]>
Commit | Line | Data |
---|---|---|
58964a49 | 1 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
d02b48c6 RE |
2 | * All rights reserved. |
3 | * | |
4 | * This package is an SSL implementation written | |
5 | * by Eric Young (eay@cryptsoft.com). | |
6 | * The implementation was written so as to conform with Netscapes SSL. | |
0f113f3e | 7 | * |
d02b48c6 RE |
8 | * This library is free for commercial and non-commercial use as long as |
9 | * the following conditions are aheared to. The following conditions | |
10 | * apply to all code found in this distribution, be it the RC4, RSA, | |
11 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | |
12 | * included with this distribution is covered by the same copyright terms | |
13 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | |
0f113f3e | 14 | * |
d02b48c6 RE |
15 | * Copyright remains Eric Young's, and as such any Copyright notices in |
16 | * the code are not to be removed. | |
17 | * If this package is used in a product, Eric Young should be given attribution | |
18 | * as the author of the parts of the library used. | |
19 | * This can be in the form of a textual message at program startup or | |
20 | * in documentation (online or textual) provided with the package. | |
0f113f3e | 21 | * |
d02b48c6 RE |
22 | * Redistribution and use in source and binary forms, with or without |
23 | * modification, are permitted provided that the following conditions | |
24 | * are met: | |
25 | * 1. Redistributions of source code must retain the copyright | |
26 | * notice, this list of conditions and the following disclaimer. | |
27 | * 2. Redistributions in binary form must reproduce the above copyright | |
28 | * notice, this list of conditions and the following disclaimer in the | |
29 | * documentation and/or other materials provided with the distribution. | |
30 | * 3. All advertising materials mentioning features or use of this software | |
31 | * must display the following acknowledgement: | |
32 | * "This product includes cryptographic software written by | |
33 | * Eric Young (eay@cryptsoft.com)" | |
34 | * The word 'cryptographic' can be left out if the rouines from the library | |
35 | * being used are not cryptographic related :-). | |
0f113f3e | 36 | * 4. If you include any Windows specific code (or a derivative thereof) from |
d02b48c6 RE |
37 | * the apps directory (application code) you must include an acknowledgement: |
38 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | |
0f113f3e | 39 | * |
d02b48c6 RE |
40 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND |
41 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | |
42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | |
43 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | |
44 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | |
45 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | |
46 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | |
47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | |
48 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | |
49 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | |
50 | * SUCH DAMAGE. | |
0f113f3e | 51 | * |
d02b48c6 RE |
52 | * The licence and distribution terms for any publically available version or |
53 | * derivative of this code cannot be changed. i.e. this code cannot simply be | |
54 | * copied and put under another distribution licence | |
55 | * [including the GNU Public Licence.] | |
56 | */ | |
57 | ||
cf89b405 | 58 | #include "e_os.h" |
d02b48c6 | 59 | #include "des_locl.h" |
1a979201 | 60 | #include <assert.h> |
d02b48c6 | 61 | |
0f113f3e MC |
62 | /* |
63 | * The input and output are loaded in multiples of 8 bits. What this means is | |
64 | * that if you hame numbits=12 and length=2 the first 12 bits will be | |
65 | * retrieved from the first byte and half the second. The second 12 bits | |
66 | * will come from the 3rd and half the 4th byte. | |
67 | */ | |
68 | /* | |
69 | * Until Aug 1 2003 this function did not correctly implement CFB-r, so it | |
