(no commit message)
authorMartin Willi <martin@strongswan.org>
Wed, 10 May 2006 12:45:52 +0000 (12:45 -0000)
committerMartin Willi <martin@strongswan.org>
Wed, 10 May 2006 12:45:52 +0000 (12:45 -0000)
68 files changed:
src/libfreeswan/libcrypto/libdes/COPYRIGHT [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/Makefile [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/README [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/README.freeswan [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/VERSION [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/crypt586.pl [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/des-586.pl [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/des686.pl [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/desboth.pl [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/perlasm/cbc.pl [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/perlasm/readme [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/perlasm/x86asm.pl [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/perlasm/x86ms.pl [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/perlasm/x86unix.pl [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/asm/readme [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/cbc_enc.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/des.doc [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/des.h [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/des_crypt.man [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/des_enc.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/des_locl.h [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/des_opts.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/des_ver.h [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/destest.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/dx86unix.S [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/ecb_enc.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/fcrypt.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/fcrypt_b.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/options.txt [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/podd.h [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/set_key.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/sk.h [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/speed.c [new file with mode: 0644]
src/libfreeswan/libcrypto/libdes/spr.h [new file with mode: 0644]
src/libfreeswan/libcrypto/oldlibdes/des/COPYRIGHT [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/Makefile [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/README [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/README.freeswan [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/VERSION [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/crypt586.pl [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/des-586.pl [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/des686.pl [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/desboth.pl [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/perlasm/cbc.pl [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/perlasm/readme [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/perlasm/x86asm.pl [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/perlasm/x86ms.pl [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/perlasm/x86unix.pl [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/asm/readme [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/cbc_enc.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/des.doc [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/des.h [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/des_crypt.man [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/des_enc.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/des_locl.h [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/des_opts.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/des_ver.h [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/destest.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/dx86unix.S [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/ecb_enc.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/fcrypt.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/fcrypt_b.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/options.txt [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/podd.h [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/set_key.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/sk.h [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/speed.c [deleted file]
src/libfreeswan/libcrypto/oldlibdes/des/spr.h [deleted file]

diff --git a/src/libfreeswan/libcrypto/libdes/COPYRIGHT b/src/libfreeswan/libcrypto/libdes/COPYRIGHT
new file mode 100644 (file)
index 0000000..5469e1e
--- /dev/null
@@ -0,0 +1,50 @@
+Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
+All rights reserved.
+
+This package is an DES implementation written by Eric Young (eay@cryptsoft.com).
+The implementation was written so as to conform with MIT's libdes.
+
+This library is free for commercial and non-commercial use as long as
+the following conditions are aheared to.  The following conditions
+apply to all code found in this distribution.
+
+Copyright remains Eric Young's, and as such any Copyright notices in
+the code are not to be removed.
+If this package is used in a product, Eric Young should be given attribution
+as the author of that the SSL library.  This can be in the form of a textual
+message at program startup or in documentation (online or textual) provided
+with the package.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions
+are met:
+1. Redistributions of source code must retain the copyright
+   notice, this list of conditions and the following disclaimer.
+2. Redistributions in binary form must reproduce the above copyright
+   notice, this list of conditions and the following disclaimer in the
+   documentation and/or other materials provided with the distribution.
+3. All advertising materials mentioning features or use of this software
+   must display the following acknowledgement:
+   This product includes software developed by Eric Young (eay@cryptsoft.com)
+
+THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+SUCH DAMAGE.
+
+The license and distribution terms for any publically available version or
+derivative of this code cannot be changed.  i.e. this code cannot simply be
+copied and put under another distrubution license
+[including the GNU Public License.]
+
+The reason behind this being stated in this direct manner is past
+experience in code simply being copied and the attribution removed
+from it and then being distributed as part of other packages. This
+implementation was a non-trivial and unpaid effort.
diff --git a/src/libfreeswan/libcrypto/libdes/Makefile b/src/libfreeswan/libcrypto/libdes/Makefile
new file mode 100644 (file)
index 0000000..b27d428
--- /dev/null
@@ -0,0 +1,234 @@
+# You must select the correct terminal control system to be used to
+# turn character echo off when reading passwords.  There a 5 systems
+# SGTTY   - the old BSD system
+# TERMIO  - most system V boxes
+# TERMIOS - SGI (ala IRIX).
+# VMS     - the DEC operating system
+# MSDOS   - we all know what it is :-)
+# read_pwd.c makes a reasonable guess at what is correct.
+
+# Targets
+# make          - twidle the options yourself :-)
+# make cc       - standard cc options
+# make gcc      - standard gcc options
+# make x86-elf  - linux-elf etc
+# make x86-out  - linux-a.out, FreeBSD etc
+# make x86-solaris
+# make x86-bdsi
+
+# If you are on a DEC Alpha, edit des.h and change the DES_LONG
+# define to 'unsigned int'.  I have seen this give a %20 speedup.
+
+OPTS0= -DLIBDES_LIT -DRAND -DTERMIO #-DNOCONST
+
+# Version 1.94 has changed the strings_to_key function so that it is
+# now compatible with MITs when the string is longer than 8 characters.
+# If you wish to keep the old version, uncomment the following line.
+# This will affect the -E/-D options on des(1).
+#OPTS1= -DOLD_STR_TO_KEY
+
+# There are 4 possible performance options
+# -DDES_PTR
+# -DDES_RISC1
+# -DDES_RISC2 (only one of DES_RISC1 and DES_RISC2)
+# -DDES_UNROLL
+# after the initial build, run 'des_opts' to see which options are best
+# for your platform.  There are some listed in options.txt
+#OPTS2= -DDES_PTR 
+#OPTS3= -DDES_RISC1 # or DES_RISC2
+#OPTS4= -DDES_UNROLL
+
+OPTS= $(OPTS0) $(OPTS1) $(OPTS2) $(OPTS3) $(OPTS4)
+
+MAKE=make -f Makefile
+#CC=cc
+#CFLAG= -O
+
+#CC=gcc
+#CFLAG= -O4 -funroll-loops -fomit-frame-pointer
+# normally overridden by FreeS/WAN Makefiles anyway
+CFLAG= -O3 -fomit-frame-pointer # -I${KLIPSD}/include -I${SRCDIR}
+
+CFLAGS=$(OPTS) $(CFLAG) $(USERCOMPILE)
+CPP=$(CC) -E
+
+# Assember version of des_encrypt*().
+DES_ENC=des_enc.o fcrypt_b.o           # normal C version
+#DES_ENC=asm/dx86-elf.o        asm/yx86-elf.o  # elf format x86
+#DES_ENC=asm/dx86-out.o        asm/yx86-out.o  # a.out format x86
+#DES_ENC=asm/dx86-sol.o        asm/yx86-sol.o  # solaris format x86 
+#DES_ENC=asm/dx86bsdi.o        asm/yx86basi.o  # bsdi format x86 
+
+LIBDIR=$(DESTDIR)$(INC_USRLOCAL)/lib
+INCDIR=$(DESTDIR)$(INC_USRLOCAL)/include
+MANDIR=$(MANTREE)
+MAN1=1
+MAN3=3
+SHELL=/bin/sh
+MAN1=1
+MAN3=3
+SHELL=/bin/sh
+OBJ_LIT=cbc_enc.o ecb_enc.o $(DES_ENC) fcrypt.o set_key.o
+OBJ_FULL=cbc_cksm.o $(OBJ_LIT) pcbc_enc.o \
+       xcbc_enc.o qud_cksm.o \
+       cfb64ede.o cfb64enc.o cfb_enc.o ecb3_enc.o \
+       enc_read.o enc_writ.o ofb64ede.o ofb64enc.o ofb_enc.o  \
+       rand_key.o read_pwd.o read2pwd.o rpc_enc.o  str2key.o supp.o
+
+GENERAL_LIT=COPYRIGHT INSTALL README VERSION Makefile des_crypt.man \
+       des.doc options.txt asm
+
+GENERAL_FULL=$(GENERAL_LIT) FILES Imakefile times vms.com KERBEROS MODES.DES \
+       des.man DES.pm DES.pod DES.xs Makefile.PL dess.S des3s.S \
+       Makefile.uni typemap t Makefile.ssl makefile.bc Makefile.lit \
+       des.org des_locl.org
+
+TESTING_LIT=   destest speed des_opts
+TESTING_FULL=  rpw $(TESTING_LIT)
+TESTING_SRC_LIT=destest.c speed.c des_opts.c
+TESTING_SRC_FULL=rpw.c $(TESTING_SRC_LIT)
+HEADERS_LIT=des_ver.h des.h des_locl.h podd.h sk.h spr.h
+HEADERS_FULL= $(HEADERS_LIT) rpc_des.h
+LIBDES_LIT=cbc_enc.c ecb_enc.c fcrypt.c set_key.c des_enc.c fcrypt_b.c
+
+LIBDES_FULL= cbc_cksm.c pcbc_enc.c qud_cksm.c \
+       cfb64ede.c cfb64enc.c cfb_enc.c ecb3_enc.c \
+       enc_read.c enc_writ.c ofb64ede.c ofb64enc.c ofb_enc.c  \
+       rand_key.c rpc_enc.c  str2key.c  supp.c \
+       xcbc_enc.c $(LIBDES_LIT) read_pwd.c read2pwd.c
+
+PERL=  des.pl testdes.pl doIP doPC1 doPC2 PC1 PC2 shifts.pl
+
+OBJ=   $(OBJ_LIT)
+GENERAL=$(GENERAL_LIT)
+TESTING=$(TESTING_LIT)
+TESTING_SRC=$(TESTING_SRC_LIT)
+HEADERS=$(HEADERS_LIT)
+LIBDES=        $(LIBDES_LIT)
+
+ALL=   $(GENERAL) $(TESTING_SRC) $(LIBDES) $(PERL) $(HEADERS)
+
+DLIB=  libdes.a
+
+.PHONY:        all cc gcc x86-elf x86-out x86-solaris x86-bsdi test tar_lit \
+       tar shar depend clean dclean install check checkprograms
+
+all: $(DLIB)
+programs: $(DLIB)
+
+cc:
+       $(MAKE) CC=cc CFLAGS="-O $(OPTS) $(CFLAG)" all
+
+gcc:
+       $(MAKE) CC=gcc CFLAGS="-O3 -fomit-frame-pointer $(OPTS) $(CFLAG)" all
+
+x86-elf:
+       $(MAKE) DES_ENC='asm/dx86-elf.o asm/yx86-elf.o' CC='$(CC)' CFLAGS="-DELF $(OPTS) $(CFLAG)" all
+
+x86-out:
+       $(MAKE) DES_ENC='asm/dx86-out.o asm/yx86-out.o' CC='$(CC)' CFLAGS="-DOUT $(OPTS) $(CFLAG)" all
+
+x86-solaris:
+       $(MAKE) DES_ENC='asm/dx86-sol.o asm/yx86-sol.o' CC='$(CC)' CFLAGS="-DSOL $(OPTS) $(CFLAG)" all
+
+x86-bsdi:
+       $(MAKE) DES_ENC='asm/dx86bsdi.o asm/yx86bsdi.o' CC='$(CC)' CFLAGS="-DBSDI $(OPTS) $(CFLAG)" all
+
+# elf
+asm/dx86-elf.o: asm/dx86unix.S
+       $(CPP) -DELF asm/dx86unix.S | $(AS) -o asm/dx86-elf.o
+
+asm/yx86-elf.o: asm/yx86unix.S
+       $(CPP) -DELF asm/yx86unix.S | $(AS) -o asm/yx86-elf.o
+
+# solaris
+asm/dx86-sol.o: asm/dx86unix.S
+       $(CC) -E -DSOL asm/dx86unix.S | sed 's/^#.*//' > asm/dx86-sol.s
+       as -o asm/dx86-sol.o asm/dx86-sol.s
+       rm -f asm/dx86-sol.s
+
+asm/yx86-sol.o: asm/yx86unix.S
+       $(CC) -E -DSOL asm/yx86unix.S | sed 's/^#.*//' > asm/yx86-sol.s
+       as -o asm/yx86-sol.o asm/yx86-sol.s
+       rm -f asm/yx86-sol.s
+
+# a.out
+asm/dx86-out.o: asm/dx86unix.S
+       $(CPP) -DOUT asm/dx86unix.S | $(AS) -o asm/dx86-out.o
+
+asm/yx86-out.o: asm/yx86unix.S
+       $(CPP) -DOUT asm/yx86unix.S | $(AS) -o asm/yx86-out.o
+
+# bsdi
+asm/dx86bsdi.o: asm/dx86unix.S
+       $(CPP) -DBSDI asm/dx86unix.S | $(AS) -o asm/dx86bsdi.o
+
+asm/yx86bsdi.o: asm/yx86unix.S
+       $(CPP) -DBSDI asm/yx86unix.S | $(AS) -o asm/yx86bsdi.o
+
+asm/dx86unix.S:
+       (cd asm; perl des-586.pl cpp >dx86unix.S)
+
+asm/yx86unix.S:
+       (cd asm; perl crypt586.pl cpp >yx86unix.S)
+
+test:  all $(TESTING)
+       ./destest
+
+$(DLIB): $(OBJ)
+       rm -f $(DLIB)
+       $(AR) crs $(DLIB) $(OBJ)
+
+des_opts: des_opts.o $(DLIB)
+       $(CC) $(CFLAGS) -o des_opts des_opts.o $(DLIB)
+
+destest: destest.o $(DLIB)
+       $(CC) $(CFLAGS) -o destest destest.o $(DLIB)
+
+rpw: rpw.o $(DLIB)
+       $(CC) $(CFLAGS) -o rpw rpw.o $(DLIB)
+
+speed: speed.o $(DLIB)
+       $(CC) $(CFLAGS) -o speed speed.o $(DLIB)
+
+des: des.o $(DLIB)
+       $(CC) $(CFLAGS) -o des des.o $(DLIB)
+
+tags:
+       ctags $(TESTING_SRC) $(LIBDES)
+
+tar_lit:
+       /bin/mv Makefile Makefile.tmp
+       /bin/cp Makefile.lit Makefile
+       tar chf libdes-l.tar $(LIBDES_LIT) $(HEADERS_LIT) \
+               $(GENERAL_LIT) $(TESTING_SRC_LIT)
+       /bin/rm -f Makefile
+       /bin/mv Makefile.tmp Makefile
+
+tar:
+       tar chf libdes.tar $(ALL)
+
+shar:
+       shar $(ALL) >libdes.shar
+
+depend:
+       makedepend $(LIBDES) $(TESTING_SRC)
+
+clean:
+       /bin/rm -f *.o tags core $(TESTING) $(DLIB) .nfs* *.old *.bak asm/*.o \
+               asm/*.S
+
+dclean:
+       sed -e '/^# DO NOT DELETE THIS LINE/ q' Makefile >Makefile.new
+       mv -f Makefile.new Makefile
+
+install install_file_list: 
+       @true
+
+check:
+       echo no checks in lib right now.
+
+checkprograms:
+
+# DO NOT DELETE THIS LINE -- make depend depends on it.
+
diff --git a/src/libfreeswan/libcrypto/libdes/README b/src/libfreeswan/libcrypto/libdes/README
new file mode 100644 (file)
index 0000000..621a5ab
--- /dev/null
@@ -0,0 +1,54 @@
+
+               libdes, Version 4.01 10-Jan-97
+
+               Copyright (c) 1997, Eric Young
+                         All rights reserved.
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms specified in COPYRIGHT.
+    
+--
+The primary ftp site for this library is
+ftp://ftp.psy.uq.oz.au/pub/Crypto/DES/libdes-x.xx.tar.gz
+libdes is now also shipped with SSLeay.  Primary ftp site of
+ftp://ftp.psy.uq.oz.au/pub/Crypto/SSL/SSLeay-x.x.x.tar.gz
+
+The best way to build this library is to build it as part of SSLeay.
+
+This kit builds a DES encryption library and a DES encryption program.
+It supports ecb, cbc, ofb, cfb, triple ecb, triple cbc, triple ofb,
+triple cfb, desx, and MIT's pcbc encryption modes and also has a fast
+implementation of crypt(3).
+It contains support routines to read keys from a terminal,
+generate a random key, generate a key from an arbitrary length string,
+read/write encrypted data from/to a file descriptor.
+
+The implementation was written so as to conform with the manual entry
+for the des_crypt(3) library routines from MIT's project Athena.
+
+destest should be run after compilation to test the des routines.
+rpw should be run after compilation to test the read password routines.
+The des program is a replacement for the sun des command.  I believe it
+conforms to the sun version.
+
+The Imakefile is setup for use in the kerberos distribution.
+
+These routines are best compiled with gcc or any other good
+optimising compiler.
+Just turn you optimiser up to the highest settings and run destest
+after the build to make sure everything works.
+
+I believe these routines are close to the fastest and most portable DES
+routines that use small lookup tables (4.5k) that are publicly available.
+The fcrypt routine is faster than ufc's fcrypt (when compiling with
+gcc2 -O2) on the sparc 2 (1410 vs 1270) but is not so good on other machines
+(on a sun3/260 168 vs 336).  It is a function of CPU on chip cache size.
+[ 10-Jan-97 and a function of an incorrect speed testing program in
+  ufc which gave much better test figures that reality ].
+
+It is worth noting that on sparc and Alpha CPUs, performance of the DES
+library can vary by upto %10 due to the positioning of files after application
+linkage.
+
+Eric Young (eay@cryptsoft.com)
+
diff --git a/src/libfreeswan/libcrypto/libdes/README.freeswan b/src/libfreeswan/libcrypto/libdes/README.freeswan
new file mode 100644 (file)
index 0000000..40874d5
--- /dev/null
@@ -0,0 +1,33 @@
+The only changes the FreeS/WAN project has made to libdes-lite 4.04b are:
+
+We #ifdef-ed the declaration of DES_LONG in des.h, so it's more efficient
+on the Alpha, instead of just noting the issue in a comment. 
+
+We #ifdef-ed out the des_options() function in ecb_enc.c, because we don't
+use it, and its call to sprintf() can cause subtle difficulties when KLIPS
+is built as a module (depending on details of Linux configuration options).
+
+We changed some instances of CC=$(CC) in the Makefile to CC='$(CC)' to make
+it cope better with Linux kernel Makefile stupidities, and took out an
+explicit CC=gcc (unwise on systems with strange compilers).
+
+We deleted some references to <stdio.h> and <stdlib.h>, and a declaration
+of one function found only in the full libdes (not in libdes-lite), to
+avoid dragging in bits of stdio/stdlib unnecessarily.  (Our thanks to Hans
+Schultz for spotting this and pointing out the fixes.)
+
+We deleted a couple of .obj files in the asm subdirectory, which appear to
+have been included in the original library by accident. 
+
+We have added an include of our Makefile.inc file, to permit overriding
+things like choice of compiler (although the libdes Makefile would
+probably need some work to make this effective).
+
+
+
+Note that Eric Young is no longer at the email address listed in these
+files, and is (alas) no longer working on free crypto software. 
+
+
+
+This file is RCSID $Id: README.freeswan,v 1.1 2004/03/15 20:35:25 as Exp $
diff --git a/src/libfreeswan/libcrypto/libdes/VERSION b/src/libfreeswan/libcrypto/libdes/VERSION
new file mode 100644 (file)
index 0000000..3450351
--- /dev/null
@@ -0,0 +1,406 @@
+Version 4.04
+       Fixed a few tests in destest.  Also added x86 assember for
+       des_ncbc_encrypt() which is the standard cbc mode function.
+       This makes a very very large performace difference.
+       Ariel Glenn ariel@columbia.edu reports that the terminal
+       'turn echo off' can return (errno == EINVAL) under solaris
+       when redirection is used.  So I now catch that as well as ENOTTY.
+
+
+Version 4.03
+       Left a static out of enc_write.c, which caused to buffer to be
+       continiously malloc()ed.  Does anyone use these functions?  I keep
+       on feeling like removing them since I only had these in there
+       for a version of kerberised login.  Anyway, this was pointed out
+       by Theo de Raadt <deraadt@cvs.openbsd.org>
+       The 'n' bit ofb code was wrong, it was not shifting the shift
+       register. It worked correctly for n == 64.  Thanks to
+       Gigi Ankeny <Gigi.Ankeny@Eng.Sun.COM> for pointing this one out.
+
+Version 4.02
+       I was doing 'if (memcmp(weak_keys[i],key,sizeof(key)) == 0)'
+       when checking for weak keys which is wrong :-(, pointed out by
+       Markus F.X.J. Oberhumer <markus.oberhumer@jk.uni-linz.ac.at>.
+
+Version 4.01
+       Even faster inner loop in the DES assembler for x86 and a modification
+       for IP/FP which is faster on x86.  Both of these changes are
+       from Svend Olaf Mikkelsen <svolaf@inet.uni-c.dk>.  His
+       changes make the assembler run %40 faster on a pentium.  This is just
+       a case of getting the instruction sequence 'just right'.
+       All credit to 'Svend' :-)
+       Quite a few special x86 'make' targets.
+       A libdes-l (lite) distribution.
+
+Version 4.00
+       After a bit of a pause, I'll up the major version number since this
+       is mostly a performace release.  I've added x86 assembler and
+       added more options for performance.  A %28 speedup for gcc 
+       on a pentium and the assembler is a %50 speedup.
+       MIPS CPU's, sparc and Alpha are the main CPU's with speedups.
+       Run des_opts to work out which options should be used.
+       DES_RISC1/DES_RISC2 use alternative inner loops which use
+       more registers but should give speedups on any CPU that does
+       dual issue (pentium).  DES_UNROLL unrolls the inner loop,
+       which costs in code size.
+
+Version 3.26
+       I've finally removed one of the shifts in D_ENCRYPT.  This
+       meant I've changed the des_SPtrans table (spr.h), the set_key()
+       function and some things in des_enc.c.  This has definitly
+       made things faster :-).  I've known about this one for some
+       time but I've been too lazy to follow it up :-).
+       Noticed that in the D_ENCRYPT() macro, we can just do L^=(..)^(..)^..
+       instead of L^=((..)|(..)|(..)..  This should save a register at
+       least.
+       Assember for x86.  The file to replace is des_enc.c, which is replaced
+       by one of the assembler files found in asm.  Look at des/asm/readme
+       for more info.
+
+       /* Modification to fcrypt so it can be compiled to support
+       HPUX 10.x's long password format, define -DLONGCRYPT to use this.
+       Thanks to Jens Kupferschmidt <bt1cu@hpboot.rz.uni-leipzig.de>. */
+
+       SIGWINCH case put in des_read_passwd() so the function does not
+       'exit' if this function is recieved.
+
+Version 3.25 17/07/96
+       Modified read_pwd.c so that stdin can be read if not a tty.
+       Thanks to Jeff Barber <jeffb@issl.atl.hp.com> for the patches.
+       des_init_random_number_generator() shortened due to VMS linker
+       limits.
+       Added RSA's DESX cbc mode.  It is a form of cbc encryption, with 2
+       8 byte quantites xored before and after encryption.
+       des_xcbc_encryption() - the name is funny to preserve the des_
+       prefix on all functions.
+
+Version 3.24 20/04/96
+       The DES_PTR macro option checked and used by SSLeay configuration
+
+Version 3.23 11/04/96
+       Added DES_LONG.  If defined to 'unsigned int' on the DEC Alpha,
+       it gives a %20 speedup :-)
+       Fixed the problem with des.pl under perl5.  The patches were
+       sent by Ed Kubaitis (ejk@uiuc.edu).
+       if fcrypt.c, changed values to handle illegal salt values the way
+       normal crypt() implementations do.  Some programs apparently use
+       them :-(. The patch was sent by Bjorn Gronvall <bg@sics.se>
+
+Version 3.22 29/11/95
+       Bug in des(1), an error with the uuencoding stuff when the
+       'data' is small, thanks to Geoff Keating <keagchon@mehta.anu.edu.au>
+       for the patch.
+
+Version 3.21 22/11/95
+       After some emailing back and forth with 
+       Colin Plumb <colin@nyx10.cs.du.edu>, I've tweaked a few things
+       and in a future version I will probably put in some of the
+       optimisation he suggested for use with the DES_USE_PTR option.
+       Extra routines from Mark Murray <mark@grondar.za> for use in
+       freeBSD.  They mostly involve random number generation for use
+       with kerberos.  They involve evil machine specific system calls
+       etc so I would normally suggest pushing this stuff into the
+       application and/or using RAND_seed()/RAND_bytes() if you are
+       using this DES library as part of SSLeay.
+       Redone the read_pw() function so that it is cleaner and
+       supports termios, thanks to Sameer Parekh <sameer@c2.org>
+       for the initial patches for this.
+       Renamed 3ecb_encrypt() to ecb3_encrypt().  This has been
+        done just to make things more consistent.
+       I have also now added triple DES versions of cfb and ofb.
+
+Version 3.20
+       Damn, Damn, Damn, as pointed out by Mike_Spreitzer.PARC@xerox.com,
+       my des_random_seed() function was only copying 4 bytes of the
+       passed seed into the init structure.  It is now fixed to copy 8.
+       My own suggestion is to used something like MD5 :-)
+
+Version 3.19 
+       While looking at my code one day, I though, why do I keep on
+       calling des_encrypt(in,out,ks,enc) when every function that
+       calls it has in and out the same.  So I dropped the 'out'
+       parameter, people should not be using this function.
+
+Version 3.18 30/08/95
+       Fixed a few bit with the distribution and the filenames.
+       3.17 had been munged via a move to DOS and back again.
+       NO CODE CHANGES
+
+Version 3.17 14/07/95
+       Fixed ede3 cbc which I had broken in 3.16.  I have also
+       removed some unneeded variables in 7-8 of the routines.
+
+Version 3.16 26/06/95
+       Added des_encrypt2() which does not use IP/FP, used by triple
+       des routines.  Tweaked things a bit elsewhere. %13 speedup on
+       sparc and %6 on a R4400 for ede3 cbc mode.
+
+Version 3.15 06/06/95
+       Added des_ncbc_encrypt(), it is des_cbc mode except that it is
+       'normal' and copies the new iv value back over the top of the
+       passed parameter.
+       CHANGED des_ede3_cbc_encrypt() so that it too now overwrites
+       the iv.  THIS WILL BREAK EXISTING CODE, but since this function
+       only new, I feel I can change it, not so with des_cbc_encrypt :-(.
+       I need to update the documentation.
+
+Version 3.14 31/05/95
+       New release upon the world, as part of my SSL implementation.
+       New copyright and usage stuff.  Basically free for all to use
+       as long as you say it came from me :-)
+
+Version 3.13 31/05/95
+       A fix in speed.c, if HZ is not defined, I set it to 100.0
+       which is reasonable for most unixes except SunOS 4.x.
+       I now have a #ifdef sun but timing for SunOS 4.x looked very
+       good :-(.  At my last job where I used SunOS 4.x, it was
+       defined to be 60.0 (look at the old INSTALL documentation), at
+       the last release had it changed to 100.0 since I now work with
+       Solaris2 and SVR4 boxes.
+       Thanks to  Rory Chisholm <rchishol@math.ethz.ch> for pointing this
+       one out.
+
+Version 3.12 08/05/95
+       As pointed out by The Crypt Keeper <tck@bend.UCSD.EDU>,
+       my D_ENCRYPT macro in crypt() had an un-necessary variable.
+       It has been removed.
+
+Version 3.11 03/05/95
+       Added des_ede3_cbc_encrypt() which is cbc mode des with 3 keys
+       and one iv.  It is a standard and I needed it for my SSL code.
+       It makes more sense to use this for triple DES than
+       3cbc_encrypt().  I have also added (or should I say tested :-)
+       cfb64_encrypt() which is cfb64 but it will encrypt a partial
+       number of bytes - 3 bytes in 3 bytes out.  Again this is for
+       my SSL library, as a form of encryption to use with SSL
+       telnet.
+
+Version 3.10 22/03/95
+       Fixed a bug in 3cbc_encrypt() :-(.  When making repeated calls
+       to cbc3_encrypt, the 2 iv values that were being returned to
+       be used in the next call were reversed :-(.
+       Many thanks to Bill Wade <wade@Stoner.COM> for pointing out
+       this error.
+
+Version 3.09 01/02/95
+       Fixed des_random_key to far more random, it was rather feeble
+       with regards to picking the initial seed.  The problem was
+       pointed out by Olaf Kirch <okir@monad.swb.de>.
+
+Version 3.08 14/12/94
+       Added Makefile.PL so libdes can be built into perl5.
+       Changed des_locl.h so RAND is always defined.
+
+Version 3.07 05/12/94
+       Added GNUmake and stuff so the library can be build with
+       glibc.
+
+Version 3.06 30/08/94
+       Added rpc_enc.c which contains _des_crypt.  This is for use in
+       secure_rpc v 4.0
+       Finally fixed the cfb_enc problems.
+       Fixed a few parameter parsing bugs in des (-3 and -b), thanks
+       to Rob McMillan <R.McMillan@its.gu.edu.au>
+
+Version 3.05 21/04/94
+       for unsigned long l; gcc does not produce ((l>>34) == 0)
+       This causes bugs in cfb_enc.
+       Thanks to Hadmut Danisch <danisch@ira.uka.de>
+
+Version 3.04 20/04/94
+       Added a version number to des.c and libdes.a
+
+Version 3.03 12/01/94
+       Fixed a bug in non zero iv in 3cbc_enc.
+
+Version 3.02 29/10/93
+       I now work in a place where there are 6+ architectures and 14+
+       OS versions :-).
+       Fixed TERMIO definition so the most sys V boxes will work :-)
+
+Release upon comp.sources.misc
+Version 3.01 08/10/93
+       Added des_3cbc_encrypt()
+
+Version 3.00 07/10/93
+       Fixed up documentation.
+       quad_cksum definitely compatible with MIT's now.
+
+Version 2.30 24/08/93
+       Triple DES now defaults to triple cbc but can do triple ecb
+        with the -b flag.
+       Fixed some MSDOS uuen/uudecoding problems, thanks to
+       Added prototypes.
+       
+Version 2.22 29/06/93
+       Fixed a bug in des_is_weak_key() which stopped it working :-(
+       thanks to engineering@MorningStar.Com.
+
+Version 2.21 03/06/93
+       des(1) with no arguments gives quite a bit of help.
+       Added -c (generate ckecksum) flag to des(1).
+       Added -3 (triple DES) flag to des(1).
+       Added cfb and ofb routines to the library.
+
+Version 2.20 11/03/93
+       Added -u (uuencode) flag to des(1).
+       I have been playing with byte order in quad_cksum to make it
+        compatible with MIT's version.  All I can say is avid this
+        function if possible since MIT's output is endian dependent.
+
+Version 2.12 14/10/92
+       Added MSDOS specific macro in ecb_encrypt which gives a %70
+        speed up when the code is compiled with turbo C.
+
+Version 2.11 12/10/92
+       Speedup in set_key (recoding of PC-1)
+        I now do it in 47 simple operations, down from 60.
+        Thanks to John Fletcher (john_fletcher@lccmail.ocf.llnl.gov)
+        for motivating me to look for a faster system :-)
+        The speedup is probably less that 1% but it is still 13
+        instructions less :-).
+
+Version 2.10 06/10/92
+       The code now works on the 64bit ETA10 and CRAY without modifications or
+        #defines.  I believe the code should work on any machine that
+        defines long, int or short to be 8 bytes long.
+       Thanks to Shabbir J. Safdar (shabby@mentor.cc.purdue.edu)
+        for helping me fix the code to run on 64bit machines (he had
+        access to an ETA10).
+       Thanks also to John Fletcher <john_fletcher@lccmail.ocf.llnl.gov>
+        for testing the routines on a CRAY.
+       read_password.c has been renamed to read_passwd.c
+       string_to_key.c has been renamed to string2key.c
+
+Version 2.00 14/09/92
+       Made mods so that the library should work on 64bit CPU's.
+       Removed all my uchar and ulong defs.  To many different
+        versions of unix define them in their header files in too many
+        different combinations :-)
+       IRIX - Sillicon Graphics mods (mostly in read_password.c).
+        Thanks to Andrew Daviel (advax@erich.triumf.ca)
+
+Version 1.99 26/08/92
+       Fixed a bug or 2 in enc_read.c
+       Fixed a bug in enc_write.c
+       Fixed a pseudo bug in fcrypt.c (very obscure).
+
+Version 1.98 31/07/92
+       Support for the ETA10.  This is a strange machine that defines
+       longs and ints as 8 bytes and shorts as 4 bytes.
+       Since I do evil things with long * that assume that they are 4
+       bytes.  Look in the Makefile for the option to compile for
+       this machine.  quad_cksum appears to have problems but I
+       will don't have the time to fix it right now, and this is not
+       a function that uses DES and so will not effect the main uses
+       of the library.
+
+Version 1.97 20/05/92 eay
+       Fixed the Imakefile and made some changes to des.h to fix some
+       problems when building this package with Kerberos v 4.
+
+Version 1.96 18/05/92 eay
+       Fixed a small bug in string_to_key() where problems could
+       occur if des_check_key was set to true and the string
+       generated a weak key.
+
+Patch2 posted to comp.sources.misc
+Version 1.95 13/05/92 eay
+       Added an alternative version of the D_ENCRYPT macro in
+       ecb_encrypt and fcrypt.  Depending on the compiler, one version or the
+       other will be faster.  This was inspired by 
+       Dana How <how@isl.stanford.edu>, and her pointers about doing the
+       *(ulong *)((uchar *)ptr+(value&0xfc))
+       vs
+       ptr[value&0x3f]
+       to stop the C compiler doing a <<2 to convert the long array index.
