📄 ctx_des.c
字号:
/****************************************************************************
* *
* cryptlib DES Encryption Routines *
* Copyright Peter Gutmann 1995-2005 *
* *
****************************************************************************/
#if defined( INC_ALL )
#include "crypt.h"
#include "context.h"
#include "des.h"
#else
#include "crypt.h"
#include "context/context.h"
#include "crypt/des.h"
#endif /* Compiler-specific includes */
/* The DES block size */
#define DES_BLOCKSIZE 8
#if defined( INC_ALL )
#include "testdes.h"
#else
#include "crypt/testdes.h"
#endif /* Compiler-specific includes */
/* The scheduled DES key and size of the keyscheduled DES key */
#define DES_KEY Key_schedule
#define DES_KEYSIZE sizeof( Key_schedule )
/****************************************************************************
* *
* DES Self-test Routines *
* *
****************************************************************************/
/* Test the DES implementation against the test vectors given in NBS Special
Publication 500-20, 1980 */
static int testLoop( const DES_TEST *testDES, int iterations, BOOLEAN isEncrypt )
{
const CAPABILITY_INFO *capabilityInfo = getDESCapability();
BYTE keyData[ DES_KEYSIZE + 8 ];
int i, status;
for( i = 0; i < iterations; i++ )
{
/* The self-test uses weak keys, which means they'll be rejected by
the key-load function if it checks for these. For the OpenSSL
DES implementation we can kludge around this by temporarily
clearing the global des_check_key value, but for other
implementations some alternative workaround will be necessary */
des_check_key = FALSE;
status = testCipher( capabilityInfo, keyData, testDES[ i ].key,
DES_BLOCKSIZE, testDES[ i ].plaintext,
testDES[ i ].ciphertext );
des_check_key = TRUE;
if( cryptStatusError( status ) )
return( status );
}
return( CRYPT_OK );
}
static int selfTest( void )
{
/* Check the DES test vectors. Note that we don't explicitly test
the RS values, however these are tested implicitly since they're
just the decrypt side of the KP tests */
if( ( testLoop( testIP, sizeof( testIP ) / sizeof( DES_TEST ),
TRUE ) != CRYPT_OK ) || \
( testLoop( testVP, sizeof( testVP ) / sizeof( DES_TEST ),
TRUE ) != CRYPT_OK ) || \
( testLoop( testKP, sizeof( testKP ) / sizeof( DES_TEST ),
TRUE ) != CRYPT_OK ) || \
( testLoop( testDP, sizeof( testDP ) / sizeof( DES_TEST ),
TRUE ) != CRYPT_OK ) || \
( testLoop( testSB, sizeof( testSB ) / sizeof( DES_TEST ),
TRUE ) != CRYPT_OK ) )
return( CRYPT_ERROR_FAILED );
return( CRYPT_OK );
}
/****************************************************************************
* *
* Control Routines *
* *
****************************************************************************/
/* Return context subtype-specific information */
static int getInfo( const CAPABILITY_INFO_TYPE type, const void *ptrParam,
const int intParam, int *result )
{
if( type == CAPABILITY_INFO_STATESIZE )
{
*result = DES_KEYSIZE;
return( CRYPT_OK );
}
return( getDefaultInfo( type, ptrParam, intParam, result ) );
}
/****************************************************************************
* *
* DES En/Decryption Routines *
* *
****************************************************************************/
/* Encrypt/decrypt data in ECB mode */
static int encryptECB( CONTEXT_INFO *contextInfoPtr, BYTE *buffer,
int noBytes )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
int blockCount = noBytes / DES_BLOCKSIZE;
while( blockCount-- > 0 )
{
/* Encrypt a block of data */
des_ecb_encrypt( ( C_Block * ) buffer, ( C_Block * ) buffer,
*( DES_KEY * ) convInfo->key, DES_ENCRYPT );
/* Move on to next block of data */
buffer += DES_BLOCKSIZE;
}
return( CRYPT_OK );
}
static int decryptECB( CONTEXT_INFO *contextInfoPtr, BYTE *buffer,
int noBytes )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
int blockCount = noBytes / DES_BLOCKSIZE;
while( blockCount-- > 0 )
{
/* Decrypt a block of data */
des_ecb_encrypt( ( C_Block * ) buffer, ( C_Block * ) buffer,
