XRootD
XrdCryptoLite_BFecb.hh
Go to the documentation of this file.
1 #ifndef __XRDCRYPTOLITE_BFecb_H__
2 #define __XRDCRYPTOLITE_BFecb_H__
3 /******************************************************************************/
4 /* */
5 /* X r d C r y p t o L i t e _ B F e c b . h h */
6 /* */
7 /* (c) 2026 by the Board of Trustees of the Leland Stanford, Jr., University */
8 /* Produced by Andrew Hanushevsky for Stanford University under contract */
9 /* DE-AC02-76-SFO0515 with the Department of Energy */
10 /* */
11 /* This file is part of the XRootD software suite. */
12 /* */
13 /* XRootD is free software: you can redistribute it and/or modify it under */
14 /* the terms of the GNU Lesser General Public License as published by the */
15 /* Free Software Foundation, either version 3 of the License, or (at your */
16 /* option) any later version. */
17 /* */
18 /* XRootD is distributed in the hope that it will be useful, but WITHOUT */
19 /* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or */
20 /* FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public */
21 /* License for more details. */
22 /* */
23 /* You should have received a copy of the GNU Lesser General Public License */
24 /* along with XRootD in a file called COPYING.LESSER (LGPL license) and file */
25 /* COPYING (GPL license). If not, see <http://www.gnu.org/licenses/>. */
26 /* */
27 /* The copyright holder's institutional names and contributor's names may not */
28 /* be used to endorse or promote products derived from this software without */
29 /* specific prior written permission of the institution or contributor. */
30 /******************************************************************************/
31 
32 /* This class implements Bflowfish ecb cipher which works on a single 64-bit
33  block to produce another 64-bit block. While not particularly secure it
34  is useful for encrypting short messages in order to prevent spoofing but
35  not necessarily to protect data privacy. While blowfish ECB is naturally
36  thread-safe, the OPENSSL EVP implementation destroys that notion and we
37  must serialize all access to the underlying blowfish implementation to
38  make it thread-safe.
39 */
40 
41 #include "XrdSys/XrdSysPthread.hh"
42 
43 struct evp_cipher_ctx_st;
44 typedef struct evp_cipher_ctx_st EVP_CIPHER_CTX;
45 
47 {
48 public:
49 
50 //-----------------------------------------------------------------------------
61 //-----------------------------------------------------------------------------
62 
63  XrdCryptoLite_BFecb(bool &aOK, const unsigned char* key=0,
64  unsigned int keylen=0);
65 
67 
68 //-----------------------------------------------------------------------------
73 //-----------------------------------------------------------------------------
74 
75 void Decrypt(const unsigned char* in8, unsigned char* out8);
76 
77 //-----------------------------------------------------------------------------
82 //-----------------------------------------------------------------------------
83 
84 void Encrypt(const unsigned char* in8, unsigned char* out8);
85 
86 //-----------------------------------------------------------------------------
94 //-----------------------------------------------------------------------------
95 
96 static
97 XrdCryptoLite_BFecb* Instance(const unsigned char* key=0,
98  unsigned int klen=0);
99 
100 private:
101 EVP_CIPHER_CTX* decCTX;
102 EVP_CIPHER_CTX* encCTX;
103 XrdSysMutex evpMutex;
104 };
105 #endif
struct evp_cipher_ctx_st EVP_CIPHER_CTX
static XrdCryptoLite_BFecb * Instance(const unsigned char *key=0, unsigned int klen=0)
XrdCryptoLite_BFecb(bool &aOK, const unsigned char *key=0, unsigned int keylen=0)
void Decrypt(const unsigned char *in8, unsigned char *out8)
void Encrypt(const unsigned char *in8, unsigned char *out8)