+
+Version 1.94 05/05/92 eay
+       Fixed an incompatibility between my string_to_key and the MIT
+        version.  When the key is longer than 8 chars, I was wrapping
+        with a different method.  To use the old version, define
+        OLD_STR_TO_KEY in the makefile.  Thanks to
+        viktor@newsu.shearson.com (Viktor Dukhovni).
+
+Version 1.93 28/04/92 eay
+       Fixed the VMS mods so that echo is now turned off in
+        read_password.  Thanks again to brennan@coco.cchs.su.oz.AU.
+       MSDOS support added.  The routines can be compiled with
+        Turbo C (v2.0) and MSC (v5.1).  Make sure MSDOS is defined.
+
+Patch1 posted to comp.sources.misc
+Version 1.92 13/04/92 eay
+       Changed D_ENCRYPT so that the rotation of R occurs outside of
+        the loop.  This required rotating all the longs in sp.h (now
+        called spr.h). Thanks to Richard Outerbridge <71755.204@CompuServe.COM>
+       speed.c has been changed so it will work without SIGALRM.  If
+        times(3) is not present it will try to use ftime() instead.
+
+Version 1.91 08/04/92 eay
+       Added -E/-D options to des(1) so it can use string_to_key.
+       Added SVR4 mods suggested by witr@rwwa.COM
+       Added VMS mods suggested by brennan@coco.cchs.su.oz.AU.  If
+       anyone knows how to turn of tty echo in VMS please tell me or
+       implement it yourself :-).
+       Changed FILE *IN/*OUT to *DES_IN/*DES_OUT since it appears VMS
+       does not like IN/OUT being used.
+
+Libdes posted to comp.sources.misc
+Version 1.9 24/03/92 eay
+       Now contains a fast small crypt replacement.
+       Added des(1) command.
+       Added des_rw_mode so people can use cbc encryption with
+       enc_read and enc_write.
+
+Version 1.8 15/10/91 eay
+       Bug in cbc_cksum.
+       Many thanks to Keith Reynolds (keithr@sco.COM) for pointing this
+       one out.
+
+Version 1.7 24/09/91 eay
+       Fixed set_key :-)
+       set_key is 4 times faster and takes less space.
+       There are a few minor changes that could be made.
+
+Version 1.6 19/09/1991 eay
+       Finally go IP and FP finished.
+       Now I need to fix set_key.
+       This version is quite a bit faster that 1.51
+
+Version 1.52 15/06/1991 eay
+       20% speedup in ecb_encrypt by changing the E bit selection
+       to use 2 32bit words.  This also required modification of the
+       sp table.  There is still a way to speedup the IP and IP-1
+       (hints from outer@sq.com) still working on this one :-(.
+
+Version 1.51 07/06/1991 eay
+       Faster des_encrypt by loop unrolling
+       Fixed bug in quad_cksum.c (thanks to hughes@logos.ucs.indiana.edu)
+
+Version 1.50 28/05/1991 eay
+       Optimised the code a bit more for the sparc.  I have improved the
+       speed of the inner des_encrypt by speeding up the initial and
+       final permutations.
+
+Version 1.40 23/10/1990 eay
+       Fixed des_random_key, it did not produce a random key :-(
+
+Version 1.30  2/10/1990 eay
+       Have made des_quad_cksum the same as MIT's, the full package
+       should be compatible with MIT's
+       Have tested on a DECstation 3100
+       Still need to fix des_set_key (make it faster).
+       Does des_cbc_encrypts at 70.5k/sec on a 3100.
+
+Version 1.20 18/09/1990 eay
+       Fixed byte order dependencies.
+       Fixed (I hope) all the word alignment problems.
+       Speedup in des_ecb_encrypt.
+
+Version 1.10 11/09/1990 eay
+       Added des_enc_read and des_enc_write.
+       Still need to fix des_quad_cksum.
+       Still need to document des_enc_read and des_enc_write.
+
+Version 1.00 27/08/1990 eay
+
diff --git a/src/libfreeswan/libcrypto/libdes/asm/crypt586.pl b/src/libfreeswan/libcrypto/libdes/asm/crypt586.pl
new file mode 100644 (file)
index 0000000..297e38d
--- /dev/null
@@ -0,0 +1,204 @@
+#!/usr/bin/perl
+#
+# The inner loop instruction sequence and the IP/FP modifications are from
+# Svend Olaf Mikkelsen <svolaf@inet.uni-c.dk>
+# I've added the stuff needed for crypt() but I've not worried about making
+# things perfect.
+#
+
+push(@INC,"perlasm","../../perlasm");
+require "x86asm.pl";
+
+&asm_init($ARGV[0],"crypt586.pl");
+
+$L="edi";
+$R="esi";
+
+&external_label("des_SPtrans");
+&fcrypt_body("fcrypt_body");
+&asm_finish();
+
+sub fcrypt_body
+       {
+       local($name,$do_ip)=@_;
+
+       &function_begin($name,"EXTRN   _des_SPtrans:DWORD");
+
+       &comment("");
+       &comment("Load the 2 words");
+       $ks="ebp";
+
+       &xor(   $L,     $L);
+       &xor(   $R,     $R);
+       &mov($ks,&wparam(1));
+
+       &push(25); # add a variable
+
+       &set_label("start");
+       for ($i=0; $i<16; $i+=2)
+               {
+               &comment("");
+               &comment("Round $i");
+               &D_ENCRYPT($i,$L,$R,$i*2,$ks,"des_SPtrans","eax","ebx","ecx","edx");
+
+               &comment("");
+               &comment("Round ".sprintf("%d",$i+1));
+               &D_ENCRYPT($i+1,$R,$L,($i+1)*2,$ks,"des_SPtrans","eax","ebx","ecx","edx");
+               }
+        &mov("ebx",    &swtmp(0));
+       &mov("eax",     $L);
+        &dec("ebx");
+       &mov($L,        $R);
+        &mov($R,       "eax");
+       &mov(&swtmp(0), "ebx");
+        &jnz(&label("start"));
+
+       &comment("");
+       &comment("FP");
+       &mov("edx",&wparam(0));
+
+       &FP_new($R,$L,"eax",3);
+       &mov(&DWP(0,"edx","",0),"eax");
+       &mov(&DWP(4,"edx","",0),$L);
+
+       &pop("ecx");    # remove variable
+
+       &function_end($name);
+       }
+
+sub D_ENCRYPT
+       {
+       local($r,$L,$R,$S,$ks,$desSP,$u,$tmp1,$tmp2,$t)=@_;
+
+       &mov(   $u,             &wparam(2));                    # 2
+       &mov(   $t,             $R);
+       &shr(   $t,             16);                            # 1
+       &mov(   $tmp2,          &wparam(3));                    # 2
+       &xor(   $t,             $R);                            # 1
+
+       &and(   $u,             $t);                            # 2
+       &and(   $t,             $tmp2);                         # 2
+
+       &mov(   $tmp1,          $u);
+       &shl(   $tmp1,          16);                            # 1
+       &mov(   $tmp2,          $t);
+       &shl(   $tmp2,          16);                            # 1
+       &xor(   $u,             $tmp1);                         # 2
+       &xor(   $t,             $tmp2);                         # 2
+       &mov(   $tmp1,          &DWP(&n2a($S*4),$ks,"",0));     # 2
+       &xor(   $u,             $tmp1);
+       &mov(   $tmp2,          &DWP(&n2a(($S+1)*4),$ks,"",0)); # 2
+       &xor(   $u,             $R);
+       &xor(   $t,             $R);
+       &xor(   $t,             $tmp2);
+
+       &and(   $u,             "0xfcfcfcfc"    );              # 2
+       &xor(   $tmp1,          $tmp1);                         # 1
+       &and(   $t,             "0xcfcfcfcf"    );              # 2
+       &xor(   $tmp2,          $tmp2); 
+       &movb(  &LB($tmp1),     &LB($u) );
+       &movb(  &LB($tmp2),     &HB($u) );
+       &rotr(  $t,             4               );
+       &mov(   $ks,            &DWP("      $desSP",$tmp1,"",0));
+       &movb(  &LB($tmp1),     &LB($t) );
+       &xor(   $L,             $ks);
+       &mov(   $ks,            &DWP("0x200+$desSP",$tmp2,"",0));
+       &xor(   $L,             $ks);
+       &movb(  &LB($tmp2),     &HB($t) );
+       &shr(   $u,             16);
+       &mov(   $ks,            &DWP("0x100+$desSP",$tmp1,"",0));
+       &xor(   $L,             $ks); 
+       &movb(  &LB($tmp1),     &HB($u) );
+       &shr(   $t,             16);
+       &mov(   $ks,            &DWP("0x300+$desSP",$tmp2,"",0));
+       &xor(   $L,             $ks);
+       &mov(   $ks,            &wparam(1));
+       &movb(  &LB($tmp2),     &HB($t) );
+       &and(   $u,             "0xff"  );
+       &and(   $t,             "0xff"  );
+       &mov(   $tmp1,          &DWP("0x600+$desSP",$tmp1,"",0));
+       &xor(   $L,             $tmp1);
+       &mov(   $tmp1,          &DWP("0x700+$desSP",$tmp2,"",0));
+       &xor(   $L,             $tmp1);
+       &mov(   $tmp1,          &DWP("0x400+$desSP",$u,"",0));
+       &xor(   $L,             $tmp1);
+       &mov(   $tmp1,          &DWP("0x500+$desSP",$t,"",0));
+       &xor(   $L,             $tmp1);
+       }
+
+sub n2a
+       {
+       sprintf("%d",$_[0]);
+       }
+
+# now has a side affect of rotating $a by $shift
+sub R_PERM_OP
+       {
+       local($a,$b,$tt,$shift,$mask,$last)=@_;
+
+       &rotl(  $a,             $shift          ) if ($shift != 0);
+       &mov(   $tt,            $a              );
+       &xor(   $a,             $b              );
+       &and(   $a,             $mask           );
+       if ($notlast eq $b)
+               {
+               &xor(   $b,             $a              );
+               &xor(   $tt,            $a              );
+               }
+       else
+               {
+               &xor(   $tt,            $a              );
+               &xor(   $b,             $a              );
+               }
+       &comment("");
+       }
+
+sub IP_new
+       {
+       local($l,$r,$tt,$lr)=@_;
+
+       &R_PERM_OP($l,$r,$tt, 4,"0xf0f0f0f0",$l);
+       &R_PERM_OP($r,$tt,$l,20,"0xfff0000f",$l);
+       &R_PERM_OP($l,$tt,$r,14,"0x33333333",$r);
+       &R_PERM_OP($tt,$r,$l,22,"0x03fc03fc",$r);
+       &R_PERM_OP($l,$r,$tt, 9,"0xaaaaaaaa",$r);
+       
+       if ($lr != 3)
+               {
+               if (($lr-3) < 0)
+                       { &rotr($tt,    3-$lr); }
+               else    { &rotl($tt,    $lr-3); }
+               }
+       if ($lr != 2)
+               {
+               if (($lr-2) < 0)
+                       { &rotr($r,     2-$lr); }
+               else    { &rotl($r,     $lr-2); }
+               }
+       }
+
+sub FP_new
+       {
+       local($l,$r,$tt,$lr)=@_;
+
+       if ($lr != 2)
+               {
+               if (($lr-2) < 0)
+                       { &rotl($r,     2-$lr); }
+               else    { &rotr($r,     $lr-2); }
+               }
+       if ($lr != 3)
+               {
+               if (($lr-3) < 0)
+                       { &rotl($l,     3-$lr); }
+               else    { &rotr($l,     $lr-3); }
+               }
+
+       &R_PERM_OP($l,$r,$tt, 0,"0xaaaaaaaa",$r);
+       &R_PERM_OP($tt,$r,$l,23,"0x03fc03fc",$r);
+       &R_PERM_OP($l,$r,$tt,10,"0x33333333",$l);
+       &R_PERM_OP($r,$tt,$l,18,"0xfff0000f",$l);
+       &R_PERM_OP($l,$tt,$r,12,"0xf0f0f0f0",$r);
+       &rotr($tt       , 4);
+       }
+
diff --git a/src/libfreeswan/libcrypto/libdes/asm/des-586.pl b/src/libfreeswan/libcrypto/libdes/asm/des-586.pl
new file mode 100644 (file)
index 0000000..7f2e09f
--- /dev/null
@@ -0,0 +1,251 @@
+#!/usr/bin/perl
+#
+# The inner loop instruction sequence and the IP/FP modifications are from
+# Svend Olaf Mikkelsen <svolaf@inet.uni-c.dk>
+#
+
+push(@INC,"perlasm","../../perlasm");
+require "x86asm.pl";
+require "cbc.pl";
+require "desboth.pl";
+
+# base code is in microsft
+# op dest, source
+# format.
+#
+
+&asm_init($ARGV[0],"des-586.pl");
+
+$L="edi";
+$R="esi";
+
+&external_label("des_SPtrans");
+&des_encrypt("des_encrypt",1);
+&des_encrypt("des_encrypt2",0);
+&des_encrypt3("des_encrypt3",1);
+&des_encrypt3("des_decrypt3",0);
+&cbc("des_ncbc_encrypt","des_encrypt","des_encrypt",0,4,5,3,5,-1);
+&cbc("des_ede3_cbc_encrypt","des_encrypt3","des_decrypt3",0,6,7,3,4,5);
+
+&asm_finish();
+
+sub des_encrypt
+       {
+       local($name,$do_ip)=@_;
+
+       &function_begin_B($name,"EXTRN   _des_SPtrans:DWORD");
+
+       &push("esi");
+       &push("edi");
+
+       &comment("");
+       &comment("Load the 2 words");
+       $ks="ebp";
+
+       if ($do_ip)
+               {
+               &mov($R,&wparam(0));
+                &xor(  "ecx",          "ecx"           );
+
+               &push("ebx");
+               &push("ebp");
+
+               &mov("eax",&DWP(0,$R,"",0));
+                &mov("ebx",&wparam(2));        # get encrypt flag
+               &mov($L,&DWP(4,$R,"",0));
+               &comment("");
+               &comment("IP");
+               &IP_new("eax",$L,$R,3);
+               }
+       else
+               {
+               &mov("eax",&wparam(0));
+                &xor(  "ecx",          "ecx"           );
+
+               &push("ebx");
+               &push("ebp");
+
+               &mov($R,&DWP(0,"eax","",0));
+                &mov("ebx",&wparam(2));        # get encrypt flag
+               &rotl($R,3);
+               &mov($L,&DWP(4,"eax","",0));
+               &rotl($L,3);
+               }
+
+       &mov(   $ks,            &wparam(1)      );
+       &cmp("ebx","0");
+       &je(&label("start_decrypt"));
+
+       for ($i=0; $i<16; $i+=2)
+               {
+               &comment("");
+               &comment("Round $i");
+               &D_ENCRYPT($i,$L,$R,$i*2,$ks,"des_SPtrans","eax","ebx","ecx","edx");
+
+               &comment("");
+               &comment("Round ".sprintf("%d",$i+1));
+               &D_ENCRYPT($i+1,$R,$L,($i+1)*2,$ks,"des_SPtrans","eax","ebx","ecx","edx");
+               }
+       &jmp(&label("end"));
+
+       &set_label("start_decrypt");
+
+       for ($i=15; $i>0; $i-=2)
+               {
+               &comment("");
+               &comment("Round $i");
+               &D_ENCRYPT(15-$i,$L,$R,$i*2,$ks,"des_SPtrans","eax","ebx","ecx","edx");
+               &comment("");
+               &comment("Round ".sprintf("%d",$i-1));
+               &D_ENCRYPT(15-$i+1,$R,$L,($i-1)*2,$ks,"des_SPtrans","eax","ebx","ecx","edx");
+               }
+
+       &set_label("end");
+
+       if ($do_ip)
+               {
+               &comment("");
+               &comment("FP");
+               &mov("edx",&wparam(0));
+               &FP_new($L,$R,"eax",3);
+
+               &mov(&DWP(0,"edx","",0),"eax");
+               &mov(&DWP(4,"edx","",0),$R);
+               }
+       else
+               {
+               &comment("");
+               &comment("Fixup");
+               &rotr($L,3);            # r
+                &mov("eax",&wparam(0));
+               &rotr($R,3);            # l
+                &mov(&DWP(0,"eax","",0),$L);
+                &mov(&DWP(4,"eax","",0),$R);
+               }
+
+       &pop("ebp");
+       &pop("ebx");
+       &pop("edi");
+       &pop("esi");
+       &ret();
+
+       &function_end_B($name);
+       }
+
+sub D_ENCRYPT
+       {
+       local($r,$L,$R,$S,$ks,$desSP,$u,$tmp1,$tmp2,$t)=@_;
+
+        &mov(  $u,             &DWP(&n2a($S*4),$ks,"",0));
+       &xor(   $tmp1,          $tmp1);
+        &mov(  $t,             &DWP(&n2a(($S+1)*4),$ks,"",0));
+       &xor(   $u,             $R);
+        &xor(  $t,             $R);
+       &and(   $u,             "0xfcfcfcfc"    );
+        &and(  $t,             "0xcfcfcfcf"    );
+       &movb(  &LB($tmp1),     &LB($u) );
+        &movb( &LB($tmp2),     &HB($u) );
+       &rotr(  $t,             4               );
+       &mov(   $ks,            &DWP("      $desSP",$tmp1,"",0));
+        &movb( &LB($tmp1),     &LB($t) );
+       &xor(   $L,             $ks);
+        &mov(  $ks,            &DWP("0x200+$desSP",$tmp2,"",0));
+       &xor(   $L,             $ks); ######
+        &movb( &LB($tmp2),     &HB($t) );
+       &shr(   $u,             16);
+        &mov(  $ks,            &DWP("0x100+$desSP",$tmp1,"",0));
+       &xor(   $L,             $ks); ######
+        &movb( &LB($tmp1),     &HB($u) );
+       &shr(   $t,             16);
+        &mov(  $ks,            &DWP("0x300+$desSP",$tmp2,"",0));
+       &xor(   $L,             $ks);
+        &mov(  $ks,            &wparam(1)      );
+       &movb(  &LB($tmp2),     &HB($t) );
+        &and(  $u,             "0xff"  );
+       &and(   $t,             "0xff"  );
+        &mov(  $tmp1,          &DWP("0x600+$desSP",$tmp1,"",0));
+       &xor(   $L,             $tmp1);
+        &mov(  $tmp1,          &DWP("0x700+$desSP",$tmp2,"",0));
+       &xor(   $L,             $tmp1);
+        &mov(  $tmp1,          &DWP("0x400+$desSP",$u,"",0));
+       &xor(   $L,             $tmp1);
+        &mov(  $tmp1,          &DWP("0x500+$desSP",$t,"",0));
+       &xor(   $L,             $tmp1);
+       }
+
+sub n2a
+       {
+       sprintf("%d",$_[0]);
+       }
+
+# now has a side affect of rotating $a by $shift
+sub R_PERM_OP
+       {
+       local($a,$b,$tt,$shift,$mask,$last)=@_;
+
+       &rotl(  $a,             $shift          ) if ($shift != 0);
+       &mov(   $tt,            $a              );
+       &xor(   $a,             $b              );
+       &and(   $a,             $mask           );
+       if (!$last eq $b)
+               {
+               &xor(   $b,             $a              );
+               &xor(   $tt,            $a              );
+               }
+       else
+               {
+               &xor(   $tt,            $a              );
+               &xor(   $b,             $a              );
+               }
+       &comment("");
+       }
+
+sub IP_new
+       {
+       local($l,$r,$tt,$lr)=@_;
+
+       &R_PERM_OP($l,$r,$tt, 4,"0xf0f0f0f0",$l);
+       &R_PERM_OP($r,$tt,$l,20,"0xfff0000f",$l);
+       &R_PERM_OP($l,$tt,$r,14,"0x33333333",$r);
+       &R_PERM_OP($tt,$r,$l,22,"0x03fc03fc",$r);
+       &R_PERM_OP($l,$r,$tt, 9,"0xaaaaaaaa",$r);
+       
+       if ($lr != 3)
+               {
+               if (($lr-3) < 0)
+                       { &rotr($tt,    3-$lr); }
+               else    { &rotl($tt,    $lr-3); }
+               }
+       if ($lr != 2)
+               {
+               if (($lr-2) < 0)
+                       { &rotr($r,     2-$lr); }
+               else    { &rotl($r,     $lr-2); }
+               }
+       }
+
+sub FP_new
+       {
+       local($l,$r,$tt,$lr)=@_;
+
+       if ($lr != 2)
+               {
+               if (($lr-2) < 0)
+                       { &rotl($r,     2-$lr); }
+               else    { &rotr($r,     $lr-2); }
+               }
+       if ($lr != 3)
+               {
+               if (($lr-3) < 0)
+                       { &rotl($l,     3-$lr); }
+               else    { &rotr($l,     $lr-3); }
+               }
+
+       &R_PERM_OP($l,$r,$tt, 0,"0xaaaaaaaa",$r);
+       &R_PERM_OP($tt,$r,$l,23,"0x03fc03fc",$r);
+       &R_PERM_OP($l,$r,$tt,10,"0x33333333",$l);
+       &R_PERM_OP($r,$tt,$l,18,"0xfff0000f",$l);
+       &R_PERM_OP($l,$tt,$r,12,"0xf0f0f0f0",$r);
+       &rotr($tt       , 4);
+       }
+
diff --git a/src/libfreeswan/libcrypto/libdes/asm/des686.pl b/src/libfreeswan/libcrypto/libdes/asm/des686.pl
new file mode 100644 (file)
index 0000000..cf1a82f
--- /dev/null
@@ -0,0 +1,230 @@
+#!/usr/bin/perl
+
+$prog="des686.pl";
+
+# base code is in microsft
+# op dest, source
+# format.
+#
+
+# WILL NOT WORK ANYMORE WITH desboth.pl
+require "desboth.pl";
+
+if (   ($ARGV[0] eq "elf"))
+       { require "x86unix.pl"; }
+elsif (        ($ARGV[0] eq "a.out"))
+       { $aout=1; require "x86unix.pl"; }
+elsif (        ($ARGV[0] eq "sol"))
+       { $sol=1; require "x86unix.pl"; }
+elsif ( ($ARGV[0] eq "cpp"))
+       { $cpp=1; require "x86unix.pl"; }
+elsif (        ($ARGV[0] eq "win32"))
+       { require "x86ms.pl"; }
+else
+       {
+       print STDERR <<"EOF";
+Pick one target type from
+       elf     - linux, FreeBSD etc
+       a.out   - old linux
+       sol     - x86 solaris
+       cpp     - format so x86unix.cpp can be used
+       win32   - Windows 95/Windows NT
+EOF
+       exit(1);
+       }
+
+&comment("Don't even think of reading this code");
+&comment("It was automatically generated by $prog");
+&comment("Which is a perl program used to generate the x86 assember for");
+&comment("any of elf, a.out, Win32, or Solaris");
+&comment("It can be found in SSLeay 0.6.5+ or in libdes 3.26+");
+&comment("eric <eay\@cryptsoft.com>");
+&comment("");
+
+&file("dx86xxxx");
+
+$L="edi";
+$R="esi";
+
+&des_encrypt("des_encrypt",1);
+&des_encrypt("des_encrypt2",0);
+
+&des_encrypt3("des_encrypt3",1);
+&des_encrypt3("des_decrypt3",0);
+
+&file_end();
+
+sub des_encrypt
+       {
+       local($name,$do_ip)=@_;
+
+       &function_begin($name,"EXTRN   _des_SPtrans:DWORD");
+
+       &comment("");
+       &comment("Load the 2 words");
+       &mov("eax",&wparam(0));
+       &mov($L,&DWP(0,"eax","",0));
+       &mov($R,&DWP(4,"eax","",0));
+
+       $ksp=&wparam(1);
+
+       if ($do_ip)
+               {
+               &comment("");
+               &comment("IP");
+               &IP_new($L,$R,"eax");
+               }
+
+       &comment("");
+       &comment("fixup rotate");
+       &rotl($R,3);
+       &rotl($L,3);
+       &exch($L,$R);
+
+       &comment("");
+       &comment("load counter, key_schedule and enc flag");
+       &mov("eax",&wparam(2)); # get encrypt flag
+       &mov("ebp",&wparam(1)); # get ks
+       &cmp("eax","0");
+       &je(&label("start_decrypt"));
+
+       # encrypting part
+
+       for ($i=0; $i<16; $i+=2)
+               {
+               &comment("");
+               &comment("Round $i");
+               &D_ENCRYPT($L,$R,$i*2,"ebp","des_SPtrans","ecx","edx","eax","ebx");
+
+               &comment("");
+               &comment("Round ".sprintf("%d",$i+1));
+               &D_ENCRYPT($R,$L,($i+1)*2,"ebp","des_SPtrans","ecx","edx","eax","ebx");
+               }
+       &jmp(&label("end"));
+
+       &set_label("start_decrypt");
+
+       for ($i=15; $i>0; $i-=2)
+               {
+               &comment("");
+               &comment("Round $i");
+               &D_ENCRYPT($L,$R,$i*2,"ebp","des_SPtrans","ecx","edx","eax","ebx");
+               &comment("");
+               &comment("Round ".sprintf("%d",$i-1));
+               &D_ENCRYPT($R,$L,($i-1)*2,"ebp","des_SPtrans","ecx","edx","eax","ebx");
+               }
+
+       &set_label("end");
+
+       &comment("");
+       &comment("Fixup");
+       &rotr($L,3);            # r
+       &rotr($R,3);            # l
+
+       if ($do_ip)
+               {
+               &comment("");
+               &comment("FP");
+               &FP_new($R,$L,"eax");
+               }
+
+       &mov("eax",&wparam(0));
+       &mov(&DWP(0,"eax","",0),$L);
+       &mov(&DWP(4,"eax","",0),$R);
+
+       &function_end($name);
+       }
+
+
+# The logic is to load R into 2 registers and operate on both at the same time.
+# We also load the 2 R's into 2 more registers so we can do the 'move word down a byte'
+# while also masking the other copy and doing a lookup.  We then also accumulate the
+# L value in 2 registers then combine them at the end.
+sub D_ENCRYPT
+       {
+       local($L,$R,$S,$ks,$desSP,$u,$t,$tmp1,$tmp2,$tmp3)=@_;
+
+       &mov(   $u,             &DWP(&n2a($S*4),$ks,"",0));
+       &mov(   $t,             &DWP(&n2a(($S+1)*4),$ks,"",0));
+       &xor(   $u,             $R              );
+       &xor(   $t,             $R              );
+       &rotr(  $t,             4               );
+
+       # the numbers at the end of the line are origional instruction order
+       &mov(   $tmp2,          $u              );                      # 1 2
+       &mov(   $tmp1,          $t              );                      # 1 1
+       &and(   $tmp2,          "0xfc"          );                      # 1 4
+       &and(   $tmp1,          "0xfc"          );                      # 1 3
+       &shr(   $t,             8               );                      # 1 5
+       &xor(   $L,             &DWP("0x100+$desSP",$tmp1,"",0));       # 1 7
+       &shr(   $u,             8               );                      # 1 6
+       &mov(   $tmp1,          &DWP("      $desSP",$tmp2,"",0));       # 1 8
+
+       &mov(   $tmp2,          $u              );                      # 2 2
+       &xor(   $L,             $tmp1           );                      # 1 9
+       &and(   $tmp2,          "0xfc"          );                      # 2 4
+       &mov(   $tmp1,          $t              );                      # 2 1
+       &and(   $tmp1,          "0xfc"          );                      # 2 3
+       &shr(   $t,             8               );                      # 2 5
+       &xor(   $L,             &DWP("0x300+$desSP",$tmp1,"",0));       # 2 7
+       &shr(   $u,             8               );                      # 2 6
+       &mov(   $tmp1,          &DWP("0x200+$desSP",$tmp2,"",0));       # 2 8
+       &mov(   $tmp2,          $u              );                      # 3 2
+
+       &xor(   $L,             $tmp1           );                      # 2 9
+       &and(   $tmp2,          "0xfc"          );                      # 3 4
+
+       &mov(   $tmp1,          $t              );                      # 3 1 
+       &shr(   $u,             8               );                      # 3 6
+       &and(   $tmp1,          "0xfc"          );                      # 3 3
+       &shr(   $t,             8               );                      # 3 5
+       &xor(   $L,             &DWP("0x500+$desSP",$tmp1,"",0));       # 3 7
+       &mov(   $tmp1,          &DWP("0x400+$desSP",$tmp2,"",0));       # 3 8
+
+       &and(   $t,             "0xfc"          );                      # 4 1
+       &xor(   $L,             $tmp1           );                      # 3 9
+
+       &and(   $u,             "0xfc"          );                      # 4 2
+       &xor(   $L,             &DWP("0x700+$desSP",$t,"",0));          # 4 3
+       &xor(   $L,             &DWP("0x600+$desSP",$u,"",0));          # 4 4
+       }
+
+sub PERM_OP
+       {
+       local($a,$b,$tt,$shift,$mask)=@_;
+
+       &mov(   $tt,            $a              );
+       &shr(   $tt,            $shift          );
+       &xor(   $tt,            $b              );
+       &and(   $tt,            $mask           );
+       &xor(   $b,             $tt             );
+       &shl(   $tt,            $shift          );
+       &xor(   $a,             $tt             );
+       }
+
+sub IP_new
+       {
+       local($l,$r,$tt)=@_;
+
+       &PERM_OP($r,$l,$tt, 4,"0x0f0f0f0f");
+       &PERM_OP($l,$r,$tt,16,"0x0000ffff");
+       &PERM_OP($r,$l,$tt, 2,"0x33333333");
+       &PERM_OP($l,$r,$tt, 8,"0x00ff00ff");
+       &PERM_OP($r,$l,$tt, 1,"0x55555555");
+       }
+
+sub FP_new
+       {
+       local($l,$r,$tt)=@_;
+
+       &PERM_OP($l,$r,$tt, 1,"0x55555555");
+        &PERM_OP($r,$l,$tt, 8,"0x00ff00ff");
+        &PERM_OP($l,$r,$tt, 2,"0x33333333");
+        &PERM_OP($r,$l,$tt,16,"0x0000ffff");
+        &PERM_OP($l,$r,$tt, 4,"0x0f0f0f0f");
+       }
+
+sub n2a
+       {
+       sprintf("%d",$_[0]);
+       }
diff --git a/src/libfreeswan/libcrypto/libdes/asm/desboth.pl b/src/libfreeswan/libcrypto/libdes/asm/desboth.pl
new file mode 100644 (file)
index 0000000..8f93995
--- /dev/null
@@ -0,0 +1,79 @@
+#!/usr/bin/perl
+
+$L="edi";
+$R="esi";
+
+sub des_encrypt3
+       {
+       local($name,$enc)=@_;
+
+       &function_begin_B($name,"");
+       &push("ebx");
+       &mov("ebx",&wparam(0));
+
+       &push("ebp");
+       &push("esi");
+
+       &push("edi");
+
+       &comment("");
+       &comment("Load the data words");
+       &mov($L,&DWP(0,"ebx","",0));
+       &mov($R,&DWP(4,"ebx","",0));
+       &stack_push(3);
+
+       &comment("");
+       &comment("IP");
+       &IP_new($L,$R,"edx",0);
+
+       # put them back
+       
+       if ($enc)
+               {
+               &mov(&DWP(4,"ebx","",0),$R);
+                &mov("eax",&wparam(1));
+               &mov(&DWP(0,"ebx","",0),"edx");
+                &mov("edi",&wparam(2));
+                &mov("esi",&wparam(3));
+               }
+       else
+               {
+               &mov(&DWP(4,"ebx","",0),$R);
+                &mov("esi",&wparam(1));
+               &mov(&DWP(0,"ebx","",0),"edx");
+                &mov("edi",&wparam(2));
+                &mov("eax",&wparam(3));
+               }
+       &mov(&swtmp(2), (($enc)?"1":"0"));
+       &mov(&swtmp(1), "eax");
+       &mov(&swtmp(0), "ebx");
+       &call("des_encrypt2");
+       &mov(&swtmp(2), (($enc)?"0":"1"));
+       &mov(&swtmp(1), "edi");
+       &mov(&swtmp(0), "ebx");
+       &call("des_encrypt2");
+       &mov(&swtmp(2), (($enc)?"1":"0"));
+       &mov(&swtmp(1), "esi");
+       &mov(&swtmp(0), "ebx");
+       &call("des_encrypt2");
+
+       &stack_pop(3);
+       &mov($L,&DWP(0,"ebx","",0));
+       &mov($R,&DWP(4,"ebx","",0));
+
+       &comment("");
+       &comment("FP");
+       &FP_new($L,$R,"eax",0);
+
+       &mov(&DWP(0,"ebx","",0),"eax");
+       &mov(&DWP(4,"ebx","",0),$R);
+
+       &pop("edi");
+       &pop("esi");
+       &pop("ebp");
+       &pop("ebx");
+       &ret();
+       &function_end_B($name);
+       }
+
+
diff --git a/src/libfreeswan/libcrypto/libdes/asm/perlasm/cbc.pl b/src/libfreeswan/libcrypto/libdes/asm/perlasm/cbc.pl
new file mode 100644 (file)
index 0000000..2789305
--- /dev/null
@@ -0,0 +1,342 @@
+#!/usr/bin/perl
+
+# void des_ncbc_encrypt(input, output, length, schedule, ivec, enc)
+# des_cblock (*input);
+# des_cblock (*output);
+# long length;
+# des_key_schedule schedule;
+# des_cblock (*ivec);
+# int enc;
+#
+# calls 
+# des_encrypt((DES_LONG *)tin,schedule,DES_ENCRYPT);
+#
+
+#&cbc("des_ncbc_encrypt","des_encrypt",0);
+#&cbc("BF_cbc_encrypt","BF_encrypt","BF_encrypt",
+#      1,4,5,3,5,-1);
+#&cbc("des_ncbc_encrypt","des_encrypt","des_encrypt",
+#      0,4,5,3,5,-1);
+#&cbc("des_ede3_cbc_encrypt","des_encrypt3","des_decrypt3",
+#      0,6,7,3,4,5);
+#
+# When doing a cipher that needs bigendian order,
+# for encrypt, the iv is kept in bigendian form,
+# while for decrypt, it is kept in little endian.
