实例介绍
【实例简介】由于很多同学想做伸手党,此处重新上传了一个完整版的代码。包含了生成随机秘钥对,数据加密,数据解密,签名与验签例子,并给出了使用姿势。使用者需要使用maven导入项目,然后运行SM2Utils里面的main方法即可
【实例截图】
【核心代码】
package com.test;
import org.bouncycastle.asn1.*;
import org.bouncycastle.crypto.AsymmetricCipherKeyPair;
import org.bouncycastle.crypto.digests.SM3Digest;
import org.bouncycastle.crypto.params.ECPrivateKeyParameters;
import org.bouncycastle.crypto.params.ECPublicKeyParameters;
import org.bouncycastle.math.ec.ECPoint;
import org.bouncycastle.util.encoders.Base64;
import java.io.ByteArrayInputStream;
import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.math.BigInteger;
import java.util.Enumeration;
public class SM2Utils {
public SM2Utils() {
}
/**
* 生成随机秘钥对
*/
public MyKeyPair generateKeyPair() {
SM2 sm2 = SM2.Instance();
AsymmetricCipherKeyPair key = sm2.ecc_key_pair_generator.generateKeyPair();
ECPrivateKeyParameters ecpriv = (ECPrivateKeyParameters) key.getPrivate();
ECPublicKeyParameters ecpub = (ECPublicKeyParameters) key.getPublic();
BigInteger privateKey = ecpriv.getD();
org.bouncycastle.math.ec.ECPoint publicKey = ecpub.getQ();
SM2Utils.MyKeyPair myKeyPair = new SM2Utils.MyKeyPair();
myKeyPair.setPrivateKey(Util.byteToHex(privateKey.toByteArray()));
myKeyPair.setPublicKey(Util.byteToHex(publicKey.getEncoded()));
return myKeyPair;
}
/**
* 数据加密
* @param publicKey
* @param data
* @return
* @throws IOException
*/
public static byte[] encrypt(byte[] publicKey, byte[] data) throws IOException {
if (publicKey != null && publicKey.length != 0) {
if (data != null && data.length != 0) {
byte[] source = new byte[data.length];
System.arraycopy(data, 0, source, 0, data.length);
Cipher cipher = new Cipher();
SM2 sm2 = SM2.Instance();
org.bouncycastle.math.ec.ECPoint userKey = sm2.ecc_curve.decodePoint(publicKey);
org.bouncycastle.math.ec.ECPoint c1 = cipher.Init_enc(sm2, userKey);
cipher.Encrypt(source);
byte[] c3 = new byte[32];
cipher.Dofinal(c3);
DERInteger x = new DERInteger(c1.getX().toBigInteger());
DERInteger y = new DERInteger(c1.getY().toBigInteger());
DEROctetString derDig = new DEROctetString(c3);
DEROctetString derEnc = new DEROctetString(source);
ASN1EncodableVector v = new ASN1EncodableVector();
v.add(x);
v.add(y);
v.add(derDig);
v.add(derEnc);
DERSequence seq = new DERSequence(v);
ByteArrayOutputStream bos = new ByteArrayOutputStream();
DEROutputStream dos = new DEROutputStream(bos);
dos.writeObject(seq);
return bos.toByteArray();
} else {
return null;
}
} else {
return null;
}
}
/**
* 数据解密
* @param privateKey
* @param encryptedData
* @return
* @throws IOException
*/
public static byte[] decrypt(byte[] privateKey, byte[] encryptedData) throws IOException {
if (privateKey != null && privateKey.length != 0) {
if (encryptedData != null && encryptedData.length != 0) {
byte[] enc = new byte[encryptedData.length];
System.arraycopy(encryptedData, 0, enc, 0, encryptedData.length);
SM2 sm2 = SM2.Instance();
BigInteger userD = new BigInteger(1, privateKey);
ByteArrayInputStream bis = new ByteArrayInputStream(enc);
ASN1InputStream dis = new ASN1InputStream(bis);
ASN1Primitive derObj = dis.readObject();
ASN1Sequence asn1 = (ASN1Sequence)derObj;
ASN1Integer x = (ASN1Integer)asn1.getObjectAt(0);
ASN1Integer y = (ASN1Integer)asn1.getObjectAt(1);
org.bouncycastle.math.ec.ECPoint c1 = sm2.ecc_curve.createPoint(x.getValue(), y.getValue(), true);
Cipher cipher = new Cipher();
cipher.Init_dec(userD, c1);
DEROctetString data = (DEROctetString)asn1.getObjectAt(3);
enc = data.getOctets();
cipher.Decrypt(enc);
byte[] c3 = new byte[32];
cipher.Dofinal(c3);
return enc;
} else {
return null;
}
} else {
return null;
}
}
/**
* 签名
* @param userId
* @param privateKey
* @param sourceData
* @return
* @throws IOException
*/
public static byte[] sign(byte[] userId, byte[] privateKey, byte[] sourceData) throws IOException {
if (privateKey != null && privateKey.length != 0) {