*( DES_KEY * ) convInfo->key, DES_DECRYPT );
/* Move on to next block of data */
buffer += DES_BLOCKSIZE;
}
return( CRYPT_OK );
}
/* Encrypt/decrypt data in CBC mode */
static int encryptCBC( CONTEXT_INFO *contextInfoPtr, BYTE *buffer,
int noBytes )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
des_ncbc_encrypt( buffer, buffer, noBytes, *( DES_KEY * ) convInfo->key,
( C_Block * ) convInfo->currentIV, DES_ENCRYPT );
return( CRYPT_OK );
}
static int decryptCBC( CONTEXT_INFO *contextInfoPtr, BYTE *buffer,
int noBytes )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
des_ncbc_encrypt( buffer, buffer, noBytes, *( DES_KEY * ) convInfo->key,
( C_Block * ) convInfo->currentIV, DES_DECRYPT );
return( CRYPT_OK );
}
/* Encrypt/decrypt data in CFB mode */
static int encryptCFB( CONTEXT_INFO *contextInfoPtr, BYTE *buffer,
int noBytes )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
int i, ivCount = convInfo->ivCount;
/* If there's any encrypted material left in the IV, use it now */
if( ivCount > 0 )
{
int bytesToUse;
/* Find out how much material left in the encrypted IV we can use */
bytesToUse = DES_BLOCKSIZE - ivCount;
if( noBytes < bytesToUse )
bytesToUse = noBytes;
/* Encrypt the data */
for( i = 0; i < bytesToUse; i++ )
buffer[ i ] ^= convInfo->currentIV[ i + ivCount ];
memcpy( convInfo->currentIV + ivCount, buffer, bytesToUse );
/* Adjust the byte count and buffer position */
noBytes -= bytesToUse;
buffer += bytesToUse;
ivCount += bytesToUse;
}
while( noBytes > 0 )
{
ivCount = ( noBytes > DES_BLOCKSIZE ) ? DES_BLOCKSIZE : noBytes;
/* Encrypt the IV */
des_ecb_encrypt( ( C_Block * ) convInfo->currentIV,
( C_Block * ) convInfo->currentIV,
*( DES_KEY * ) convInfo->key, DES_ENCRYPT );
/* XOR the buffer contents with the encrypted IV */
for( i = 0; i < ivCount; i++ )
buffer[ i ] ^= convInfo->currentIV[ i ];
/* Shift the ciphertext into the IV */
memcpy( convInfo->currentIV, buffer, ivCount );
/* Move on to next block of data */
noBytes -= ivCount;
buffer += ivCount;
}
/* Remember how much of the IV is still available for use */
convInfo->ivCount = ( ivCount % DES_BLOCKSIZE );
return( CRYPT_OK );
}
static int decryptCFB( CONTEXT_INFO *contextInfoPtr, BYTE *buffer,
int noBytes )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
BYTE temp[ DES_BLOCKSIZE + 8 ];
int i, ivCount = convInfo->ivCount;
/* If there's any encrypted material left in the IV, use it now */
if( ivCount > 0 )
{
int bytesToUse;
/* Find out how much material left in the encrypted IV we can use */
bytesToUse = DES_BLOCKSIZE - ivCount;
if( noBytes < bytesToUse )
bytesToUse = noBytes;
/* Decrypt the data */
memcpy( temp, buffer, bytesToUse );
for( i = 0; i < bytesToUse; i++ )
buffer[ i ] ^= convInfo->currentIV[ i + ivCount ];
memcpy( convInfo->currentIV + ivCount, temp, bytesToUse );
/* Adjust the byte count and buffer position */
noBytes -= bytesToUse;
buffer += bytesToUse;
ivCount += bytesToUse;
}
while( noBytes > 0 )
{
ivCount = ( noBytes > DES_BLOCKSIZE ) ? DES_BLOCKSIZE : noBytes;
/* Encrypt the IV */
des_ecb_encrypt( ( C_Block * ) convInfo->currentIV,
( C_Block * ) convInfo->currentIV,
*( DES_KEY * ) convInfo->key, DES_ENCRYPT );
/* Save the ciphertext */
memcpy( temp, buffer, ivCount );
/* XOR the buffer contents with the encrypted IV */
for( i = 0; i < ivCount; i++ )
buffer[ i ] ^= convInfo->currentIV[ i ];
/* Shift the ciphertext into the IV */
memcpy( convInfo->currentIV, temp, ivCount );
/* Move on to next block of data */
noBytes -= ivCount;
buffer += ivCount;
}
/* Remember how much of the IV is still available for use */
convInfo->ivCount = ( ivCount % DES_BLOCKSIZE );
/* Clear the temporary buffer */
zeroise( temp, DES_BLOCKSIZE );
return( CRYPT_OK );
}
/* Encrypt/decrypt data in OFB mode */
static int encryptOFB( CONTEXT_INFO *contextInfoPtr, BYTE *buffer,
int noBytes )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
int i, ivCount = convInfo->ivCount;
/* If there's any encrypted material left in the IV, use it now */
if( ivCount > 0 )
