TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / ce555e4fad05652f237c587ab41c59a5b0c6e335 / . / include / mbedtls / des.h
blob: 325aab536442e4a7a9f9815827f0c5ebb816e7e1 [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]1/**
2 * \file des.h
Paul Bakkere0ccd0a2009-01-04 16:27:10 +0000[diff] [blame]3 *
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000[diff] [blame]4 * \brief DES block cipher
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]5 *
6 * \warning DES is considered a weak cipher and its use constitutes a
7 * security risk. We recommend considering stronger ciphers
8 * instead.
Darryl Greena40a1012018-01-05 15:33:17 +0000[diff] [blame]9 */
10/*
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]11 * Copyright The Mbed TLS Contributors
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame]12 * SPDX-License-Identifier: Apache-2.0
13 *
14 * Licensed under the Apache License, Version 2.0 (the "License"); you may
15 * not use this file except in compliance with the License.
16 * You may obtain a copy of the License at
17 *
18 * http://www.apache.org/licenses/LICENSE-2.0
19 *
20 * Unless required by applicable law or agreed to in writing, software
21 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
22 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
23 * See the License for the specific language governing permissions and
24 * limitations under the License.
Paul Bakkerb96f1542010-07-18 20:36:00 +0000[diff] [blame]25 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]26 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]27#ifndef MBEDTLS_DES_H
28#define MBEDTLS_DES_H
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]29
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]30#if !defined(MBEDTLS_CONFIG_FILE)
Jaeden Ameroc49fbbf2019-07-04 20:01:14 +0100[diff] [blame]31#include "mbedtls/config.h"
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]32#else
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]33#include MBEDTLS_CONFIG_FILE
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]34#endif
Gilles Peskine7b8571f2021-07-07 21:02:36 +0200[diff] [blame]35#include "mbedtls/platform_util.h"
Paul Bakker90995b52013-06-24 19:20:35 +0200[diff] [blame]36
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]37#include <stddef.h>
Manuel Pégourié-Gonnardab229102015-04-15 11:53:16 +0200[diff] [blame]38#include <stdint.h>
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]39
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]40#define MBEDTLS_DES_ENCRYPT 1
41#define MBEDTLS_DES_DECRYPT 0
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]42
Gilles Peskinea3974432021-07-26 18:48:10 +0200[diff] [blame]43/** The data input has an invalid length. */
44#define MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH -0x0032
Ron Eldor9924bdc2018-10-04 10:59:13 +0300[diff] [blame]45
46/* MBEDTLS_ERR_DES_HW_ACCEL_FAILED is deprecated and should not be used. */
Gilles Peskinea3974432021-07-26 18:48:10 +0200[diff] [blame]47/** DES hardware accelerator failed. */
48#define MBEDTLS_ERR_DES_HW_ACCEL_FAILED -0x0033
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]49
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]50#define MBEDTLS_DES_KEY_SIZE 8
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]51
Paul Bakker407a0da2013-06-27 14:29:21 +0200[diff] [blame]52#ifdef __cplusplus
53extern "C" {
54#endif
55
Ron Eldorb2aacec2017-05-18 16:53:08 +0300[diff] [blame]56#if !defined(MBEDTLS_DES_ALT)
57// Regular implementation
58//
59
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]60/**
61 * \brief DES context structure
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]62 *
63 * \warning DES is considered a weak cipher and its use constitutes a
64 * security risk. We recommend considering stronger ciphers
65 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]66 */
Dawid Drozd428cc522018-07-24 10:02:47 +0200[diff] [blame]67typedef struct mbedtls_des_context
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]68{
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]69 uint32_t sk[32]; /*!< DES subkeys */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]70}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]71mbedtls_des_context;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]72
73/**
74 * \brief Triple-DES context structure
75 */
Dawid Drozd428cc522018-07-24 10:02:47 +0200[diff] [blame]76typedef struct mbedtls_des3_context
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]77{
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]78 uint32_t sk[96]; /*!< 3DES subkeys */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]79}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]80mbedtls_des3_context;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]81
Ron Eldor05d0e512018-04-16 17:40:04 +0300[diff] [blame]82#else /* MBEDTLS_DES_ALT */
83#include "des_alt.h"
84#endif /* MBEDTLS_DES_ALT */
85
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]86/**
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]87 * \brief Initialize DES context
88 *
89 * \param ctx DES context to be initialized
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]90 *
91 * \warning DES is considered a weak cipher and its use constitutes a
92 * security risk. We recommend considering stronger ciphers
93 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]94 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]95void mbedtls_des_init( mbedtls_des_context *ctx );
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]96
97/**
98 * \brief Clear DES context
99 *
100 * \param ctx DES context to be cleared
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]101 *
102 * \warning DES is considered a weak cipher and its use constitutes a
103 * security risk. We recommend considering stronger ciphers
104 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]105 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]106void mbedtls_des_free( mbedtls_des_context *ctx );
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]107
108/**
109 * \brief Initialize Triple-DES context
110 *
111 * \param ctx DES3 context to be initialized
112 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]113void mbedtls_des3_init( mbedtls_des3_context *ctx );
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]114
115/**
116 * \brief Clear Triple-DES context
117 *
118 * \param ctx DES3 context to be cleared
119 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]120void mbedtls_des3_free( mbedtls_des3_context *ctx );
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]121
122/**
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]123 * \brief Set key parity on the given key to odd.
