TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / c04515b83cce98517183812fd52404b2f0771f23 / . / include / mbedtls / des.h
blob: f445102d9d4c598e56a7ebe6ca0b28f893e88933 [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]1/**
2 * \file des.h
Paul Bakkere0ccd0a2009-01-04 16:27:10 +0000[diff] [blame]3 *
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000[diff] [blame]4 * \brief DES block cipher
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]5 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]6 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]7 * security risk. We recommend considering stronger ciphers
8 * instead.
Darryl Greena40a1012018-01-05 15:33:17 +0000[diff] [blame]9 */
10/*
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]11 * Copyright The Mbed TLS Contributors
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame]12 * SPDX-License-Identifier: Apache-2.0
13 *
14 * Licensed under the Apache License, Version 2.0 (the "License"); you may
15 * not use this file except in compliance with the License.
16 * You may obtain a copy of the License at
17 *
18 * http://www.apache.org/licenses/LICENSE-2.0
19 *
20 * Unless required by applicable law or agreed to in writing, software
21 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23 * See the License for the specific language governing permissions and
24 * limitations under the License.
Paul Bakkerb96f1542010-07-18 20:36:00 +0000[diff] [blame]25 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]26 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]27#ifndef MBEDTLS_DES_H
28#define MBEDTLS_DES_H
Mateusz Starzyk846f0212021-05-19 19:44:07 +0200[diff] [blame]29#include "mbedtls/private_access.h"
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]30
Bence Szépkútic662b362021-05-27 11:25:03 +0200[diff] [blame]31#include "mbedtls/build_info.h"
Mateusz Starzyke35f8f62021-08-04 15:38:09 +0200[diff] [blame]32#include "mbedtls/platform_util.h"
Paul Bakker90995b52013-06-24 19:20:35 +0200[diff] [blame]33
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]34#include <stddef.h>
Manuel Pégourié-Gonnardab229102015-04-15 11:53:16 +0200[diff] [blame]35#include <stdint.h>
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]36
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]37#define MBEDTLS_DES_ENCRYPT 1
38#define MBEDTLS_DES_DECRYPT 0
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]39
Gilles Peskined2971572021-07-26 18:48:10 +0200[diff] [blame]40/** The data input has an invalid length. */
41#define MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH -0x0032
Ron Eldor9924bdc2018-10-04 10:59:13 +0300[diff] [blame]42
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]43#define MBEDTLS_DES_KEY_SIZE 8
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]44
Paul Bakker407a0da2013-06-27 14:29:21 +0200[diff] [blame]45#ifdef __cplusplus
46extern "C" {
47#endif
48
Ron Eldorb2aacec2017-05-18 16:53:08 +0300[diff] [blame]49#if !defined(MBEDTLS_DES_ALT)
50// Regular implementation
51//
52
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]53/**
54 * \brief DES context structure
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]55 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]56 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]57 * security risk. We recommend considering stronger ciphers
58 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]59 */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]60typedef struct mbedtls_des_context {
Mateusz Starzyk846f0212021-05-19 19:44:07 +0200[diff] [blame]61 uint32_t MBEDTLS_PRIVATE(sk)[32]; /*!< DES subkeys */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]62}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]63mbedtls_des_context;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]64
65/**
66 * \brief Triple-DES context structure
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]67 *
68 * \warning DES/3DES are considered weak ciphers and their use constitutes a
69 * security risk. We recommend considering stronger ciphers
70 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]71 */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]72typedef struct mbedtls_des3_context {
Mateusz Starzyk846f0212021-05-19 19:44:07 +0200[diff] [blame]73 uint32_t MBEDTLS_PRIVATE(sk)[96]; /*!< 3DES subkeys */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]74}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]75mbedtls_des3_context;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]76
Ron Eldor05d0e512018-04-16 17:40:04 +0300[diff] [blame]77#else /* MBEDTLS_DES_ALT */
78#include "des_alt.h"
79#endif /* MBEDTLS_DES_ALT */
80
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]81/**
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]82 * \brief Initialize DES context
83 *
84 * \param ctx DES context to be initialized
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]85 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]86 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]87 * security risk. We recommend considering stronger ciphers
88 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]89 */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]90void mbedtls_des_init(mbedtls_des_context *ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]91
92/**
93 * \brief Clear DES context
94 *
95 * \param ctx DES context to be cleared
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]96 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]97 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]98 * security risk. We recommend considering stronger ciphers
99 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]100 */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]101void mbedtls_des_free(mbedtls_des_context *ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]102
103/**
104 * \brief Initialize Triple-DES context
105 *
106 * \param ctx DES3 context to be initialized
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]107 *
108 * \warning DES/3DES are considered weak ciphers and their use constitutes a
109 * security risk. We recommend considering stronger ciphers
110 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]111 */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]112void mbedtls_des3_init(mbedtls_des3_context *ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]113
114/**
115 * \brief Clear Triple-DES context
116 *
117 * \param ctx DES3 context to be cleared
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]118 *
119 * \warning DES/3DES are considered weak ciphers and their use constitutes a
120 * security risk. We recommend considering stronger ciphers
121 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]122 */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]123void mbedtls_des3_free(mbedtls_des3_context *ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]124
125/**
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]126 * \brief Set key parity on the given key to odd.
