8 /*(sizeof(des_cblock))*/
|
|
#define DES_SCHEDULE_SZ 128 /*(sizeof(des_key_schedule))*/
|
|
|
|
#define DES_ENCRYPT 1
|
|
#define DES_DECRYPT 0
|
|
|
|
#define DES_CBC_MODE 0
|
|
#define DES_PCBC_MODE 1
|
|
|
|
#define des_ecb2_encrypt(i,o,k1,k2,e) \
|
|
des_ecb3_encrypt((i),(o),(k1),(k2),(k1),(e))
|
|
|
|
#define des_ede2_cbc_encrypt(i,o,l,k1,k2,iv,e) \
|
|
des_ede3_cbc_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(e))
|
|
|
|
#define des_ede2_cfb64_encrypt(i,o,l,k1,k2,iv,n,e) \
|
|
des_ede3_cfb64_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(n),(e))
|
|
|
|
#define des_ede2_ofb64_encrypt(i,o,l,k1,k2,iv,n) \
|
|
des_ede3_ofb64_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(n))
|
|
|
|
extern int des_check_key; /* defaults to false */
|
|
extern int des_rw_mode; /* defaults to DES_PCBC_MODE */
|
|
extern int des_set_weak_key_flag; /* set the weak key flag */
|
|
|
|
const char *des_options(void);
|
|
void des_ecb3_encrypt(const_des_cblock *, des_cblock *,
|
|
des_key_schedule,des_key_schedule,
|
|
des_key_schedule, int);
|
|
DES_LONG des_cbc_cksum(const unsigned char *,des_cblock *,
|
|
long,des_key_schedule,
|
|
const_des_cblock *);
|
|
/* des_cbc_encrypt does not update the IV! Use des_ncbc_encrypt instead. */
|
|
void des_cbc_encrypt(const unsigned char *input,unsigned char *,
|
|
long,des_key_schedule,des_cblock *,
|
|
int);
|
|
void des_ncbc_encrypt(const unsigned char *input,unsigned char *,
|
|
long,des_key_schedule,des_cblock *,
|
|
int);
|
|
void des_xcbc_encrypt(const unsigned char *input,unsigned char *,
|
|
long,des_key_schedule,des_cblock *,
|
|
const_des_cblock *inw,const_des_cblock *w,int);
|
|
void des_cfb_encrypt(const unsigned char *,unsigned char *,int,
|
|
long,des_key_schedule,des_cblock *,
|
|
int);
|
|
void des_ecb_encrypt(const_des_cblock *input,des_cblock *,
|
|
des_key_schedule,int);
|
|
|
|
/* This is the DES encryption function that gets called by just about
|
|
every other DES routine in the library. You should not use this
|
|
function except to implement 'modes' of DES. I say this because the
|
|
functions that call this routine do the conversion from 'char *' to
|
|
long, and this needs to be done to make sure 'non-aligned' memory
|
|
access do not occur. The characters are loaded 'little endian'.
|
|
Data is a pointer to 2 unsigned long's and ks is the
|
|
des_key_schedule to use. enc, is non zero specifies encryption,
|
|
zero if decryption. */
|
|
void des_encrypt1(DES_LONG *,des_key_schedule, int);
|
|
|
|
/* This functions is the same as des_encrypt1() except that the DES
|
|
initial permutation (IP) and final permutation (FP) have been left
|
|
out. As for des_encrypt1(), you should not use this function.
|
|
It is used by the routines in the library that implement triple DES.