124 *
125 * DES keys are 56 bits long, but each byte is padded with
126 * a parity bit to allow verification.
127 *
128 * \param key 8-byte secret key
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]129 *
130 * \warning DES is considered a weak cipher and its use constitutes a
131 * security risk. We recommend considering stronger ciphers
132 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]133 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]134void mbedtls_des_key_set_parity( unsigned char key[MBEDTLS_DES_KEY_SIZE] );
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]135
136/**
137 * \brief Check that key parity on the given key is odd.
138 *
139 * DES keys are 56 bits long, but each byte is padded with
140 * a parity bit to allow verification.
141 *
142 * \param key 8-byte secret key
Paul Bakker73206952011-07-06 14:37:33 +0000[diff] [blame]143 *
144 * \return 0 is parity was ok, 1 if parity was not correct.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]145 *
146 * \warning DES is considered a weak cipher and its use constitutes a
147 * security risk. We recommend considering stronger ciphers
148 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]149 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]150MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]151int mbedtls_des_key_check_key_parity( const unsigned char key[MBEDTLS_DES_KEY_SIZE] );
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]152
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]153/**
154 * \brief Check that key is not a weak or semi-weak DES key
155 *
156 * \param key 8-byte secret key
Paul Bakker73206952011-07-06 14:37:33 +0000[diff] [blame]157 *
Paul Bakker4793cc42011-08-17 09:40:55 +0000[diff] [blame]158 * \return 0 if no weak key was found, 1 if a weak key was identified.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]159 *
160 * \warning DES is considered a weak cipher and its use constitutes a
161 * security risk. We recommend considering stronger ciphers
162 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]163 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]164MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]165int mbedtls_des_key_check_weak( const unsigned char key[MBEDTLS_DES_KEY_SIZE] );
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]166
167/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]168 * \brief DES key schedule (56-bit, encryption)
169 *
170 * \param ctx DES context to be initialized
171 * \param key 8-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]172 *
173 * \return 0
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]174 *
175 * \warning DES is considered a weak cipher and its use constitutes a
176 * security risk. We recommend considering stronger ciphers
177 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]178 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]179MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]180int mbedtls_des_setkey_enc( mbedtls_des_context *ctx, const unsigned char key[MBEDTLS_DES_KEY_SIZE] );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]181
182/**
183 * \brief DES key schedule (56-bit, decryption)
184 *
185 * \param ctx DES context to be initialized
186 * \param key 8-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]187 *
188 * \return 0
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]189 *
190 * \warning DES is considered a weak cipher and its use constitutes a
191 * security risk. We recommend considering stronger ciphers
192 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]193 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]194MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]195int mbedtls_des_setkey_dec( mbedtls_des_context *ctx, const unsigned char key[MBEDTLS_DES_KEY_SIZE] );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]196
197/**
198 * \brief Triple-DES key schedule (112-bit, encryption)
199 *
200 * \param ctx 3DES context to be initialized
201 * \param key 16-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]202 *
203 * \return 0
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]204 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]205MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]206int mbedtls_des3_set2key_enc( mbedtls_des3_context *ctx,
207 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 2] );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]208
209/**
210 * \brief Triple-DES key schedule (112-bit, decryption)
211 *
212 * \param ctx 3DES context to be initialized
213 * \param key 16-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]214 *
215 * \return 0
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]216 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]217MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]218int mbedtls_des3_set2key_dec( mbedtls_des3_context *ctx,
219 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 2] );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]220
221/**
222 * \brief Triple-DES key schedule (168-bit, encryption)
223 *
224 * \param ctx 3DES context to be initialized
225 * \param key 24-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]226 *
227 * \return 0
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]228 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]229MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]230int mbedtls_des3_set3key_enc( mbedtls_des3_context *ctx,
231 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 3] );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]232
233/**
234 * \brief Triple-DES key schedule (168-bit, decryption)
235 *
236 * \param ctx 3DES context to be initialized
237 * \param key 24-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]238 *
239 * \return 0
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]240 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]241MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]242int mbedtls_des3_set3key_dec( mbedtls_des3_context *ctx,
243 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 3] );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]244
245/**
246 * \brief DES-ECB block encryption/decryption
247 *
248 * \param ctx DES context
249 * \param input 64-bit input block
250 * \param output 64-bit output block
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]251 *
Paul Bakker27caa8a2010-03-21 15:43:59 +0000[diff] [blame]252 * \return 0 if successful
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]253 *
254 * \warning DES is considered a weak cipher and its use constitutes a
255 * security risk. We recommend considering stronger ciphers
256 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]257 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]258MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]259int mbedtls_des_crypt_ecb( mbedtls_des_context *ctx,
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]260 const unsigned char input[8],
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]261 unsigned char output[8] );
262
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]263#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]264/**
265 * \brief DES-CBC buffer encryption/decryption
266 *
Manuel Pégourié-Gonnard2be147a2015-01-23 16:19:47 +0000[diff] [blame]267 * \note Upon exit, the content of the IV is updated so that you can
268 * call the function same function again on the following
269 * block(s) of data and get the same result as if it was
270 * encrypted in one call. This allows a "streaming" usage.