127 *
128 * DES keys are 56 bits long, but each byte is padded with
129 * a parity bit to allow verification.
130 *
131 * \param key 8-byte secret key
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]132 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]133 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]134 * security risk. We recommend considering stronger ciphers
135 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]136 */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]137void mbedtls_des_key_set_parity(unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]138
139/**
140 * \brief Check that key parity on the given key is odd.
141 *
142 * DES keys are 56 bits long, but each byte is padded with
143 * a parity bit to allow verification.
144 *
145 * \param key 8-byte secret key
Paul Bakker73206952011-07-06 14:37:33 +0000[diff] [blame]146 *
147 * \return 0 is parity was ok, 1 if parity was not correct.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]148 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]149 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]150 * security risk. We recommend considering stronger ciphers
151 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]152 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]153MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]154int mbedtls_des_key_check_key_parity(const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]155
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]156/**
157 * \brief Check that key is not a weak or semi-weak DES key
158 *
159 * \param key 8-byte secret key
Paul Bakker73206952011-07-06 14:37:33 +0000[diff] [blame]160 *
Paul Bakker4793cc42011-08-17 09:40:55 +0000[diff] [blame]161 * \return 0 if no weak key was found, 1 if a weak key was identified.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]162 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]163 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]164 * security risk. We recommend considering stronger ciphers
165 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]166 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]167MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]168int mbedtls_des_key_check_weak(const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]169
170/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]171 * \brief DES key schedule (56-bit, encryption)
172 *
173 * \param ctx DES context to be initialized
174 * \param key 8-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]175 *
176 * \return 0
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]177 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]178 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]179 * security risk. We recommend considering stronger ciphers
180 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]181 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]182MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]183int mbedtls_des_setkey_enc(mbedtls_des_context *ctx, const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]184
185/**
186 * \brief DES key schedule (56-bit, decryption)
187 *
188 * \param ctx DES context to be initialized
189 * \param key 8-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]190 *
191 * \return 0
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]192 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]193 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]194 * security risk. We recommend considering stronger ciphers
195 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]196 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]197MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]198int mbedtls_des_setkey_dec(mbedtls_des_context *ctx, const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]199
200/**
201 * \brief Triple-DES key schedule (112-bit, encryption)
202 *
203 * \param ctx 3DES context to be initialized
204 * \param key 16-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]205 *
206 * \return 0
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]207 *
208 * \warning DES/3DES are considered weak ciphers and their use constitutes a
209 * security risk. We recommend considering stronger ciphers
210 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]211 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]212MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]213int mbedtls_des3_set2key_enc(mbedtls_des3_context *ctx,
214 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 2]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]215
216/**
217 * \brief Triple-DES key schedule (112-bit, decryption)
218 *
219 * \param ctx 3DES context to be initialized
220 * \param key 16-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]221 *
222 * \return 0
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]223 *
224 * \warning DES/3DES are considered weak ciphers and their use constitutes a
225 * security risk. We recommend considering stronger ciphers
226 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]227 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]228MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]229int mbedtls_des3_set2key_dec(mbedtls_des3_context *ctx,
230 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 2]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]231
232/**
233 * \brief Triple-DES key schedule (168-bit, encryption)
234 *
235 * \param ctx 3DES context to be initialized
236 * \param key 24-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]237 *
238 * \return 0
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]239 *
240 * \warning DES/3DES are considered weak ciphers and their use constitutes a
241 * security risk. We recommend considering stronger ciphers
242 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]243 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]244MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]245int mbedtls_des3_set3key_enc(mbedtls_des3_context *ctx,
246 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 3]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]247
248/**
249 * \brief Triple-DES key schedule (168-bit, decryption)
250 *
251 * \param ctx 3DES context to be initialized
252 * \param key 24-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]253 *
254 * \return 0
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]255 *
256 * \warning DES/3DES are considered weak ciphers and their use constitutes a
257 * security risk. We recommend considering stronger ciphers
258 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]259 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]260MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]261int mbedtls_des3_set3key_dec(mbedtls_des3_context *ctx,
262 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 3]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]263
264/**
265 * \brief DES-ECB block encryption/decryption
266 *
267 * \param ctx DES context
268 * \param input 64-bit input block
269 * \param output 64-bit output block
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]270 *
Paul Bakker27caa8a2010-03-21 15:43:59 +0000[diff] [blame]271 * \return 0 if successful
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]272 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]273 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]274 * security risk. We recommend considering stronger ciphers
275 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]276 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]277MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]278int mbedtls_des_crypt_ecb(mbedtls_des_context *ctx,
279 const unsigned char input[8],
280 unsigned char output[8]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]281
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]282#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]283/**
284 * \brief DES-CBC buffer encryption/decryption
285 *
Manuel Pégourié-Gonnard2be147a2015-01-23 16:19:47 +0000[diff] [blame]286 * \note Upon exit, the content of the IV is updated so that you can
287 * call the function same function again on the following
288 * block(s) of data and get the same result as if it was
289 * encrypted in one call. This allows a "streaming" usage.