+sub cbc
+       {
+       local($name,$enc_func,$dec_func,$swap,$iv_off,$enc_off,$p1,$p2,$p3)=@_;
+       # name is the function name
+       # enc_func and dec_func and the functions to call for encrypt/decrypt
+       # swap is true if byte order needs to be reversed
+       # iv_off is parameter number for the iv 
+       # enc_off is parameter number for the encrypt/decrypt flag
+       # p1,p2,p3 are the offsets for parameters to be passed to the
+       # underlying calls.
+
+       &function_begin_B($name,"");
+       &comment("");
+
+       $in="esi";
+       $out="edi";
+       $count="ebp";
+
+       &push("ebp");
+       &push("ebx");
+       &push("esi");
+       &push("edi");
+
+       $data_off=4;
+       $data_off+=4 if ($p1 > 0);
+       $data_off+=4 if ($p2 > 0);
+       $data_off+=4 if ($p3 > 0);
+
+       &mov($count,    &wparam(2));    # length
+
+       &comment("getting iv ptr from parameter $iv_off");
+       &mov("ebx",     &wparam($iv_off));      # Get iv ptr
+
+       &mov($in,       &DWP(0,"ebx","",0));#   iv[0]
+       &mov($out,      &DWP(4,"ebx","",0));#   iv[1]
+
+       &push($out);
+       &push($in);
+       &push($out);    # used in decrypt for iv[1]
+       &push($in);     # used in decrypt for iv[0]
+
+       &mov("ebx",     "esp");         # This is the address of tin[2]
+
+       &mov($in,       &wparam(0));    # in
+       &mov($out,      &wparam(1));    # out
+
+       # We have loaded them all, how lets push things
+       &comment("getting encrypt flag from parameter $enc_off");
+       &mov("ecx",     &wparam($enc_off));     # Get enc flag
+       if ($p3 > 0)
+               {
+               &comment("get and push parameter $p3");
+               if ($enc_off != $p3)
+                       { &mov("eax",   &wparam($p3)); &push("eax"); }
+               else    { &push("ecx"); }
+               }
+       if ($p2 > 0)
+               {
+               &comment("get and push parameter $p2");
+               if ($enc_off != $p2)
+                       { &mov("eax",   &wparam($p2)); &push("eax"); }
+               else    { &push("ecx"); }
+               }
+       if ($p1 > 0)
+               {
+               &comment("get and push parameter $p1");
+               if ($enc_off != $p1)
+                       { &mov("eax",   &wparam($p1)); &push("eax"); }
+               else    { &push("ecx"); }
+               }
+       &push("ebx");           # push data/iv
+
+       &cmp("ecx",0);
+       &jz(&label("decrypt"));
+
+       &and($count,0xfffffff8);
+       &mov("eax",     &DWP($data_off,"esp","",0));    # load iv[0]
+       &mov("ebx",     &DWP($data_off+4,"esp","",0));  # load iv[1]
+
+       &jz(&label("encrypt_finish"));
+
+       #############################################################
+
+       &set_label("encrypt_loop");
+       # encrypt start 
+       # "eax" and "ebx" hold iv (or the last cipher text)
+
+       &mov("ecx",     &DWP(0,$in,"",0));      # load first 4 bytes
+       &mov("edx",     &DWP(4,$in,"",0));      # second 4 bytes
+
+       &xor("eax",     "ecx");
+       &xor("ebx",     "edx");
+
+       &bswap("eax")   if $swap;
+       &bswap("ebx")   if $swap;
+
+       &mov(&DWP($data_off,"esp","",0),        "eax"); # put in array for call
+       &mov(&DWP($data_off+4,"esp","",0),      "ebx"); #
+
+       &call($enc_func);
+
+       &mov("eax",     &DWP($data_off,"esp","",0));
+       &mov("ebx",     &DWP($data_off+4,"esp","",0));
+
+       &bswap("eax")   if $swap;
+       &bswap("ebx")   if $swap;
+
+       &mov(&DWP(0,$out,"",0),"eax");
+       &mov(&DWP(4,$out,"",0),"ebx");
+
+       # eax and ebx are the next iv.
+
+       &add($in,       8);
+       &add($out,      8);
+
+       &sub($count,    8);
+       &jnz(&label("encrypt_loop"));
+
+###################################################################3
+       &set_label("encrypt_finish");
+       &mov($count,    &wparam(2));    # length
+       &and($count,    7);
+       &jz(&label("finish"));
+       &xor("ecx","ecx");
+       &xor("edx","edx");
+       &mov($count,&DWP(&label("cbc_enc_jmp_table"),"",$count,4));
+       &jmp_ptr($count);
+
+&set_label("ej7");
+       &xor("edx",             "edx") if $ppro; # ppro friendly
+       &movb(&HB("edx"),       &BP(6,$in,"",0));
+       &shl("edx",8);
+&set_label("ej6");
+       &movb(&HB("edx"),       &BP(5,$in,"",0));
+&set_label("ej5");
+       &movb(&LB("edx"),       &BP(4,$in,"",0));
+&set_label("ej4");
+       &mov("ecx",             &DWP(0,$in,"",0));
+       &jmp(&label("ejend"));
+&set_label("ej3");
+       &movb(&HB("ecx"),       &BP(2,$in,"",0));
+       &xor("ecx",             "ecx") if $ppro; # ppro friendly
+       &shl("ecx",8);
+&set_label("ej2");
+       &movb(&HB("ecx"),       &BP(1,$in,"",0));
+&set_label("ej1");
+       &movb(&LB("ecx"),       &BP(0,$in,"",0));
+&set_label("ejend");
+
+       &xor("eax",     "ecx");
+       &xor("ebx",     "edx");
+
+       &bswap("eax")   if $swap;
+       &bswap("ebx")   if $swap;
+
+       &mov(&DWP($data_off,"esp","",0),        "eax"); # put in array for call
+       &mov(&DWP($data_off+4,"esp","",0),      "ebx"); #
+
+       &call($enc_func);
+
+       &mov("eax",     &DWP($data_off,"esp","",0));
+       &mov("ebx",     &DWP($data_off+4,"esp","",0));
+
+       &bswap("eax")   if $swap;
+       &bswap("ebx")   if $swap;
+
+       &mov(&DWP(0,$out,"",0),"eax");
+       &mov(&DWP(4,$out,"",0),"ebx");
+
+       &jmp(&label("finish"));
+
+       #############################################################
+       #############################################################
+       &set_label("decrypt",1);
+       # decrypt start 
+       &and($count,0xfffffff8);
+       # The next 2 instructions are only for if the jz is taken
+       &mov("eax",     &DWP($data_off+8,"esp","",0));  # get iv[0]
+       &mov("ebx",     &DWP($data_off+12,"esp","",0)); # get iv[1]
+       &jz(&label("decrypt_finish"));
+
+       &set_label("decrypt_loop");
+       &mov("eax",     &DWP(0,$in,"",0));      # load first 4 bytes
+       &mov("ebx",     &DWP(4,$in,"",0));      # second 4 bytes
+
+       &bswap("eax")   if $swap;
+       &bswap("ebx")   if $swap;
+
+       &mov(&DWP($data_off,"esp","",0),        "eax"); # put back
+       &mov(&DWP($data_off+4,"esp","",0),      "ebx"); #
+
+       &call($dec_func);
+
+       &mov("eax",     &DWP($data_off,"esp","",0));    # get return
+       &mov("ebx",     &DWP($data_off+4,"esp","",0));  #
+
+       &bswap("eax")   if $swap;
+       &bswap("ebx")   if $swap;
+
+       &mov("ecx",     &DWP($data_off+8,"esp","",0));  # get iv[0]
+       &mov("edx",     &DWP($data_off+12,"esp","",0)); # get iv[1]
+
+       &xor("ecx",     "eax");
+       &xor("edx",     "ebx");
+
+       &mov("eax",     &DWP(0,$in,"",0));      # get old cipher text,
+       &mov("ebx",     &DWP(4,$in,"",0));      # next iv actually
+
+       &mov(&DWP(0,$out,"",0),"ecx");
+       &mov(&DWP(4,$out,"",0),"edx");
+
+       &mov(&DWP($data_off+8,"esp","",0),      "eax"); # save iv
+       &mov(&DWP($data_off+12,"esp","",0),     "ebx"); #
+
+       &add($in,       8);
+       &add($out,      8);
+
+       &sub($count,    8);
+       &jnz(&label("decrypt_loop"));
+############################ ENDIT #######################3
+       &set_label("decrypt_finish");
+       &mov($count,    &wparam(2));    # length
+       &and($count,    7);
+       &jz(&label("finish"));
+
+       &mov("eax",     &DWP(0,$in,"",0));      # load first 4 bytes
+       &mov("ebx",     &DWP(4,$in,"",0));      # second 4 bytes
+
+       &bswap("eax")   if $swap;
+       &bswap("ebx")   if $swap;
+
+       &mov(&DWP($data_off,"esp","",0),        "eax"); # put back
+       &mov(&DWP($data_off+4,"esp","",0),      "ebx"); #
+
+       &call($dec_func);
+
+       &mov("eax",     &DWP($data_off,"esp","",0));    # get return
+       &mov("ebx",     &DWP($data_off+4,"esp","",0));  #
+
+       &bswap("eax")   if $swap;
+       &bswap("ebx")   if $swap;
+
+       &mov("ecx",     &DWP($data_off+8,"esp","",0));  # get iv[0]
+       &mov("edx",     &DWP($data_off+12,"esp","",0)); # get iv[1]
+
+       &xor("ecx",     "eax");
+       &xor("edx",     "ebx");
+
+       # this is for when we exit
+       &mov("eax",     &DWP(0,$in,"",0));      # get old cipher text,
+       &mov("ebx",     &DWP(4,$in,"",0));      # next iv actually
+
+&set_label("dj7");
+       &rotr("edx",    16);
+       &movb(&BP(6,$out,"",0), &LB("edx"));
+       &shr("edx",16);
+&set_label("dj6");
+       &movb(&BP(5,$out,"",0), &HB("edx"));
+&set_label("dj5");
+       &movb(&BP(4,$out,"",0), &LB("edx"));
+&set_label("dj4");
+       &mov(&DWP(0,$out,"",0), "ecx");
+       &jmp(&label("djend"));
+&set_label("dj3");
+       &rotr("ecx",    16);
+       &movb(&BP(2,$out,"",0), &LB("ecx"));
+       &shl("ecx",16);
+&set_label("dj2");
+       &movb(&BP(1,$in,"",0),  &HB("ecx"));
+&set_label("dj1");
+       &movb(&BP(0,$in,"",0),  &LB("ecx"));
+&set_label("djend");
+
+       # final iv is still in eax:ebx
+       &jmp(&label("finish"));
+
+
+############################ FINISH #######################3
+       &set_label("finish",1);
+       &mov("ecx",     &wparam($iv_off));      # Get iv ptr
+
+       #################################################
+       $total=16+4;
+       $total+=4 if ($p1 > 0);
+       $total+=4 if ($p2 > 0);
+       $total+=4 if ($p3 > 0);
+       &add("esp",$total);
+
+       &mov(&DWP(0,"ecx","",0),        "eax"); # save iv
+       &mov(&DWP(4,"ecx","",0),        "ebx"); # save iv
+
+       &function_end_A($name);
+
+       &set_label("cbc_enc_jmp_table",1);
+       &data_word("0");
+       &data_word(&label("ej1"));
+       &data_word(&label("ej2"));
+       &data_word(&label("ej3"));
+       &data_word(&label("ej4"));
+       &data_word(&label("ej5"));
+       &data_word(&label("ej6"));
+       &data_word(&label("ej7"));
+       &set_label("cbc_dec_jmp_table",1);
+       &data_word("0");
+       &data_word(&label("dj1"));
+       &data_word(&label("dj2"));
+       &data_word(&label("dj3"));
+       &data_word(&label("dj4"));
+       &data_word(&label("dj5"));
+       &data_word(&label("dj6"));
+       &data_word(&label("dj7"));
+
+       &function_end_B($name);
+       
+       }
+
+1;
diff --git a/src/libfreeswan/libcrypto/libdes/asm/perlasm/readme b/src/libfreeswan/libcrypto/libdes/asm/perlasm/readme
new file mode 100644 (file)
index 0000000..f02bbee
--- /dev/null
@@ -0,0 +1,124 @@
+The perl scripts in this directory are my 'hack' to generate
+multiple different assembler formats via the one origional script.
+
+The way to use this library is to start with adding the path to this directory
+and then include it.
+
+push(@INC,"perlasm","../../perlasm");
+require "x86asm.pl";
+
+The first thing we do is setup the file and type of assember
+
+&asm_init($ARGV[0],$0);
+
+The first argument is the 'type'.  Currently
+'cpp', 'sol', 'a.out', 'elf' or 'win32'.
+Argument 2 is the file name.
+
+The reciprocal function is
+&asm_finish() which should be called at the end.
+
+There are 2 main 'packages'. x86ms.pl, which is the microsoft assembler,
+and x86unix.pl which is the unix (gas) version.
+
+Functions of interest are:
+&external_label("des_SPtrans");        declare and external variable
+&LB(reg);                      Low byte for a register
+&HB(reg);                      High byte for a register
+&BP(off,base,index,scale)      Byte pointer addressing
+&DWP(off,base,index,scale)     Word pointer addressing
+&stack_push(num)               Basically a 'sub esp, num*4' with extra
+&stack_pop(num)                        inverse of stack_push
+&function_begin(name,extra)    Start a function with pushing of
+                               edi, esi, ebx and ebp.  extra is extra win32
+                               external info that may be required.
+&function_begin_B(name,extra)  Same as norma function_begin but no pushing.
+&function_end(name)            Call at end of function.
+&function_end_A(name)          Standard pop and ret, for use inside functions
+&function_end_B(name)          Call at end but with poping or 'ret'.
+&swtmp(num)                    Address on stack temp word.
+&wparam(num)                   Parameter number num, that was push
+                               in C convention.  This all works over pushes
+                               and pops.
+&comment("hello there")                Put in a comment.
+&label("loop")                 Refer to a label, normally a jmp target.
+&set_label("loop")             Set a label at this point.
+&data_word(word)               Put in a word of data.
+
+So how does this all hold together?  Given
+
+int calc(int len, int *data)
+       {
+       int i,j=0;
+
+       for (i=0; i<len; i++)
+               {
+               j+=other(data[i]);
+               }
+       }
+
+So a very simple version of this function could be coded as
+
+       push(@INC,"perlasm","../../perlasm");
+       require "x86asm.pl";
+       
+       &asm_init($ARGV[0],"cacl.pl");
+
+       &external_label("other");
+
+       $tmp1=  "eax";
+       $j=     "edi";
+       $data=  "esi";
+       $i=     "ebp";
+
+       &comment("a simple function");
+       &function_begin("calc");
+       &mov(   $data,          &wparam(1)); # data
+       &xor(   $j,             $j);
+       &xor(   $i,             $i);
+
+       &set_label("loop");
+       &cmp(   $i,             &wparam(0));
+       &jge(   &label("end"));
+
+       &mov(   $tmp1,          &DWP(0,$data,$i,4));
+       &push(  $tmp1);
+       &call(  "other");
+       &add(   $j,             "eax");
+       &pop(   $tmp1);
+       &inc(   $i);
+       &jmp(   &label("loop"));
+
+       &set_label("end");
+       &mov(   "eax",          $j);
+
+       &function_end("calc");
+
+       &asm_finish();
+
+The above example is very very unoptimised but gives an idea of how
+things work.
+
+There is also a cbc mode function generator in cbc.pl
+
+&cbc(  $name,
+       $encrypt_function_name,
+       $decrypt_function_name,
+       $true_if_byte_swap_needed,
+       $parameter_number_for_iv,
+       $parameter_number_for_encrypt_flag,
+       $first_parameter_to_pass,
+       $second_parameter_to_pass,
+       $third_parameter_to_pass);
+
+So for example, given
+void BF_encrypt(BF_LONG *data,BF_KEY *key);
+void BF_decrypt(BF_LONG *data,BF_KEY *key);
+void BF_cbc_encrypt(unsigned char *in, unsigned char *out, long length,
+        BF_KEY *ks, unsigned char *iv, int enc);
+
+&cbc("BF_cbc_encrypt","BF_encrypt","BF_encrypt",1,4,5,3,-1,-1);
+
+&cbc("des_ncbc_encrypt","des_encrypt","des_encrypt",0,4,5,3,5,-1);
+&cbc("des_ede3_cbc_encrypt","des_encrypt3","des_decrypt3",0,6,7,3,4,5);
+
diff --git a/src/libfreeswan/libcrypto/libdes/asm/perlasm/x86asm.pl b/src/libfreeswan/libcrypto/libdes/asm/perlasm/x86asm.pl
new file mode 100644 (file)
index 0000000..164a942
--- /dev/null
@@ -0,0 +1,111 @@
+#!/usr/bin/perl
+
+# require 'x86asm.pl';
+# &asm_init("cpp","des-586.pl");
+# XXX
+# XXX
+# main'asm_finish
+
+sub main'asm_finish
+       {
+       &file_end();
+       &asm_finish_cpp() if $cpp;
+       print &asm_get_output();
+       }
+
+sub main'asm_init
+       {
+       ($type,$fn)=@_;
+       $filename=$fn;
+
+       $cpp=$sol=$aout=$win32=0;
+       if (    ($type eq "elf"))
+               { require "x86unix.pl"; }
+       elsif ( ($type eq "a.out"))
+               { $aout=1; require "x86unix.pl"; }
+       elsif ( ($type eq "sol"))
+               { $sol=1; require "x86unix.pl"; }
+       elsif ( ($type eq "cpp"))
+               { $cpp=1; require "x86unix.pl"; }
+       elsif ( ($type eq "win32"))
+               { $win32=1; require "x86ms.pl"; }
+       else
+               {
+               print STDERR <<"EOF";
+Pick one target type from
+       elf     - linux, FreeBSD etc
+       a.out   - old linux
+       sol     - x86 solaris
+       cpp     - format so x86unix.cpp can be used
+       win32   - Windows 95/Windows NT
+EOF
+               exit(1);
+               }
+
+       &asm_init_output();
+
+&comment("Don't even think of reading this code");
+&comment("It was automatically generated by $filename");
+&comment("Which is a perl program used to generate the x86 assember for");
+&comment("any of elf, a.out, BSDI,Win32, or Solaris");
+&comment("eric <eay\@cryptsoft.com>");
+&comment("");
+
+       $filename =~ s/\.pl$//;
+       &file($filename);
+       }
+
+sub asm_finish_cpp
+       {
+       return unless $cpp;
+
+       local($tmp,$i);
+       foreach $i (&get_labels())
+               {
+               $tmp.="#define $i _$i\n";
+               }
+       print <<"EOF";
+/* Run the C pre-processor over this file with one of the following defined
+ * ELF - elf object files,
+ * OUT - a.out object files,
+ * BSDI - BSDI style a.out object files
+ * SOL - Solaris style elf
+ */
+
+#define TYPE(a,b)       .type   a,b
+#define SIZE(a,b)       .size   a,b
+
+#if defined(OUT) || defined(BSDI)
+$tmp
+#endif
+
+#ifdef OUT
+#define OK     1
+#define ALIGN  4
+#endif
+
+#ifdef BSDI
+#define OK              1
+#define ALIGN           4
+#undef SIZE
+#undef TYPE
+#endif
+
+#if defined(ELF) || defined(SOL)
+#define OK              1
+#define ALIGN           16
+#endif
+
+#ifndef OK
+You need to define one of
+ELF - elf systems - linux-elf, NetBSD and DG-UX
+OUT - a.out systems - linux-a.out and FreeBSD
+SOL - solaris systems, which are elf with strange comment lines
+BSDI - a.out with a very primative version of as.
+#endif
+
+/* Let the Assembler begin :-) */
+EOF
+       }
+
+1;
diff --git a/src/libfreeswan/libcrypto/libdes/asm/perlasm/x86ms.pl b/src/libfreeswan/libcrypto/libdes/asm/perlasm/x86ms.pl
new file mode 100644 (file)
index 0000000..0681ea1
--- /dev/null
@@ -0,0 +1,345 @@
+#!/usr/bin/perl
+
+package x86ms;
+
+$label="L000";
+
+%lb=(  'eax',  'al',
+       'ebx',  'bl',
+       'ecx',  'cl',
+       'edx',  'dl',
+       'ax',   'al',
+       'bx',   'bl',
+       'cx',   'cl',
+       'dx',   'dl',
+       );
+
+%hb=(  'eax',  'ah',
+       'ebx',  'bh',
+       'ecx',  'ch',
+       'edx',  'dh',
+       'ax',   'ah',
+       'bx',   'bh',
+       'cx',   'ch',
+       'dx',   'dh',
+       );
+
+sub main'asm_init_output { @out=(); }
+sub main'asm_get_output { return(@out); }
+sub main'get_labels { return(@labels); }
+sub main'external_label { push(@labels,@_); }
+
+sub main'LB
+       {
+       (defined($lb{$_[0]})) || die "$_[0] does not have a 'low byte'\n";
+       return($lb{$_[0]});
+       }
+
+sub main'HB
+       {
+       (defined($hb{$_[0]})) || die "$_[0] does not have a 'high byte'\n";
+       return($hb{$_[0]});
+       }
+
+sub main'BP
+       {
+       &get_mem("BYTE",@_);
+       }
+
+sub main'DWP
+       {
+       &get_mem("DWORD",@_);
+       }
+
+sub main'stack_push
+       {
+       local($num)=@_;
+       $stack+=$num*4;
+       &main'sub("esp",$num*4);
+       }
+
+sub main'stack_pop
+       {
+       local($num)=@_;
+       $stack-=$num*4;
+       &main'add("esp",$num*4);
+       }
+
+sub get_mem
+       {
+       local($size,$addr,$reg1,$reg2,$idx)=@_;
+       local($t,$post);
+       local($ret)="$size PTR ";
+
+       $addr =~ s/^\s+//;
+       if ($addr =~ /^(.+)\+(.+)$/)
+               {
+               $reg2=&conv($1);
+               $addr="_$2";
+               }
+       elsif ($addr =~ /^[_a-zA-Z]/)
+               {
+               $addr="_$addr";
+               }
+
+       $reg1="$regs{$reg1}" if defined($regs{$reg1});
+       $reg2="$regs{$reg2}" if defined($regs{$reg2});
+       if (($addr ne "") && ($addr ne 0))
+               {
+               if ($addr !~ /^-/)
+                       { $ret.=$addr; }
+               else    { $post=$addr; }
+               }
+       if ($reg2 ne "")
+               {
+               $t="";
+               $t="*$idx" if ($idx != 0);
+               $reg1="+".$reg1 if ("$reg1$post" ne "");
+               $ret.="[$reg2$t$reg1$post]";
+               }
+       else
+               {
+               $ret.="[$reg1$post]"
+               }
+       return($ret);
+       }
+
+sub main'mov   { &out2("mov",@_); }
+sub main'movb  { &out2("mov",@_); }
+sub main'and   { &out2("and",@_); }
+sub main'or    { &out2("or",@_); }
+sub main'shl   { &out2("shl",@_); }
+sub main'shr   { &out2("shr",@_); }
+sub main'xor   { &out2("xor",@_); }
+sub main'xorb  { &out2("xor",@_); }
+sub main'add   { &out2("add",@_); }
+sub main'adc   { &out2("adc",@_); }
+sub main'sub   { &out2("sub",@_); }
+sub main'rotl  { &out2("rol",@_); }
+sub main'rotr  { &out2("ror",@_); }
+sub main'exch  { &out2("xchg",@_); }
+sub main'cmp   { &out2("cmp",@_); }
+sub main'lea   { &out2("lea",@_); }
+sub main'mul   { &out1("mul",@_); }
+sub main'div   { &out1("div",@_); }
+sub main'dec   { &out1("dec",@_); }
+sub main'inc   { &out1("inc",@_); }
+sub main'jmp   { &out1("jmp",@_); }
+sub main'jmp_ptr { &out1p("jmp",@_); }
+sub main'je    { &out1("je",@_); }
+sub main'jle   { &out1("jle",@_); }
+sub main'jz    { &out1("jz",@_); }
+sub main'jge   { &out1("jge",@_); }
+sub main'jl    { &out1("jl",@_); }
+sub main'jb    { &out1("jb",@_); }
+sub main'jnz   { &out1("jnz",@_); }
+sub main'jne   { &out1("jne",@_); }
+sub main'push  { &out1("push",@_); $stack+=4; }
+sub main'pop   { &out1("pop",@_); $stack-=4; }
+sub main'bswap { &out1("bswap",@_); &using486(); }
+sub main'not   { &out1("not",@_); }
+sub main'call  { &out1("call",'_'.$_[0]); }
+sub main'ret   { &out0("ret"); }
+sub main'nop   { &out0("nop"); }
+
+sub out2
+       {
+       local($name,$p1,$p2)=@_;
+       local($l,$t);
+
+       push(@out,"\t$name\t");
+       $t=&conv($p1).",";
+       $l=length($t);
+       push(@out,$t);
+       $l=4-($l+9)/8;
+       push(@out,"\t" x $l);
+       push(@out,&conv($p2));
+       push(@out,"\n");
+       }
+
+sub out0
+       {
+       local($name)=@_;
+
+       push(@out,"\t$name\n");
+       }
+
+sub out1
+       {
+       local($name,$p1)=@_;
+       local($l,$t);
+
+       push(@out,"\t$name\t".&conv($p1)."\n");
+       }
+
+sub conv
+       {
+       local($p)=@_;
+
+       $p =~ s/0x([0-9A-Fa-f]+)/0$1h/;
+       return $p;
+       }
+
+sub using486
+       {
+       return if $using486;
+       $using486++;
+       grep(s/\.386/\.486/,@out);
+       }
+
+sub main'file
+       {
+       local($file)=@_;
+
+       local($tmp)=<<"EOF";
+       TITLE   $file.asm
+        .386
+.model FLAT
+EOF
+       push(@out,$tmp);
+       }
+
+sub main'function_begin
+       {
+       local($func,$extra)=@_;
+
+       push(@labels,$func);
+
+       local($tmp)=<<"EOF";
+_TEXT  SEGMENT
+PUBLIC _$func
+$extra
+_$func PROC NEAR
+       push    ebp
+       push    ebx
+       push    esi
+       push    edi
+EOF
+       push(@out,$tmp);
+       $stack=20;
+       }
+
+sub main'function_begin_B
+       {
+       local($func,$extra)=@_;
+
+       local($tmp)=<<"EOF";
+_TEXT  SEGMENT
+PUBLIC _$func
+$extra
+_$func PROC NEAR
+EOF
+       push(@out,$tmp);
+       $stack=4;
+       }
+
+sub main'function_end
+       {
+       local($func)=@_;
+
+       local($tmp)=<<"EOF";
+       pop     edi
+       pop     esi
+       pop     ebx
+       pop     ebp
+       ret
+_$func ENDP
+_TEXT  ENDS
+EOF
+       push(@out,$tmp);
+       $stack=0;
+       %label=();
+       }
+
+sub main'function_end_B
+       {
+       local($func)=@_;
+
+       local($tmp)=<<"EOF";
+_$func ENDP
+_TEXT  ENDS
+EOF
+       push(@out,$tmp);
+       $stack=0;
+       %label=();
+       }
+
+sub main'function_end_A
+       {
+       local($func)=@_;
+
+       local($tmp)=<<"EOF";
+       pop     edi
+       pop     esi
+       pop     ebx
+       pop     ebp
+       ret
+EOF
+       push(@out,$tmp);
+       }
+
+sub main'file_end
+       {
+       push(@out,"END\n");
+       }
+
+sub main'wparam
+       {
+       local($num)=@_;
+
+       return(&main'DWP($stack+$num*4,"esp","",0));
+       }
+
+sub main'swtmp
+       {
+       return(&main'DWP($_[0]*4,"esp","",0));
+       }
+
+# Should use swtmp, which is above esp.  Linix can trash the stack above esp
+#sub main'wtmp
+#      {
+#      local($num)=@_;
+#
+#      return(&main'DWP(-(($num+1)*4),"esp","",0));
+#      }
+
+sub main'comment
+       {
+       foreach (@_)
+               {
+               push(@out,"\t; $_\n");
+               }
+       }
+
+sub main'label
+       {
+       if (!defined($label{$_[0]}))
+               {
+               $label{$_[0]}="\$${label}${_[0]}";
+               $label++;
+               }
+       return($label{$_[0]});
+       }
+
+sub main'set_label
+       {
+       if (!defined($label{$_[0]}))
+               {
+               $label{$_[0]}="${label}${_[0]}";
+               $label++;
+               }
+       push(@out,"$label{$_[0]}:\n");
+       }
+
+sub main'data_word
+       {
+       push(@out,"\tDD\t$_[0]\n");
+       }
+
+sub out1p
+       {
+       local($name,$p1)=@_;
+       local($l,$t);
+
+       push(@out,"\t$name\t ".&conv($p1)."\n");
+       }
diff --git a/src/libfreeswan/libcrypto/libdes/asm/perlasm/x86unix.pl b/src/libfreeswan/libcrypto/libdes/asm/perlasm/x86unix.pl
new file mode 100644 (file)
index 0000000..1d66122
--- /dev/null
@@ -0,0 +1,403 @@
+#!/usr/bin/perl
+
+package x86unix;
+
+$label="L000";
+
+$align=($main'aout)?"4":"16";
+$under=($main'aout)?"_":"";
+$com_start=($main'sol)?"/":"#";
+
+sub main'asm_init_output { @out=(); }
+sub main'asm_get_output { return(@out); }
+sub main'get_labels { return(@labels); }
+sub main'external_label { push(@labels,@_); }
+
+if ($main'cpp)
+       {
+       $align="ALIGN";
+       $under="";
+       $com_start='/*';
+       $com_end='*/';
+       }
+
+%lb=(  'eax',  '%al',
+       'ebx',  '%bl',
+       'ecx',  '%cl',
+       'edx',  '%dl',
+       'ax',   '%al',
+       'bx',   '%bl',
+       'cx',   '%cl',
+       'dx',   '%dl',
+       );
+
+%hb=(  'eax',  '%ah',
+       'ebx',  '%bh',
+       'ecx',  '%ch',
+       'edx',  '%dh',
+       'ax',   '%ah',
+       'bx',   '%bh',
+       'cx',   '%ch',
+       'dx',   '%dh',
+       );
+
+%regs=(        'eax',  '%eax',
+       'ebx',  '%ebx',
+       'ecx',  '%ecx',
+       'edx',  '%edx',
+       'esi',  '%esi',
+       'edi',  '%edi',
+       'ebp',  '%ebp',
+       'esp',  '%esp',
+       );
+
+%reg_val=(
+       'eax',  0x00,
+       'ebx',  0x03,
+       'ecx',  0x01,
+       'edx',  0x02,
+       'esi',  0x06,
+       'edi',  0x07,
+       'ebp',  0x05,
+       'esp',  0x04,
+       );
+
+sub main'LB
+       {
+       (defined($lb{$_[0]})) || die "$_[0] does not have a 'low byte'\n";
+       return($lb{$_[0]});
+       }
+
+sub main'HB
+       {
+       (defined($hb{$_[0]})) || die "$_[0] does not have a 'high byte'\n";
+       return($hb{$_[0]});
+       }
+
+sub main'DWP
+       {
+       local($addr,$reg1,$reg2,$idx)=@_;
+
+       $ret="";
+       $addr =~ s/(^|[+ \t])([A-Za-z_]+)($|[+ \t])/$1$under$2$3/;
+       $reg1="$regs{$reg1}" if defined($regs{$reg1});
+       $reg2="$regs{$reg2}" if defined($regs{$reg2});
+       $ret.=$addr if ($addr ne "") && ($addr ne 0);
+       if ($reg2 ne "")
+               { $ret.="($reg1,$reg2,$idx)"; }
+       else
+               { $ret.="($reg1)" }
+       return($ret);
+       }
+
+sub main'BP
+       {
+       return(&main'DWP(@_));
+       }
+
+#sub main'BP
+#      {
+#      local($addr,$reg1,$reg2,$idx)=@_;
+#
+#      $ret="";
+#
+#      $addr =~ s/(^|[+ \t])([A-Za-z_]+)($|[+ \t])/$1$under$2$3/;
+#      $reg1="$regs{$reg1}" if defined($regs{$reg1});
+#      $reg2="$regs{$reg2}" if defined($regs{$reg2});
+#      $ret.=$addr if ($addr ne "") && ($addr ne 0);
+#      if ($reg2 ne "")
+#              { $ret.="($reg1,$reg2,$idx)"; }
+#      else
+#              { $ret.="($reg1)" }
+#      return($ret);
+#      }
+
+sub main'mov   { &out2("movl",@_); }
+sub main'movb  { &out2("movb",@_); }
+sub main'and   { &out2("andl",@_); }
+sub main'or    { &out2("orl",@_); }
+sub main'shl   { &out2("sall",@_); }
+sub main'shr   { &out2("shrl",@_); }
+sub main'xor   { &out2("xorl",@_); }
+sub main'xorb  { &out2("xorb",@_); }
+sub main'add   { &out2("addl",@_); }
+sub main'adc   { &out2("adcl",@_); }
+sub main'sub   { &out2("subl",@_); }
+sub main'rotl  { &out2("roll",@_); }
+sub main'rotr  { &out2("rorl",@_); }
+sub main'exch  { &out2("xchg",@_); }
+sub main'cmp   { &out2("cmpl",@_); }
+sub main'lea   { &out2("leal",@_); }
+sub main'mul   { &out1("mull",@_); }
+sub main'div   { &out1("divl",@_); }
+sub main'jmp   { &out1("jmp",@_); }
+sub main'jmp_ptr { &out1p("jmp",@_); }
+sub main'je    { &out1("je",@_); }
+sub main'jle   { &out1("jle",@_); }
+sub main'jne   { &out1("jne",@_); }
+sub main'jnz   { &out1("jnz",@_); }
+sub main'jz    { &out1("jz",@_); }
+sub main'jge   { &out1("jge",@_); }
+sub main'jl    { &out1("jl",@_); }
+sub main'jb    { &out1("jb",@_); }
+sub main'dec   { &out1("decl",@_); }
+sub main'inc   { &out1("incl",@_); }
+sub main'push  { &out1("pushl",@_); $stack+=4; }
+sub main'pop   { &out1("popl",@_); $stack-=4; }
+sub main'bswap { &out1("bswapl",@_); }
+sub main'not   { &out1("notl",@_); }
+sub main'call  { &out1("call",$under.$_[0]); }
+sub main'ret   { &out0("ret"); }
+sub main'nop   { &out0("nop"); }
+
+sub out2
+       {
+       local($name,$p1,$p2)=@_;
+       local($l,$ll,$t);
+       local(%special)=(       "roll",0xD1C0,"rorl",0xD1C8,
+                               "rcll",0xD1D0,"rcrl",0xD1D8,
+                               "shll",0xD1E0,"shrl",0xD1E8,
+                               "sarl",0xD1F8);
+       
+       if ((defined($special{$name})) && defined($regs{$p1}) && ($p2 == 1))
+               {
+               $op=$special{$name}|$reg_val{$p1};
+               $tmp1=sprintf ".byte %d\n",($op>>8)&0xff;
+               $tmp2=sprintf ".byte %d\t",$op     &0xff;
+               push(@out,$tmp1);
+               push(@out,$tmp2);
+
+               $p2=&conv($p2);
+               $p1=&conv($p1);
+               &main'comment("$name $p2 $p1");
+               return;
+               }
+
+       push(@out,"\t$name\t");
+       $t=&conv($p2).",";
+       $l=length($t);
+       push(@out,$t);
+       $ll=4-($l+9)/8;
+       $tmp1=sprintf "\t" x $ll;
+       push(@out,$tmp1);
+       push(@out,&conv($p1)."\n");
+       }
+
+sub out1
+       {
+       local($name,$p1)=@_;
+       local($l,$t);
+
+       push(@out,"\t$name\t".&conv($p1)."\n");
+       }
+
+sub out1p
+       {
+       local($name,$p1)=@_;
+       local($l,$t);
+
+       push(@out,"\t$name\t*".&conv($p1)."\n");
+       }
+
+sub out0
+       {
+       push(@out,"\t$_[0]\n");
+       }
+
+sub conv
+       {
+       local($p)=@_;
+
+#      $p =~ s/0x([0-9A-Fa-f]+)/0$1h/;
+
+       $p=$regs{$p} if (defined($regs{$p}));
+
+       $p =~ s/^(-{0,1}[0-9A-Fa-f]+)$/\$$1/;
+       $p =~ s/^(0x[0-9A-Fa-f]+)$/\$$1/;
+       return $p;
+       }
+
+sub main'file
+       {
+       local($file)=@_;
+
+       local($tmp)=<<"EOF";
+       .file   "$file.s"
+       .version        "01.01"
+gcc2_compiled.:
+EOF
+       push(@out,$tmp);
+       }
+
+sub main'function_begin
+       {
+       local($func)=@_;
+
+       $func=$under.$func;
+
+       local($tmp)=<<"EOF";
+.text
+       .align $align
+.globl $func
+EOF
+       push(@out,$tmp);
+       if ($main'cpp)
+               { $tmp=push(@out,"\tTYPE($func,\@function)\n"); }
+       else    { $tmp=push(@out,"\t.type\t$func,\@function\n"); }
+       push(@out,"$func:\n");
+       $tmp=<<"EOF";
+       pushl   %ebp
+       pushl   %ebx
+       pushl   %esi
+       pushl   %edi
+
+EOF
+       push(@out,$tmp);
+       $stack=20;
+       }
+
+sub main'function_begin_B
+       {
+       local($func,$extra)=@_;
+
+       $func=$under.$func;
+
+       local($tmp)=<<"EOF";
+.text
+       .align $align
+.globl $func
+EOF
+       push(@out,$tmp);
+       if ($main'cpp)
+               { push(@out,"\tTYPE($func,\@function)\n"); }
+       else    { push(@out,"\t.type    $func,\@function\n"); }
+       push(@out,"$func:\n");
+       $stack=4;
+       }
+
+sub main'function_end
+       {
+       local($func)=@_;
+
+       $func=$under.$func;
+
+       local($tmp)=<<"EOF";
+       popl    %edi
+       popl    %esi
+       popl    %ebx
+       popl    %ebp
+       ret
+.${func}_end:
+EOF
+       push(@out,$tmp);
+       if ($main'cpp)
+               { push(@out,"\tSIZE($func,.${func}_end-$func)\n"); }
+       else    { push(@out,"\t.size\t$func,.${func}_end-$func\n"); }
+       push(@out,".ident       \"$func\"\n");
+       $stack=0;
+       %label=();
+       }
+
+sub main'function_end_A
+       {
+       local($func)=@_;
+
+       local($tmp)=<<"EOF";
+       popl    %edi
+       popl    %esi
+       popl    %ebx
+       popl    %ebp
+       ret
+EOF
+       push(@out,$tmp);
+       }
+
+sub main'function_end_B
+       {
+       local($func)=@_;
+
+       $func=$under.$func;
+
+       push(@out,".${func}_end:\n");
+       if ($main'cpp)
+               { push(@out,"\tSIZE($func,.${func}_end-$func)\n"); }
+       else    { push(@out,"\t.size\t$func,.${func}_end-$func\n"); }
+       push(@out,".ident       \"desasm.pl\"\n");
+       $stack=0;
+       %label=();
+       }
+
+sub main'wparam
+       {
+       local($num)=@_;
+
+       return(&main'DWP($stack+$num*4,"esp","",0));
+       }
+
+sub main'stack_push
+       {
+       local($num)=@_;
+       $stack+=$num*4;
+       &main'sub("esp",$num*4);
+       }
+
+sub main'stack_pop
+       {
+       local($num)=@_;
+       $stack-=$num*4;
+       &main'add("esp",$num*4);
+       }
+
+sub main'swtmp
+       {
+       return(&main'DWP($_[0]*4,"esp","",0));
+       }
+
+# Should use swtmp, which is above esp.  Linix can trash the stack above esp
+#sub main'wtmp
+#      {
+#      local($num)=@_;
+#
+#      return(&main'DWP(-($num+1)*4,"esp","",0));
+#      }
+
+sub main'comment
+       {
+       foreach (@_)
+               {
+               if (/^\s*$/)
+                       { push(@out,"\n"); }
+               else
+                       { push(@out,"\t$com_start $_ $com_end\n"); }
+               }
+       }
+
+sub main'label
+       {
+       if (!defined($label{$_[0]}))
+               {
+               $label{$_[0]}=".${label}${_[0]}";
+               $label++;
+               }
+       return($label{$_[0]});
+       }
+
+sub main'set_label
+       {
+       if (!defined($label{$_[0]}))
+               {
+               $label{$_[0]}=".${label}${_[0]}";
+               $label++;
+               }
+       push(@out,".align $align\n") if ($_[1] != 0);
+       push(@out,"$label{$_[0]}:\n");
+       }
+
+sub main'file_end
+       {
+       }
+
+sub main'data_word
+       {
+       push(@out,"\t.long $_[0]\n");
+       }
diff --git a/src/libfreeswan/libcrypto/libdes/asm/readme b/src/libfreeswan/libcrypto/libdes/asm/readme
new file mode 100644 (file)
index 0000000..f8529d9
--- /dev/null
@@ -0,0 +1,131 @@
+First up, let me say I don't like writing in assembler.  It is not portable,
+dependant on the particular CPU architecture release and is generally a pig
+to debug and get right.  Having said that, the x86 architecture is probably
+the most important for speed due to number of boxes and since
+it appears to be the worst architecture to to get
+good C compilers for.  So due to this, I have lowered myself to do
+assembler for the inner DES routines in libdes :-).