if (sourceData != null && sourceData.length != 0) {
SM2 sm2 = SM2.Instance();
BigInteger userD = new BigInteger(privateKey);
org.bouncycastle.math.ec.ECPoint userKey = sm2.ecc_point_g.multiply(userD);
byte[] z = sm2.sm2GetZ(userId, userKey);
SM3Digest sm3 = new SM3Digest();
sm3.update(z, 0, z.length);
sm3.update(sourceData, 0, sourceData.length);
byte[] md = new byte[32];
sm3.doFinal(md, 0);
SM2Result sm2Result = new SM2Result();
sm2.sm2Sign(md, userD, userKey, sm2Result);
DERInteger d_r = new DERInteger(sm2Result.r);
DERInteger d_s = new DERInteger(sm2Result.s);
ASN1EncodableVector v2 = new ASN1EncodableVector();
v2.add(d_r);
v2.add(d_s);
DERSequence sign = new DERSequence(v2);
byte[] signdata = sign.getEncoded();
return signdata;
} else {
return null;
}
} else {
return null;
}
}
/**
* 验签
* @param userId
* @param publicKey
* @param sourceData
* @param signData
* @return
* @throws IOException
*/
public static boolean verifySign(byte[] userId, byte[] publicKey, byte[] sourceData, byte[] signData) throws IOException {
if (publicKey != null && publicKey.length != 0) {
if (sourceData != null && sourceData.length != 0) {
SM2 sm2 = SM2.Instance();
org.bouncycastle.math.ec.ECPoint userKey = sm2.ecc_curve.decodePoint(publicKey);
SM3Digest sm3 = new SM3Digest();
byte[] z = sm2.sm2GetZ(userId, userKey);
sm3.update(z, 0, z.length);
sm3.update(sourceData, 0, sourceData.length);
byte[] md = new byte[32];
sm3.doFinal(md, 0);
ByteArrayInputStream bis = new ByteArrayInputStream(signData);
ASN1InputStream dis = new ASN1InputStream(bis);
ASN1Primitive derObj = dis.readObject();
Enumeration<ASN1Integer> e = ((ASN1Sequence)derObj).getObjects();
BigInteger r = ((ASN1Integer)e.nextElement()).getValue();
BigInteger s = ((ASN1Integer)e.nextElement()).getValue();
SM2Result sm2Result = new SM2Result();
sm2Result.r = r;
sm2Result.s = s;
sm2.sm2Verify(md, userKey, sm2Result.r, sm2Result.s, sm2Result);
return sm2Result.r.equals(sm2Result.R);
} else {
return false;
}
} else {
return false;
}
}
public class MyKeyPair {
String publicKey;
String privateKey;
public String getPublicKey() {
return publicKey;
}
public void setPublicKey(String publicKey) {
this.publicKey = publicKey;
}
public String getPrivateKey() {
return privateKey;
}
public void setPrivateKey(String privateKey) {
this.privateKey = privateKey;
}
}
public static void main(String[] args) throws Exception {
String plainText = "你好啊,朋友";
byte[] sourceData = plainText.getBytes();
System.out.println("原数据: " plainText);
//1.生成密钥对
SM2Utils.MyKeyPair myKeyPair = new SM2Utils().generateKeyPair();
String privateKey = myKeyPair.getPrivateKey();
String publicKey = myKeyPair.getPublicKey();
//测试用户
String userId = "9001@qq.COM";
//签名
byte[] c = sign(userId.getBytes(), Util.hexToByte(privateKey), sourceData);
System.out.println("SM2签名后值====" Util.getHexString(c));
//验签
boolean vs = verifySign(userId.getBytes(), Util.hexToByte(publicKey), sourceData, c);
System.out.println("验签结果: " vs);
//加密
byte[] cipherText = encrypt(Util.hexToByte(publicKey), sourceData);
System.out.println("SM2加密后结果===" new String(Base64.encode(cipherText)));
//解密
plainText = new String(decrypt(Util.hexToByte(privateKey), cipherText));
System.out.println("解密后获取的结果===" plainText);
}
}
好例子网口号:伸出你的我的手 — 分享!
小贴士
感谢您为本站写下的评论,您的评论对其它用户来说具有重要的参考价值,所以请认真填写。
- 类似“顶”、“沙发”之类没有营养的文字,对勤劳贡献的楼主来说是令人沮丧的反馈信息。
- 相信您也不想看到一排文字/表情墙,所以请不要反馈意义不大的重复字符,也请尽量不要纯表情的回复。
- 提问之前请再仔细看一遍楼主的说明,或许是您遗漏了。
- 请勿到处挖坑绊人、招贴广告。既占空间让人厌烦,又没人会搭理,于人于己都无利。
关于好例子网
本站旨在为广大IT学习爱好者提供一个非营利性互相学习交流分享平台。本站所有资源都可以被免费获取学习研究。本站资源来自网友分享,对搜索内容的合法性不具有预见性、识别性、控制性,仅供学习研究,请务必在下载后24小时内给予删除,不得用于其他任何用途,否则后果自负。基于互联网的特殊性,平台无法对用户传输的作品、信息、内容的权属或合法性、安全性、合规性、真实性、科学性、完整权、有效性等进行实质审查;无论平台是否已进行审查,用户均应自行承担因其传输的作品、信息、内容而可能或已经产生的侵权或权属纠纷等法律责任。本站所有资源不代表本站的观点或立场,基于网友分享,根据中国法律《信息网络传播权保护条例》第二十二与二十三条之规定,若资源存在侵权或相关问题请联系本站客服人员,点此联系我们。关于更多版权及免责申明参见 版权及免责申明
网友评论
我要评论