Home | History | Annotate | Download | only in evp
      1 /* crypto/evp/e_des3.c */
      2 /* Copyright (C) 1995-1998 Eric Young (eay (at) cryptsoft.com)
      3  * All rights reserved.
      4  *
      5  * This package is an SSL implementation written
      6  * by Eric Young (eay (at) cryptsoft.com).
      7  * The implementation was written so as to conform with Netscapes SSL.
      8  *
      9  * This library is free for commercial and non-commercial use as long as
     10  * the following conditions are aheared to.  The following conditions
     11  * apply to all code found in this distribution, be it the RC4, RSA,
     12  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
     13  * included with this distribution is covered by the same copyright terms
     14  * except that the holder is Tim Hudson (tjh (at) cryptsoft.com).
     15  *
     16  * Copyright remains Eric Young's, and as such any Copyright notices in
     17  * the code are not to be removed.
     18  * If this package is used in a product, Eric Young should be given attribution
     19  * as the author of the parts of the library used.
     20  * This can be in the form of a textual message at program startup or
     21  * in documentation (online or textual) provided with the package.
     22  *
     23  * Redistribution and use in source and binary forms, with or without
     24  * modification, are permitted provided that the following conditions
     25  * are met:
     26  * 1. Redistributions of source code must retain the copyright
     27  *    notice, this list of conditions and the following disclaimer.
     28  * 2. Redistributions in binary form must reproduce the above copyright
     29  *    notice, this list of conditions and the following disclaimer in the
     30  *    documentation and/or other materials provided with the distribution.
     31  * 3. All advertising materials mentioning features or use of this software
     32  *    must display the following acknowledgement:
     33  *    "This product includes cryptographic software written by
     34  *     Eric Young (eay (at) cryptsoft.com)"
     35  *    The word 'cryptographic' can be left out if the rouines from the library
     36  *    being used are not cryptographic related :-).
     37  * 4. If you include any Windows specific code (or a derivative thereof) from
     38  *    the apps directory (application code) you must include an acknowledgement:
     39  *    "This product includes software written by Tim Hudson (tjh (at) cryptsoft.com)"
     40  *
     41  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
     42  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
     43  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
     44  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
     45  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
     46  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
     47  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
     48  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
     49  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
     50  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
     51  * SUCH DAMAGE.
     52  *
     53  * The licence and distribution terms for any publically available version or
     54  * derivative of this code cannot be changed.  i.e. this code cannot simply be
     55  * copied and put under another distribution licence
     56  * [including the GNU Public Licence.]
     57  */
     58 
     59 #include <stdio.h>
     60 #include "cryptlib.h"
     61 #ifndef OPENSSL_NO_DES
     62 #include <openssl/evp.h>
     63 #include <openssl/objects.h>
     64 #include "evp_locl.h"
     65 #include <openssl/des.h>
     66 #include <openssl/rand.h>
     67 
     68 static int des_ede_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
     69 			    const unsigned char *iv,int enc);
     70 
     71 static int des_ede3_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
     72 			     const unsigned char *iv,int enc);
     73 
     74 static int des3_ctrl(EVP_CIPHER_CTX *c, int type, int arg, void *ptr);
     75 
     76 typedef struct
     77     {
     78     DES_key_schedule ks1;/* key schedule */