+
+The file to implement in assembler is des_enc.c.  Replace the following
+4 functions
+des_encrypt(DES_LONG data[2],des_key_schedule ks, int encrypt);
+des_encrypt2(DES_LONG data[2],des_key_schedule ks, int encrypt);
+des_encrypt3(DES_LONG data[2],des_key_schedule ks1,ks2,ks3);
+des_decrypt3(DES_LONG data[2],des_key_schedule ks1,ks2,ks3);
+
+They encrypt/decrypt the 64 bits held in 'data' using
+the 'ks' key schedules.   The only difference between the 4 functions is that
+des_encrypt2() does not perform IP() or FP() on the data (this is an
+optimization for when doing triple DES and des_encrypt3() and des_decrypt3()
+perform triple des.  The triple DES routines are in here because it does
+make a big difference to have them located near the des_encrypt2 function
+at link time..
+
+Now as we all know, there are lots of different operating systems running on
+x86 boxes, and unfortunately they normally try to make sure their assembler
+formating is not the same as the other peoples.
+The 4 main formats I know of are
+Microsoft      Windows 95/Windows NT
+Elf            Includes Linux and FreeBSD(?).
+a.out          The older Linux.
+Solaris                Same as Elf but different comments :-(.
+
+Now I was not overly keen to write 4 different copies of the same code,
+so I wrote a few perl routines to output the correct assembler, given
+a target assembler type.  This code is ugly and is just a hack.
+The libraries are x86unix.pl and x86ms.pl.
+des586.pl, des686.pl and des-som[23].pl are the programs to actually
+generate the assembler.
+
+So to generate elf assembler
+perl des-som3.pl elf >dx86-elf.s
+For Windows 95/NT
+perl des-som2.pl win32 >win32.asm
+
+[ update 4 Jan 1996 ]
+I have added another way to do things.
+perl des-som3.pl cpp >dx86-cpp.s
+generates a file that will be included by dx86unix.cpp when it is compiled.
+To build for elf, a.out, solaris, bsdi etc,
+cc -E -DELF asm/dx86unix.cpp | as -o asm/dx86-elf.o
+cc -E -DSOL asm/dx86unix.cpp | as -o asm/dx86-sol.o
+cc -E -DOUT asm/dx86unix.cpp | as -o asm/dx86-out.o
+cc -E -DBSDI asm/dx86unix.cpp | as -o asm/dx86bsdi.o
+This was done to cut down the number of files in the distribution.
+
+Now the ugly part.  I acquired my copy of Intels
+"Optimization's For Intel's 32-Bit Processors" and found a few interesting
+things.  First, the aim of the exersize is to 'extract' one byte at a time
+from a word and do an array lookup.  This involves getting the byte from
+the 4 locations in the word and moving it to a new word and doing the lookup.
+The most obvious way to do this is
+xor    eax,    eax                             # clear word
+movb   al,     cl                              # get low byte
+xor    edi     DWORD PTR 0x100+des_SP[eax]     # xor in word
+movb   al,     ch                              # get next byte
+xor    edi     DWORD PTR 0x300+des_SP[eax]     # xor in word
+shr    ecx     16
+which seems ok.  For the pentium, this system appears to be the best.
+One has to do instruction interleaving to keep both functional units
+operating, but it is basically very efficient.
+
+Now the crunch.  When a full register is used after a partial write, eg.
+mov    al,     cl
+xor    edi,    DWORD PTR 0x100+des_SP[eax]
+386    - 1 cycle stall
+486    - 1 cycle stall
+586    - 0 cycle stall
+686    - at least 7 cycle stall (page 22 of the above mentioned document).
+
+So the technique that produces the best results on a pentium, according to
+the documentation, will produce hideous results on a pentium pro.
+
+To get around this, des686.pl will generate code that is not as fast on
+a pentium, should be very good on a pentium pro.
+mov    eax,    ecx                             # copy word 
+shr    ecx,    8                               # line up next byte
+and    eax,    0fch                            # mask byte
+xor    edi     DWORD PTR 0x100+des_SP[eax]     # xor in array lookup
+mov    eax,    ecx                             # get word
+shr    ecx     8                               # line up next byte
+and    eax,    0fch                            # mask byte
+xor    edi     DWORD PTR 0x300+des_SP[eax]     # xor in array lookup
+
+Due to the execution units in the pentium, this actually works quite well.
+For a pentium pro it should be very good.  This is the type of output
+Visual C++ generates.
+
+There is a third option.  instead of using
+mov    al,     ch
+which is bad on the pentium pro, one may be able to use
+movzx  eax,    ch
+which may not incur the partial write penalty.  On the pentium,
+this instruction takes 4 cycles so is not worth using but on the
+pentium pro it appears it may be worth while.  I need access to one to
+experiment :-).
+
+eric (20 Oct 1996)
+
+22 Nov 1996 - I have asked people to run the 2 different version on pentium
+pros and it appears that the intel documentation is wrong.  The
+mov al,bh is still faster on a pentium pro, so just use the des586.pl
+install des686.pl
+
+3 Dec 1996 - I added des_encrypt3/des_decrypt3 because I have moved these
+functions into des_enc.c because it does make a massive performance
+difference on some boxes to have the functions code located close to
+the des_encrypt2() function.
+
+9 Jan 1997 - des-som2.pl is now the correct perl script to use for
+pentiums.  It contains an inner loop from
+Svend Olaf Mikkelsen <svolaf@inet.uni-c.dk> which does raw ecb DES calls at
+273,000 per second.  He had a previous version at 250,000 and the best
+I was able to get was 203,000.  The content has not changed, this is all
+due to instruction sequencing (and actual instructions choice) which is able
+to keep both functional units of the pentium going.
+We may have lost the ugly register usage restrictions when x86 went 32 bit
+but for the pentium it has been replaced by evil instruction ordering tricks.
+
+13 Jan 1997 - des-som3.pl, more optimizations from Svend Olaf.
+raw DES at 281,000 per second on a pentium 100.
+
diff --git a/src/libfreeswan/libcrypto/libdes/cbc_enc.c b/src/libfreeswan/libcrypto/libdes/cbc_enc.c
new file mode 100644 (file)
index 0000000..a06f9f9
--- /dev/null
@@ -0,0 +1,135 @@
+/* crypto/des/cbc_enc.c */
+/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+
+#include "des_locl.h"
+
+void des_cbc_encrypt(input, output, length, schedule, ivec, enc)
+des_cblock (*input);
+des_cblock (*output);
+long length;
+des_key_schedule schedule;
+des_cblock (*ivec);
+int enc;
+       {
+       register DES_LONG tin0,tin1;
+       register DES_LONG tout0,tout1,xor0,xor1;
+       register unsigned char *in,*out;
+       register long l=length;
+       DES_LONG tin[2];
+       unsigned char *iv;
+
+       in=(unsigned char *)input;
+       out=(unsigned char *)output;
+       iv=(unsigned char *)ivec;
+
+       if (enc)
+               {
+               c2l(iv,tout0);
+               c2l(iv,tout1);
+               for (l-=8; l>=0; l-=8)
+                       {
+                       c2l(in,tin0);
+                       c2l(in,tin1);
+                       tin0^=tout0; tin[0]=tin0;
+                       tin1^=tout1; tin[1]=tin1;
+                       des_encrypt((DES_LONG *)tin,schedule,DES_ENCRYPT);
+                       tout0=tin[0]; l2c(tout0,out);
+                       tout1=tin[1]; l2c(tout1,out);
+                       }
+               if (l != -8)
+                       {
+                       c2ln(in,tin0,tin1,l+8);
+                       tin0^=tout0; tin[0]=tin0;
+                       tin1^=tout1; tin[1]=tin1;
+                       des_encrypt((DES_LONG *)tin,schedule,DES_ENCRYPT);
+                       tout0=tin[0]; l2c(tout0,out);
+                       tout1=tin[1]; l2c(tout1,out);
+                       }
+               }
+       else
+               {
+               c2l(iv,xor0);
+               c2l(iv,xor1);
+               for (l-=8; l>=0; l-=8)
+                       {
+                       c2l(in,tin0); tin[0]=tin0;
+                       c2l(in,tin1); tin[1]=tin1;
+                       des_encrypt((DES_LONG *)tin,schedule,DES_DECRYPT);
+                       tout0=tin[0]^xor0;
+                       tout1=tin[1]^xor1;
+                       l2c(tout0,out);
+                       l2c(tout1,out);
+                       xor0=tin0;
+                       xor1=tin1;
+                       }
+               if (l != -8)
+                       {
+                       c2l(in,tin0); tin[0]=tin0;
+                       c2l(in,tin1); tin[1]=tin1;
+                       des_encrypt((DES_LONG *)tin,schedule,DES_DECRYPT);
+                       tout0=tin[0]^xor0;
+                       tout1=tin[1]^xor1;
+                       l2cn(tout0,tout1,out,l+8);
+               /*      xor0=tin0;
+                       xor1=tin1; */
+                       }
+               }
+       tin0=tin1=tout0=tout1=xor0=xor1=0;
+       tin[0]=tin[1]=0;
+       }
+
diff --git a/src/libfreeswan/libcrypto/libdes/des.doc b/src/libfreeswan/libcrypto/libdes/des.doc
new file mode 100644 (file)
index 0000000..1e30158
--- /dev/null
@@ -0,0 +1,505 @@
+The DES library.
+
+Please note that this library was originally written to operate with
+eBones, a version of Kerberos that had had encryption removed when it left
+the USA and then put back in.  As such there are some routines that I will
+advise not using but they are still in the library for historical reasons.
+For all calls that have an 'input' and 'output' variables, they can be the
+same.
+
+This library requires the inclusion of 'des.h'.
+
+All of the encryption functions take what is called a des_key_schedule as an 
+argument.  A des_key_schedule is an expanded form of the des key.
+A des_key is 8 bytes of odd parity, the type used to hold the key is a
+des_cblock.  A des_cblock is an array of 8 bytes, often in this library
+description I will refer to input bytes when the function specifies
+des_cblock's as input or output, this just means that the variable should
+be a multiple of 8 bytes.
+
+The define DES_ENCRYPT is passed to specify encryption, DES_DECRYPT to
+specify decryption.  The functions and global variable are as follows:
+
+int des_check_key;
+       DES keys are supposed to be odd parity.  If this variable is set to
+       a non-zero value, des_set_key() will check that the key has odd
+       parity and is not one of the known weak DES keys.  By default this
+       variable is turned off;
+       
+void des_set_odd_parity(
+des_cblock *key );
+       This function takes a DES key (8 bytes) and sets the parity to odd.
+       
+int des_is_weak_key(
+des_cblock *key );
+       This function returns a non-zero value if the DES key passed is a
+       weak, DES key.  If it is a weak key, don't use it, try a different
+       one.  If you are using 'random' keys, the chances of hitting a weak
+       key are 1/2^52 so it is probably not worth checking for them.
+       
+int des_set_key(
+des_cblock *key,
+des_key_schedule schedule);
+       Des_set_key converts an 8 byte DES key into a des_key_schedule.
+       A des_key_schedule is an expanded form of the key which is used to
+       perform actual encryption.  It can be regenerated from the DES key
+       so it only needs to be kept when encryption or decryption is about
+       to occur.  Don't save or pass around des_key_schedule's since they
+       are CPU architecture dependent, DES keys are not.  If des_check_key
+       is non zero, zero is returned if the key has the wrong parity or
+       the key is a weak key, else 1 is returned.
+       
+int des_key_sched(
+des_cblock *key,
+des_key_schedule schedule);
+       An alternative name for des_set_key().
+
+int des_rw_mode;               /* defaults to DES_PCBC_MODE */
+       This flag holds either DES_CBC_MODE or DES_PCBC_MODE (default).
+       This specifies the function to use in the enc_read() and enc_write()
+       functions.
+
+void des_encrypt(
+unsigned long *data,
+des_key_schedule ks,
+int enc);
+       This is the DES encryption function that gets called by just about
+       every other DES routine in the library.  You should not use this
+       function except to implement 'modes' of DES.  I say this because the
+       functions that call this routine do the conversion from 'char *' to
+       long, and this needs to be done to make sure 'non-aligned' memory
+       access do not occur.  The characters are loaded 'little endian',
+       have a look at my source code for more details on how I use this
+       function.
+       Data is a pointer to 2 unsigned long's and ks is the
+       des_key_schedule to use.  enc, is non zero specifies encryption,
+       zero if decryption.
+
+void des_encrypt2(
+unsigned long *data,
+des_key_schedule ks,
+int enc);
+       This functions is the same as des_encrypt() except that the DES
+       initial permutation (IP) and final permutation (FP) have been left
+       out.  As for des_encrypt(), you should not use this function.
+       It is used by the routines in my library that implement triple DES.
+       IP() des_encrypt2() des_encrypt2() des_encrypt2() FP() is the same
+       as des_encrypt() des_encrypt() des_encrypt() except faster :-).
+
+void des_ecb_encrypt(
+des_cblock *input,
+des_cblock *output,
+des_key_schedule ks,
+int enc);
+       This is the basic Electronic Code Book form of DES, the most basic
+       form.  Input is encrypted into output using the key represented by
+       ks.  If enc is non zero (DES_ENCRYPT), encryption occurs, otherwise
+       decryption occurs.  Input is 8 bytes long and output is 8 bytes.
+       (the des_cblock structure is 8 chars).
+       
+void des_ecb3_encrypt(
+des_cblock *input,
+des_cblock *output,
+des_key_schedule ks1,
+des_key_schedule ks2,
+des_key_schedule ks3,
+int enc);
+       This is the 3 key EDE mode of ECB DES.  What this means is that 
+       the 8 bytes of input is encrypted with ks1, decrypted with ks2 and
+       then encrypted again with ks3, before being put into output;
+       C=E(ks3,D(ks2,E(ks1,M))).  There is a macro, des_ecb2_encrypt()
+       that only takes 2 des_key_schedules that implements,
+       C=E(ks1,D(ks2,E(ks1,M))) in that the final encrypt is done with ks1.
+       
+void des_cbc_encrypt(
+des_cblock *input,
+des_cblock *output,
+long length,
+des_key_schedule ks,
+des_cblock *ivec,
+int enc);
+       This routine implements DES in Cipher Block Chaining mode.
+       Input, which should be a multiple of 8 bytes is encrypted
+       (or decrypted) to output which will also be a multiple of 8 bytes.
+       The number of bytes is in length (and from what I've said above,
+       should be a multiple of 8).  If length is not a multiple of 8, I'm
+       not being held responsible :-).  ivec is the initialisation vector.
+       This function does not modify this variable.  To correctly implement
+       cbc mode, you need to do one of 2 things; copy the last 8 bytes of
+       cipher text for use as the next ivec in your application,
+       or use des_ncbc_encrypt(). 
+       Only this routine has this problem with updating the ivec, all
+       other routines that are implementing cbc mode update ivec.
+       
+void des_ncbc_encrypt(
+des_cblock *input,
+des_cblock *output,
+long length,
+des_key_schedule sk,
+des_cblock *ivec,
+int enc);
+       For historical reasons, des_cbc_encrypt() did not update the
+       ivec with the value requires so that subsequent calls to
+       des_cbc_encrypt() would 'chain'.  This was needed so that the same
+       'length' values would not need to be used when decrypting.
+       des_ncbc_encrypt() does the right thing.  It is the same as
+       des_cbc_encrypt accept that ivec is updates with the correct value
+       to pass in subsequent calls to des_ncbc_encrypt().  I advise using
+       des_ncbc_encrypt() instead of des_cbc_encrypt();
+
+void des_xcbc_encrypt(
+des_cblock *input,
+des_cblock *output,
+long length,
+des_key_schedule sk,
+des_cblock *ivec,
+des_cblock *inw,
+des_cblock *outw,
+int enc);
+       This is RSA's DESX mode of DES.  It uses inw and outw to
+       'whiten' the encryption.  inw and outw are secret (unlike the iv)
+       and are as such, part of the key.  So the key is sort of 24 bytes.
+       This is much better than cbc des.
+       
+void des_3cbc_encrypt(
+des_cblock *input,
+des_cblock *output,
+long length,
+des_key_schedule sk1,
+des_key_schedule sk2,
+des_cblock *ivec1,
+des_cblock *ivec2,
+int enc);
+       This function is flawed, do not use it.  I have left it in the
+       library because it is used in my des(1) program and will function
+       correctly when used by des(1).  If I removed the function, people
+       could end up unable to decrypt files.
+       This routine implements outer triple cbc encryption using 2 ks and
+       2 ivec's.  Use des_ede2_cbc_encrypt() instead.
+       
+void des_ede3_cbc_encrypt(
+des_cblock *input,
+des_cblock *output, 
+long length,
+des_key_schedule ks1,
+des_key_schedule ks2, 
+des_key_schedule ks3, 
+des_cblock *ivec,
+int enc);
+       This function implements inner triple CBC DES encryption with 3
+       keys.  What this means is that each 'DES' operation
+       inside the cbc mode is really an C=E(ks3,D(ks2,E(ks1,M))).
+       Again, this is cbc mode so an ivec is requires.
+       This mode is used by SSL.
+       There is also a des_ede2_cbc_encrypt() that only uses 2
+       des_key_schedule's, the first being reused for the final
+       encryption.  C=E(ks1,D(ks2,E(ks1,M))).  This form of triple DES
+       is used by the RSAref library.
+       
+void des_pcbc_encrypt(
+des_cblock *input,
+des_cblock *output,
+long length,
+des_key_schedule ks,
+des_cblock *ivec,
+int enc);
+       This is Propagating Cipher Block Chaining mode of DES.  It is used
+       by Kerberos v4.  It's parameters are the same as des_ncbc_encrypt().
+       
+void des_cfb_encrypt(
+unsigned char *in,
+unsigned char *out,
+int numbits,
+long length,
+des_key_schedule ks,
+des_cblock *ivec,
+int enc);
+       Cipher Feedback Back mode of DES.  This implementation 'feeds back'
+       in numbit blocks.  The input (and output) is in multiples of numbits
+       bits.  numbits should to be a multiple of 8 bits.  Length is the
+       number of bytes input.  If numbits is not a multiple of 8 bits,
+       the extra bits in the bytes will be considered padding.  So if
+       numbits is 12, for each 2 input bytes, the 4 high bits of the
+       second byte will be ignored.  So to encode 72 bits when using
+       a numbits of 12 take 12 bytes.  To encode 72 bits when using
+       numbits of 9 will take 16 bytes.  To encode 80 bits when using
+       numbits of 16 will take 10 bytes. etc, etc.  This padding will
+       apply to both input and output.
+
+       
+void des_cfb64_encrypt(
+unsigned char *in,
+unsigned char *out,
+long length,
+des_key_schedule ks,
+des_cblock *ivec,
+int *num,
+int enc);
+       This is one of the more useful functions in this DES library, it
+       implements CFB mode of DES with 64bit feedback.  Why is this
+       useful you ask?  Because this routine will allow you to encrypt an
+       arbitrary number of bytes, no 8 byte padding.  Each call to this
+       routine will encrypt the input bytes to output and then update ivec
+       and num.  num contains 'how far' we are though ivec.  If this does
+       not make much sense, read more about cfb mode of DES :-).
+       
+void des_ede3_cfb64_encrypt(
+unsigned char *in,
+unsigned char *out,
+long length,
+des_key_schedule ks1,
+des_key_schedule ks2,
+des_key_schedule ks3,
+des_cblock *ivec,
+int *num,
+int enc);
+       Same as des_cfb64_encrypt() accept that the DES operation is
+       triple DES.  As usual, there is a macro for
+       des_ede2_cfb64_encrypt() which reuses ks1.
+
+void des_ofb_encrypt(
+unsigned char *in,
+unsigned char *out,
+int numbits,
+long length,
+des_key_schedule ks,
+des_cblock *ivec);
+       This is a implementation of Output Feed Back mode of DES.  It is
+       the same as des_cfb_encrypt() in that numbits is the size of the
+       units dealt with during input and output (in bits).
+       
+void des_ofb64_encrypt(
+unsigned char *in,
+unsigned char *out,
+long length,
+des_key_schedule ks,
+des_cblock *ivec,
+int *num);
+       The same as des_cfb64_encrypt() except that it is Output Feed Back
+       mode.
+
+void des_ede3_ofb64_encrypt(
+unsigned char *in,
+unsigned char *out,
+long length,
+des_key_schedule ks1,
+des_key_schedule ks2,
+des_key_schedule ks3,
+des_cblock *ivec,
+int *num);
+       Same as des_ofb64_encrypt() accept that the DES operation is
+       triple DES.  As usual, there is a macro for
+       des_ede2_ofb64_encrypt() which reuses ks1.
+
+int des_read_pw_string(
+char *buf,
+int length,
+char *prompt,
+int verify);
+       This routine is used to get a password from the terminal with echo
+       turned off.  Buf is where the string will end up and length is the
+       size of buf.  Prompt is a string presented to the 'user' and if
+       verify is set, the key is asked for twice and unless the 2 copies
+       match, an error is returned.  A return code of -1 indicates a
+       system error, 1 failure due to use interaction, and 0 is success.
+
+unsigned long des_cbc_cksum(
+des_cblock *input,
+des_cblock *output,
+long length,
+des_key_schedule ks,
+des_cblock *ivec);
+       This function produces an 8 byte checksum from input that it puts in
+       output and returns the last 4 bytes as a long.  The checksum is
+       generated via cbc mode of DES in which only the last 8 byes are
+       kept.  I would recommend not using this function but instead using
+       the EVP_Digest routines, or at least using MD5 or SHA.  This
+       function is used by Kerberos v4 so that is why it stays in the
+       library.
+       
+char *des_fcrypt(
+const char *buf,
+const char *salt
+char *ret);
+       This is my fast version of the unix crypt(3) function.  This version
+       takes only a small amount of space relative to other fast
+       crypt() implementations.  This is different to the normal crypt
+       in that the third parameter is the buffer that the return value
+       is written into.  It needs to be at least 14 bytes long.  This
+       function is thread safe, unlike the normal crypt.
+
+char *crypt(
+const char *buf,
+const char *salt);
+       This function calls des_fcrypt() with a static array passed as the
+       third parameter.  This emulates the normal non-thread safe semantics
+       of crypt(3).
+
+void des_string_to_key(
+char *str,
+des_cblock *key);
+       This function takes str and converts it into a DES key.  I would
+       recommend using MD5 instead and use the first 8 bytes of output.
+       When I wrote the first version of these routines back in 1990, MD5
+       did not exist but I feel these routines are still sound.  This
+       routines is compatible with the one in MIT's libdes.
+       
+void des_string_to_2keys(
+char *str,
+des_cblock *key1,
+des_cblock *key2);
+       This function takes str and converts it into 2 DES keys.
+       I would recommend using MD5 and using the 16 bytes as the 2 keys.
+       I have nothing against these 2 'string_to_key' routines, it's just
+       that if you say that your encryption key is generated by using the
+       16 bytes of an MD5 hash, every-one knows how you generated your
+       keys.
+
+int des_read_password(
+des_cblock *key,
+char *prompt,
+int verify);
+       This routine combines des_read_pw_string() with des_string_to_key().
+
+int des_read_2passwords(
+des_cblock *key1,
+des_cblock *key2,
+char *prompt,
+int verify);
+       This routine combines des_read_pw_string() with des_string_to_2key().
+
+void des_random_seed(
+des_cblock key);
+       This routine sets a starting point for des_random_key().
+       
+void des_random_key(
+des_cblock ret);
+       This function return a random key.  Make sure to 'seed' the random
+       number generator (with des_random_seed()) before using this function.
+       I personally now use a MD5 based random number system.
+
+int des_enc_read(
+int fd,
+char *buf,
+int len,
+des_key_schedule ks,
+des_cblock *iv);
+       This function will write to a file descriptor the encrypted data
+       from buf.  This data will be preceded by a 4 byte 'byte count' and
+       will be padded out to 8 bytes.  The encryption is either CBC of
+       PCBC depending on the value of des_rw_mode.  If it is DES_PCBC_MODE,
+       pcbc is used, if DES_CBC_MODE, cbc is used.  The default is to use
+       DES_PCBC_MODE.
+
+int des_enc_write(
+int fd,
+char *buf,
+int len,
+des_key_schedule ks,
+des_cblock *iv);
+       This routines read stuff written by des_enc_read() and decrypts it.
+       I have used these routines quite a lot but I don't believe they are
+       suitable for non-blocking io.  If you are after a full
+       authentication/encryption over networks, have a look at SSL instead.
+
+unsigned long des_quad_cksum(
+des_cblock *input,
+des_cblock *output,
+long length,
+int out_count,
+des_cblock *seed);
+       This is a function from Kerberos v4 that is not anything to do with
+       DES but was needed.  It is a cksum that is quicker to generate than
+       des_cbc_cksum();  I personally would use MD5 routines now.