271 * If on the other hand you need to retain the contents of the
272 * IV, you should either save it manually or use the cipher
273 * module instead.
274 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]275 * \param ctx DES context
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]276 * \param mode MBEDTLS_DES_ENCRYPT or MBEDTLS_DES_DECRYPT
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]277 * \param length length of the input data
278 * \param iv initialization vector (updated after use)
279 * \param input buffer holding the input data
280 * \param output buffer holding the output data
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]281 *
282 * \warning DES is considered a weak cipher and its use constitutes a
283 * security risk. We recommend considering stronger ciphers
284 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]285 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]286MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]287int mbedtls_des_crypt_cbc( mbedtls_des_context *ctx,
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]288 int mode,
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]289 size_t length,
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]290 unsigned char iv[8],
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]291 const unsigned char *input,
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]292 unsigned char *output );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]293#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]294
295/**
296 * \brief 3DES-ECB block encryption/decryption
297 *
298 * \param ctx 3DES context
299 * \param input 64-bit input block
300 * \param output 64-bit output block
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]301 *
Paul Bakker27caa8a2010-03-21 15:43:59 +0000[diff] [blame]302 * \return 0 if successful
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]303 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]304MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]305int mbedtls_des3_crypt_ecb( mbedtls_des3_context *ctx,
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]306 const unsigned char input[8],
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]307 unsigned char output[8] );
308
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]309#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]310/**
311 * \brief 3DES-CBC buffer encryption/decryption
312 *
Manuel Pégourié-Gonnard2be147a2015-01-23 16:19:47 +0000[diff] [blame]313 * \note Upon exit, the content of the IV is updated so that you can
314 * call the function same function again on the following
315 * block(s) of data and get the same result as if it was
316 * encrypted in one call. This allows a "streaming" usage.
317 * If on the other hand you need to retain the contents of the
318 * IV, you should either save it manually or use the cipher
319 * module instead.
320 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]321 * \param ctx 3DES context
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]322 * \param mode MBEDTLS_DES_ENCRYPT or MBEDTLS_DES_DECRYPT
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]323 * \param length length of the input data
324 * \param iv initialization vector (updated after use)
325 * \param input buffer holding the input data
326 * \param output buffer holding the output data
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]327 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]328 * \return 0 if successful, or MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]329 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]330MBEDTLS_CHECK_RETURN_TYPICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]331int mbedtls_des3_crypt_cbc( mbedtls_des3_context *ctx,
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]332 int mode,
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]333 size_t length,
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]334 unsigned char iv[8],
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]335 const unsigned char *input,
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]336 unsigned char *output );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]337#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]338
Manuel Pégourié-Gonnard70a50102015-05-12 15:02:45 +0200[diff] [blame]339/**
340 * \brief Internal function for key expansion.
341 * (Only exposed to allow overriding it,
342 * see MBEDTLS_DES_SETKEY_ALT)
343 *
344 * \param SK Round keys
345 * \param key Base key
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]346 *
347 * \warning DES is considered a weak cipher and its use constitutes a
348 * security risk. We recommend considering stronger ciphers
349 * instead.
Manuel Pégourié-Gonnard70a50102015-05-12 15:02:45 +0200[diff] [blame]350 */
351void mbedtls_des_setkey( uint32_t SK[32],
352 const unsigned char key[MBEDTLS_DES_KEY_SIZE] );
Paul Bakker90995b52013-06-24 19:20:35 +0200[diff] [blame]353
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]354#if defined(MBEDTLS_SELF_TEST)
355
Paul Bakker9a736322012-11-14 12:39:52 +0000[diff] [blame]356/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]357 * \brief Checkup routine
358 *
359 * \return 0 if successful, or 1 if the test failed
360 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame^]361MBEDTLS_CHECK_RETURN_CRITICAL
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]362int mbedtls_des_self_test( int verbose );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]363
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]364#endif /* MBEDTLS_SELF_TEST */
365
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]366#ifdef __cplusplus
367}
368#endif
369
370#endif /* des.h */