|
|
IP() des_encrypt2() des_encrypt2() des_encrypt2() FP() is the same
|
|
as des_encrypt1() des_encrypt1() des_encrypt1() except faster :-). */
|
|
void des_encrypt2(DES_LONG *,des_key_schedule, int);
|
|
|
|
void des_encrypt3(DES_LONG *, des_key_schedule,
|
|
des_key_schedule, des_key_schedule);
|
|
void des_decrypt3(DES_LONG *, des_key_schedule,
|
|
des_key_schedule, des_key_schedule);
|
|
void des_ede3_cbc_encrypt(const unsigned char *,unsigned char *,
|
|
long,
|
|
des_key_schedule,des_key_schedule,
|
|
des_key_schedule,des_cblock *,int);
|
|
void des_ede3_cbcm_encrypt(const unsigned char *,unsigned char *,
|
|
long,
|
|
des_key_schedule,des_key_schedule,
|
|
des_key_schedule,
|
|
des_cblock *,des_cblock *,
|
|
int);
|
|
void des_ede3_cfb64_encrypt(const unsigned char *,unsigned char *,
|
|
long,des_key_schedule,
|
|
des_key_schedule,des_key_schedule,
|
|
des_cblock *,int *,int);
|
|
void des_ede3_ofb64_encrypt(const unsigned char *,unsigned char *,
|
|
long,des_key_schedule,
|
|
des_key_schedule,des_key_schedule,
|
|
des_cblock *,int *);
|
|
|
|
void des_xwhite_in2out(const_des_cblock *des_key,const_des_cblock *in_white,
|
|
des_cblock *_white);
|
|
|
|
int des_enc_read(int fd,void *,int len,des_key_schedule,
|
|
des_cblock *);
|
|
int des_enc_write(int fd,const void *,int len,des_key_schedule,
|
|
des_cblock *);
|
|
char *des_fcrypt(const char *,const char *, char *);
|
|
char *des_crypt(const char *,const char *);
|
|
void des_ofb_encrypt(const unsigned char *,unsigned char *,int,
|
|
long,des_key_schedule,des_cblock *);
|
|
void des_pcbc_encrypt(const unsigned char *input,unsigned char *,
|
|
long,des_key_schedule,des_cblock *,
|
|
int);
|
|
DES_LONG des_quad_cksum(const unsigned char *,des_cblock [],
|
|
long,int,des_cblock *);
|
|
void des_random_seed(des_cblock *);
|
|
int des_random_key(des_cblock *);
|
|
int des_read_password(des_cblock *,const char *,int);
|
|
int des_read_2passwords(des_cblock *,des_cblock *,
|
|
const char *,int);
|
|
int des_read_pw_string(char *,int,const char *,int);
|
|
void des_set_odd_parity(des_cblock *);
|
|
void des_fixup_key_parity(des_cblock *);
|
|
int des_check_key_parity(const_des_cblock *);
|
|
int des_is_weak_key(const_des_cblock *);
|
|
/* des_set_key (= set_key = des_key_sched = key_sched) calls
|
|
* des_set_key_checked if global variable des_check_key is set,
|
|
* des_set_key_unchecked otherwise. */
|
|
int des_set_key(const_des_cblock *,des_key_schedule);
|
|
int des_key_sched(const_des_cblock *,des_key_schedule);
|
|
int des_set_key_checked(const_des_cblock *,des_key_schedule);
|
|
void des_set_key_unchecked(const_des_cblock *,des_key_schedule);
|
|
void des_string_to_key(const char *,des_cblock *);
|
|
void des_string_to_2keys(const char *,des_cblock *,des_cblock *);
|
|
void des_cfb64_encrypt(const unsigned char *,unsigned char *,long,
|
|
des_key_schedule,des_cblock *,int *,
|
|
int);
|
|
void des_ofb64_encrypt(const unsigned char *,unsigned char *,long,
|
|
des_key_schedule,des_cblock *,int *);
|
|
int des_read_pw(char *,char *,int size,const char *,int);
|
|
|
|
/* The following functions are not in the normal unix build or the
|
|
* SSLeay build. When using the SSLeay build, use RAND_seed()
|
|
* and RAND_bytes() instead. */
|
|
int des_new_random_key(des_cblock *);
|
|
void des_init_random_number_generator(des_cblock *);
|
|
void des_set_random_generator_seed(des_cblock *);
|
|
|
|
/* The following definitions provide compatibility with the MIT Kerberos
|
|
* library. The des_key_schedule structure is not binary compatible. */
|
|
|
|
#define _KERBEROS_DES_H
|
|
|
|
#define KRBDES_ENCRYPT DES_ENCRYPT
|
|
#define KRBDES_DECRYPT DES_DECRYPT
|
|
|
|
#ifdef KERBEROS
|
|
# define ENCRYPT DES_ENCRYPT
|
|
# define DECRYPT DES_DECRYPT
|
|
#endif
|
|
|
|
#ifndef NCOMPAT
|
|
# define C_Block des_cblock
|
|
# define Key_schedule des_key_schedule
|
|
# define KEY_SZ DES_KEY_SZ
|
|
# define string_to_key des_string_to_key
|
|
# define read_pw_string des_read_pw_string
|
|
# define random_key des_random_key
|
|
# define pcbc_encrypt des_pcbc_encrypt
|
|
# define set_key des_set_key
|
|
# define key_sched des_key_sched
|
|
# define ecb_encrypt des_ecb_encrypt
|
|
# define cbc_encrypt des_cbc_encrypt
|
|
# define ncbc_encrypt des_ncbc_encrypt
|
|
# define xcbc_encrypt des_xcbc_encrypt
|
|
# define cbc_cksum des_cbc_cksum
|
|
# define quad_cksum des_quad_cksum
|
|
# define check_parity des_check_key_parity
|
|
#endif
|
|
|
|
typedef des_key_schedule bit_64;
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
|
|
#endif
|