+=====
+Modes of DES
+Quite a bit of the following information has been taken from
+       AS 2805.5.2
+       Australian Standard
+       Electronic funds transfer - Requirements for interfaces,
+       Part 5.2: Modes of operation for an n-bit block cipher algorithm
+       Appendix A
+
+There are several different modes in which DES can be used, they are
+as follows.
+
+Electronic Codebook Mode (ECB) (des_ecb_encrypt())
+- 64 bits are enciphered at a time.
+- The order of the blocks can be rearranged without detection.
+- The same plaintext block always produces the same ciphertext block
+  (for the same key) making it vulnerable to a 'dictionary attack'.
+- An error will only affect one ciphertext block.
+
+Cipher Block Chaining Mode (CBC) (des_cbc_encrypt())
+- a multiple of 64 bits are enciphered at a time.
+- The CBC mode produces the same ciphertext whenever the same
+  plaintext is encrypted using the same key and starting variable.
+- The chaining operation makes the ciphertext blocks dependent on the
+  current and all preceding plaintext blocks and therefore blocks can not
+  be rearranged.
+- The use of different starting variables prevents the same plaintext
+  enciphering to the same ciphertext.
+- An error will affect the current and the following ciphertext blocks.
+
+Cipher Feedback Mode (CFB) (des_cfb_encrypt())
+- a number of bits (j) <= 64 are enciphered at a time.
+- The CFB mode produces the same ciphertext whenever the same
+  plaintext is encrypted using the same key and starting variable.
+- The chaining operation makes the ciphertext variables dependent on the
+  current and all preceding variables and therefore j-bit variables are
+  chained together and can not be rearranged.
+- The use of different starting variables prevents the same plaintext
+  enciphering to the same ciphertext.
+- The strength of the CFB mode depends on the size of k (maximal if
+  j == k).  In my implementation this is always the case.
+- Selection of a small value for j will require more cycles through
+  the encipherment algorithm per unit of plaintext and thus cause
+  greater processing overheads.
+- Only multiples of j bits can be enciphered.
+- An error will affect the current and the following ciphertext variables.
+
+Output Feedback Mode (OFB) (des_ofb_encrypt())
+- a number of bits (j) <= 64 are enciphered at a time.
+- The OFB mode produces the same ciphertext whenever the same
+  plaintext enciphered using the same key and starting variable.  More
+  over, in the OFB mode the same key stream is produced when the same
+  key and start variable are used.  Consequently, for security reasons
+  a specific start variable should be used only once for a given key.
+- The absence of chaining makes the OFB more vulnerable to specific attacks.
+- The use of different start variables values prevents the same
+  plaintext enciphering to the same ciphertext, by producing different
+  key streams.
+- Selection of a small value for j will require more cycles through
+  the encipherment algorithm per unit of plaintext and thus cause
+  greater processing overheads.
+- Only multiples of j bits can be enciphered.
+- OFB mode of operation does not extend ciphertext errors in the
+  resultant plaintext output.  Every bit error in the ciphertext causes
+  only one bit to be in error in the deciphered plaintext.
+- OFB mode is not self-synchronising.  If the two operation of
+  encipherment and decipherment get out of synchronism, the system needs
+  to be re-initialised.
+- Each re-initialisation should use a value of the start variable
+ different from the start variable values used before with the same
+ key.  The reason for this is that an identical bit stream would be
+ produced each time from the same parameters.  This would be
+ susceptible to a ' known plaintext' attack.
+
+Triple ECB Mode (des_ecb3_encrypt())
+- Encrypt with key1, decrypt with key2 and encrypt with key3 again.
+- As for ECB encryption but increases the key length to 168 bits.
+  There are theoretic attacks that can be used that make the effective
+  key length 112 bits, but this attack also requires 2^56 blocks of
+  memory, not very likely, even for the NSA.
+- If both keys are the same it is equivalent to encrypting once with
+  just one key.
+- If the first and last key are the same, the key length is 112 bits.
+  There are attacks that could reduce the key space to 55 bit's but it
+  requires 2^56 blocks of memory.
+- If all 3 keys are the same, this is effectively the same as normal
+  ecb mode.
+
+Triple CBC Mode (des_ede3_cbc_encrypt())
+- Encrypt with key1, decrypt with key2 and then encrypt with key3.
+- As for CBC encryption but increases the key length to 168 bits with
+  the same restrictions as for triple ecb mode.
diff --git a/src/libfreeswan/libcrypto/libdes/des.h b/src/libfreeswan/libcrypto/libdes/des.h
new file mode 100644 (file)
index 0000000..baddf86
--- /dev/null
@@ -0,0 +1,308 @@
+/* crypto/des/des.org */
+/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+
+/* WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING 
+ *
+ * Always modify des.org since des.h is automatically generated from
+ * it during SSLeay configuration.
+ *
+ * WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING
+ */
+
+#ifndef HEADER_DES_H
+#define HEADER_DES_H
+
+#ifdef  __cplusplus
+extern "C" {
+#endif
+
+
+/* If this is set to 'unsigned int' on a DEC Alpha, this gives about a
+ * %20 speed up (longs are 8 bytes, int's are 4). */
+/* Must be unsigned int on ia64/Itanium or DES breaks badly */
+
+#ifdef __KERNEL__
+#include <linux/types.h>
+#else
+#include <sys/types.h>
+#endif
+
+#ifndef DES_LONG
+#define DES_LONG u_int32_t
+#endif
+
+typedef unsigned char des_cblock[8];
+typedef struct des_ks_struct
+       {
+       union   {
+               des_cblock _;
+               /* make sure things are correct size on machines with
+                * 8 byte longs */
+               DES_LONG pad[2];
+               } ks;
+#undef _
+#define _      ks._
+       } des_key_schedule[16];
+
+#define DES_KEY_SZ     (sizeof(des_cblock))
+#define DES_SCHEDULE_SZ (sizeof(des_key_schedule))
+
+#define DES_ENCRYPT    1
+#define DES_DECRYPT    0
+
+#define DES_CBC_MODE   0
+#define DES_PCBC_MODE  1
+
+#define des_ecb2_encrypt(i,o,k1,k2,e) \
+       des_ecb3_encrypt((i),(o),(k1),(k2),(k1),(e))
+
+#define des_ede2_cbc_encrypt(i,o,l,k1,k2,iv,e) \
+       des_ede3_cbc_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(e))
+
+#define des_ede2_cfb64_encrypt(i,o,l,k1,k2,iv,n,e) \
+       des_ede3_cfb64_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(n),(e))
+
+#define des_ede2_ofb64_encrypt(i,o,l,k1,k2,iv,n) \
+       des_ede3_ofb64_encrypt((i),(o),(l),(k1),(k2),(k1),(iv),(n))
+
+#define C_Block des_cblock
+#define Key_schedule des_key_schedule
+#ifdef KERBEROS
+#define ENCRYPT DES_ENCRYPT
+#define DECRYPT DES_DECRYPT
+#endif
+#define KEY_SZ DES_KEY_SZ
+#define string_to_key des_string_to_key
+#define read_pw_string des_read_pw_string
+#define random_key des_random_key
+#define pcbc_encrypt des_pcbc_encrypt
+#define set_key des_set_key
+#define key_sched des_key_sched
+#define ecb_encrypt des_ecb_encrypt
+#define cbc_encrypt des_cbc_encrypt
+#define ncbc_encrypt des_ncbc_encrypt
+#define xcbc_encrypt des_xcbc_encrypt
+#define cbc_cksum des_cbc_cksum
+#define quad_cksum des_quad_cksum
+
+/* For compatibility with the MIT lib - eay 20/05/92 */
+typedef des_key_schedule bit_64;
+#define des_fixup_key_parity des_set_odd_parity
+#define des_check_key_parity check_parity
+
+extern int des_check_key;      /* defaults to false */
+extern int des_rw_mode;                /* defaults to DES_PCBC_MODE */
+
+/* The next line is used to disable full ANSI prototypes, if your
+ * compiler has problems with the prototypes, make sure this line always
+ * evaluates to true :-) */
+#if defined(MSDOS) || defined(__STDC__)
+#undef NOPROTO
+#endif
+#ifndef NOPROTO
+char *des_options(void);
+void des_ecb3_encrypt(des_cblock *input,des_cblock *output,
+       des_key_schedule ks1,des_key_schedule ks2,
+       des_key_schedule ks3, int enc);
+DES_LONG des_cbc_cksum(des_cblock *input,des_cblock *output,
+       long length,des_key_schedule schedule,des_cblock *ivec);
+void des_cbc_encrypt(des_cblock *input,des_cblock *output,long length,
+       des_key_schedule schedule,des_cblock *ivec,int enc);
+void des_ncbc_encrypt(des_cblock *input,des_cblock *output,long length,
+       des_key_schedule schedule,des_cblock *ivec,int enc);
+void des_xcbc_encrypt(des_cblock *input,des_cblock *output,long length,
+       des_key_schedule schedule,des_cblock *ivec,
+       des_cblock *inw,des_cblock *outw,int enc);
+void des_cfb_encrypt(unsigned char *in,unsigned char *out,int numbits,
+       long length,des_key_schedule schedule,des_cblock *ivec,int enc);
+void des_ecb_encrypt(des_cblock *input,des_cblock *output,
+       des_key_schedule ks,int enc);
+void des_encrypt(DES_LONG *data,des_key_schedule ks, int enc);
+void des_encrypt2(DES_LONG *data,des_key_schedule ks, int enc);
+void des_encrypt3(DES_LONG *data, des_key_schedule ks1,
+       des_key_schedule ks2, des_key_schedule ks3);
+void des_decrypt3(DES_LONG *data, des_key_schedule ks1,
+       des_key_schedule ks2, des_key_schedule ks3);
+void des_ede3_cbc_encrypt(des_cblock *input, des_cblock *output, 
+       long length, des_key_schedule ks1, des_key_schedule ks2, 
+       des_key_schedule ks3, des_cblock *ivec, int enc);
+void des_ede3_cfb64_encrypt(unsigned char *in, unsigned char *out,
+       long length, des_key_schedule ks1, des_key_schedule ks2,
+       des_key_schedule ks3, des_cblock *ivec, int *num, int enc);
+void des_ede3_ofb64_encrypt(unsigned char *in, unsigned char *out,
+       long length, des_key_schedule ks1, des_key_schedule ks2,
+       des_key_schedule ks3, des_cblock *ivec, int *num);
+
+void des_xwhite_in2out(des_cblock (*des_key), des_cblock (*in_white),
+       des_cblock (*out_white));
+
+int des_enc_read(int fd,char *buf,int len,des_key_schedule sched,
+       des_cblock *iv);
+int des_enc_write(int fd,char *buf,int len,des_key_schedule sched,
+       des_cblock *iv);
+char *des_fcrypt(const char *buf,const char *salt, char *ret);
+#ifdef PERL5
+char *des_crypt(const char *buf,const char *salt);
+#else
+/* some stupid compilers complain because I have declared char instead
+ * of const char */
+#ifndef __KERNEL__
+#ifdef HEADER_DES_LOCL_H
+char *crypt(const char *buf,const char *salt);
+#else /* HEADER_DES_LOCL_H */
+char *crypt(void);
+#endif /* HEADER_DES_LOCL_H */
+#endif /* __KERNEL__ */
+#endif /* PERL5 */
+void des_ofb_encrypt(unsigned char *in,unsigned char *out,
+       int numbits,long length,des_key_schedule schedule,des_cblock *ivec);
+void des_pcbc_encrypt(des_cblock *input,des_cblock *output,long length,
+       des_key_schedule schedule,des_cblock *ivec,int enc);
+DES_LONG des_quad_cksum(des_cblock *input,des_cblock *output,
+       long length,int out_count,des_cblock *seed);
+void des_random_seed(des_cblock key);
+void des_random_key(des_cblock ret);
+int des_read_password(des_cblock *key,char *prompt,int verify);
+int des_read_2passwords(des_cblock *key1,des_cblock *key2,
+       char *prompt,int verify);
+int des_read_pw_string(char *buf,int length,char *prompt,int verify);
+void des_set_odd_parity(des_cblock *key);
+int des_is_weak_key(des_cblock *key);
+int des_set_key(des_cblock *key,des_key_schedule schedule);
+int des_key_sched(des_cblock *key,des_key_schedule schedule);
+void des_string_to_key(char *str,des_cblock *key);
+void des_string_to_2keys(char *str,des_cblock *key1,des_cblock *key2);
+void des_cfb64_encrypt(unsigned char *in, unsigned char *out, long length,
+       des_key_schedule schedule, des_cblock *ivec, int *num, int enc);
+void des_ofb64_encrypt(unsigned char *in, unsigned char *out, long length,
+       des_key_schedule schedule, des_cblock *ivec, int *num);
+int des_read_pw(char *buf, char *buff, int size, char *prompt, int verify);
+
+/* Extra functions from Mark Murray <mark@grondar.za> */
+/* The following functions are not in the normal unix build or the
+ * SSLeay build.  When using the SSLeay build, use RAND_seed()
+ * and RAND_bytes() instead. */
+int des_new_random_key(des_cblock *key);
+void des_init_random_number_generator(des_cblock *key);
+void des_set_random_generator_seed(des_cblock *key);
+void des_set_sequence_number(des_cblock new_sequence_number);
+void des_generate_random_block(des_cblock *block);
+
+#else
+
+char *des_options();
+void des_ecb3_encrypt();
+DES_LONG des_cbc_cksum();
+void des_cbc_encrypt();
+void des_ncbc_encrypt();
+void des_xcbc_encrypt();
+void des_cfb_encrypt();
+void des_ede3_cfb64_encrypt();
+void des_ede3_ofb64_encrypt();
+void des_ecb_encrypt();
+void des_encrypt();
+void des_encrypt2();
+void des_encrypt3();
+void des_decrypt3();
+void des_ede3_cbc_encrypt();
+int des_enc_read();
+int des_enc_write();
+char *des_fcrypt();
+#ifdef PERL5
+char *des_crypt();
+#else
+char *crypt();
+#endif
+void des_ofb_encrypt();
+void des_pcbc_encrypt();
+DES_LONG des_quad_cksum();
+void des_random_seed();
+void des_random_key();
+int des_read_password();
+int des_read_2passwords();
+int des_read_pw_string();
+void des_set_odd_parity();
+int des_is_weak_key();
+int des_set_key();
+int des_key_sched();
+void des_string_to_key();
+void des_string_to_2keys();
+void des_cfb64_encrypt();
+void des_ofb64_encrypt();
+int des_read_pw();
+void des_xwhite_in2out();
+
+/* Extra functions from Mark Murray <mark@grondar.za> */
+/* The following functions are not in the normal unix build or the
+ * SSLeay build.  When using the SSLeay build, use RAND_seed()
+ * and RAND_bytes() instead. */
+#ifdef FreeBSD
+int des_new_random_key();
+void des_init_random_number_generator();
+void des_set_random_generator_seed();
+void des_set_sequence_number();
+void des_generate_random_block();
+#endif
+
+#endif
+
+#ifdef  __cplusplus
+}
+#endif
+
+#endif
diff --git a/src/libfreeswan/libcrypto/libdes/des_crypt.man b/src/libfreeswan/libcrypto/libdes/des_crypt.man
new file mode 100644 (file)
index 0000000..0ecc416
--- /dev/null
@@ -0,0 +1,508 @@
+.TH DES_CRYPT 3 
+.SH NAME
+des_read_password, des_read_2password,
+des_string_to_key, des_string_to_2key, des_read_pw_string,
+des_random_key, des_set_key,
+des_key_sched, des_ecb_encrypt, des_ecb3_encrypt, des_cbc_encrypt,
+des_3cbc_encrypt,
+des_pcbc_encrypt, des_cfb_encrypt, des_ofb_encrypt,
+des_cbc_cksum, des_quad_cksum,
+des_enc_read, des_enc_write, des_set_odd_parity,
+des_is_weak_key, crypt \- (non USA) DES encryption
+.SH SYNOPSIS
+.nf
+.nj
+.ft B
+#include <des.h>
+.PP
+.B int des_read_password(key,prompt,verify)
+des_cblock *key;
+char *prompt;
+int verify;
+.PP
+.B int des_read_2password(key1,key2,prompt,verify)
+des_cblock *key1,*key2;
+char *prompt;
+int verify;
+.PP
+.B int des_string_to_key(str,key)
+char *str;
+des_cblock *key;
+.PP
+.B int des_string_to_2keys(str,key1,key2)
+char *str;
+des_cblock *key1,*key2;
+.PP
+.B int des_read_pw_string(buf,length,prompt,verify)
+char *buf;
+int length;
+char *prompt;
+int verify;
+.PP
+.B int des_random_key(key)
+des_cblock *key;
+.PP
+.B int des_set_key(key,schedule)
+des_cblock *key;
+des_key_schedule schedule;
+.PP
+.B int des_key_sched(key,schedule)
+des_cblock *key;
+des_key_schedule schedule;
+.PP
+.B int des_ecb_encrypt(input,output,schedule,encrypt)
+des_cblock *input;
+des_cblock *output;
+des_key_schedule schedule;
+int encrypt;
+.PP
+.B int des_ecb3_encrypt(input,output,ks1,ks2,encrypt)
+des_cblock *input;
+des_cblock *output;
+des_key_schedule ks1,ks2;
+int encrypt;
+.PP
+.B int des_cbc_encrypt(input,output,length,schedule,ivec,encrypt)
+des_cblock *input;
+des_cblock *output;
+long length;
+des_key_schedule schedule;
+des_cblock *ivec;
+int encrypt;
+.PP
+.B int des_3cbc_encrypt(input,output,length,sk1,sk2,ivec1,ivec2,encrypt)
+des_cblock *input;
+des_cblock *output;
+long length;
+des_key_schedule sk1;
+des_key_schedule sk2;
+des_cblock *ivec1;
+des_cblock *ivec2;
+int encrypt;
+.PP
+.B int des_pcbc_encrypt(input,output,length,schedule,ivec,encrypt)
+des_cblock *input;
+des_cblock *output;
+long length;
+des_key_schedule schedule;
+des_cblock *ivec;
+int encrypt;
+.PP
+.B int des_cfb_encrypt(input,output,numbits,length,schedule,ivec,encrypt)
+unsigned char *input;
+unsigned char *output;
+int numbits;
+long length;
+des_key_schedule schedule;
+des_cblock *ivec;
+int encrypt;
+.PP
+.B int des_ofb_encrypt(input,output,numbits,length,schedule,ivec)
+unsigned char *input,*output;
+int numbits;
+long length;
+des_key_schedule schedule;
+des_cblock *ivec;
+.PP
+.B unsigned long des_cbc_cksum(input,output,length,schedule,ivec)
+des_cblock *input;
+des_cblock *output;
+long length;
+des_key_schedule schedule;
+des_cblock *ivec;
+.PP
+.B unsigned long des_quad_cksum(input,output,length,out_count,seed)
+des_cblock *input;
+des_cblock *output;
+long length;
+int out_count;
+des_cblock *seed;
+.PP
+.B int des_check_key;
+.PP
+.B int des_enc_read(fd,buf,len,sched,iv)
+int fd;
+char *buf;
+int len;
+des_key_schedule sched;
+des_cblock *iv;
+.PP
+.B int des_enc_write(fd,buf,len,sched,iv)
+int fd;
+char *buf;
+int len;
+des_key_schedule sched;
+des_cblock *iv;
+.PP
+.B extern int des_rw_mode;
+.PP
+.B void des_set_odd_parity(key)
+des_cblock *key;
+.PP
+.B int des_is_weak_key(key)
+des_cblock *key;
+.PP
+.B char *crypt(passwd,salt)
+char *passwd;
+char *salt;
+.PP
+.fi
+.SH DESCRIPTION
+This library contains a fast implementation of the DES encryption
+algorithm.
+.PP
+There are two phases to the use of DES encryption.
+The first is the generation of a
+.I des_key_schedule
+from a key,
+the second is the actual encryption.
+A des key is of type
+.I des_cblock.
+This type is made from 8 characters with odd parity.
+The least significant bit in the character is the parity bit.
+The key schedule is an expanded form of the key; it is used to speed the
+encryption process.
+.PP
+.I des_read_password
+writes the string specified by prompt to the standard output,
+turns off echo and reads an input string from standard input
+until terminated with a newline.
+If verify is non-zero, it prompts and reads the input again and verifies
+that both entered passwords are the same.
+The entered string is converted into a des key by using the
+.I des_string_to_key
+routine.
+The new key is placed in the
+.I des_cblock
+that was passed (by reference) to the routine.
+If there were no errors,
+.I des_read_password
+returns 0,
+-1 is returned if there was a terminal error and 1 is returned for
+any other error.
+.PP
+.I des_read_2password
+operates in the same way as
+.I des_read_password
+except that it generates 2 keys by using the
+.I des_string_to_2key
+function.
+.PP
+.I des_read_pw_string
+is called by
+.I des_read_password
+to read and verify a string from a terminal device.
+The string is returned in
+.I buf.
+The size of
+.I buf
+is passed to the routine via the
+.I length
+parameter.
+.PP
+.I des_string_to_key
+converts a string into a valid des key.
+.PP
+.I des_string_to_2key
+converts a string into 2 valid des keys.
+This routine is best suited for used to generate keys for use with
+.I des_ecb3_encrypt.
+.PP
+.I des_random_key
+returns a random key that is made of a combination of process id,
+time and an increasing counter.
+.PP
+Before a des key can be used it is converted into a
+.I des_key_schedule
+via the
+.I des_set_key
+routine.
+If the
+.I des_check_key
+flag is non-zero,
+.I des_set_key
+will check that the key passed is of odd parity and is not a week or
+semi-weak key.
+If the parity is wrong,
+then -1 is returned.
+If the key is a weak key,
+then -2 is returned.
+If an error is returned,
+the key schedule is not generated.
+.PP
+.I des_key_sched
+is another name for the
+.I des_set_key
+function.
+.PP
+The following routines mostly operate on an input and output stream of
+.I des_cblock's.
+.PP
+.I des_ecb_encrypt
+is the basic DES encryption routine that encrypts or decrypts a single 8-byte
+.I des_cblock
+in
+.I electronic code book
+mode.
+It always transforms the input data, pointed to by
+.I input,
+into the output data,
+pointed to by the
+.I output
+argument.
+If the
+.I encrypt
+argument is non-zero (DES_ENCRYPT),
+the
+.I input
+(cleartext) is encrypted in to the
+.I output
+(ciphertext) using the key_schedule specified by the
+.I schedule
+argument,
+previously set via
+.I des_set_key.
+If
+.I encrypt
+is zero (DES_DECRYPT),
+the
+.I input
+(now ciphertext)
+is decrypted into the
+.I output
+(now cleartext).
+Input and output may overlap.
+No meaningful value is returned.
+.PP
+.I des_ecb3_encrypt
+encrypts/decrypts the
+.I input
+block by using triple ecb DES encryption.
+This involves encrypting the input with 
+.I ks1,
+decryption with the key schedule
+.I ks2,
+and then encryption with the first again.
+This routine greatly reduces the chances of brute force breaking of
+DES and has the advantage of if
+.I ks1
+and
+.I ks2
+are the same, it is equivalent to just encryption using ecb mode and
+.I ks1
+as the key.
+.PP
+.I des_cbc_encrypt
+encrypts/decrypts using the
+.I cipher-block-chaining
+mode of DES.
+If the
+.I encrypt
+argument is non-zero,
+the routine cipher-block-chain encrypts the cleartext data pointed to by the
+.I input
+argument into the ciphertext pointed to by the
+.I output
+argument,
+using the key schedule provided by the
+.I schedule
+argument,
+and initialisation vector provided by the
+.I ivec
+argument.
+If the
+.I length
+argument is not an integral multiple of eight bytes, 
+the last block is copied to a temporary area and zero filled.
+The output is always
+an integral multiple of eight bytes.
+To make multiple cbc encrypt calls on a large amount of data appear to
+be one 
+.I des_cbc_encrypt
+call, the
+.I ivec
+of subsequent calls should be the last 8 bytes of the output.
+.PP
+.I des_3cbc_encrypt
+encrypts/decrypts the
+.I input
+block by using triple cbc DES encryption.
+This involves encrypting the input with key schedule
+.I ks1,
+decryption with the key schedule
+.I ks2,
+and then encryption with the first again.
+2 initialisation vectors are required,
+.I ivec1
+and
+.I ivec2.
+Unlike
+.I des_cbc_encrypt,
+these initialisation vectors are modified by the subroutine.
+This routine greatly reduces the chances of brute force breaking of
+DES and has the advantage of if
+.I ks1
+and
+.I ks2
+are the same, it is equivalent to just encryption using cbc mode and
+.I ks1
+as the key.
+.PP
+.I des_pcbc_encrypt
+encrypt/decrypts using a modified block chaining mode.
+It provides better error propagation characteristics than cbc
+encryption.
+.PP
+.I des_cfb_encrypt
+encrypt/decrypts using cipher feedback mode.  This method takes an
+array of characters as input and outputs and array of characters.  It
+does not require any padding to 8 character groups.  Note: the ivec
+variable is changed and the new changed value needs to be passed to
+the next call to this function.  Since this function runs a complete
+DES ecb encryption per numbits, this function is only suggested for
+use when sending small numbers of characters.
+.PP
+.I des_ofb_encrypt
+encrypt using output feedback mode.  This method takes an
+array of characters as input and outputs and array of characters.  It
+does not require any padding to 8 character groups.  Note: the ivec
+variable is changed and the new changed value needs to be passed to
+the next call to this function.  Since this function runs a complete
+DES ecb encryption per numbits, this function is only suggested for
+use when sending small numbers of characters.
+.PP
+.I des_cbc_cksum
+produces an 8 byte checksum based on the input stream (via cbc encryption).
+The last 4 bytes of the checksum is returned and the complete 8 bytes is
+placed in
+.I output.
+.PP
+.I des_quad_cksum
+returns a 4 byte checksum from the input bytes.
+The algorithm can be iterated over the input,
+depending on
+.I out_count,
+1, 2, 3 or 4 times.
+If
+.I output
+is non-NULL,
+the 8 bytes generated by each pass are written into
+.I output.
+.PP
+.I des_enc_write
+is used to write
+.I len
+bytes
+to file descriptor
+.I fd
+from buffer
+.I buf.
+The data is encrypted via
+.I pcbc_encrypt
+(default) using
+.I sched
+for the key and
+.I iv
+as a starting vector.
+The actual data send down
+.I fd
+consists of 4 bytes (in network byte order) containing the length of the
+following encrypted data.  The encrypted data then follows, padded with random
+data out to a multiple of 8 bytes.
+.PP
+.I des_enc_read
+is used to read
+.I len
+bytes
+from file descriptor
+.I fd
+into buffer
+.I buf.
+The data being read from
+.I fd
+is assumed to have come from
+.I des_enc_write
+and is decrypted using
+.I sched
+for the key schedule and
+.I iv
+for the initial vector.
+The
+.I des_enc_read/des_enc_write
+pair can be used to read/write to files, pipes and sockets.
+I have used them in implementing a version of rlogin in which all
+data is encrypted.
+.PP
+.I des_rw_mode
+is used to specify the encryption mode to use with 
+.I des_enc_read
+and 
+.I des_end_write.
+If set to
+.I DES_PCBC_MODE
+(the default), des_pcbc_encrypt is used.
+If set to
+.I DES_CBC_MODE
+des_cbc_encrypt is used.
+These two routines and the variable are not part of the normal MIT library.
+.PP
+.I des_set_odd_parity
+sets the parity of the passed
+.I key
+to odd.  This routine is not part of the standard MIT library.
+.PP
+.I des_is_weak_key
+returns 1 is the passed key is a weak key (pick again :-),
+0 if it is ok.
+This routine is not part of the standard MIT library.
+.PP
+.I crypt
+is a replacement for the normal system crypt.
+It is much faster than the system crypt.
+.PP
+.SH FILES
+/usr/include/des.h
+.br
+/usr/lib/libdes.a
+.PP
+The encryption routines have been tested on 16bit, 32bit and 64bit
+machines of various endian and even works under VMS.
+.PP
+.SH BUGS
+.PP
+If you think this manual is sparse,
+read the des_crypt(3) manual from the MIT kerberos (or bones outside
+of the USA) distribution.
+.PP
+.I des_cfb_encrypt
+and
+.I des_ofb_encrypt
+operates on input of 8 bits.  What this means is that if you set
+numbits to 12, and length to 2, the first 12 bits will come from the 1st
+input byte and the low half of the second input byte.  The second 12
+bits will have the low 8 bits taken from the 3rd input byte and the
+top 4 bits taken from the 4th input byte.  The same holds for output.
+This function has been implemented this way because most people will
+be using a multiple of 8 and because once you get into pulling bytes input
+bytes apart things get ugly!
+.PP
+.I des_read_pw_string
+is the most machine/OS dependent function and normally generates the
+most problems when porting this code.
+.PP
+.I des_string_to_key
+is probably different from the MIT version since there are lots
+of fun ways to implement one-way encryption of a text string.
+.PP
+The routines are optimised for 32 bit machines and so are not efficient
+on IBM PCs.
+.PP
+NOTE: extensive work has been done on this library since this document
+was origionally written.  Please try to read des.doc from the libdes
+distribution since it is far more upto date and documents more of the
+functions.  Libdes is now also being shipped as part of SSLeay, a
+general cryptographic library that amonst other things implements
+netscapes SSL protocoll.  The most recent version can be found in
+SSLeay distributions.
+.SH AUTHOR
+Eric Young (eay@cryptsoft.com)
diff --git a/src/libfreeswan/libcrypto/libdes/des_enc.c b/src/libfreeswan/libcrypto/libdes/des_enc.c
new file mode 100644 (file)
index 0000000..1e1906d
--- /dev/null
@@ -0,0 +1,502 @@
+/* crypto/des/des_enc.c */
+/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+
+#include "des_locl.h"
+
+void des_encrypt(data, ks, enc)
+DES_LONG *data;
+des_key_schedule ks;
+int enc;
+       {
+       register DES_LONG l,r,t,u;
+#ifdef DES_PTR
+       register unsigned char *des_SP=(unsigned char *)des_SPtrans;
+#endif
+#ifndef DES_UNROLL
+       register int i;
+#endif
+       register DES_LONG *s;
+
+       r=data[0];
+       l=data[1];
+
+       IP(r,l);
+       /* Things have been modified so that the initial rotate is
+        * done outside the loop.  This required the
+        * des_SPtrans values in sp.h to be rotated 1 bit to the right.
+        * One perl script later and things have a 5% speed up on a sparc2.
+        * Thanks to Richard Outerbridge <71755.204@CompuServe.COM>
+        * for pointing this out. */
+       /* clear the top bits on machines with 8byte longs */
+       /* shift left by 2 */
+       r=ROTATE(r,29)&0xffffffffL;
+       l=ROTATE(l,29)&0xffffffffL;
+
+       s=(DES_LONG *)ks;
+       /* I don't know if it is worth the effort of loop unrolling the
+        * inner loop */
+       if (enc)
+               {
+#ifdef DES_UNROLL
+               D_ENCRYPT(l,r, 0); /*  1 */
+               D_ENCRYPT(r,l, 2); /*  2 */
+               D_ENCRYPT(l,r, 4); /*  3 */
+               D_ENCRYPT(r,l, 6); /*  4 */
+               D_ENCRYPT(l,r, 8); /*  5 */
+               D_ENCRYPT(r,l,10); /*  6 */
+               D_ENCRYPT(l,r,12); /*  7 */
+               D_ENCRYPT(r,l,14); /*  8 */
+               D_ENCRYPT(l,r,16); /*  9 */
+               D_ENCRYPT(r,l,18); /*  10 */
+               D_ENCRYPT(l,r,20); /*  11 */
+               D_ENCRYPT(r,l,22); /*  12 */
+               D_ENCRYPT(l,r,24); /*  13 */
+               D_ENCRYPT(r,l,26); /*  14 */
+               D_ENCRYPT(l,r,28); /*  15 */
+               D_ENCRYPT(r,l,30); /*  16 */
+#else
+               for (i=0; i<32; i+=8)
+                       {
+                       D_ENCRYPT(l,r,i+0); /*  1 */
+                       D_ENCRYPT(r,l,i+2); /*  2 */
+                       D_ENCRYPT(l,r,i+4); /*  3 */
+                       D_ENCRYPT(r,l,i+6); /*  4 */
+                       }
+#endif
+               }
+       else
+               {
+#ifdef DES_UNROLL
+               D_ENCRYPT(l,r,30); /* 16 */
+               D_ENCRYPT(r,l,28); /* 15 */
+               D_ENCRYPT(l,r,26); /* 14 */
+               D_ENCRYPT(r,l,24); /* 13 */
+               D_ENCRYPT(l,r,22); /* 12 */
+               D_ENCRYPT(r,l,20); /* 11 */
+               D_ENCRYPT(l,r,18); /* 10 */
+               D_ENCRYPT(r,l,16); /*  9 */
+               D_ENCRYPT(l,r,14); /*  8 */
+               D_ENCRYPT(r,l,12); /*  7 */
+               D_ENCRYPT(l,r,10); /*  6 */
+               D_ENCRYPT(r,l, 8); /*  5 */
+               D_ENCRYPT(l,r, 6); /*  4 */
+               D_ENCRYPT(r,l, 4); /*  3 */
+               D_ENCRYPT(l,r, 2); /*  2 */
+               D_ENCRYPT(r,l, 0); /*  1 */
+#else
+               for (i=30; i>0; i-=8)
+                       {
+                       D_ENCRYPT(l,r,i-0); /* 16 */
+                       D_ENCRYPT(r,l,i-2); /* 15 */
+                       D_ENCRYPT(l,r,i-4); /* 14 */
+                       D_ENCRYPT(r,l,i-6); /* 13 */
+                       }
+#endif
+               }
+
+       /* rotate and clear the top bits on machines with 8byte longs */
+       l=ROTATE(l,3)&0xffffffffL;
+       r=ROTATE(r,3)&0xffffffffL;
+
+       FP(r,l);
+       data[0]=l;
+       data[1]=r;
+       l=r=t=u=0;
+       }
+
+void des_encrypt2(data, ks, enc)
+DES_LONG *data;
+des_key_schedule ks;
+int enc;
+       {
+       register DES_LONG l,r,t,u;
+#ifdef DES_PTR
+       register unsigned char *des_SP=(unsigned char *)des_SPtrans;
+#endif
+#ifndef DES_UNROLL
+       register int i;
+#endif
+       register DES_LONG *s;
+
+       r=data[0];
+       l=data[1];
+
+       /* Things have been modified so that the initial rotate is
+        * done outside the loop.  This required the
+        * des_SPtrans values in sp.h to be rotated 1 bit to the right.
