TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/mbedtls-2.28 / . / include / mbedtls / des.h
blob: 031b9cf271823d29b2420403ff3fa58cdfe7575a [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]1/**
2 * \file des.h
Paul Bakkere0ccd0a2009-01-04 16:27:10 +0000[diff] [blame]3 *
Paul Bakkerf3b86c12011-01-27 15:24:17 +0000[diff] [blame]4 * \brief DES block cipher
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]5 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]6 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]7 * security risk. We recommend considering stronger ciphers
8 * instead.
Darryl Greena40a1012018-01-05 15:33:17 +0000[diff] [blame]9 */
10/*
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]11 * Copyright The Mbed TLS Contributors
Dave Rodgman7ff79652023-11-03 12:04:52 +0000[diff] [blame]12 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
Paul Bakkerb96f1542010-07-18 20:36:00 +0000[diff] [blame]13 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]14 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]15#ifndef MBEDTLS_DES_H
16#define MBEDTLS_DES_H
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]17
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]18#if !defined(MBEDTLS_CONFIG_FILE)
Jaeden Ameroc49fbbf2019-07-04 20:01:14 +0100[diff] [blame]19#include "mbedtls/config.h"
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]20#else
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]21#include MBEDTLS_CONFIG_FILE
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]22#endif
Gilles Peskine7b8571f2021-07-07 21:02:36 +0200[diff] [blame]23#include "mbedtls/platform_util.h"
Paul Bakker90995b52013-06-24 19:20:35 +0200[diff] [blame]24
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]25#include <stddef.h>
Manuel Pégourié-Gonnardab229102015-04-15 11:53:16 +0200[diff] [blame]26#include <stdint.h>
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]27
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]28#define MBEDTLS_DES_ENCRYPT 1
29#define MBEDTLS_DES_DECRYPT 0
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]30
Gilles Peskinea3974432021-07-26 18:48:10 +0200[diff] [blame]31/** The data input has an invalid length. */
32#define MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH -0x0032
Ron Eldor9924bdc2018-10-04 10:59:13 +0300[diff] [blame]33
34/* MBEDTLS_ERR_DES_HW_ACCEL_FAILED is deprecated and should not be used. */
Gilles Peskinea3974432021-07-26 18:48:10 +0200[diff] [blame]35/** DES hardware accelerator failed. */
36#define MBEDTLS_ERR_DES_HW_ACCEL_FAILED -0x0033
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]37
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]38#define MBEDTLS_DES_KEY_SIZE 8
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]39
Paul Bakker407a0da2013-06-27 14:29:21 +0200[diff] [blame]40#ifdef __cplusplus
41extern "C" {
42#endif
43
Ron Eldorb2aacec2017-05-18 16:53:08 +0300[diff] [blame]44#if !defined(MBEDTLS_DES_ALT)
45// Regular implementation
46//
47
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]48/**
49 * \brief DES context structure
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]50 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]51 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]52 * security risk. We recommend considering stronger ciphers
53 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]54 */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]55typedef struct mbedtls_des_context {
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]56 uint32_t sk[32]; /*!< DES subkeys */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]57}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]58mbedtls_des_context;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]59
60/**
61 * \brief Triple-DES context structure
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]62 *
63 * \warning DES/3DES are considered weak ciphers and their use constitutes a
64 * security risk. We recommend considering stronger ciphers
65 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]66 */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]67typedef struct mbedtls_des3_context {
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]68 uint32_t sk[96]; /*!< 3DES subkeys */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]69}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]70mbedtls_des3_context;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]71
Ron Eldor05d0e512018-04-16 17:40:04 +0300[diff] [blame]72#else /* MBEDTLS_DES_ALT */
73#include "des_alt.h"
74#endif /* MBEDTLS_DES_ALT */
75
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]76/**
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]77 * \brief Initialize DES context
78 *
79 * \param ctx DES context to be initialized
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]80 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]81 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]82 * security risk. We recommend considering stronger ciphers
83 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]84 */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]85void mbedtls_des_init(mbedtls_des_context *ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]86
87/**
88 * \brief Clear DES context
89 *
90 * \param ctx DES context to be cleared
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]91 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]92 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]93 * security risk. We recommend considering stronger ciphers
94 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]95 */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]96void mbedtls_des_free(mbedtls_des_context *ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]97
98/**
99 * \brief Initialize Triple-DES context
100 *
101 * \param ctx DES3 context to be initialized
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]102 *
103 * \warning DES/3DES are considered weak ciphers and their use constitutes a
104 * security risk. We recommend considering stronger ciphers
105 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]106 */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]107void mbedtls_des3_init(mbedtls_des3_context *ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]108
109/**
110 * \brief Clear Triple-DES context
111 *
112 * \param ctx DES3 context to be cleared
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]113 *
114 * \warning DES/3DES are considered weak ciphers and their use constitutes a
115 * security risk. We recommend considering stronger ciphers
116 * instead.
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]117 */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]118void mbedtls_des3_free(mbedtls_des3_context *ctx);
Paul Bakkerc7ea99a2014-06-18 11:12:03 +0200[diff] [blame]119
120/**
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]121 * \brief Set key parity on the given key to odd.
