CRYPT(3) CRYPT(3)
NAME
crypt, setkey, encrypt - DES encryption
SYNOPSIS
char *crypt(key, salt)
char *key, *salt;
setkey(key)
char *key;
encrypt(block, edflag)
char *block;
DESCRIPTION
Crypt is the password encryption routine. It is based on
the NBS Data Encryption Standard, with variations intended
(among other things) to frustrate use of hardware implemen-
tations of the DES for key search.
The first argument to crypt is a user's typed password. The
second is a 2-character string chosen from the set
[a-zA-Z0-9./]. The salt string is used to perturb the DES
algorithm in one of 4096 different ways, after which the
password is used as the key to encrypt repeatedly a constant
string. The returned value points to the encrypted pass-
word, in the same alphabet as the salt. The first two char-
acters are the salt itself.
The other functions provide (rather primitive) access to the
actual DES algorithm. The argument of setkey is a character
array of length 64 containing only the characters with
numerical value 0 and 1. If this string is divided into
groups of 8, the low-order bit in each group is ignored,
leading to a 56-bit key which is set into the machine.
The argument to encrypt is also a character array of length
64 containing 0's and 1's. The 64 argument `bits' are
encrypted in place by the DES algorithm using the key previ-
ously set by setkey. If edflag is 0, the argument is
encrypted; if non-zero, it is decrypted.
SEE ALSO
crypt(1), passwd(1), passwd(5), getpass(3)
BUGS
The return value points to static data whose content is
overwritten by each call.
Encrypt is not available outside the United States and
Canada.