+        * One perl script later and things have a 5% speed up on a sparc2.
+        * Thanks to Richard Outerbridge <71755.204@CompuServe.COM>
+        * for pointing this out. */
+       /* clear the top bits on machines with 8byte longs */
+       r=ROTATE(r,29)&0xffffffffL;
+       l=ROTATE(l,29)&0xffffffffL;
+
+       s=(DES_LONG *)ks;
+       /* I don't know if it is worth the effort of loop unrolling the
+        * inner loop */
+       if (enc)
+               {
+#ifdef DES_UNROLL
+               D_ENCRYPT(l,r, 0); /*  1 */
+               D_ENCRYPT(r,l, 2); /*  2 */
+               D_ENCRYPT(l,r, 4); /*  3 */
+               D_ENCRYPT(r,l, 6); /*  4 */
+               D_ENCRYPT(l,r, 8); /*  5 */
+               D_ENCRYPT(r,l,10); /*  6 */
+               D_ENCRYPT(l,r,12); /*  7 */
+               D_ENCRYPT(r,l,14); /*  8 */
+               D_ENCRYPT(l,r,16); /*  9 */
+               D_ENCRYPT(r,l,18); /*  10 */
+               D_ENCRYPT(l,r,20); /*  11 */
+               D_ENCRYPT(r,l,22); /*  12 */
+               D_ENCRYPT(l,r,24); /*  13 */
+               D_ENCRYPT(r,l,26); /*  14 */
+               D_ENCRYPT(l,r,28); /*  15 */
+               D_ENCRYPT(r,l,30); /*  16 */
+#else
+               for (i=0; i<32; i+=8)
+                       {
+                       D_ENCRYPT(l,r,i+0); /*  1 */
+                       D_ENCRYPT(r,l,i+2); /*  2 */
+                       D_ENCRYPT(l,r,i+4); /*  3 */
+                       D_ENCRYPT(r,l,i+6); /*  4 */
+                       }
+#endif
+               }
+       else
+               {
+#ifdef DES_UNROLL
+               D_ENCRYPT(l,r,30); /* 16 */
+               D_ENCRYPT(r,l,28); /* 15 */
+               D_ENCRYPT(l,r,26); /* 14 */
+               D_ENCRYPT(r,l,24); /* 13 */
+               D_ENCRYPT(l,r,22); /* 12 */
+               D_ENCRYPT(r,l,20); /* 11 */
+               D_ENCRYPT(l,r,18); /* 10 */
+               D_ENCRYPT(r,l,16); /*  9 */
+               D_ENCRYPT(l,r,14); /*  8 */
+               D_ENCRYPT(r,l,12); /*  7 */
+               D_ENCRYPT(l,r,10); /*  6 */
+               D_ENCRYPT(r,l, 8); /*  5 */
+               D_ENCRYPT(l,r, 6); /*  4 */
+               D_ENCRYPT(r,l, 4); /*  3 */
+               D_ENCRYPT(l,r, 2); /*  2 */
+               D_ENCRYPT(r,l, 0); /*  1 */
+#else
+               for (i=30; i>0; i-=8)
+                       {
+                       D_ENCRYPT(l,r,i-0); /* 16 */
+                       D_ENCRYPT(r,l,i-2); /* 15 */
+                       D_ENCRYPT(l,r,i-4); /* 14 */
+                       D_ENCRYPT(r,l,i-6); /* 13 */
+                       }
+#endif
+               }
+       /* rotate and clear the top bits on machines with 8byte longs */
+       data[0]=ROTATE(l,3)&0xffffffffL;
+       data[1]=ROTATE(r,3)&0xffffffffL;
+       l=r=t=u=0;
+       }
+
+void des_encrypt3(data,ks1,ks2,ks3)
+DES_LONG *data;
+des_key_schedule ks1;
+des_key_schedule ks2;
+des_key_schedule ks3;
+       {
+       register DES_LONG l,r;
+
+       l=data[0];
+       r=data[1];
+       IP(l,r);
+       data[0]=l;
+       data[1]=r;
+       des_encrypt2((DES_LONG *)data,ks1,DES_ENCRYPT);
+       des_encrypt2((DES_LONG *)data,ks2,DES_DECRYPT);
+       des_encrypt2((DES_LONG *)data,ks3,DES_ENCRYPT);
+       l=data[0];
+       r=data[1];
+       FP(r,l);
+       data[0]=l;
+       data[1]=r;
+       }
+
+void des_decrypt3(data,ks1,ks2,ks3)
+DES_LONG *data;
+des_key_schedule ks1;
+des_key_schedule ks2;
+des_key_schedule ks3;
+       {
+       register DES_LONG l,r;
+
+       l=data[0];
+       r=data[1];
+       IP(l,r);
+       data[0]=l;
+       data[1]=r;
+       des_encrypt2((DES_LONG *)data,ks3,DES_DECRYPT);
+       des_encrypt2((DES_LONG *)data,ks2,DES_ENCRYPT);
+       des_encrypt2((DES_LONG *)data,ks1,DES_DECRYPT);
+       l=data[0];
+       r=data[1];
+       FP(r,l);
+       data[0]=l;
+       data[1]=r;
+       }
+
+#ifndef DES_DEFAULT_OPTIONS
+
+void des_ncbc_encrypt(input, output, length, schedule, ivec, enc)
+des_cblock (*input);
+des_cblock (*output);
+long length;
+des_key_schedule schedule;
+des_cblock (*ivec);
+int enc;
+       {
+       register DES_LONG tin0,tin1;
+       register DES_LONG tout0,tout1,xor0,xor1;
+       register unsigned char *in,*out;
+       register long l=length;
+       DES_LONG tin[2];
+       unsigned char *iv;
+
+       in=(unsigned char *)input;
+       out=(unsigned char *)output;
+       iv=(unsigned char *)ivec;
+
+       if (enc)
+               {
+               c2l(iv,tout0);
+               c2l(iv,tout1);
+               for (l-=8; l>=0; l-=8)
+                       {
+                       c2l(in,tin0);
+                       c2l(in,tin1);
+                       tin0^=tout0; tin[0]=tin0;
+                       tin1^=tout1; tin[1]=tin1;
+                       des_encrypt((DES_LONG *)tin,schedule,DES_ENCRYPT);
+                       tout0=tin[0]; l2c(tout0,out);
+                       tout1=tin[1]; l2c(tout1,out);
+                       }
+               if (l != -8)
+                       {
+                       c2ln(in,tin0,tin1,l+8);
+                       tin0^=tout0; tin[0]=tin0;
+                       tin1^=tout1; tin[1]=tin1;
+                       des_encrypt((DES_LONG *)tin,schedule,DES_ENCRYPT);
+                       tout0=tin[0]; l2c(tout0,out);
+                       tout1=tin[1]; l2c(tout1,out);
+                       }
+               iv=(unsigned char *)ivec;
+               l2c(tout0,iv);
+               l2c(tout1,iv);
+               }
+       else
+               {
+               c2l(iv,xor0);
+               c2l(iv,xor1);
+               for (l-=8; l>=0; l-=8)
+                       {
+                       c2l(in,tin0); tin[0]=tin0;
+                       c2l(in,tin1); tin[1]=tin1;
+                       des_encrypt((DES_LONG *)tin,schedule,DES_DECRYPT);
+                       tout0=tin[0]^xor0;
+                       tout1=tin[1]^xor1;
+                       l2c(tout0,out);
+                       l2c(tout1,out);
+                       xor0=tin0;
+                       xor1=tin1;
+                       }
+               if (l != -8)
+                       {
+                       c2l(in,tin0); tin[0]=tin0;
+                       c2l(in,tin1); tin[1]=tin1;
+                       des_encrypt((DES_LONG *)tin,schedule,DES_DECRYPT);
+                       tout0=tin[0]^xor0;
+                       tout1=tin[1]^xor1;
+                       l2cn(tout0,tout1,out,l+8);
+                       xor0=tin0;
+                       xor1=tin1;
+                       }
+
+               iv=(unsigned char *)ivec;
+               l2c(xor0,iv);
+               l2c(xor1,iv);
+               }
+       tin0=tin1=tout0=tout1=xor0=xor1=0;
+       tin[0]=tin[1]=0;
+       }
+
+void des_ede3_cbc_encrypt(input, output, length, ks1, ks2, ks3, ivec, enc)
+des_cblock (*input);
+des_cblock (*output);
+long length;
+des_key_schedule ks1;
+des_key_schedule ks2;
+des_key_schedule ks3;
+des_cblock (*ivec);
+int enc;
+       {
+       register DES_LONG tin0,tin1;
+       register DES_LONG tout0,tout1,xor0,xor1;
+       register unsigned char *in,*out;
+       register long l=length;
+       DES_LONG tin[2];
+       unsigned char *iv;
+
+       in=(unsigned char *)input;
+       out=(unsigned char *)output;
+       iv=(unsigned char *)ivec;
+
+       if (enc)
+               {
+               c2l(iv,tout0);
+               c2l(iv,tout1);
+               for (l-=8; l>=0; l-=8)
+                       {
+                       c2l(in,tin0);
+                       c2l(in,tin1);
+                       tin0^=tout0;
+                       tin1^=tout1;
+
+                       tin[0]=tin0;
+                       tin[1]=tin1;
+                       des_encrypt3((DES_LONG *)tin,ks1,ks2,ks3);
+                       tout0=tin[0];
+                       tout1=tin[1];
+
+                       l2c(tout0,out);
+                       l2c(tout1,out);
+                       }
+               if (l != -8)
+                       {
+                       c2ln(in,tin0,tin1,l+8);
+                       tin0^=tout0;
+                       tin1^=tout1;
+
+                       tin[0]=tin0;
+                       tin[1]=tin1;
+                       des_encrypt3((DES_LONG *)tin,ks1,ks2,ks3);
+                       tout0=tin[0];
+                       tout1=tin[1];
+
+                       l2c(tout0,out);
+                       l2c(tout1,out);
+                       }
+               iv=(unsigned char *)ivec;
+               l2c(tout0,iv);
+               l2c(tout1,iv);
+               }
+       else
+               {
+               register DES_LONG t0,t1;
+
+               c2l(iv,xor0);
+               c2l(iv,xor1);
+               for (l-=8; l>=0; l-=8)
+                       {
+                       c2l(in,tin0);
+                       c2l(in,tin1);
+
+                       t0=tin0;
+                       t1=tin1;
+
+                       tin[0]=tin0;
+                       tin[1]=tin1;
+                       des_decrypt3((DES_LONG *)tin,ks1,ks2,ks3);
+                       tout0=tin[0];
+                       tout1=tin[1];
+
+                       tout0^=xor0;
+                       tout1^=xor1;
+                       l2c(tout0,out);
+                       l2c(tout1,out);
+                       xor0=t0;
+                       xor1=t1;
+                       }
+               if (l != -8)
+                       {
+                       c2l(in,tin0);
+                       c2l(in,tin1);
+                       
+                       t0=tin0;
+                       t1=tin1;
+
+                       tin[0]=tin0;
+                       tin[1]=tin1;
+                       des_decrypt3((DES_LONG *)tin,ks1,ks2,ks3);
+                       tout0=tin[0];
+                       tout1=tin[1];
+               
+                       tout0^=xor0;
+                       tout1^=xor1;
+                       l2cn(tout0,tout1,out,l+8);
+                       xor0=t0;
+                       xor1=t1;
+                       }
+
+               iv=(unsigned char *)ivec;
+               l2c(xor0,iv);
+               l2c(xor1,iv);
+               }
+       tin0=tin1=tout0=tout1=xor0=xor1=0;
+       tin[0]=tin[1]=0;
+       }
+
+#endif /* DES_DEFAULT_OPTIONS */
diff --git a/src/libfreeswan/libcrypto/libdes/des_locl.h b/src/libfreeswan/libcrypto/libdes/des_locl.h
new file mode 100644 (file)
index 0000000..4e0b366
--- /dev/null
@@ -0,0 +1,515 @@
+/* crypto/des/des_locl.org */
+/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+
+/* WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING
+ *
+ * Always modify des_locl.org since des_locl.h is automatically generated from
+ * it during SSLeay configuration.
+ *
+ * WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING
+ */
+
+#ifndef HEADER_DES_LOCL_H
+#define HEADER_DES_LOCL_H
+
+#if defined(WIN32) || defined(WIN16)
+#ifndef MSDOS
+#define MSDOS
+#endif
+#endif
+
+#include "des.h"
+
+#ifndef DES_DEFAULT_OPTIONS
+/* the following is tweaked from a config script, that is why it is a
+ * protected undef/define */
+#ifndef DES_PTR
+#define DES_PTR
+#endif
+
+/* This helps C compiler generate the correct code for multiple functional
+ * units.  It reduces register dependancies at the expense of 2 more
+ * registers */
+#ifndef DES_RISC1
+#define DES_RISC1
+#endif
+
+#ifndef DES_RISC2
+#undef DES_RISC2
+#endif
+
+#if defined(DES_RISC1) && defined(DES_RISC2)
+YOU SHOULD NOT HAVE BOTH DES_RISC1 AND DES_RISC2 DEFINED!!!!!
+#endif
+
+/* Unroll the inner loop, this sometimes helps, sometimes hinders.
+ * Very mucy CPU dependant */
+#ifndef DES_UNROLL
+#define DES_UNROLL
+#endif
+
+/* These default values were supplied by
+ * Peter Gutman <pgut001@cs.auckland.ac.nz>
+ * They are only used if nothing else has been defined */
+#if !defined(DES_PTR) && !defined(DES_RISC1) && !defined(DES_RISC2) && !defined(DES_UNROLL)
+/* Special defines which change the way the code is built depending on the
+   CPU and OS.  For SGI machines you can use _MIPS_SZLONG (32 or 64) to find
+   even newer MIPS CPU's, but at the moment one size fits all for
+   optimization options.  Older Sparc's work better with only UNROLL, but
+   there's no way to tell at compile time what it is you're running on */
+#if defined( sun )             /* Newer Sparc's */
+  #define DES_PTR
+  #define DES_RISC1
+  #define DES_UNROLL
+#elif defined( __ultrix )      /* Older MIPS */
+  #define DES_PTR
+  #define DES_RISC2
+  #define DES_UNROLL
+#elif defined( __osf1__ )      /* Alpha */
+  #define DES_PTR
+  #define DES_RISC2
+#elif defined ( _AIX )         /* RS6000 */
+  /* Unknown */
+#elif defined( __hpux )                /* HP-PA */
+  /* Unknown */
+#elif defined( __aux )         /* 68K */
+  /* Unknown */
+#elif defined( __dgux )                /* 88K (but P6 in latest boxes) */
+  #define DES_UNROLL
+#elif defined( __sgi )         /* Newer MIPS */
+  #define DES_PTR
+  #define DES_RISC2
+  #define DES_UNROLL
+#elif defined( i386 )          /* x86 boxes, should be gcc */
+  #define DES_PTR
+  #define DES_RISC1
+  #define DES_UNROLL
+#endif /* Systems-specific speed defines */
+#endif
+
+#endif /* DES_DEFAULT_OPTIONS */
+
+#ifdef MSDOS           /* Visual C++ 2.1 (Windows NT/95) */
+#include <stdlib.h>
+#include <errno.h>
+#include <time.h>
+#include <io.h>
+#ifndef RAND
+#define RAND
+#endif
+#undef NOPROTO
+#endif
+
+#if defined(__STDC__) || defined(VMS) || defined(M_XENIX) || defined(MSDOS)
+#ifndef __KERNEL__
+#include <string.h>
+#else
+#include <linux/string.h>
+#endif
+#endif
+
+#ifndef RAND
+#define RAND
+#endif
+
+#ifdef linux
+#undef RAND
+#endif
+
+#ifdef MSDOS
+#define getpid() 2
+#define RAND
+#undef NOPROTO
+#endif
+
+#if defined(NOCONST)
+#define const
+#endif
+
+#ifdef __STDC__
+#undef NOPROTO
+#endif
+
+#ifdef RAND
+#define srandom(s) srand(s)
+#define random rand
+#endif
+
+#define ITERATIONS 16
+#define HALF_ITERATIONS 8
+
+/* used in des_read and des_write */
+#define MAXWRITE       (1024*16)
+#define BSIZE          (MAXWRITE+4)
+
+#define c2l(c,l)       (l =((DES_LONG)(*((c)++)))    , \
+                        l|=((DES_LONG)(*((c)++)))<< 8L, \
+                        l|=((DES_LONG)(*((c)++)))<<16L, \
+                        l|=((DES_LONG)(*((c)++)))<<24L)
+
+/* NOTE - c is not incremented as per c2l */
+#define c2ln(c,l1,l2,n)        { \
+                       c+=n; \
+                       l1=l2=0; \
+                       switch (n) { \
+                       case 8: l2 =((DES_LONG)(*(--(c))))<<24L; \
+                       case 7: l2|=((DES_LONG)(*(--(c))))<<16L; \
+                       case 6: l2|=((DES_LONG)(*(--(c))))<< 8L; \
+                       case 5: l2|=((DES_LONG)(*(--(c))));     \
+                       case 4: l1 =((DES_LONG)(*(--(c))))<<24L; \
+                       case 3: l1|=((DES_LONG)(*(--(c))))<<16L; \
+                       case 2: l1|=((DES_LONG)(*(--(c))))<< 8L; \
+                       case 1: l1|=((DES_LONG)(*(--(c))));     \
+                               } \
+                       }
+
+#define l2c(l,c)       (*((c)++)=(unsigned char)(((l)     )&0xff), \
+                        *((c)++)=(unsigned char)(((l)>> 8L)&0xff), \
+                        *((c)++)=(unsigned char)(((l)>>16L)&0xff), \
+                        *((c)++)=(unsigned char)(((l)>>24L)&0xff))
+
+/* replacements for htonl and ntohl since I have no idea what to do
+ * when faced with machines with 8 byte longs. */
+#define HDRSIZE 4
+
+#define n2l(c,l)       (l =((DES_LONG)(*((c)++)))<<24L, \
+                        l|=((DES_LONG)(*((c)++)))<<16L, \
+                        l|=((DES_LONG)(*((c)++)))<< 8L, \
+                        l|=((DES_LONG)(*((c)++))))
+
+#define l2n(l,c)       (*((c)++)=(unsigned char)(((l)>>24L)&0xff), \
+                        *((c)++)=(unsigned char)(((l)>>16L)&0xff), \
+                        *((c)++)=(unsigned char)(((l)>> 8L)&0xff), \
+                        *((c)++)=(unsigned char)(((l)     )&0xff))
+
+/* NOTE - c is not incremented as per l2c */
+#define l2cn(l1,l2,c,n)        { \
+                       c+=n; \
+                       switch (n) { \
+                       case 8: *(--(c))=(unsigned char)(((l2)>>24L)&0xff); \
+                       case 7: *(--(c))=(unsigned char)(((l2)>>16L)&0xff); \
+                       case 6: *(--(c))=(unsigned char)(((l2)>> 8L)&0xff); \
+                       case 5: *(--(c))=(unsigned char)(((l2)     )&0xff); \
+                       case 4: *(--(c))=(unsigned char)(((l1)>>24L)&0xff); \
+                       case 3: *(--(c))=(unsigned char)(((l1)>>16L)&0xff); \
+                       case 2: *(--(c))=(unsigned char)(((l1)>> 8L)&0xff); \
+                       case 1: *(--(c))=(unsigned char)(((l1)     )&0xff); \
+                               } \
+                       }
+
+#if defined(WIN32)
+#define        ROTATE(a,n)     (_lrotr(a,n))
+#else
+#define        ROTATE(a,n)     (((a)>>(n))+((a)<<(32-(n))))
+#endif
+
+/* Don't worry about the LOAD_DATA() stuff, that is used by
+ * fcrypt() to add it's little bit to the front */
+
+#ifdef DES_FCRYPT
+
+#define LOAD_DATA_tmp(R,S,u,t,E0,E1) \
+       { DES_LONG tmp; LOAD_DATA(R,S,u,t,E0,E1,tmp); }
+
+#define LOAD_DATA(R,S,u,t,E0,E1,tmp) \
+       t=R^(R>>16L); \
+       u=t&E0; t&=E1; \
+       tmp=(u<<16); u^=R^s[S  ]; u^=tmp; \
+       tmp=(t<<16); t^=R^s[S+1]; t^=tmp
+#else
+#define LOAD_DATA_tmp(a,b,c,d,e,f) LOAD_DATA(a,b,c,d,e,f,g)
+#define LOAD_DATA(R,S,u,t,E0,E1,tmp) \
+       u=R^s[S  ]; \
+       t=R^s[S+1]
+#endif
+
+/* The changes to this macro may help or hinder, depending on the
+ * compiler and the achitecture.  gcc2 always seems to do well :-).
+ * Inspired by Dana How <how@isl.stanford.edu>
+ * DO NOT use the alternative version on machines with 8 byte longs.
+ * It does not seem to work on the Alpha, even when DES_LONG is 4
+ * bytes, probably an issue of accessing non-word aligned objects :-( */
+#ifdef DES_PTR
+
+/* It recently occured to me that 0^0^0^0^0^0^0 == 0, so there
+ * is no reason to not xor all the sub items together.  This potentially
+ * saves a register since things can be xored directly into L */
+
+#if defined(DES_RISC1) || defined(DES_RISC2)
+#ifdef DES_RISC1
+#define D_ENCRYPT(LL,R,S) { \
+       unsigned int u1,u2,u3; \
+       LOAD_DATA(R,S,u,t,E0,E1,u1); \
+       u2=(int)u>>8L; \
+       u1=(int)u&0xfc; \
+       u2&=0xfc; \
+       t=ROTATE(t,4); \
+       u>>=16L; \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP      +u1); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x200+u2); \
+       u3=(int)(u>>8L); \
+       u1=(int)u&0xfc; \
+       u3&=0xfc; \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x400+u1); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x600+u3); \
+       u2=(int)t>>8L; \
+       u1=(int)t&0xfc; \
+       u2&=0xfc; \
+       t>>=16L; \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x100+u1); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x300+u2); \
+       u3=(int)t>>8L; \
+       u1=(int)t&0xfc; \
+       u3&=0xfc; \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x500+u1); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x700+u3); }
+#endif
+#ifdef DES_RISC2
+#define D_ENCRYPT(LL,R,S) { \
+       unsigned int u1,u2,s1,s2; \
+       LOAD_DATA(R,S,u,t,E0,E1,u1); \
+       u2=(int)u>>8L; \
+       u1=(int)u&0xfc; \
+       u2&=0xfc; \
+       t=ROTATE(t,4); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP      +u1); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x200+u2); \
+       s1=(int)(u>>16L); \
+       s2=(int)(u>>24L); \
+       s1&=0xfc; \
+       s2&=0xfc; \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x400+s1); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x600+s2); \
+       u2=(int)t>>8L; \
+       u1=(int)t&0xfc; \
+       u2&=0xfc; \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x100+u1); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x300+u2); \
+       s1=(int)(t>>16L); \
+       s2=(int)(t>>24L); \
+       s1&=0xfc; \
+       s2&=0xfc; \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x500+s1); \
+       LL^= *(DES_LONG *)((unsigned char *)des_SP+0x700+s2); }
+#endif
+#else
+#define D_ENCRYPT(LL,R,S) { \
+       LOAD_DATA_tmp(R,S,u,t,E0,E1); \
+       t=ROTATE(t,4); \
+       LL^= \
+       *(DES_LONG *)((unsigned char *)des_SP      +((u     )&0xfc))^ \
+       *(DES_LONG *)((unsigned char *)des_SP+0x200+((u>> 8L)&0xfc))^ \
+       *(DES_LONG *)((unsigned char *)des_SP+0x400+((u>>16L)&0xfc))^ \
+       *(DES_LONG *)((unsigned char *)des_SP+0x600+((u>>24L)&0xfc))^ \
+       *(DES_LONG *)((unsigned char *)des_SP+0x100+((t     )&0xfc))^ \
+       *(DES_LONG *)((unsigned char *)des_SP+0x300+((t>> 8L)&0xfc))^ \
+       *(DES_LONG *)((unsigned char *)des_SP+0x500+((t>>16L)&0xfc))^ \
+       *(DES_LONG *)((unsigned char *)des_SP+0x700+((t>>24L)&0xfc)); }
+#endif
+
+#else /* original version */
+
+#if defined(DES_RISC1) || defined(DES_RISC2)
+#ifdef DES_RISC1
+#define D_ENCRYPT(LL,R,S) {\
+       unsigned int u1,u2,u3; \
+       LOAD_DATA(R,S,u,t,E0,E1,u1); \
+       u>>=2L; \
+       t=ROTATE(t,6); \
+       u2=(int)u>>8L; \
+       u1=(int)u&0x3f; \
+       u2&=0x3f; \
+       u>>=16L; \
+       LL^=des_SPtrans[0][u1]; \
+       LL^=des_SPtrans[2][u2]; \
+       u3=(int)u>>8L; \
+       u1=(int)u&0x3f; \
+       u3&=0x3f; \
+       LL^=des_SPtrans[4][u1]; \
+       LL^=des_SPtrans[6][u3]; \
+       u2=(int)t>>8L; \
+       u1=(int)t&0x3f; \
+       u2&=0x3f; \
+       t>>=16L; \
+       LL^=des_SPtrans[1][u1]; \
+       LL^=des_SPtrans[3][u2]; \
+       u3=(int)t>>8L; \
+       u1=(int)t&0x3f; \
+       u3&=0x3f; \
+       LL^=des_SPtrans[5][u1]; \
+       LL^=des_SPtrans[7][u3]; }
+#endif
+#ifdef DES_RISC2
+#define D_ENCRYPT(LL,R,S) {\
+       unsigned int u1,u2,s1,s2; \
+       LOAD_DATA(R,S,u,t,E0,E1,u1); \
+       u>>=2L; \
+       t=ROTATE(t,6); \
+       u2=(int)u>>8L; \
+       u1=(int)u&0x3f; \
+       u2&=0x3f; \
+       LL^=des_SPtrans[0][u1]; \
+       LL^=des_SPtrans[2][u2]; \
+       s1=(int)u>>16L; \
+       s2=(int)u>>24L; \
+       s1&=0x3f; \
+       s2&=0x3f; \
+       LL^=des_SPtrans[4][s1]; \
+       LL^=des_SPtrans[6][s2]; \
+       u2=(int)t>>8L; \
+       u1=(int)t&0x3f; \
+       u2&=0x3f; \
+       LL^=des_SPtrans[1][u1]; \
+       LL^=des_SPtrans[3][u2]; \
+       s1=(int)t>>16; \
+       s2=(int)t>>24L; \
+       s1&=0x3f; \
+       s2&=0x3f; \
+       LL^=des_SPtrans[5][s1]; \
+       LL^=des_SPtrans[7][s2]; }
+#endif
+
+#else
+
+#define D_ENCRYPT(LL,R,S) {\
+       LOAD_DATA_tmp(R,S,u,t,E0,E1); \
+       t=ROTATE(t,4); \
+       LL^=\
+               des_SPtrans[0][(u>> 2L)&0x3f]^ \
+               des_SPtrans[2][(u>>10L)&0x3f]^ \
+               des_SPtrans[4][(u>>18L)&0x3f]^ \
+               des_SPtrans[6][(u>>26L)&0x3f]^ \
+               des_SPtrans[1][(t>> 2L)&0x3f]^ \
+               des_SPtrans[3][(t>>10L)&0x3f]^ \
+               des_SPtrans[5][(t>>18L)&0x3f]^ \
+               des_SPtrans[7][(t>>26L)&0x3f]; }
+#endif
+#endif
+
+       /* IP and FP
+        * The problem is more of a geometric problem that random bit fiddling.
+        0  1  2  3  4  5  6  7      62 54 46 38 30 22 14  6
+        8  9 10 11 12 13 14 15      60 52 44 36 28 20 12  4
+       16 17 18 19 20 21 22 23      58 50 42 34 26 18 10  2
+       24 25 26 27 28 29 30 31  to  56 48 40 32 24 16  8  0
+
+       32 33 34 35 36 37 38 39      63 55 47 39 31 23 15  7
+       40 41 42 43 44 45 46 47      61 53 45 37 29 21 13  5
+       48 49 50 51 52 53 54 55      59 51 43 35 27 19 11  3
+       56 57 58 59 60 61 62 63      57 49 41 33 25 17  9  1
+
+       The output has been subject to swaps of the form
+       0 1 -> 3 1 but the odd and even bits have been put into
+       2 3    2 0
+       different words.  The main trick is to remember that
+       t=((l>>size)^r)&(mask);
+       r^=t;
+       l^=(t<<size);
+       can be used to swap and move bits between words.
+
+       So l =  0  1  2  3  r = 16 17 18 19
+               4  5  6  7      20 21 22 23
+               8  9 10 11      24 25 26 27
+              12 13 14 15      28 29 30 31
+       becomes (for size == 2 and mask == 0x3333)
+          t =   2^16  3^17 -- --   l =  0  1 16 17  r =  2  3 18 19
+                6^20  7^21 -- --        4  5 20 21       6  7 22 23
+               10^24 11^25 -- --        8  9 24 25      10 11 24 25
+               14^28 15^29 -- --       12 13 28 29      14 15 28 29
+
+       Thanks for hints from Richard Outerbridge - he told me IP&FP
+       could be done in 15 xor, 10 shifts and 5 ands.
+       When I finally started to think of the problem in 2D
+       I first got ~42 operations without xors.  When I remembered
+       how to use xors :-) I got it to its final state.
+       */
+#define PERM_OP(a,b,t,n,m) ((t)=((((a)>>(n))^(b))&(m)),\
+       (b)^=(t),\
+       (a)^=((t)<<(n)))
+
+#define IP(l,r) \
+       { \
+       register DES_LONG tt; \
+       PERM_OP(r,l,tt, 4,0x0f0f0f0fL); \
+       PERM_OP(l,r,tt,16,0x0000ffffL); \
+       PERM_OP(r,l,tt, 2,0x33333333L); \
+       PERM_OP(l,r,tt, 8,0x00ff00ffL); \
+       PERM_OP(r,l,tt, 1,0x55555555L); \
+       }
+
+#define FP(l,r) \
+       { \
+       register DES_LONG tt; \
+       PERM_OP(l,r,tt, 1,0x55555555L); \
+       PERM_OP(r,l,tt, 8,0x00ff00ffL); \
+       PERM_OP(l,r,tt, 2,0x33333333L); \
+       PERM_OP(r,l,tt,16,0x0000ffffL); \
+       PERM_OP(l,r,tt, 4,0x0f0f0f0fL); \
+       }
+
+extern const DES_LONG des_SPtrans[8][64];
+
+#ifndef NOPROTO
+void fcrypt_body(DES_LONG *out,des_key_schedule ks,
+       DES_LONG Eswap0, DES_LONG Eswap1);
+#else
+void fcrypt_body();
+#endif
+
+#endif
diff --git a/src/libfreeswan/libcrypto/libdes/des_opts.c b/src/libfreeswan/libcrypto/libdes/des_opts.c
new file mode 100644 (file)
index 0000000..b6693c4
--- /dev/null
@@ -0,0 +1,620 @@
+/* crypto/des/des_opts.c */
+/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+
+/* define PART1, PART2, PART3 or PART4 to build only with a few of the options.