122 *
123 * DES keys are 56 bits long, but each byte is padded with
124 * a parity bit to allow verification.
125 *
126 * \param key 8-byte secret key
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]127 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]128 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]129 * security risk. We recommend considering stronger ciphers
130 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]131 */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]132void mbedtls_des_key_set_parity(unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]133
134/**
135 * \brief Check that key parity on the given key is odd.
136 *
137 * DES keys are 56 bits long, but each byte is padded with
138 * a parity bit to allow verification.
139 *
140 * \param key 8-byte secret key
Paul Bakker73206952011-07-06 14:37:33 +0000[diff] [blame]141 *
142 * \return 0 is parity was ok, 1 if parity was not correct.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]143 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]144 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]145 * security risk. We recommend considering stronger ciphers
146 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]147 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]148MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]149int mbedtls_des_key_check_key_parity(const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]150
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]151/**
152 * \brief Check that key is not a weak or semi-weak DES key
153 *
154 * \param key 8-byte secret key
Paul Bakker73206952011-07-06 14:37:33 +0000[diff] [blame]155 *
Paul Bakker4793cc42011-08-17 09:40:55 +0000[diff] [blame]156 * \return 0 if no weak key was found, 1 if a weak key was identified.
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]157 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]158 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]159 * security risk. We recommend considering stronger ciphers
160 * instead.
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]161 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]162MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]163int mbedtls_des_key_check_weak(const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker1f87fb62011-01-15 17:32:24 +0000[diff] [blame]164
165/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]166 * \brief DES key schedule (56-bit, encryption)
167 *
168 * \param ctx DES context to be initialized
169 * \param key 8-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]170 *
171 * \return 0
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]172 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]173 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]174 * security risk. We recommend considering stronger ciphers
175 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]176 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]177MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]178int mbedtls_des_setkey_enc(mbedtls_des_context *ctx, const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]179
180/**
181 * \brief DES key schedule (56-bit, decryption)
182 *
183 * \param ctx DES context to be initialized
184 * \param key 8-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]185 *
186 * \return 0
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]187 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]188 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]189 * security risk. We recommend considering stronger ciphers
190 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]191 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]192MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]193int mbedtls_des_setkey_dec(mbedtls_des_context *ctx, const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]194
195/**
196 * \brief Triple-DES key schedule (112-bit, encryption)
197 *
198 * \param ctx 3DES context to be initialized
199 * \param key 16-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]200 *
201 * \return 0
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]202 *
203 * \warning DES/3DES are considered weak ciphers and their use constitutes a
204 * security risk. We recommend considering stronger ciphers
205 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]206 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]207MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]208int mbedtls_des3_set2key_enc(mbedtls_des3_context *ctx,
209 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 2]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]210
211/**
212 * \brief Triple-DES key schedule (112-bit, decryption)
213 *
214 * \param ctx 3DES context to be initialized
215 * \param key 16-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]216 *
217 * \return 0
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]218 *
219 * \warning DES/3DES are considered weak ciphers and their use constitutes a
220 * security risk. We recommend considering stronger ciphers
221 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]222 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]223MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]224int mbedtls_des3_set2key_dec(mbedtls_des3_context *ctx,
225 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 2]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]226
227/**
228 * \brief Triple-DES key schedule (168-bit, encryption)
229 *
230 * \param ctx 3DES context to be initialized
231 * \param key 24-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]232 *
233 * \return 0
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]234 *
235 * \warning DES/3DES are considered weak ciphers and their use constitutes a
236 * security risk. We recommend considering stronger ciphers
237 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]238 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]239MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]240int mbedtls_des3_set3key_enc(mbedtls_des3_context *ctx,
241 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 3]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]242
243/**
244 * \brief Triple-DES key schedule (168-bit, decryption)
245 *
246 * \param ctx 3DES context to be initialized
247 * \param key 24-byte secret key
Paul Bakker8123e9d2011-01-06 15:37:30 +0000[diff] [blame]248 *
249 * \return 0
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]250 *
251 * \warning DES/3DES are considered weak ciphers and their use constitutes a
252 * security risk. We recommend considering stronger ciphers
253 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]254 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]255MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]256int mbedtls_des3_set3key_dec(mbedtls_des3_context *ctx,
257 const unsigned char key[MBEDTLS_DES_KEY_SIZE * 3]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]258
259/**
260 * \brief DES-ECB block encryption/decryption
261 *
262 * \param ctx DES context
263 * \param input 64-bit input block
264 * \param output 64-bit output block
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]265 *
Paul Bakker27caa8a2010-03-21 15:43:59 +0000[diff] [blame]266 * \return 0 if successful
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]267 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]268 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]269 * security risk. We recommend considering stronger ciphers
270 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]271 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]272MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]273int mbedtls_des_crypt_ecb(mbedtls_des_context *ctx,
274 const unsigned char input[8],
275 unsigned char output[8]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]276
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]277#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]278/**
279 * \brief DES-CBC buffer encryption/decryption
280 *
Manuel Pégourié-Gonnard2be147a2015-01-23 16:19:47 +0000[diff] [blame]281 * \note Upon exit, the content of the IV is updated so that you can
282 * call the function same function again on the following
283 * block(s) of data and get the same result as if it was
284 * encrypted in one call. This allows a "streaming" usage.