70 | * will not be compatible with any encryption prior to that date. Ben. | |
d02b48c6 | 71 | */ |
c2e4f17c | 72 | void DES_cfb_encrypt(const unsigned char *in, unsigned char *out, int numbits, |
0f113f3e MC |
73 | long length, DES_key_schedule *schedule, |
74 | DES_cblock *ivec, int enc) | |
75 | { | |
76 | register DES_LONG d0, d1, v0, v1; | |
77 | register unsigned long l = length; | |
78 | register int num = numbits / 8, n = (numbits + 7) / 8, i, rem = | |
79 | numbits % 8; | |
80 | DES_LONG ti[2]; | |
81 | unsigned char *iv; | |
1a979201 | 82 | #ifndef L_ENDIAN |
0f113f3e | 83 | unsigned char ovec[16]; |
1a979201 | 84 | #else |
0f113f3e MC |
85 | unsigned int sh[4]; |
86 | unsigned char *ovec = (unsigned char *)sh; | |
87 | ||
88 | /* I kind of count that compiler optimizes away this assertioni, */ | |
89 | assert(sizeof(sh[0]) == 4); /* as this holds true for all, */ | |
90 | /* but 16-bit platforms... */ | |
d02b48c6 | 91 | |
1a979201 AP |
92 | #endif |
93 | ||
0f113f3e MC |
94 | if (numbits <= 0 || numbits > 64) |
95 | return; | |
96 | iv = &(*ivec)[0]; | |
97 | c2l(iv, v0); | |
98 | c2l(iv, v1); | |
99 | if (enc) { | |
100 | while (l >= (unsigned long)n) { | |
101 | l -= n; | |
102 | ti[0] = v0; | |
103 | ti[1] = v1; | |
104 | DES_encrypt1((DES_LONG *)ti, schedule, DES_ENCRYPT); | |
105 | c2ln(in, d0, d1, n); | |
106 | in += n; | |
107 | d0 ^= ti[0]; | |
108 | d1 ^= ti[1]; | |
109 | l2cn(d0, d1, out, n); | |
110 | out += n; | |
111 | /* | |
112 | * 30-08-94 - eay - changed because l>>32 and l<<32 are bad under | |
113 | * gcc :-( | |
114 | */ | |
115 | if (numbits == 32) { | |
116 | v0 = v1; | |
117 | v1 = d0; | |
118 | } else if (numbits == 64) { | |
119 | v0 = d0; | |
120 | v1 = d1; | |
121 | } else { | |
1a979201 | 122 | #ifndef L_ENDIAN |
0f113f3e MC |
123 | iv = &ovec[0]; |
124 | l2c(v0, iv); | |
125 | l2c(v1, iv); | |
126 | l2c(d0, iv); | |
127 | l2c(d1, iv); | |
1a979201 | 128 | #else |
0f113f3e | 129 | sh[0] = v0, sh[1] = v1, sh[2] = d0, sh[3] = d1; |
1a979201 | 130 | #endif |
0f113f3e MC |
131 | if (rem == 0) |
132 | memmove(ovec, ovec + num, 8); | |
133 | else | |
134 | for (i = 0; i < 8; ++i) | |
135 | ovec[i] = ovec[i + num] << rem | | |
136 | ovec[i + num + 1] >> (8 - rem); | |
1a979201 | 137 | #ifdef L_ENDIAN |
0f113f3e | 138 | v0 = sh[0], v1 = sh[1]; |
1a979201 | 139 | #else |
0f113f3e MC |
140 | iv = &ovec[0]; |
141 | c2l(iv, v0); | |
142 | c2l(iv, v1); | |
1a979201 | 143 | #endif |
0f113f3e MC |
144 | } |
145 | } | |
146 | } else { | |
147 | while (l >= (unsigned long)n) { | |
148 | l -= n; | |
149 | ti[0] = v0; | |
150 | ti[1] = v1; | |
151 | DES_encrypt1((DES_LONG *)ti, schedule, DES_ENCRYPT); | |
152 | c2ln(in, d0, d1, n); | |
153 | in += n; | |
154 | /* | |
155 | * 30-08-94 - eay - changed because l>>32 and l<<32 are bad under | |
156 | * gcc :-( | |
157 | */ | |
158 | if (numbits == 32) { | |
159 | v0 = v1; | |
160 | v1 = d0; | |
161 | } else if (numbits == 64) { | |
162 | v0 = d0; | |
163 | v1 = d1; | |
164 | } else { | |
1a979201 | 165 | #ifndef L_ENDIAN |
0f113f3e MC |
166 | iv = &ovec[0]; |
167 | l2c(v0, iv); | |
168 | l2c(v1, iv); | |
169 | l2c(d0, iv); | |
170 | l2c(d1, iv); | |
1a979201 | 171 | #else |
0f113f3e | 172 | sh[0] = v0, sh[1] = v1, sh[2] = d0, sh[3] = d1; |
1a979201 | 173 | #endif |
0f113f3e MC |
174 | if (rem == 0) |
175 | memmove(ovec, ovec + num, 8); | |
176 | else | |
177 | for (i = 0; i < 8; ++i) | |
178 | ovec[i] = ovec[i + num] << rem | | |
179 | ovec[i + num + 1] >> (8 - rem); | |
1a979201 | 180 | #ifdef L_ENDIAN |
0f113f3e | 181 | v0 = sh[0], v1 = sh[1]; |
1a979201 | 182 | #else |
0f113f3e MC |
183 | iv = &ovec[0]; |
184 | c2l(iv, v0); | |
185 | c2l(iv, v1); | |
1a979201 | 186 | #endif |
0f113f3e MC |
187 | } |
188 | d0 ^= ti[0]; | |
189 | d1 ^= ti[1]; | |
190 | l2cn(d0, d1, out, n); | |
191 | out += n; | |
192 | } | |
193 | } | |
194 | iv = &(*ivec)[0]; | |
195 | l2c(v0, iv); | |
196 | l2c(v1, iv); | |
197 | v0 = v1 = d0 = d1 = ti[0] = ti[1] = 0; | |
198 | } |