+ * This is for machines with 64k code segment size restrictions. */
+
+#ifndef MSDOS
+#define TIMES
+#endif
+
+#include <stdio.h>
+#ifndef MSDOS
+#include <unistd.h>
+#else
+#include <io.h>
+extern void exit();
+#endif
+#include <signal.h>
+#ifndef VMS
+#ifndef _IRIX
+#include <time.h>
+#endif
+#ifdef TIMES
+#include <sys/types.h>
+#include <sys/times.h>
+#endif
+#else /* VMS */
+#include <types.h>
+struct tms {
+       time_t tms_utime;
+       time_t tms_stime;
+       time_t tms_uchild;      /* I dunno...  */
+       time_t tms_uchildsys;   /* so these names are a guess :-) */
+       }
+#endif
+#ifndef TIMES
+#include <sys/timeb.h>
+#endif
+
+#ifdef sun
+#include <limits.h>
+#include <sys/param.h>
+#endif
+
+#include "des_locl.h"
+#include "spr.h"
+
+#define DES_DEFAULT_OPTIONS
+
+#if !defined(PART1) && !defined(PART2) && !defined(PART3) && !defined(PART4)
+#define PART1
+#define PART2
+#define PART3
+#define PART4
+#endif
+
+#ifdef PART1
+
+#undef DES_UNROLL
+#undef DES_RISC1
+#undef DES_RISC2
+#undef DES_PTR
+#undef D_ENCRYPT
+#define des_encrypt  des_encrypt_u4_cisc_idx
+#define des_encrypt2 des_encrypt2_u4_cisc_idx
+#define des_encrypt3 des_encrypt3_u4_cisc_idx
+#define des_decrypt3 des_decrypt3_u4_cisc_idx
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#define DES_UNROLL
+#undef DES_RISC1
+#undef DES_RISC2
+#undef DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u16_cisc_idx
+#define des_encrypt2 des_encrypt2_u16_cisc_idx
+#define des_encrypt3 des_encrypt3_u16_cisc_idx
+#define des_decrypt3 des_decrypt3_u16_cisc_idx
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#undef DES_UNROLL
+#define DES_RISC1
+#undef DES_RISC2
+#undef DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u4_risc1_idx
+#define des_encrypt2 des_encrypt2_u4_risc1_idx
+#define des_encrypt3 des_encrypt3_u4_risc1_idx
+#define des_decrypt3 des_decrypt3_u4_risc1_idx
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#endif
+
+#ifdef PART2
+
+#undef DES_UNROLL
+#undef DES_RISC1
+#define DES_RISC2
+#undef DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u4_risc2_idx
+#define des_encrypt2 des_encrypt2_u4_risc2_idx
+#define des_encrypt3 des_encrypt3_u4_risc2_idx
+#define des_decrypt3 des_decrypt3_u4_risc2_idx
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#define DES_UNROLL
+#define DES_RISC1
+#undef DES_RISC2
+#undef DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u16_risc1_idx
+#define des_encrypt2 des_encrypt2_u16_risc1_idx
+#define des_encrypt3 des_encrypt3_u16_risc1_idx
+#define des_decrypt3 des_decrypt3_u16_risc1_idx
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#define DES_UNROLL
+#undef DES_RISC1
+#define DES_RISC2
+#undef DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u16_risc2_idx
+#define des_encrypt2 des_encrypt2_u16_risc2_idx
+#define des_encrypt3 des_encrypt3_u16_risc2_idx
+#define des_decrypt3 des_decrypt3_u16_risc2_idx
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#endif
+
+#ifdef PART3
+
+#undef DES_UNROLL
+#undef DES_RISC1
+#undef DES_RISC2
+#define DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u4_cisc_ptr
+#define des_encrypt2 des_encrypt2_u4_cisc_ptr
+#define des_encrypt3 des_encrypt3_u4_cisc_ptr
+#define des_decrypt3 des_decrypt3_u4_cisc_ptr
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#define DES_UNROLL
+#undef DES_RISC1
+#undef DES_RISC2
+#define DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u16_cisc_ptr
+#define des_encrypt2 des_encrypt2_u16_cisc_ptr
+#define des_encrypt3 des_encrypt3_u16_cisc_ptr
+#define des_decrypt3 des_decrypt3_u16_cisc_ptr
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#undef DES_UNROLL
+#define DES_RISC1
+#undef DES_RISC2
+#define DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u4_risc1_ptr
+#define des_encrypt2 des_encrypt2_u4_risc1_ptr
+#define des_encrypt3 des_encrypt3_u4_risc1_ptr
+#define des_decrypt3 des_decrypt3_u4_risc1_ptr
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#endif
+
+#ifdef PART4
+
+#undef DES_UNROLL
+#undef DES_RISC1
+#define DES_RISC2
+#define DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u4_risc2_ptr
+#define des_encrypt2 des_encrypt2_u4_risc2_ptr
+#define des_encrypt3 des_encrypt3_u4_risc2_ptr
+#define des_decrypt3 des_decrypt3_u4_risc2_ptr
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#define DES_UNROLL
+#define DES_RISC1
+#undef DES_RISC2
+#define DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u16_risc1_ptr
+#define des_encrypt2 des_encrypt2_u16_risc1_ptr
+#define des_encrypt3 des_encrypt3_u16_risc1_ptr
+#define des_decrypt3 des_decrypt3_u16_risc1_ptr
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#define DES_UNROLL
+#undef DES_RISC1
+#define DES_RISC2
+#define DES_PTR
+#undef D_ENCRYPT
+#undef des_encrypt
+#undef des_encrypt2
+#undef des_encrypt3
+#undef des_decrypt3
+#define des_encrypt  des_encrypt_u16_risc2_ptr
+#define des_encrypt2 des_encrypt2_u16_risc2_ptr
+#define des_encrypt3 des_encrypt3_u16_risc2_ptr
+#define des_decrypt3 des_decrypt3_u16_risc2_ptr
+#undef HEADER_DES_LOCL_H
+#include "des_enc.c"
+
+#endif
+
+/* The following if from times(3) man page.  It may need to be changed */
+#ifndef HZ
+# ifndef CLK_TCK
+#  ifndef _BSD_CLK_TCK_ /* FreeBSD fix */
+#   ifndef VMS
+#    define HZ 100.0
+#   else /* VMS */
+#    define HZ 100.0
+#   endif
+#  else /* _BSD_CLK_TCK_ */
+#   define HZ ((double)_BSD_CLK_TCK_)
+#  endif
+# else /* CLK_TCK */
+#  define HZ ((double)CLK_TCK)
+# endif
+#endif
+
+#define BUFSIZE        ((long)1024)
+long run=0;
+
+#ifndef NOPROTO
+double Time_F(int s);
+#else
+double Time_F();
+#endif
+
+#ifdef SIGALRM
+#if defined(__STDC__) || defined(sgi)
+#define SIGRETTYPE void
+#else
+#define SIGRETTYPE int
+#endif
+
+#ifndef NOPROTO
+SIGRETTYPE sig_done(int sig);
+#else
+SIGRETTYPE sig_done();
+#endif
+
+SIGRETTYPE sig_done(sig)
+int sig;
+       {
+       signal(SIGALRM,sig_done);
+       run=0;
+#ifdef LINT
+       sig=sig;
+#endif
+       }
+#endif
+
+#define START  0
+#define STOP   1
+
+double Time_F(s)
+int s;
+       {
+       double ret;
+#ifdef TIMES
+       static struct tms tstart,tend;
+
+       if (s == START)
+               {
+               times(&tstart);
+               return(0);
+               }
+       else
+               {
+               times(&tend);
+               ret=((double)(tend.tms_utime-tstart.tms_utime))/HZ;
+               return((ret == 0.0)?1e-6:ret);
+               }
+#else /* !times() */
+       static struct timeb tstart,tend;
+       long i;
+
+       if (s == START)
+               {
+               ftime(&tstart);
+               return(0);
+               }
+       else
+               {
+               ftime(&tend);
+               i=(long)tend.millitm-(long)tstart.millitm;
+               ret=((double)(tend.time-tstart.time))+((double)i)/1000.0;
+               return((ret == 0.0)?1e-6:ret);
+               }
+#endif
+       }
+
+#ifdef SIGALRM
+#define print_name(name) fprintf(stderr,"Doing %s's for 10 seconds\n",name); alarm(10);
+#else
+#define print_name(name) fprintf(stderr,"Doing %s %ld times\n",name,cb);
+#endif
+       
+#define time_it(func,name,index) \
+       print_name(name); \
+       Time_F(START); \
+       for (count=0,run=1; COND(cb); count++) \
+               { \
+               unsigned long d[2]; \
+               func(d,&(sch[0]),DES_ENCRYPT); \
+               } \
+       tm[index]=Time_F(STOP); \
+       fprintf(stderr,"%ld %s's in %.2f second\n",count,name,tm[index]); \
+       tm[index]=((double)COUNT(cb))/tm[index];
+
+#define print_it(name,index) \
+       fprintf(stderr,"%s bytes per sec = %12.2f (%5.1fuS)\n",name, \
+               tm[index]*8,1.0e6/tm[index]);
+
+int main(argc,argv)
+int argc;
+char **argv;
+       {
+       long count;
+       static unsigned char buf[BUFSIZE];
+       static des_cblock key ={0x12,0x34,0x56,0x78,0x9a,0xbc,0xde,0xf0};
+       static des_cblock key2={0x34,0x56,0x78,0x9a,0xbc,0xde,0xf0,0x12};
+       static des_cblock key3={0x56,0x78,0x9a,0xbc,0xde,0xf0,0x12,0x34};
+       des_key_schedule sch,sch2,sch3;
+       double d,tm[16],max=0;
+       int rank[16];
+       char *str[16];
+       int max_idx=0,i,num=0,j;
+#ifndef SIGALARM
+       long ca,cb,cc,cd,ce;
+#endif
+
+       for (i=0; i<12; i++)
+               {
+               tm[i]=0.0;
+               rank[i]=0;
+               }
+
+#ifndef TIMES
+       fprintf(stderr,"To get the most acurate results, try to run this\n");
+       fprintf(stderr,"program when this computer is idle.\n");
+#endif
+
+       des_set_key((C_Block *)key,sch);
+       des_set_key((C_Block *)key2,sch2);
+       des_set_key((C_Block *)key3,sch3);
+
+#ifndef SIGALRM
+       fprintf(stderr,"First we calculate the approximate speed ...\n");
+       des_set_key((C_Block *)key,sch);
+       count=10;
+       do      {
+               long i;
+               unsigned long data[2];
+
+               count*=2;
+               Time_F(START);
+               for (i=count; i; i--)
+                       des_encrypt(data,&(sch[0]),DES_ENCRYPT);
+               d=Time_F(STOP);
+               } while (d < 3.0);
+       ca=count;
+       cb=count*3;
+       cc=count*3*8/BUFSIZE+1;
+       cd=count*8/BUFSIZE+1;
+
+       ce=count/20+1;
+#define COND(d) (count != (d))
+#define COUNT(d) (d)
+#else
+#define COND(c) (run)
+#define COUNT(d) (count)
+        signal(SIGALRM,sig_done);
+        alarm(10);
+#endif
+
+#ifdef PART1
+       time_it(des_encrypt_u4_cisc_idx,  "des_encrypt_u4_cisc_idx  ", 0);
+       time_it(des_encrypt_u16_cisc_idx, "des_encrypt_u16_cisc_idx ", 1);
+       time_it(des_encrypt_u4_risc1_idx, "des_encrypt_u4_risc1_idx ", 2);
+       num+=3;
+#endif
+#ifdef PART2
+       time_it(des_encrypt_u16_risc1_idx,"des_encrypt_u16_risc1_idx", 3);
+       time_it(des_encrypt_u4_risc2_idx, "des_encrypt_u4_risc2_idx ", 4);
+       time_it(des_encrypt_u16_risc2_idx,"des_encrypt_u16_risc2_idx", 5);
+       num+=3;
+#endif
+#ifdef PART3
+       time_it(des_encrypt_u4_cisc_ptr,  "des_encrypt_u4_cisc_ptr  ", 6);
+       time_it(des_encrypt_u16_cisc_ptr, "des_encrypt_u16_cisc_ptr ", 7);
+       time_it(des_encrypt_u4_risc1_ptr, "des_encrypt_u4_risc1_ptr ", 8);
+       num+=3;
+#endif
+#ifdef PART4
+       time_it(des_encrypt_u16_risc1_ptr,"des_encrypt_u16_risc1_ptr", 9);
+       time_it(des_encrypt_u4_risc2_ptr, "des_encrypt_u4_risc2_ptr ",10);
+       time_it(des_encrypt_u16_risc2_ptr,"des_encrypt_u16_risc2_ptr",11);
+       num+=3;
+#endif
+
+#ifdef PART1
+       str[0]=" 4  c i";
+       print_it("des_encrypt_u4_cisc_idx  ",0);
+       max=tm[0];
+       max_idx=0;
+       str[1]="16  c i";
+       print_it("des_encrypt_u16_cisc_idx ",1);
+       if (max < tm[1]) { max=tm[1]; max_idx=1; }
+       str[2]=" 4 r1 i";
+       print_it("des_encrypt_u4_risc1_idx ",2);
+       if (max < tm[2]) { max=tm[2]; max_idx=2; }
+#endif
+#ifdef PART2
+       str[3]="16 r1 i";
+       print_it("des_encrypt_u16_risc1_idx",3);
+       if (max < tm[3]) { max=tm[3]; max_idx=3; }
+       str[4]=" 4 r2 i";
+       print_it("des_encrypt_u4_risc2_idx ",4);
+       if (max < tm[4]) { max=tm[4]; max_idx=4; }
+       str[5]="16 r2 i";
+       print_it("des_encrypt_u16_risc2_idx",5);
+       if (max < tm[5]) { max=tm[5]; max_idx=5; }
+#endif
+#ifdef PART3
+       str[6]=" 4  c p";
+       print_it("des_encrypt_u4_cisc_ptr  ",6);
+       if (max < tm[6]) { max=tm[6]; max_idx=6; }
+       str[7]="16  c p";
+       print_it("des_encrypt_u16_cisc_ptr ",7);
+       if (max < tm[7]) { max=tm[7]; max_idx=7; }
+       str[8]=" 4 r1 p";
+       print_it("des_encrypt_u4_risc1_ptr ",8);
+       if (max < tm[8]) { max=tm[8]; max_idx=8; }
+#endif
+#ifdef PART4
+       str[9]="16 r1 p";
+       print_it("des_encrypt_u16_risc1_ptr",9);
+       if (max < tm[9]) { max=tm[9]; max_idx=9; }
+       str[10]=" 4 r2 p";
+       print_it("des_encrypt_u4_risc2_ptr ",10);
+       if (max < tm[10]) { max=tm[10]; max_idx=10; }
+       str[11]="16 r2 p";
+       print_it("des_encrypt_u16_risc2_ptr",11);
+       if (max < tm[11]) { max=tm[11]; max_idx=11; }
+#endif
+       printf("options    des ecb/s\n");
+       printf("%s %12.2f 100.0%%\n",str[max_idx],tm[max_idx]);
+       d=tm[max_idx];
+       tm[max_idx]= -2.0;
+       max= -1.0;
+       for (;;)
+               {
+               for (i=0; i<12; i++)
+                       {
+                       if (max < tm[i]) { max=tm[i]; j=i; }
+                       }
+               if (max < 0.0) break;
+               printf("%s %12.2f  %4.1f%%\n",str[j],tm[j],tm[j]/d*100.0);
+               tm[j]= -2.0;
+               max= -1.0;
+               }
+
+       switch (max_idx)
+               {
+       case 0:
+               printf("-DDES_DEFAULT_OPTIONS\n");
+               break;
+       case 1:
+               printf("-DDES_UNROLL\n");
+               break;
+       case 2:
+               printf("-DDES_RISC1\n");
+               break;
+       case 3:
+               printf("-DDES_UNROLL -DDES_RISC1\n");
+               break;
+       case 4:
+               printf("-DDES_RISC2\n");
+               break;
+       case 5:
+               printf("-DDES_UNROLL -DDES_RISC2\n");
+               break;
+       case 6:
+               printf("-DDES_PTR\n");
+               break;
+       case 7:
+               printf("-DDES_UNROLL -DDES_PTR\n");
+               break;
+       case 8:
+               printf("-DDES_RISC1 -DDES_PTR\n");
+               break;
+       case 9:
+               printf("-DDES_UNROLL -DDES_RISC1 -DDES_PTR\n");
+               break;
+       case 10:
+               printf("-DDES_RISC2 -DDES_PTR\n");
+               break;
+       case 11:
+               printf("-DDES_UNROLL -DDES_RISC2 -DDES_PTR\n");
+               break;
+               }
+       exit(0);
+#if defined(LINT) || defined(MSDOS)
+       return(0);
+#endif
+       }
diff --git a/src/libfreeswan/libcrypto/libdes/des_ver.h b/src/libfreeswan/libcrypto/libdes/des_ver.h
new file mode 100644 (file)
index 0000000..98352bc
--- /dev/null
@@ -0,0 +1,60 @@
+/* crypto/des/des_ver.h */
+/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+
+extern char *DES_version;      /* SSLeay version string */
+extern char *libdes_version;   /* old libdes version string */
diff --git a/src/libfreeswan/libcrypto/libdes/destest.c b/src/libfreeswan/libcrypto/libdes/destest.c
new file mode 100644 (file)
index 0000000..ae89649
--- /dev/null
@@ -0,0 +1,871 @@
+/* crypto/des/destest.c */
+/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+
+#if defined(WIN32) || defined(WIN16) || defined(WINDOWS)
+#ifndef MSDOS
+#define MSDOS
+#endif
+#endif
+
+#include <stdio.h>
+#include <stdlib.h>
+#ifndef MSDOS
+#include <unistd.h>
+#else
+#include <io.h>
+#endif
+#include <string.h>
+#include "des_locl.h"
+
+/* tisk tisk - the test keys don't all have odd parity :-( */
+/* test data */
+#define NUM_TESTS 34
+static unsigned char key_data[NUM_TESTS][8]={
+       {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+       {0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF},
+       {0x30,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+       {0x11,0x11,0x11,0x11,0x11,0x11,0x11,0x11},
+       {0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF},
+       {0x11,0x11,0x11,0x11,0x11,0x11,0x11,0x11},
+       {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+       {0xFE,0xDC,0xBA,0x98,0x76,0x54,0x32,0x10},
+       {0x7C,0xA1,0x10,0x45,0x4A,0x1A,0x6E,0x57},
+       {0x01,0x31,0xD9,0x61,0x9D,0xC1,0x37,0x6E},
+       {0x07,0xA1,0x13,0x3E,0x4A,0x0B,0x26,0x86},
+       {0x38,0x49,0x67,0x4C,0x26,0x02,0x31,0x9E},
+       {0x04,0xB9,0x15,0xBA,0x43,0xFE,0xB5,0xB6},
+       {0x01,0x13,0xB9,0x70,0xFD,0x34,0xF2,0xCE},
+       {0x01,0x70,0xF1,0x75,0x46,0x8F,0xB5,0xE6},
+       {0x43,0x29,0x7F,0xAD,0x38,0xE3,0x73,0xFE},
+       {0x07,0xA7,0x13,0x70,0x45,0xDA,0x2A,0x16},
+       {0x04,0x68,0x91,0x04,0xC2,0xFD,0x3B,0x2F},
+       {0x37,0xD0,0x6B,0xB5,0x16,0xCB,0x75,0x46},
+       {0x1F,0x08,0x26,0x0D,0x1A,0xC2,0x46,0x5E},
+       {0x58,0x40,0x23,0x64,0x1A,0xBA,0x61,0x76},
+       {0x02,0x58,0x16,0x16,0x46,0x29,0xB0,0x07},
+       {0x49,0x79,0x3E,0xBC,0x79,0xB3,0x25,0x8F},
+       {0x4F,0xB0,0x5E,0x15,0x15,0xAB,0x73,0xA7},
+       {0x49,0xE9,0x5D,0x6D,0x4C,0xA2,0x29,0xBF},
+       {0x01,0x83,0x10,0xDC,0x40,0x9B,0x26,0xD6},
+       {0x1C,0x58,0x7F,0x1C,0x13,0x92,0x4F,0xEF},
+       {0x01,0x01,0x01,0x01,0x01,0x01,0x01,0x01},
+       {0x1F,0x1F,0x1F,0x1F,0x0E,0x0E,0x0E,0x0E},
+       {0xE0,0xFE,0xE0,0xFE,0xF1,0xFE,0xF1,0xFE},
+       {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+       {0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF},
+       {0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF},
+       {0xFE,0xDC,0xBA,0x98,0x76,0x54,0x32,0x10}};
+
+static unsigned char plain_data[NUM_TESTS][8]={
+       {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+       {0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF},
+       {0x10,0x00,0x00,0x00,0x00,0x00,0x00,0x01},
+       {0x11,0x11,0x11,0x11,0x11,0x11,0x11,0x11},
+       {0x11,0x11,0x11,0x11,0x11,0x11,0x11,0x11},
+       {0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF},
+       {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+       {0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF},
+       {0x01,0xA1,0xD6,0xD0,0x39,0x77,0x67,0x42},
+       {0x5C,0xD5,0x4C,0xA8,0x3D,0xEF,0x57,0xDA},
+       {0x02,0x48,0xD4,0x38,0x06,0xF6,0x71,0x72},
+       {0x51,0x45,0x4B,0x58,0x2D,0xDF,0x44,0x0A},
+       {0x42,0xFD,0x44,0x30,0x59,0x57,0x7F,0xA2},
+       {0x05,0x9B,0x5E,0x08,0x51,0xCF,0x14,0x3A},
+       {0x07,0x56,0xD8,0xE0,0x77,0x47,0x61,0xD2},
+       {0x76,0x25,0x14,0xB8,0x29,0xBF,0x48,0x6A},
+       {0x3B,0xDD,0x11,0x90,0x49,0x37,0x28,0x02},
+       {0x26,0x95,0x5F,0x68,0x35,0xAF,0x60,0x9A},
+       {0x16,0x4D,0x5E,0x40,0x4F,0x27,0x52,0x32},
+       {0x6B,0x05,0x6E,0x18,0x75,0x9F,0x5C,0xCA},
+       {0x00,0x4B,0xD6,0xEF,0x09,0x17,0x60,0x62},
+       {0x48,0x0D,0x39,0x00,0x6E,0xE7,0x62,0xF2},
+       {0x43,0x75,0x40,0xC8,0x69,0x8F,0x3C,0xFA},
+       {0x07,0x2D,0x43,0xA0,0x77,0x07,0x52,0x92},
+       {0x02,0xFE,0x55,0x77,0x81,0x17,0xF1,0x2A},
+       {0x1D,0x9D,0x5C,0x50,0x18,0xF7,0x28,0xC2},
+       {0x30,0x55,0x32,0x28,0x6D,0x6F,0x29,0x5A},
+       {0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF},
+       {0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF},
+       {0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF},
+       {0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF},
+       {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+       {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+       {0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF}};
+
+static unsigned char cipher_data[NUM_TESTS][8]={
+       {0x8C,0xA6,0x4D,0xE9,0xC1,0xB1,0x23,0xA7},
+       {0x73,0x59,0xB2,0x16,0x3E,0x4E,0xDC,0x58},
+       {0x95,0x8E,0x6E,0x62,0x7A,0x05,0x55,0x7B},
+       {0xF4,0x03,0x79,0xAB,0x9E,0x0E,0xC5,0x33},
+       {0x17,0x66,0x8D,0xFC,0x72,0x92,0x53,0x2D},
+       {0x8A,0x5A,0xE1,0xF8,0x1A,0xB8,0xF2,0xDD},
+       {0x8C,0xA6,0x4D,0xE9,0xC1,0xB1,0x23,0xA7},
+       {0xED,0x39,0xD9,0x50,0xFA,0x74,0xBC,0xC4},
+       {0x69,0x0F,0x5B,0x0D,0x9A,0x26,0x93,0x9B},
+       {0x7A,0x38,0x9D,0x10,0x35,0x4B,0xD2,0x71},
+       {0x86,0x8E,0xBB,0x51,0xCA,0xB4,0x59,0x9A},
+       {0x71,0x78,0x87,0x6E,0x01,0xF1,0x9B,0x2A},
+       {0xAF,0x37,0xFB,0x42,0x1F,0x8C,0x40,0x95},
+       {0x86,0xA5,0x60,0xF1,0x0E,0xC6,0xD8,0x5B},
+       {0x0C,0xD3,0xDA,0x02,0x00,0x21,0xDC,0x09},
+       {0xEA,0x67,0x6B,0x2C,0xB7,0xDB,0x2B,0x7A},
+       {0xDF,0xD6,0x4A,0x81,0x5C,0xAF,0x1A,0x0F},
+       {0x5C,0x51,0x3C,0x9C,0x48,0x86,0xC0,0x88},
+       {0x0A,0x2A,0xEE,0xAE,0x3F,0xF4,0xAB,0x77},
+       {0xEF,0x1B,0xF0,0x3E,0x5D,0xFA,0x57,0x5A},
+       {0x88,0xBF,0x0D,0xB6,0xD7,0x0D,0xEE,0x56},
+       {0xA1,0xF9,0x91,0x55,0x41,0x02,0x0B,0x56},
+       {0x6F,0xBF,0x1C,0xAF,0xCF,0xFD,0x05,0x56},
+       {0x2F,0x22,0xE4,0x9B,0xAB,0x7C,0xA1,0xAC},
+       {0x5A,0x6B,0x61,0x2C,0xC2,0x6C,0xCE,0x4A},
+       {0x5F,0x4C,0x03,0x8E,0xD1,0x2B,0x2E,0x41},
+       {0x63,0xFA,0xC0,0xD0,0x34,0xD9,0xF7,0x93},
+       {0x61,0x7B,0x3A,0x0C,0xE8,0xF0,0x71,0x00},
+       {0xDB,0x95,0x86,0x05,0xF8,0xC8,0xC6,0x06},
+       {0xED,0xBF,0xD1,0xC6,0x6C,0x29,0xCC,0xC7},
+       {0x35,0x55,0x50,0xB2,0x15,0x0E,0x24,0x51},
+       {0xCA,0xAA,0xAF,0x4D,0xEA,0xF1,0xDB,0xAE},
+       {0xD5,0xD4,0x4F,0xF7,0x20,0x68,0x3D,0x0D},
+       {0x2A,0x2B,0xB0,0x08,0xDF,0x97,0xC2,0xF2}};
+
+static unsigned char cipher_ecb2[NUM_TESTS-1][8]={
+       {0x92,0x95,0xB5,0x9B,0xB3,0x84,0x73,0x6E},
+       {0x19,0x9E,0x9D,0x6D,0xF3,0x9A,0xA8,0x16},
+       {0x2A,0x4B,0x4D,0x24,0x52,0x43,0x84,0x27},
+       {0x35,0x84,0x3C,0x01,0x9D,0x18,0xC5,0xB6},
+       {0x4A,0x5B,0x2F,0x42,0xAA,0x77,0x19,0x25},
+       {0xA0,0x6B,0xA9,0xB8,0xCA,0x5B,0x17,0x8A},
+       {0xAB,0x9D,0xB7,0xFB,0xED,0x95,0xF2,0x74},
+       {0x3D,0x25,0x6C,0x23,0xA7,0x25,0x2F,0xD6},
+       {0xB7,0x6F,0xAB,0x4F,0xBD,0xBD,0xB7,0x67},
+       {0x8F,0x68,0x27,0xD6,0x9C,0xF4,0x1A,0x10},
+       {0x82,0x57,0xA1,0xD6,0x50,0x5E,0x81,0x85},
+       {0xA2,0x0F,0x0A,0xCD,0x80,0x89,0x7D,0xFA},
+       {0xCD,0x2A,0x53,0x3A,0xDB,0x0D,0x7E,0xF3},
+       {0xD2,0xC2,0xBE,0x27,0xE8,0x1B,0x68,0xE3},
+       {0xE9,0x24,0xCF,0x4F,0x89,0x3C,0x5B,0x0A},
+       {0xA7,0x18,0xC3,0x9F,0xFA,0x9F,0xD7,0x69},
+       {0x77,0x2C,0x79,0xB1,0xD2,0x31,0x7E,0xB1},
+       {0x49,0xAB,0x92,0x7F,0xD0,0x22,0x00,0xB7},
+       {0xCE,0x1C,0x6C,0x7D,0x85,0xE3,0x4A,0x6F},
+       {0xBE,0x91,0xD6,0xE1,0x27,0xB2,0xE9,0x87},
+       {0x70,0x28,0xAE,0x8F,0xD1,0xF5,0x74,0x1A},
+       {0xAA,0x37,0x80,0xBB,0xF3,0x22,0x1D,0xDE},
+       {0xA6,0xC4,0xD2,0x5E,0x28,0x93,0xAC,0xB3},
+       {0x22,0x07,0x81,0x5A,0xE4,0xB7,0x1A,0xAD},
+       {0xDC,0xCE,0x05,0xE7,0x07,0xBD,0xF5,0x84},
+       {0x26,0x1D,0x39,0x2C,0xB3,0xBA,0xA5,0x85},
+       {0xB4,0xF7,0x0F,0x72,0xFB,0x04,0xF0,0xDC},
+       {0x95,0xBA,0xA9,0x4E,0x87,0x36,0xF2,0x89},
+       {0xD4,0x07,0x3A,0xF1,0x5A,0x17,0x82,0x0E},
+       {0xEF,0x6F,0xAF,0xA7,0x66,0x1A,0x7E,0x89},
+       {0xC1,0x97,0xF5,0x58,0x74,0x8A,0x20,0xE7},
+       {0x43,0x34,0xCF,0xDA,0x22,0xC4,0x86,0xC8},
+       {0x08,0xD7,0xB4,0xFB,0x62,0x9D,0x08,0x85}};
+
+static unsigned char cbc_key [8]={0x01,0x23,0x45,0x67,0x89,0xab,0xcd,0xef};
+static unsigned char cbc2_key[8]={0xf0,0xe1,0xd2,0xc3,0xb4,0xa5,0x96,0x87};
+static unsigned char cbc3_key[8]={0xfe,0xdc,0xba,0x98,0x76,0x54,0x32,0x10};
+static unsigned char cbc_iv  [8]={0xfe,0xdc,0xba,0x98,0x76,0x54,0x32,0x10};
+static char cbc_data[40]="7654321 Now is the time for \0001";
+
+static unsigned char cbc_ok[32]={
+       0xcc,0xd1,0x73,0xff,0xab,0x20,0x39,0xf4,
+       0xac,0xd8,0xae,0xfd,0xdf,0xd8,0xa1,0xeb,
+       0x46,0x8e,0x91,0x15,0x78,0x88,0xba,0x68,
+       0x1d,0x26,0x93,0x97,0xf7,0xfe,0x62,0xb4};
+
+static unsigned char xcbc_ok[32]={
+       0x86,0x74,0x81,0x0D,0x61,0xA4,0xA5,0x48,
+       0xB9,0x93,0x03,0xE1,0xB8,0xBB,0xBD,0xBD,
+       0x64,0x30,0x0B,0xB9,0x06,0x65,0x81,0x76,
+       0x04,0x1D,0x77,0x62,0x17,0xCA,0x2B,0xD2,
+       };
+
+static unsigned char cbc3_ok[32]={
+       0x3F,0xE3,0x01,0xC9,0x62,0xAC,0x01,0xD0,
+       0x22,0x13,0x76,0x3C,0x1C,0xBD,0x4C,0xDC,
+       0x79,0x96,0x57,0xC0,0x64,0xEC,0xF5,0xD4,
+       0x1C,0x67,0x38,0x12,0xCF,0xDE,0x96,0x75};
+
+static unsigned char pcbc_ok[32]={
+       0xcc,0xd1,0x73,0xff,0xab,0x20,0x39,0xf4,
+       0x6d,0xec,0xb4,0x70,0xa0,0xe5,0x6b,0x15,
+       0xae,0xa6,0xbf,0x61,0xed,0x7d,0x9c,0x9f,
+       0xf7,0x17,0x46,0x3b,0x8a,0xb3,0xcc,0x88};
+
+static unsigned char cfb_key[8]={0x01,0x23,0x45,0x67,0x89,0xab,0xcd,0xef};
+static unsigned char cfb_iv[8]={0x12,0x34,0x56,0x78,0x90,0xab,0xcd,0xef};
+static unsigned char cfb_buf1[40],cfb_buf2[40],cfb_tmp[8];
+static unsigned char plain[24]=
+       {
+       0x4e,0x6f,0x77,0x20,0x69,0x73,
+       0x20,0x74,0x68,0x65,0x20,0x74,
+       0x69,0x6d,0x65,0x20,0x66,0x6f,
+       0x72,0x20,0x61,0x6c,0x6c,0x20
+       };
+static unsigned char cfb_cipher8[24]= {
+       0xf3,0x1f,0xda,0x07,0x01,0x14, 0x62,0xee,0x18,0x7f,0x43,0xd8,
+       0x0a,0x7c,0xd9,0xb5,0xb0,0xd2, 0x90,0xda,0x6e,0x5b,0x9a,0x87 };
+static unsigned char cfb_cipher16[24]={
+       0xF3,0x09,0x87,0x87,0x7F,0x57, 0xF7,0x3C,0x36,0xB6,0xDB,0x70,
+       0xD8,0xD5,0x34,0x19,0xD3,0x86, 0xB2,0x23,0xB7,0xB2,0xAD,0x1B };
+static unsigned char cfb_cipher32[24]={
+       0xF3,0x09,0x62,0x49,0xA4,0xDF, 0xA4,0x9F,0x33,0xDC,0x7B,0xAD,
+       0x4C,0xC8,0x9F,0x64,0xE4,0x53, 0xE5,0xEC,0x67,0x20,0xDA,0xB6 };
+static unsigned char cfb_cipher48[24]={
+       0xF3,0x09,0x62,0x49,0xC7,0xF4, 0x30,0xB5,0x15,0xEC,0xBB,0x85,
+       0x97,0x5A,0x13,0x8C,0x68,0x60, 0xE2,0x38,0x34,0x3C,0xDC,0x1F };
+static unsigned char cfb_cipher64[24]={
+       0xF3,0x09,0x62,0x49,0xC7,0xF4, 0x6E,0x51,0xA6,0x9E,0x83,0x9B,
+       0x1A,0x92,0xF7,0x84,0x03,0x46, 0x71,0x33,0x89,0x8E,0xA6,0x22 };
+
+static unsigned char ofb_key[8]={0x01,0x23,0x45,0x67,0x89,0xab,0xcd,0xef};
+static unsigned char ofb_iv[8]={0x12,0x34,0x56,0x78,0x90,0xab,0xcd,0xef};
+static unsigned char ofb_buf1[24],ofb_buf2[24],ofb_tmp[8];
+static unsigned char ofb_cipher[24]=
+       {
+       0xf3,0x09,0x62,0x49,0xc7,0xf4,0x6e,0x51,
+       0x35,0xf2,0x4a,0x24,0x2e,0xeb,0x3d,0x3f,
+       0x3d,0x6d,0x5b,0xe3,0x25,0x5a,0xf8,0xc3
+       };
+
+DES_LONG cbc_cksum_ret=0xB462FEF7L;
+unsigned char cbc_cksum_data[8]={0x1D,0x26,0x93,0x97,0xf7,0xfe,0x62,0xb4};
+
+#ifndef NOPROTO
+static char *pt(unsigned char *p);
+static int cfb_test(int bits, unsigned char *cfb_cipher);
+static int cfb64_test(unsigned char *cfb_cipher);
+static int ede_cfb64_test(unsigned char *cfb_cipher);
+#else
+static char *pt();
+static int cfb_test();
+static int cfb64_test();
+static int ede_cfb64_test();
+#endif
+
+int main(argc,argv)
+int argc;
+char *argv[];
+       {
+       int i,j,err=0;
+       des_cblock in,out,outin,iv3;
+       des_key_schedule ks,ks2,ks3;
+       unsigned char cbc_in[40];
+       unsigned char cbc_out[40];
+       DES_LONG cs;
+       unsigned char qret[4][4],cret[8];
+       DES_LONG lqret[4];
+       int num;
+       char *str;
+
+       printf("Doing ecb\n");
+       for (i=0; i<NUM_TESTS; i++)
+               {
+               if ((j=des_key_sched((C_Block *)(key_data[i]),ks)) != 0)
+                       {
+                       printf("Key error %2d:%d\n",i+1,j);
+                       err=1;
+                       }
+               memcpy(in,plain_data[i],8);
+               memset(out,0,8);
+               memset(outin,0,8);
+               des_ecb_encrypt((C_Block *)in,(C_Block *)out,ks,DES_ENCRYPT);
+               des_ecb_encrypt((C_Block *)out,(C_Block *)outin,ks,DES_DECRYPT);
+
+               if (memcmp(out,cipher_data[i],8) != 0)
+                       {
+                       printf("Encryption error %2d\nk=%s p=%s o=%s act=%s\n",
+                               i+1,pt(key_data[i]),pt(in),pt(cipher_data[i]),
+                               pt(out));
+                       err=1;
+                       }
+               if (memcmp(in,outin,8) != 0)
+                       {
+                       printf("Decryption error %2d\nk=%s p=%s o=%s act=%s\n",
+                               i+1,pt(key_data[i]),pt(out),pt(in),pt(outin));
+                       err=1;
+                       }
+               }
+
+#ifndef LIBDES_LIT
+       printf("Doing ede ecb\n");
+       for (i=0; i<(NUM_TESTS-1); i++)
+               {
+               if ((j=des_key_sched((C_Block *)(key_data[i]),ks)) != 0)
+                       {
+                       err=1;
+                       printf("Key error %2d:%d\n",i+1,j);
+                       }
+               if ((j=des_key_sched((C_Block *)(key_data[i+1]),ks2)) != 0)
+                       {
+                       printf("Key error %2d:%d\n",i+2,j);
+                       err=1;
+                       }
+               if ((j=des_key_sched((C_Block *)(key_data[i+2]),ks3)) != 0)
+                       {
+                       printf("Key error %2d:%d\n",i+3,j);
+                       err=1;
+                       }
+               memcpy(in,plain_data[i],8);
+               memset(out,0,8);
+               memset(outin,0,8);