{
int bytesToUse;
/* Find out how much material left in the encrypted IV we can use */
bytesToUse = DES_BLOCKSIZE - ivCount;
if( noBytes < bytesToUse )
bytesToUse = noBytes;
/* Encrypt the data */
for( i = 0; i < bytesToUse; i++ )
buffer[ i ] ^= convInfo->currentIV[ i + ivCount ];
/* Adjust the byte count and buffer position */
noBytes -= bytesToUse;
buffer += bytesToUse;
ivCount += bytesToUse;
}
while( noBytes > 0 )
{
ivCount = ( noBytes > DES_BLOCKSIZE ) ? DES_BLOCKSIZE : noBytes;
/* Encrypt the IV */
des_ecb_encrypt( ( C_Block * ) convInfo->currentIV,
( C_Block * ) convInfo->currentIV,
*( DES_KEY * ) convInfo->key, DES_ENCRYPT );
/* XOR the buffer contents with the encrypted IV */
for( i = 0; i < ivCount; i++ )
buffer[ i ] ^= convInfo->currentIV[ i ];
/* Move on to next block of data */
noBytes -= ivCount;
buffer += ivCount;
}
/* Remember how much of the IV is still available for use */
convInfo->ivCount = ( ivCount % DES_BLOCKSIZE );
return( CRYPT_OK );
}
static int decryptOFB( CONTEXT_INFO *contextInfoPtr, BYTE *buffer,
int noBytes )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
int i, ivCount = convInfo->ivCount;
/* If there's any encrypted material left in the IV, use it now */
if( ivCount > 0 )
{
int bytesToUse;
/* Find out how much material left in the encrypted IV we can use */
bytesToUse = DES_BLOCKSIZE - ivCount;
if( noBytes < bytesToUse )
bytesToUse = noBytes;
/* Decrypt the data */
for( i = 0; i < bytesToUse; i++ )
buffer[ i ] ^= convInfo->currentIV[ i + ivCount ];
/* Adjust the byte count and buffer position */
noBytes -= bytesToUse;
buffer += bytesToUse;
ivCount += bytesToUse;
}
while( noBytes > 0 )
{
ivCount = ( noBytes > DES_BLOCKSIZE ) ? DES_BLOCKSIZE : noBytes;
/* Encrypt the IV */
des_ecb_encrypt( ( C_Block * ) convInfo->currentIV,
( C_Block * ) convInfo->currentIV,
*( DES_KEY * ) convInfo->key, DES_ENCRYPT );
/* XOR the buffer contents with the encrypted IV */
for( i = 0; i < ivCount; i++ )
buffer[ i ] ^= convInfo->currentIV[ i ];
/* Move on to next block of data */
noBytes -= ivCount;
buffer += ivCount;
}
/* Remember how much of the IV is still available for use */
convInfo->ivCount = ( ivCount % DES_BLOCKSIZE );
return( CRYPT_OK );
}
/****************************************************************************
* *
* DES Key Management Routines *
* *
****************************************************************************/
/* Key schedule a DES key */
static int initKey( CONTEXT_INFO *contextInfoPtr, const void *key,
const int keyLength )
{
CONV_INFO *convInfo = contextInfoPtr->ctxConv;
/* Copy the key to internal storage */
if( convInfo->userKey != key )
memcpy( convInfo->userKey, key, keyLength );
convInfo->userKeyLength = keyLength;
/* Call the libdes key schedule code. Returns with -1 if the key parity
is wrong (which never occurs since we force the correct parity) or -2
if a weak key is used. In theory this could leave us open to timing
attacks (a memcmp() implemented as a bytewise operation will exit on
the first mis-matching byte), but in practice the trip through the
kernel adds enough skew to make the one or two clock cycle difference
undetectable */
des_set_odd_parity( ( C_Block * ) convInfo->userKey );
if( des_key_sched( ( C_Block * ) convInfo->userKey,
*( DES_KEY * ) convInfo->key ) )
return( CRYPT_ARGERROR_STR1 );
return( CRYPT_OK );
}
/****************************************************************************
* *
* Capability Access Routines *
* *
****************************************************************************/
static const CAPABILITY_INFO FAR_BSS capabilityInfo = {
CRYPT_ALGO_DES, bitsToBytes( 64 ), "DES", 3,
MIN_KEYSIZE, bitsToBytes( 64 ), bitsToBytes( 64 ),
selfTest, getInfo, NULL, initKeyParams, initKey, NULL,
encryptECB, decryptECB, encryptCBC, decryptCBC,
encryptCFB, decryptCFB, encryptOFB, decryptOFB
};
const CAPABILITY_INFO *getDESCapability( void )
{
return( &capabilityInfo );
}
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -