All Downloads are FREE. Search and download functionalities are using the official Maven repository.
Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $
You can buy this project and download/modify it how often you want.
io.polaris.crypto.asymmetric.SM2 Maven / Gradle / Ivy
package io.polaris.crypto.asymmetric;
import io.polaris.crypto.ECKeys;
import org.bouncycastle.crypto.CipherParameters;
import org.bouncycastle.crypto.CryptoException;
import org.bouncycastle.crypto.Digest;
import org.bouncycastle.crypto.digests.SM3Digest;
import org.bouncycastle.crypto.engines.SM2Engine;
import org.bouncycastle.crypto.params.*;
import org.bouncycastle.crypto.signers.DSAEncoding;
import org.bouncycastle.crypto.signers.PlainDSAEncoding;
import org.bouncycastle.crypto.signers.SM2Signer;
import org.bouncycastle.crypto.signers.StandardDSAEncoding;
import org.bouncycastle.jcajce.provider.asymmetric.util.ECUtil;
import org.bouncycastle.util.BigIntegers;
import java.math.BigInteger;
import java.security.GeneralSecurityException;
import java.security.InvalidKeyException;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.util.concurrent.locks.Lock;
import java.util.concurrent.locks.ReentrantLock;
/**
* 国密SM2非对称算法实现,基于BC库
* 非对称加密和签名:SM2
* 摘要签名算法:SM3
* 对称加密:SM4
*
*
* @author Qt
* @since 1.8
*/
public class SM2 {
private final Lock lock = new ReentrantLock();
private DSAEncoding encoding = StandardDSAEncoding.INSTANCE;
private Digest digest = new SM3Digest();
private SM2Engine.Mode mode = SM2Engine.Mode.C1C3C2;
private SM2Engine engine;
private SM2Signer signer;
private ECPrivateKeyParameters privateKeyParams;
private ECPublicKeyParameters publicKeyParams;
public SM2(ECPrivateKeyParameters privateKeyParams, ECPublicKeyParameters publicKeyParams) {
this.privateKeyParams = privateKeyParams;
this.publicKeyParams = publicKeyParams;
}
public SM2(PrivateKey privateKey, PublicKey publicKey) throws InvalidKeyException {
this((ECPrivateKeyParameters) ECUtil.generatePrivateKeyParameter(privateKey), (ECPublicKeyParameters) ECUtil.generatePublicKeyParameter(publicKey));
}
public SM2(byte[] privateKey, byte[] publicKey) throws GeneralSecurityException {
this(ECKeys.decodePrivateKeyParams(privateKey), ECKeys.decodePublicKeyParams(publicKey));
}
/**
* 加密,SM2非对称加密的结果由C1,C2,C3三部分组成,其中:
*
*
* C1 生成随机数的计算出的椭圆曲线点
* C2 密文数据
* C3 SM3的摘要值
*
*
* @param data 被加密的bytes
* @return 加密后的bytes
*/
public byte[] encrypt(byte[] data) throws CryptoException {
lock.lock();
try {
final SM2Engine engine = getEngine();
engine.init(true, new ParametersWithRandom(this.publicKeyParams));
return engine.processBlock(data, 0, data.length);
} finally {
lock.unlock();
}
}
/**
* 使用私钥解密
*
* @param data SM2密文,实际包含三部分:ECC公钥、真正的密文、公钥和原文的SM3-HASH值
* @return 加密后的bytes
*/
public byte[] decrypt(byte[] data) throws CryptoException {
lock.lock();
try {
final SM2Engine engine = getEngine();
engine.init(false, this.privateKeyParams);
return engine.processBlock(data, 0, data.length);
} finally {
lock.unlock();
}
}
/**
* 用私钥对信息生成数字签名,签名格式为ASN1
