2 * Author: Tatu Ylonen <ylo@cs.hut.fi>
3 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
6 * As far as I am concerned, the code I have written for this software
7 * can be used freely for any purpose. Any derived versions of this
8 * software must be clearly marked as such, and if the derived work is
9 * incompatible with the protocol description in the RFC file, it must be
10 * called by a name other than "ssh" or "Secure Shell".
12 * Copyright (c) 2000 Markus Friedl. All rights reserved.
14 * Redistribution and use in source and binary forms, with or without
15 * modification, are permitted provided that the following conditions
17 * 1. Redistributions of source code must retain the above copyright
18 * notice, this list of conditions and the following disclaimer.
19 * 2. Redistributions in binary form must reproduce the above copyright
20 * notice, this list of conditions and the following disclaimer in the
21 * documentation and/or other materials provided with the distribution.
23 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
24 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
25 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
26 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
27 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
28 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
29 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
30 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
31 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
32 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35 /* RCSID("$OpenBSD: cipher.h,v 1.25 2000/12/19 23:17:56 markus Exp $"); */
40 #include <openssl/des.h>
41 #include <openssl/blowfish.h>
42 #include <openssl/rc4.h>
43 #include <openssl/cast.h>
46 * Cipher types for SSH-1. New types can be added, but old types should not
47 * be removed for compatibility. The maximum allowed value is 31.
49 #define SSH_CIPHER_SSH2 -3
50 #define SSH_CIPHER_ILLEGAL -2 /* No valid cipher selected. */
51 #define SSH_CIPHER_NOT_SET -1 /* None selected (invalid number). */
52 #define SSH_CIPHER_NONE 0 /* no encryption */
53 #define SSH_CIPHER_IDEA 1 /* IDEA CFB */
54 #define SSH_CIPHER_DES 2 /* DES CBC */
55 #define SSH_CIPHER_3DES 3 /* 3DES CBC */
56 #define SSH_CIPHER_BROKEN_TSS 4 /* TRI's Simple Stream encryption CBC */
57 #define SSH_CIPHER_BROKEN_RC4 5 /* Alleged RC4 */
58 #define SSH_CIPHER_BLOWFISH 6
59 #define SSH_CIPHER_RESERVED 7
60 #define SSH_CIPHER_MAX 31
62 typedef struct Cipher Cipher;
63 typedef struct CipherContext CipherContext;
65 struct CipherContext {
72 des_key_schedule key1;
73 des_key_schedule key2;
75 des_key_schedule key3;
97 int number; /* for ssh1 only */
100 void (*setkey)(CipherContext *, const u_char *, u_int);
101 void (*setiv)(CipherContext *, const u_char *, u_int);
102 void (*encrypt)(CipherContext *, u_char *, const u_char *, u_int);
103 void (*decrypt)(CipherContext *, u_char *, const u_char *, u_int);
106 u_int cipher_mask_ssh1(int client);
107 Cipher *cipher_by_name(const char *name);
108 Cipher *cipher_by_number(int id);
109 int cipher_number(const char *name);
110 char *cipher_name(int id);
111 int ciphers_valid(const char *names);
112 void cipher_init(CipherContext *, Cipher *, const u_char *, u_int, const u_char *, u_int);
113 void cipher_encrypt(CipherContext *context, u_char *dest, const u_char *src, u_int len);
114 void cipher_decrypt(CipherContext *context, u_char *dest, const u_char *src, u_int len);
115 void cipher_set_key_string(CipherContext *context, Cipher *cipher, const char *passphrase);
117 #endif /* CIPHER_H */