290 * If on the other hand you need to retain the contents of the
291 * IV, you should either save it manually or use the cipher
292 * module instead.
293 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]294 * \param ctx DES context
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]295 * \param mode MBEDTLS_DES_ENCRYPT or MBEDTLS_DES_DECRYPT
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]296 * \param length length of the input data
297 * \param iv initialization vector (updated after use)
298 * \param input buffer holding the input data
299 * \param output buffer holding the output data
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]300 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]301 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]302 * security risk. We recommend considering stronger ciphers
303 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]304 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]305MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]306int mbedtls_des_crypt_cbc(mbedtls_des_context *ctx,
307 int mode,
308 size_t length,
309 unsigned char iv[8],
310 const unsigned char *input,
311 unsigned char *output);
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]312#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]313
314/**
315 * \brief 3DES-ECB block encryption/decryption
316 *
317 * \param ctx 3DES context
318 * \param input 64-bit input block
319 * \param output 64-bit output block
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]320 *
Paul Bakker27caa8a2010-03-21 15:43:59 +0000[diff] [blame]321 * \return 0 if successful
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]322 *
323 * \warning DES/3DES are considered weak ciphers and their use constitutes a
324 * security risk. We recommend considering stronger ciphers
325 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]326 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]327MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]328int mbedtls_des3_crypt_ecb(mbedtls_des3_context *ctx,
329 const unsigned char input[8],
330 unsigned char output[8]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]331
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]332#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]333/**
334 * \brief 3DES-CBC buffer encryption/decryption
335 *
Manuel Pégourié-Gonnard2be147a2015-01-23 16:19:47 +0000[diff] [blame]336 * \note Upon exit, the content of the IV is updated so that you can
337 * call the function same function again on the following
338 * block(s) of data and get the same result as if it was
339 * encrypted in one call. This allows a "streaming" usage.
340 * If on the other hand you need to retain the contents of the
341 * IV, you should either save it manually or use the cipher
342 * module instead.
343 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]344 * \param ctx 3DES context
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]345 * \param mode MBEDTLS_DES_ENCRYPT or MBEDTLS_DES_DECRYPT
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]346 * \param length length of the input data
347 * \param iv initialization vector (updated after use)
348 * \param input buffer holding the input data
349 * \param output buffer holding the output data
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]350 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]351 * \return 0 if successful, or MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]352 *
353 * \warning DES/3DES are considered weak ciphers and their use constitutes a
354 * security risk. We recommend considering stronger ciphers
355 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]356 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]357MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]358int mbedtls_des3_crypt_cbc(mbedtls_des3_context *ctx,
359 int mode,
360 size_t length,
361 unsigned char iv[8],
362 const unsigned char *input,
363 unsigned char *output);
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]364#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]365
Manuel Pégourié-Gonnard70a50102015-05-12 15:02:45 +0200[diff] [blame]366/**
367 * \brief Internal function for key expansion.
368 * (Only exposed to allow overriding it,
369 * see MBEDTLS_DES_SETKEY_ALT)
370 *
371 * \param SK Round keys
372 * \param key Base key
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]373 *
Dave Rodgmanc04515b2023-02-02 10:47:58 +0000[diff] [blame^]374 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]375 * security risk. We recommend considering stronger ciphers
376 * instead.
Manuel Pégourié-Gonnard70a50102015-05-12 15:02:45 +0200[diff] [blame]377 */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]378void mbedtls_des_setkey(uint32_t SK[32],
379 const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker90995b52013-06-24 19:20:35 +0200[diff] [blame]380
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]381#if defined(MBEDTLS_SELF_TEST)
382
Paul Bakker9a736322012-11-14 12:39:52 +0000[diff] [blame]383/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]384 * \brief Checkup routine
385 *
386 * \return 0 if successful, or 1 if the test failed
387 */
Gilles Peskinee41803a2021-09-23 17:35:37 +0200[diff] [blame]388MBEDTLS_CHECK_RETURN_CRITICAL
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]389int mbedtls_des_self_test(int verbose);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]390
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]391#endif /* MBEDTLS_SELF_TEST */
392
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]393#ifdef __cplusplus
394}
395#endif
396
397#endif /* des.h */