285 * If on the other hand you need to retain the contents of the
286 * IV, you should either save it manually or use the cipher
287 * module instead.
288 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]289 * \param ctx DES context
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]290 * \param mode MBEDTLS_DES_ENCRYPT or MBEDTLS_DES_DECRYPT
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]291 * \param length length of the input data
292 * \param iv initialization vector (updated after use)
293 * \param input buffer holding the input data
294 * \param output buffer holding the output data
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]295 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]296 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]297 * security risk. We recommend considering stronger ciphers
298 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]299 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]300MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]301int mbedtls_des_crypt_cbc(mbedtls_des_context *ctx,
302 int mode,
303 size_t length,
304 unsigned char iv[8],
305 const unsigned char *input,
306 unsigned char *output);
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]307#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]308
309/**
310 * \brief 3DES-ECB block encryption/decryption
311 *
312 * \param ctx 3DES context
313 * \param input 64-bit input block
314 * \param output 64-bit output block
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]315 *
Paul Bakker27caa8a2010-03-21 15:43:59 +0000[diff] [blame]316 * \return 0 if successful
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]317 *
318 * \warning DES/3DES are considered weak ciphers and their use constitutes a
319 * security risk. We recommend considering stronger ciphers
320 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]321 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]322MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]323int mbedtls_des3_crypt_ecb(mbedtls_des3_context *ctx,
324 const unsigned char input[8],
325 unsigned char output[8]);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]326
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]327#if defined(MBEDTLS_CIPHER_MODE_CBC)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]328/**
329 * \brief 3DES-CBC buffer encryption/decryption
330 *
Manuel Pégourié-Gonnard2be147a2015-01-23 16:19:47 +0000[diff] [blame]331 * \note Upon exit, the content of the IV is updated so that you can
332 * call the function same function again on the following
333 * block(s) of data and get the same result as if it was
334 * encrypted in one call. This allows a "streaming" usage.
335 * If on the other hand you need to retain the contents of the
336 * IV, you should either save it manually or use the cipher
337 * module instead.
338 *
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]339 * \param ctx 3DES context
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]340 * \param mode MBEDTLS_DES_ENCRYPT or MBEDTLS_DES_DECRYPT
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]341 * \param length length of the input data
342 * \param iv initialization vector (updated after use)
343 * \param input buffer holding the input data
344 * \param output buffer holding the output data
Paul Bakkerf3ccc682010-03-18 21:21:02 +0000[diff] [blame]345 *
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]346 * \return 0 if successful, or MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]347 *
348 * \warning DES/3DES are considered weak ciphers and their use constitutes a
349 * security risk. We recommend considering stronger ciphers
350 * instead.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]351 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]352MBEDTLS_CHECK_RETURN_TYPICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]353int mbedtls_des3_crypt_cbc(mbedtls_des3_context *ctx,
354 int mode,
355 size_t length,
356 unsigned char iv[8],
357 const unsigned char *input,
358 unsigned char *output);
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]359#endif /* MBEDTLS_CIPHER_MODE_CBC */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]360
Manuel Pégourié-Gonnard70a50102015-05-12 15:02:45 +0200[diff] [blame]361/**
362 * \brief Internal function for key expansion.
363 * (Only exposed to allow overriding it,
364 * see MBEDTLS_DES_SETKEY_ALT)
365 *
366 * \param SK Round keys
367 * \param key Base key
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]368 *
Dave Rodgmanb43d5e72023-02-02 10:47:58 +0000[diff] [blame]369 * \warning DES/3DES are considered weak ciphers and their use constitutes a
Hanno Beckerbbca8c52017-09-25 14:53:51 +0100[diff] [blame]370 * security risk. We recommend considering stronger ciphers
371 * instead.
Manuel Pégourié-Gonnard70a50102015-05-12 15:02:45 +0200[diff] [blame]372 */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]373void mbedtls_des_setkey(uint32_t SK[32],
374 const unsigned char key[MBEDTLS_DES_KEY_SIZE]);
Paul Bakker90995b52013-06-24 19:20:35 +0200[diff] [blame]375
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]376#if defined(MBEDTLS_SELF_TEST)
377
Paul Bakker9a736322012-11-14 12:39:52 +0000[diff] [blame]378/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]379 * \brief Checkup routine
380 *
381 * \return 0 if successful, or 1 if the test failed
382 */
Gilles Peskinece555e42021-09-23 17:35:37 +0200[diff] [blame]383MBEDTLS_CHECK_RETURN_CRITICAL
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]384int mbedtls_des_self_test(int verbose);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]385
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]386#endif /* MBEDTLS_SELF_TEST */
387
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]388#ifdef __cplusplus
389}
390#endif
391
392#endif /* des.h */