     79     DES_key_schedule ks2;/* key schedule (for ede) */
     80     DES_key_schedule ks3;/* key schedule (for ede3) */
     81     } DES_EDE_KEY;
     82 
     83 #define data(ctx) ((DES_EDE_KEY *)(ctx)->cipher_data)
     84 
     85 /* Because of various casts and different args can't use IMPLEMENT_BLOCK_CIPHER */
     86 
     87 static int des_ede_ecb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
     88 			      const unsigned char *in, size_t inl)
     89 {
     90 	BLOCK_CIPHER_ecb_loop()
     91 		DES_ecb3_encrypt((const_DES_cblock *)(in + i),
     92 				 (DES_cblock *)(out + i),
     93 				 &data(ctx)->ks1, &data(ctx)->ks2,
     94 				 &data(ctx)->ks3,
     95 				 ctx->encrypt);
     96 	return 1;
     97 }
     98 
     99 static int des_ede_ofb_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
    100 			      const unsigned char *in, size_t inl)
    101 {
    102 	if (inl>=EVP_MAXCHUNK)
    103 		{
    104 		DES_ede3_ofb64_encrypt(in, out, (long)EVP_MAXCHUNK,
    105 			       &data(ctx)->ks1, &data(ctx)->ks2, &data(ctx)->ks3,
    106 			       (DES_cblock *)ctx->iv, &ctx->num);
    107 		inl-=EVP_MAXCHUNK;
    108 		in +=EVP_MAXCHUNK;
    109 		out+=EVP_MAXCHUNK;
    110 		}
    111 	if (inl)
    112 		DES_ede3_ofb64_encrypt(in, out, (long)inl,
    113 				&data(ctx)->ks1, &data(ctx)->ks2, &data(ctx)->ks3,
    114                                (DES_cblock *)ctx->iv, &ctx->num);
    115 
    116 	return 1;
    117 }
    118 
    119 static int des_ede_cbc_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
    120 			      const unsigned char *in, size_t inl)
    121 {
    122 #ifdef KSSL_DEBUG
    123 	{
    124         int i;
    125         char *cp;
    126 	printf("des_ede_cbc_cipher(ctx=%lx, buflen=%d)\n", ctx, ctx->buf_len);
    127 	printf("\t iv= ");
    128         for(i=0;i<8;i++)
    129                 printf("%02X",ctx->iv[i]);
    130 	printf("\n");
    131 	}
    132 #endif    /* KSSL_DEBUG */
    133 	if (inl>=EVP_MAXCHUNK)
    134 		{
    135 		DES_ede3_cbc_encrypt(in, out, (long)EVP_MAXCHUNK,
    136 			     &data(ctx)->ks1, &data(ctx)->ks2, &data(ctx)->ks3,
    137 			     (DES_cblock *)ctx->iv, ctx->encrypt);
    138 		inl-=EVP_MAXCHUNK;
    139 		in +=EVP_MAXCHUNK;
    140 		out+=EVP_MAXCHUNK;
    141 		}
    142 	if (inl)
    143 		DES_ede3_cbc_encrypt(in, out, (long)inl,
    144 			     &data(ctx)->ks1, &data(ctx)->ks2, &data(ctx)->ks3,
    145                              (DES_cblock *)ctx->iv, ctx->encrypt);
    146 	return 1;
    147 }
    148 
    149 static int des_ede_cfb64_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
    150 			      const unsigned char *in, size_t inl)
    151 {
    152 	if (inl>=EVP_MAXCHUNK)
    153 		{
    154 		DES_ede3_cfb64_encrypt(in, out, (long)EVP_MAXCHUNK,
    155 			       &data(ctx)->ks1, &data(ctx)->ks2, &data(ctx)->ks3,
    156 			       (DES_cblock *)ctx->iv, &ctx->num, ctx->encrypt);
    157 		inl-=EVP_MAXCHUNK;
    158 		in +=EVP_MAXCHUNK;
    159 		out+=EVP_MAXCHUNK;
    160 		}
    161 	if (inl)
    162 		DES_ede3_cfb64_encrypt(in, out, (long)inl,
    163 			       &data(ctx)->ks1, &data(ctx)->ks2, &data(ctx)->ks3,
    164                                (DES_cblock *)ctx->iv, &ctx->num, ctx->encrypt);
    165 	return 1;
    166 }
    167 
    168 /* Although we have a CFB-r implementation for 3-DES, it doesn't pack the right
    169    way, so wrap it here */
    170 static int des_ede3_cfb1_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
    171 				const unsigned char *in, size_t inl)
    172     {
    173     size_t n;
    174     unsigned char c[1],d[1];
    175 
    176     for(n=0 ; n < inl ; ++n)
    177 	{
    178 	c[0]=(in[n/8]&(1 << (7-n%8))) ? 0x80 : 0;
    179 	DES_ede3_cfb_encrypt(c,d,1,1,
    180 			     &data(ctx)->ks1,&data(ctx)->ks2,&data(ctx)->ks3,
    181 			     (DES_cblock *)ctx->iv,ctx->encrypt);
    182 	out[n/8]=(out[n/8]&~(0x80 >> (unsigned int)(n%8))) |
    183 		 ((d[0]&0x80) >> (unsigned int)(n%8));
    184 	}
    185 
    186     return 1;
    187     }
    188 
    189 static int des_ede3_cfb8_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
    190 				const unsigned char *in, size_t inl)