+               des_ecb2_encrypt((C_Block *)in,(C_Block *)out,ks,ks2,
+                       DES_ENCRYPT);
+               des_ecb2_encrypt((C_Block *)out,(C_Block *)outin,ks,ks2,
+                       DES_DECRYPT);
+
+               if (memcmp(out,cipher_ecb2[i],8) != 0)
+                       {
+                       printf("Encryption error %2d\nk=%s p=%s o=%s act=%s\n",
+                               i+1,pt(key_data[i]),pt(in),pt(cipher_ecb2[i]),
+                               pt(out));
+                       err=1;
+                       }
+               if (memcmp(in,outin,8) != 0)
+                       {
+                       printf("Decryption error %2d\nk=%s p=%s o=%s act=%s\n",
+                               i+1,pt(key_data[i]),pt(out),pt(in),pt(outin));
+                       err=1;
+                       }
+               }
+#endif
+
+       printf("Doing cbc\n");
+       if ((j=des_key_sched((C_Block *)cbc_key,ks)) != 0)
+               {
+               printf("Key error %d\n",j);
+               err=1;
+               }
+       memset(cbc_out,0,40);
+       memset(cbc_in,0,40);
+       memcpy(iv3,cbc_iv,sizeof(cbc_iv));
+       des_ncbc_encrypt((C_Block *)cbc_data,(C_Block *)cbc_out,
+               (long)strlen((char *)cbc_data)+1,ks,
+               (C_Block *)iv3,DES_ENCRYPT);
+       if (memcmp(cbc_out,cbc_ok,32) != 0)
+               printf("cbc_encrypt encrypt error\n");
+
+       memcpy(iv3,cbc_iv,sizeof(cbc_iv));
+       des_ncbc_encrypt((C_Block *)cbc_out,(C_Block *)cbc_in,
+               (long)strlen((char *)cbc_data)+1,ks,
+               (C_Block *)iv3,DES_DECRYPT);
+       if (memcmp(cbc_in,cbc_data,strlen((char *)cbc_data)) != 0)
+               {
+               printf("cbc_encrypt decrypt error\n");
+               err=1;
+               }
+
+#ifndef LIBDES_LIT
+       printf("Doing desx cbc\n");
+       if ((j=des_key_sched((C_Block *)cbc_key,ks)) != 0)
+               {
+               printf("Key error %d\n",j);
+               err=1;
+               }
+       memset(cbc_out,0,40);
+       memset(cbc_in,0,40);
+       memcpy(iv3,cbc_iv,sizeof(cbc_iv));
+       des_xcbc_encrypt((C_Block *)cbc_data,(C_Block *)cbc_out,
+               (long)strlen((char *)cbc_data)+1,ks,
+               (C_Block *)iv3,
+               (C_Block *)cbc2_key, (C_Block *)cbc3_key, DES_ENCRYPT);
+       if (memcmp(cbc_out,xcbc_ok,32) != 0)
+               {
+               printf("des_xcbc_encrypt encrypt error\n");
+               }
+       memcpy(iv3,cbc_iv,sizeof(cbc_iv));
+       des_xcbc_encrypt((C_Block *)cbc_out,(C_Block *)cbc_in,
+               (long)strlen((char *)cbc_data)+1,ks,
+               (C_Block *)iv3,
+               (C_Block *)cbc2_key, (C_Block *)cbc3_key, DES_DECRYPT);
+       if (memcmp(cbc_in,cbc_data,strlen((char *)cbc_data)+1) != 0)
+               {
+               printf("des_xcbc_encrypt decrypt error\n");
+               err=1;
+               }
+#endif
+
+       printf("Doing ede cbc\n");
+       if ((j=des_key_sched((C_Block *)cbc_key,ks)) != 0)
+               {
+               printf("Key error %d\n",j);
+               err=1;
+               }
+       if ((j=des_key_sched((C_Block *)cbc2_key,ks2)) != 0)
+               {
+               printf("Key error %d\n",j);
+               err=1;
+               }
+       if ((j=des_key_sched((C_Block *)cbc3_key,ks3)) != 0)
+               {
+               printf("Key error %d\n",j);
+               err=1;
+               }
+       memset(cbc_out,0,40);
+       memset(cbc_in,0,40);
+       i=strlen((char *)cbc_data)+1;
+       /* i=((i+7)/8)*8; */
+       memcpy(iv3,cbc_iv,sizeof(cbc_iv));
+
+       des_ede3_cbc_encrypt((C_Block *)cbc_data,(C_Block *)cbc_out,
+               16L,ks,ks2,ks3,(C_Block *)iv3,DES_ENCRYPT);
+       des_ede3_cbc_encrypt((C_Block *)&(cbc_data[16]),
+               (C_Block *)&(cbc_out[16]),
+               (long)i-16,ks,ks2,ks3,(C_Block *)iv3,DES_ENCRYPT);
+       if (memcmp(cbc_out,cbc3_ok,
+               (unsigned int)(strlen((char *)cbc_data)+1+7)/8*8) != 0)
+               {
+               printf("des_ede3_cbc_encrypt encrypt error\n");
+               err=1;
+               }
+
+       memcpy(iv3,cbc_iv,sizeof(cbc_iv));
+       des_ede3_cbc_encrypt((C_Block *)cbc_out,(C_Block *)cbc_in,
+               (long)i,ks,ks2,ks3,(C_Block *)iv3,DES_DECRYPT);
+       if (memcmp(cbc_in,cbc_data,strlen(cbc_data)+1) != 0)
+               {
+               printf("des_ede3_cbc_encrypt decrypt error\n");
+               err=1;
+               }
+
+#ifndef LIBDES_LIT
+       printf("Doing pcbc\n");
+       if ((j=des_key_sched((C_Block *)cbc_key,ks)) != 0)
+               {
+               printf("Key error %d\n",j);
+               err=1;
+               }
+       memset(cbc_out,0,40);
+       memset(cbc_in,0,40);
+       des_pcbc_encrypt((C_Block *)cbc_data,(C_Block *)cbc_out,
+               (long)strlen(cbc_data)+1,ks,(C_Block *)cbc_iv,DES_ENCRYPT);
+       if (memcmp(cbc_out,pcbc_ok,32) != 0)
+               {
+               printf("pcbc_encrypt encrypt error\n");
+               err=1;
+               }
+       des_pcbc_encrypt((C_Block *)cbc_out,(C_Block *)cbc_in,
+               (long)strlen(cbc_data)+1,ks,(C_Block *)cbc_iv,DES_DECRYPT);
+       if (memcmp(cbc_in,cbc_data,strlen(cbc_data)+1) != 0)
+               {
+               printf("pcbc_encrypt decrypt error\n");
+               err=1;
+               }
+
+       printf("Doing ");
+       printf("cfb8 ");
+       err+=cfb_test(8,cfb_cipher8);
+       printf("cfb16 ");
+       err+=cfb_test(16,cfb_cipher16);
+       printf("cfb32 ");
+       err+=cfb_test(32,cfb_cipher32);
+       printf("cfb48 ");
+       err+=cfb_test(48,cfb_cipher48);
+       printf("cfb64 ");
+       err+=cfb_test(64,cfb_cipher64);
+
+       printf("cfb64() ");
+       err+=cfb64_test(cfb_cipher64);
+
+       memcpy(cfb_tmp,cfb_iv,sizeof(cfb_iv));
+       for (i=0; i<sizeof(plain); i++)
+               des_cfb_encrypt(&(plain[i]),&(cfb_buf1[i]),
+                       8,(long)1,ks,(C_Block *)cfb_tmp,DES_ENCRYPT);
+       if (memcmp(cfb_cipher8,cfb_buf1,sizeof(plain)) != 0)
+               {
+               printf("cfb_encrypt small encrypt error\n");
+               err=1;
+               }
+
+       memcpy(cfb_tmp,cfb_iv,sizeof(cfb_iv));
+       for (i=0; i<sizeof(plain); i++)
+               des_cfb_encrypt(&(cfb_buf1[i]),&(cfb_buf2[i]),
+                       8,(long)1,ks,(C_Block *)cfb_tmp,DES_DECRYPT);
+       if (memcmp(plain,cfb_buf2,sizeof(plain)) != 0)
+               {
+               printf("cfb_encrypt small decrypt error\n");
+               err=1;
+               }
+
+       printf("ede_cfb64() ");
+       err+=ede_cfb64_test(cfb_cipher64);
+
+       printf("done\n");
+
+       printf("Doing ofb\n");
+       des_key_sched((C_Block *)ofb_key,ks);
+       memcpy(ofb_tmp,ofb_iv,sizeof(ofb_iv));
+       des_ofb_encrypt(plain,ofb_buf1,64,(long)sizeof(plain)/8,ks,
+               (C_Block *)ofb_tmp);
+       if (memcmp(ofb_cipher,ofb_buf1,sizeof(ofb_buf1)) != 0)
+               {
+               printf("ofb_encrypt encrypt error\n");
+printf("%02X %02X %02X %02X %02X %02X %02X %02X\n",
+ofb_buf1[8+0], ofb_buf1[8+1], ofb_buf1[8+2], ofb_buf1[8+3],
+ofb_buf1[8+4], ofb_buf1[8+5], ofb_buf1[8+6], ofb_buf1[8+7]);
+printf("%02X %02X %02X %02X %02X %02X %02X %02X\n",
+ofb_buf1[8+0], ofb_cipher[8+1], ofb_cipher[8+2], ofb_cipher[8+3],
+ofb_buf1[8+4], ofb_cipher[8+5], ofb_cipher[8+6], ofb_cipher[8+7]);
+               err=1;
+               }
+       memcpy(ofb_tmp,ofb_iv,sizeof(ofb_iv));
+       des_ofb_encrypt(ofb_buf1,ofb_buf2,64,(long)sizeof(ofb_buf1)/8,ks,
+               (C_Block *)ofb_tmp);
+       if (memcmp(plain,ofb_buf2,sizeof(ofb_buf2)) != 0)
+               {
+               printf("ofb_encrypt decrypt error\n");
+printf("%02X %02X %02X %02X %02X %02X %02X %02X\n",
+ofb_buf2[8+0], ofb_buf2[8+1], ofb_buf2[8+2], ofb_buf2[8+3],
+ofb_buf2[8+4], ofb_buf2[8+5], ofb_buf2[8+6], ofb_buf2[8+7]);
+printf("%02X %02X %02X %02X %02X %02X %02X %02X\n",
+plain[8+0], plain[8+1], plain[8+2], plain[8+3],
+plain[8+4], plain[8+5], plain[8+6], plain[8+7]);
+               err=1;
+               }
+
+       printf("Doing ofb64\n");
+       des_key_sched((C_Block *)ofb_key,ks);
+       memcpy(ofb_tmp,ofb_iv,sizeof(ofb_iv));
+       memset(ofb_buf1,0,sizeof(ofb_buf1));
+       memset(ofb_buf2,0,sizeof(ofb_buf1));
+       num=0;
+       for (i=0; i<sizeof(plain); i++)
+               {
+               des_ofb64_encrypt(&(plain[i]),&(ofb_buf1[i]),1,ks,
+                       (C_Block *)ofb_tmp,&num);
+               }
+       if (memcmp(ofb_cipher,ofb_buf1,sizeof(ofb_buf1)) != 0)
+               {
+               printf("ofb64_encrypt encrypt error\n");
+               err=1;
+               }
+       memcpy(ofb_tmp,ofb_iv,sizeof(ofb_iv));
+       num=0;
+       des_ofb64_encrypt(ofb_buf1,ofb_buf2,(long)sizeof(ofb_buf1),ks,
+               (C_Block *)ofb_tmp,&num);
+       if (memcmp(plain,ofb_buf2,sizeof(ofb_buf2)) != 0)
+               {
+               printf("ofb64_encrypt decrypt error\n");
+               err=1;
+               }
+
+       printf("Doing ede_ofb64\n");
+       des_key_sched((C_Block *)ofb_key,ks);
+       memcpy(ofb_tmp,ofb_iv,sizeof(ofb_iv));
+       memset(ofb_buf1,0,sizeof(ofb_buf1));
+       memset(ofb_buf2,0,sizeof(ofb_buf1));
+       num=0;
+       for (i=0; i<sizeof(plain); i++)
+               {
+               des_ede3_ofb64_encrypt(&(plain[i]),&(ofb_buf1[i]),1,ks,ks,ks,
+                       (C_Block *)ofb_tmp,&num);
+               }
+       if (memcmp(ofb_cipher,ofb_buf1,sizeof(ofb_buf1)) != 0)
+               {
+               printf("ede_ofb64_encrypt encrypt error\n");
+               err=1;
+               }
+       memcpy(ofb_tmp,ofb_iv,sizeof(ofb_iv));
+       num=0;
+       des_ede3_ofb64_encrypt(ofb_buf1,ofb_buf2,(long)sizeof(ofb_buf1),ks,
+               ks,ks,(C_Block *)ofb_tmp,&num);
+       if (memcmp(plain,ofb_buf2,sizeof(ofb_buf2)) != 0)
+               {
+               printf("ede_ofb64_encrypt decrypt error\n");
+               err=1;
+               }
+
+       printf("Doing cbc_cksum\n");
+       des_key_sched((C_Block *)cbc_key,ks);
+       cs=des_cbc_cksum((C_Block *)cbc_data,(C_Block *)cret,
+               (long)strlen(cbc_data),ks,(C_Block *)cbc_iv);
+       if (cs != cbc_cksum_ret)
+               {
+               printf("bad return value (%08lX), should be %08lX\n",
+                       (unsigned long)cs,(unsigned long)cbc_cksum_ret);
+               err=1;
+               }
+       if (memcmp(cret,cbc_cksum_data,8) != 0)
+               {
+               printf("bad cbc_cksum block returned\n");
+               err=1;
+               }
+
+       printf("Doing quad_cksum\n");
+       cs=quad_cksum((C_Block *)cbc_data,(C_Block *)qret,
+               (long)strlen(cbc_data),2,(C_Block *)cbc_iv);
+       for (i=0; i<4; i++)
+               {
+               lqret[i]=0;
+               memcpy(&(lqret[i]),&(qret[i][0]),4);
+               }
+       { /* Big-endian fix */
+       static DES_LONG l=1;
+       static unsigned char *c=(unsigned char *)&l;
+       DES_LONG ll;
+
+       if (!c[0])
+               {
+               ll=lqret[0]^lqret[3];
+               lqret[0]^=ll;
+               lqret[3]^=ll;
+               ll=lqret[1]^lqret[2];
+               lqret[1]^=ll;
+               lqret[2]^=ll;
+               }
+       }
+       if (cs != 0x70d7a63aL)
+               {
+               printf("quad_cksum error, ret %08lx should be 70d7a63a\n",
+                       (unsigned long)cs);
+               err=1;
+               }
+       if (lqret[0] != 0x327eba8dL)
+               {
+               printf("quad_cksum error, out[0] %08lx is not %08lx\n",
+                       (unsigned long)lqret[0],0x327eba8dL);
+               err=1;
+               }
+       if (lqret[1] != 0x201a49ccL)
+               {
+               printf("quad_cksum error, out[1] %08lx is not %08lx\n",
+                       (unsigned long)lqret[1],0x201a49ccL);
+               err=1;
+               }
+       if (lqret[2] != 0x70d7a63aL)
+               {
+               printf("quad_cksum error, out[2] %08lx is not %08lx\n",
+                       (unsigned long)lqret[2],0x70d7a63aL);
+               err=1;
+               }
+       if (lqret[3] != 0x501c2c26L)
+               {
+               printf("quad_cksum error, out[3] %08lx is not %08lx\n",
+                       (unsigned long)lqret[3],0x501c2c26L);
+               err=1;
+               }
+#endif
+
+       printf("input word alignment test");
+       for (i=0; i<4; i++)
+               {
+               printf(" %d",i);
+               des_ncbc_encrypt((C_Block *)&(cbc_out[i]),(C_Block *)cbc_in,
+                       (long)strlen(cbc_data)+1,ks,(C_Block *)cbc_iv,
+                       DES_ENCRYPT);
+               }
+       printf("\noutput word alignment test");
+       for (i=0; i<4; i++)
+               {
+               printf(" %d",i);
+               des_ncbc_encrypt((C_Block *)cbc_out,(C_Block *)&(cbc_in[i]),
+                       (long)strlen(cbc_data)+1,ks,(C_Block *)cbc_iv,
+                       DES_ENCRYPT);
+               }
+       printf("\n");
+       printf("fast crypt test ");
+       str=crypt("testing","ef");
+       if (strcmp("efGnQx2725bI2",str) != 0)
+               {
+               printf("fast crypt error, %s should be efGnQx2725bI2\n",str);
+               err=1;
+               }
+       str=crypt("bca76;23","yA");
+       if (strcmp("yA1Rp/1hZXIJk",str) != 0)
+               {
+               printf("fast crypt error, %s should be yA1Rp/1hZXIJk\n",str);
+               err=1;
+               }
+       printf("\n");
+       exit(err);
+       return(0);
+       }
+
+static char *pt(p)
+unsigned char *p;
+       {
+       static char bufs[10][20];
+       static int bnum=0;
+       char *ret;
+       int i;
+       static char *f="0123456789ABCDEF";
+
+       ret= &(bufs[bnum++][0]);
+       bnum%=10;
+       for (i=0; i<8; i++)
+               {
+               ret[i*2]=f[(p[i]>>4)&0xf];
+               ret[i*2+1]=f[p[i]&0xf];
+               }
+       ret[16]='\0';
+       return(ret);
+       }
+
+#ifndef LIBDES_LIT
+
+static int cfb_test(bits, cfb_cipher)
+int bits;
+unsigned char *cfb_cipher;
+       {
+       des_key_schedule ks;
+       int i,err=0;
+
+       des_key_sched((C_Block *)cfb_key,ks);
+       memcpy(cfb_tmp,cfb_iv,sizeof(cfb_iv));
+       des_cfb_encrypt(plain,cfb_buf1,bits,(long)sizeof(plain),ks,
+               (C_Block *)cfb_tmp,DES_ENCRYPT);
+       if (memcmp(cfb_cipher,cfb_buf1,sizeof(plain)) != 0)
+               {
+               err=1;
+               printf("cfb_encrypt encrypt error\n");
+               for (i=0; i<24; i+=8)
+                       printf("%s\n",pt(&(cfb_buf1[i])));
+               }
+       memcpy(cfb_tmp,cfb_iv,sizeof(cfb_iv));
+       des_cfb_encrypt(cfb_buf1,cfb_buf2,bits,(long)sizeof(plain),ks,
+               (C_Block *)cfb_tmp,DES_DECRYPT);
+       if (memcmp(plain,cfb_buf2,sizeof(plain)) != 0)
+               {
+               err=1;
+               printf("cfb_encrypt decrypt error\n");
+               for (i=0; i<24; i+=8)
+                       printf("%s\n",pt(&(cfb_buf1[i])));
+               }
+       return(err);
+       }
+
+static int cfb64_test(cfb_cipher)
+unsigned char *cfb_cipher;
+       {
+       des_key_schedule ks;
+       int err=0,i,n;
+
+       des_key_sched((C_Block *)cfb_key,ks);
+       memcpy(cfb_tmp,cfb_iv,sizeof(cfb_iv));
+       n=0;
+       des_cfb64_encrypt(plain,cfb_buf1,(long)12,ks,
+               (C_Block *)cfb_tmp,&n,DES_ENCRYPT);
+       des_cfb64_encrypt(&(plain[12]),&(cfb_buf1[12]),
+               (long)sizeof(plain)-12,ks,
+               (C_Block *)cfb_tmp,&n,DES_ENCRYPT);
+       if (memcmp(cfb_cipher,cfb_buf1,sizeof(plain)) != 0)
+               {
+               err=1;
+               printf("cfb_encrypt encrypt error\n");
+               for (i=0; i<24; i+=8)
+                       printf("%s\n",pt(&(cfb_buf1[i])));
+               }
+       memcpy(cfb_tmp,cfb_iv,sizeof(cfb_iv));
+       n=0;
+       des_cfb64_encrypt(cfb_buf1,cfb_buf2,(long)17,ks,
+               (C_Block *)cfb_tmp,&n,DES_DECRYPT);
+       des_cfb64_encrypt(&(cfb_buf1[17]),&(cfb_buf2[17]),
+               (long)sizeof(plain)-17,ks,
+               (C_Block *)cfb_tmp,&n,DES_DECRYPT);
+       if (memcmp(plain,cfb_buf2,sizeof(plain)) != 0)
+               {
+               err=1;
+               printf("cfb_encrypt decrypt error\n");
+               for (i=0; i<24; i+=8)
+                       printf("%s\n",pt(&(cfb_buf2[i])));
+               }
+       return(err);
+       }
+
+static int ede_cfb64_test(cfb_cipher)
+unsigned char *cfb_cipher;
+       {
+       des_key_schedule ks;
+       int err=0,i,n;
+
+       des_key_sched((C_Block *)cfb_key,ks);
+       memcpy(cfb_tmp,cfb_iv,sizeof(cfb_iv));
+       n=0;
+       des_ede3_cfb64_encrypt(plain,cfb_buf1,(long)12,ks,ks,ks,
+               (C_Block *)cfb_tmp,&n,DES_ENCRYPT);
+       des_ede3_cfb64_encrypt(&(plain[12]),&(cfb_buf1[12]),
+               (long)sizeof(plain)-12,ks,ks,ks,
+               (C_Block *)cfb_tmp,&n,DES_ENCRYPT);
+       if (memcmp(cfb_cipher,cfb_buf1,sizeof(plain)) != 0)
+               {
+               err=1;
+               printf("ede_cfb_encrypt encrypt error\n");
+               for (i=0; i<24; i+=8)
+                       printf("%s\n",pt(&(cfb_buf1[i])));
+               }
+       memcpy(cfb_tmp,cfb_iv,sizeof(cfb_iv));
+       n=0;
+       des_ede3_cfb64_encrypt(cfb_buf1,cfb_buf2,(long)17,ks,ks,ks,
+               (C_Block *)cfb_tmp,&n,DES_DECRYPT);
+       des_ede3_cfb64_encrypt(&(cfb_buf1[17]),&(cfb_buf2[17]),
+               (long)sizeof(plain)-17,ks,ks,ks,
+               (C_Block *)cfb_tmp,&n,DES_DECRYPT);
+       if (memcmp(plain,cfb_buf2,sizeof(plain)) != 0)
+               {
+               err=1;
+               printf("ede_cfb_encrypt decrypt error\n");
+               for (i=0; i<24; i+=8)
+                       printf("%s\n",pt(&(cfb_buf2[i])));
+               }
+       return(err);
+       }
+
+#endif
+
diff --git a/src/libfreeswan/libcrypto/libdes/dx86unix.S b/src/libfreeswan/libcrypto/libdes/dx86unix.S
new file mode 100644 (file)
index 0000000..31dc0d0
--- /dev/null
@@ -0,0 +1,3160 @@
+/* 
+ * This file was originally generated by Michael Richardson <mcr@freeswan.org>
+ * via the perl scripts found in the ASM subdir. It remains copyright of
+ * Eric Young, see the file COPYRIGHT.
+ *
+ * This was last done on October 9, 2002.
+ *
+ * While this file does not need to go through cpp, we pass it through
+ * CPP by naming it dx86unix.S instead of dx86unix.s because there is
+ * a bug in Rules.make for .s builds - specifically it references EXTRA_CFLAGS
+ * which may contain stuff that AS doesn't understand instead of
+ * referencing EXTRA_AFLAGS.
+ */     
+
+       .file   "dx86unix.S"
+       .version        "01.01"
+.text
+       .align 16 
+.globl des_encrypt
+       .type    des_encrypt , @function  
+des_encrypt:
+       pushl   %esi
+       pushl   %edi
+
+        
+       movl    12(%esp),       %esi
+       xorl    %ecx,           %ecx
+       pushl   %ebx
+       pushl   %ebp
+       movl    (%esi),         %eax
+       movl    28(%esp),       %ebx
+       movl    4(%esi),        %edi
+
+        
+       roll    $4,             %eax
+       movl    %eax,           %esi
+       xorl    %edi,           %eax
+       andl    $0xf0f0f0f0,    %eax
+       xorl    %eax,           %esi
+       xorl    %eax,           %edi
+
+       roll    $20,            %edi
+       movl    %edi,           %eax
+       xorl    %esi,           %edi
+       andl    $0xfff0000f,    %edi
+       xorl    %edi,           %eax
+       xorl    %edi,           %esi
+
+       roll    $14,            %eax
+       movl    %eax,           %edi
+       xorl    %esi,           %eax
+       andl    $0x33333333,    %eax
+       xorl    %eax,           %edi
+       xorl    %eax,           %esi
+
+       roll    $22,            %esi
+       movl    %esi,           %eax
+       xorl    %edi,           %esi
+       andl    $0x03fc03fc,    %esi
+       xorl    %esi,           %eax
+       xorl    %esi,           %edi
+
+       roll    $9,             %eax
+       movl    %eax,           %esi
+       xorl    %edi,           %eax
+       andl    $0xaaaaaaaa,    %eax
+       xorl    %eax,           %esi
+       xorl    %eax,           %edi
+
+.byte 209
+.byte 199               
+       movl    24(%esp),       %ebp
+       cmpl    $0,             %ebx
+       je      .L000start_decrypt
+
+        
+       movl    (%ebp),         %eax
+       xorl    %ebx,           %ebx
+       movl    4(%ebp),        %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    8(%ebp),        %eax
+       xorl    %ebx,           %ebx
+       movl    12(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    16(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    20(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    24(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    28(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    32(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    36(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    40(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    44(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    48(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    52(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    56(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    60(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    64(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    68(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    72(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    76(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    80(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    84(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    88(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    92(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    96(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    100(%ebp),      %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    104(%ebp),      %eax
+       xorl    %ebx,           %ebx
+       movl    108(%ebp),      %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    112(%ebp),      %eax
+       xorl    %ebx,           %ebx
+       movl    116(%ebp),      %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    120(%ebp),      %eax
+       xorl    %ebx,           %ebx
+       movl    124(%ebp),      %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+       jmp     .L001end
+.L000start_decrypt:
+
+        
+       movl    120(%ebp),      %eax
+       xorl    %ebx,           %ebx
+       movl    124(%ebp),      %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    112(%ebp),      %eax
+       xorl    %ebx,           %ebx
+       movl    116(%ebp),      %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    104(%ebp),      %eax
+       xorl    %ebx,           %ebx
+       movl    108(%ebp),      %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    96(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    100(%ebp),      %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    88(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    92(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    80(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    84(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    72(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    76(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    64(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    68(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    56(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    60(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    48(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    52(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    40(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    44(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    32(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    36(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    24(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    28(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    16(%ebp),       %eax
+       xorl    %ebx,           %ebx
+       movl    20(%ebp),       %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+
+        
+       movl    8(%ebp),        %eax
+       xorl    %ebx,           %ebx
+       movl    12(%ebp),       %edx
+       xorl    %esi,           %eax
+       xorl    %esi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %edi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %edi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %edi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %edi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %edi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %edi
+
+        
+       movl    (%ebp),         %eax
+       xorl    %ebx,           %ebx
+       movl    4(%ebp),        %edx
+       xorl    %edi,           %eax
+       xorl    %edi,           %edx
+       andl    $0xfcfcfcfc,    %eax
+       andl    $0xcfcfcfcf,    %edx
+       movb    %al,            %bl
+       movb    %ah,            %cl
+       rorl    $4,             %edx
+       movl          des_SPtrans(%ebx),%ebp
+       movb    %dl,            %bl
+       xorl    %ebp,           %esi
+       movl    0x200+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movb    %dh,            %cl
+       shrl    $16,            %eax
+       movl    0x100+des_SPtrans(%ebx),%ebp
+       xorl    %ebp,           %esi
+       movb    %ah,            %bl
+       shrl    $16,            %edx
+       movl    0x300+des_SPtrans(%ecx),%ebp
+       xorl    %ebp,           %esi
+       movl    24(%esp),       %ebp
+       movb    %dh,            %cl
+       andl    $0xff,          %eax
+       andl    $0xff,          %edx
+       movl    0x600+des_SPtrans(%ebx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x700+des_SPtrans(%ecx),%ebx
+       xorl    %ebx,           %esi
+       movl    0x400+des_SPtrans(%eax),%ebx
+       xorl    %ebx,           %esi
+       movl    0x500+des_SPtrans(%edx),%ebx
+       xorl    %ebx,           %esi
+.L001end:
+
+        
+       movl    20(%esp),       %edx
+.byte 209
+.byte 206               
+       movl    %edi,           %eax
+       xorl    %esi,           %edi
+       andl    $0xaaaaaaaa,    %edi
+       xorl    %edi,           %eax
+       xorl    %edi,           %esi
+
+       roll    $23,            %eax
+       movl    %eax,           %edi
+       xorl    %esi,           %eax
+       andl    $0x03fc03fc,    %eax
+       xorl    %eax,           %edi
+       xorl    %eax,           %esi
+
+       roll    $10,            %edi
+       movl    %edi,           %eax
+       xorl    %esi,           %edi
+       andl    $0x33333333,    %edi
+       xorl    %edi,           %eax
+       xorl    %edi,           %esi
+
+       roll    $18,            %esi
+       movl    %esi,           %edi
+       xorl    %eax,           %esi
+       andl    $0xfff0000f,    %esi
+       xorl    %esi,           %edi
+       xorl    %esi,           %eax
+
+       roll    $12,            %edi
+       movl    %edi,           %esi
+       xorl    %eax,           %edi
+       andl    $0xf0f0f0f0,    %edi
+       xorl    %edi,           %esi
+       xorl    %edi,           %eax
+
+       rorl    $4,             %eax
+       movl    %eax,           (%edx)
+       movl    %esi,           4(%edx)
+       popl    %ebp
+       popl    %ebx
+       popl    %edi
+       popl    %esi
+       ret
+.des_encrypt_end:
+       .size    des_encrypt , .des_encrypt_end-des_encrypt  
+.ident "desasm.pl"
+.text
+       .align 16 
+.globl des_encrypt2
+       .type    des_encrypt2 , @function  
+des_encrypt2:
+       pushl   %esi
+       pushl   %edi
+
+        
+       movl    12(%esp),       %eax
+       xorl    %ecx,           %ecx
+       pushl   %ebx
+       pushl&n