    191     {
    192     while (inl>=EVP_MAXCHUNK)
    193 	{
    194 	DES_ede3_cfb_encrypt(in,out,8,(long)EVP_MAXCHUNK,
    195 			 &data(ctx)->ks1,&data(ctx)->ks2,&data(ctx)->ks3,
    196 			 (DES_cblock *)ctx->iv,ctx->encrypt);
    197 	inl-=EVP_MAXCHUNK;
    198 	in +=EVP_MAXCHUNK;
    199 	out+=EVP_MAXCHUNK;
    200 	}
    201     if (inl)
    202 	DES_ede3_cfb_encrypt(in,out,8,(long)inl,
    203 			&data(ctx)->ks1,&data(ctx)->ks2,&data(ctx)->ks3,
    204 			(DES_cblock *)ctx->iv,ctx->encrypt);
    205     return 1;
    206     }
    207 
    208 BLOCK_CIPHER_defs(des_ede, DES_EDE_KEY, NID_des_ede, 8, 16, 8, 64,
    209 			EVP_CIPH_RAND_KEY, des_ede_init_key, NULL,
    210 			EVP_CIPHER_set_asn1_iv,
    211 			EVP_CIPHER_get_asn1_iv,
    212 			des3_ctrl)
    213 
    214 #define des_ede3_cfb64_cipher des_ede_cfb64_cipher
    215 #define des_ede3_ofb_cipher des_ede_ofb_cipher
    216 #define des_ede3_cbc_cipher des_ede_cbc_cipher
    217 #define des_ede3_ecb_cipher des_ede_ecb_cipher
    218 
    219 BLOCK_CIPHER_defs(des_ede3, DES_EDE_KEY, NID_des_ede3, 8, 24, 8, 64,
    220 			EVP_CIPH_RAND_KEY, des_ede3_init_key, NULL,
    221 			EVP_CIPHER_set_asn1_iv,
    222 			EVP_CIPHER_get_asn1_iv,
    223 			des3_ctrl)
    224 
    225 BLOCK_CIPHER_def_cfb(des_ede3,DES_EDE_KEY,NID_des_ede3,24,8,1,
    226 		     EVP_CIPH_RAND_KEY, des_ede3_init_key,NULL,
    227 		     EVP_CIPHER_set_asn1_iv,
    228 		     EVP_CIPHER_get_asn1_iv,
    229 		     des3_ctrl)
    230 
    231 BLOCK_CIPHER_def_cfb(des_ede3,DES_EDE_KEY,NID_des_ede3,24,8,8,
    232 		     EVP_CIPH_RAND_KEY, des_ede3_init_key,NULL,
    233 		     EVP_CIPHER_set_asn1_iv,
    234 		     EVP_CIPHER_get_asn1_iv,
    235 		     des3_ctrl)
    236 
    237 static int des_ede_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
    238 			    const unsigned char *iv, int enc)
    239 	{
    240 	DES_cblock *deskey = (DES_cblock *)key;
    241 #ifdef EVP_CHECK_DES_KEY
    242 	if (DES_set_key_checked(&deskey[0],&data(ctx)->ks1)
    243 		!! DES_set_key_checked(&deskey[1],&data(ctx)->ks2))
    244 		return 0;
    245 #else
    246 	DES_set_key_unchecked(&deskey[0],&data(ctx)->ks1);
    247 	DES_set_key_unchecked(&deskey[1],&data(ctx)->ks2);
    248 #endif
    249 	memcpy(&data(ctx)->ks3,&data(ctx)->ks1,
    250 	       sizeof(data(ctx)->ks1));
    251 	return 1;
    252 	}
    253 
    254 static int des_ede3_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,
    255 			     const unsigned char *iv, int enc)
    256 	{
    257 	DES_cblock *deskey = (DES_cblock *)key;
    258 #ifdef KSSL_DEBUG
    259 	{
    260         int i;
    261         printf("des_ede3_init_key(ctx=%lx)\n", ctx);
    262 	printf("\tKEY= ");
    263         for(i=0;i<24;i++) printf("%02X",key[i]); printf("\n");
    264 	printf("\t IV= ");
    265         for(i=0;i<8;i++) printf("%02X",iv[i]); printf("\n");
    266 	}
    267 #endif	/* KSSL_DEBUG */
    268 
    269 #ifdef EVP_CHECK_DES_KEY
    270 	if (DES_set_key_checked(&deskey[0],&data(ctx)->ks1)
    271 		|| DES_set_key_checked(&deskey[1],&data(ctx)->ks2)
    272 		|| DES_set_key_checked(&deskey[2],&data(ctx)->ks3))
    273 		return 0;
    274 #else
    275 	DES_set_key_unchecked(&deskey[0],&data(ctx)->ks1);
    276 	DES_set_key_unchecked(&deskey[1],&data(ctx)->ks2);
    277 	DES_set_key_unchecked(&deskey[2],&data(ctx)->ks3);
    278 #endif
    279 	return 1;
    280 	}
    281 
    282 static int des3_ctrl(EVP_CIPHER_CTX *c, int type, int arg, void *ptr)
    283 	{
    284 
    285 	DES_cblock *deskey = ptr;
    286 
    287 	switch(type)
    288 		{
    289 	case EVP_CTRL_RAND_KEY:
    290 		if (RAND_bytes(ptr, c->key_len) <= 0)
    291 			return 0;
    292 		DES_set_odd_parity(deskey);
    293 		if (c->key_len >= 16)
    294 			DES_set_odd_parity(deskey + 1);
    295 		if (c->key_len >= 24)
    296 			DES_set_odd_parity(deskey + 2);
    297 		return 1;
    298 
    299 	default:
    300 		return -1;
    301 		}
    302 	}
    303 
    304 const EVP_CIPHER *EVP_des_ede(void)
    305 {
    306 	return &des_ede_ecb;
    307 }
    308 
    309 const EVP_CIPHER *EVP_des_ede3(void)
    310 {
    311 	return &des_ede3_ecb;
    312 }
    313 #endif
    314