Skip to content

ddn / sm

Go to a project
Toggle navigation
Toggle navigation pinning
Find File
Switch branch/tag
Name Last Update
.history Loading commit data...
dist Loading commit data...
docs Loading commit data...
src Loading commit data...
test Loading commit data...
.babelrc Loading commit data...
.eslintrc.js Loading commit data...
.gitignore Loading commit data...
.npmignore Loading commit data...
LICENCE_MIT Loading commit data...
README.md Loading commit data...
package.json Loading commit data...
tet.js Loading commit data...
webpack.config.js Loading commit data...
README.md

sm-crypto

国密算法sm2、sm3和sm4的js版。

PS: 小程序移植版:https://github.com/wechat-miniprogram/sm-crypto

安装

npm install --save @ddn/sm-crypto

sm2

获取密钥对

const sm2 = require('@ddn/sm-crypto').sm2;

let keypair = sm2.generateKeyPairHex();

publicKey = keypair.publicKey; // 公钥
privateKey = keypair.privateKey; // 私钥

获取密钥对根据hash

const sm2 = require('@ddn/sm-crypto').sm2;
const secret='enter boring shaft rent essence foil trick vibrant fabric quote indoor output'
let keypair = sm2.generateKeyPairHex();

publicKey = keypair.publicKey; // 公钥
privateKey = keypair.privateKey; // 私钥

加密解密

const sm2 = require('@ddn/sm-crypto').sm2;
const cipherMode = 1; // 1 - C1C3C2,0 - C1C2C3,默认为1

let encryptData = sm2.doEncrypt(msgString, publicKey, cipherMode); // 加密结果
let decryptData = sm2.doDecrypt(encryptData, privateKey, cipherMode); // 解密结果

签名验签

ps:理论上来说,只做纯签名是最快的。

const sm2 = require('@ddn/sm-crypto').sm2;

// 纯签名 + 生成椭圆曲线点
let sigValueHex = sm2.doSignature(msg, privateKey); // 签名
let verifyResult = sm2.doVerifySignature(msg, sigValueHex, publicKey); // 验签结果

// 纯签名
let sigValueHex2 = sm2.doSignature(msg, privateKey, {
    pointPool: [sm2.getPoint(), sm2.getPoint(), sm2.getPoint(), sm2.getPoint()], // 传入事先已生成好的椭圆曲线点,可加快签名速度
}); // 签名
let verifyResult2 = sm2.doVerifySignature(msg, sigValueHex2, publicKey); // 验签结果

// 纯签名 + 生成椭圆曲线点 + der编解码
let sigValueHex3 = sm2.doSignature(msg, privateKey, {
    der: true,
}); // 签名
let verifyResult3 = sm2.doVerifySignature(msg, sigValueHex3, publicKey, {
    der: true,
}); // 验签结果

// 纯签名 + 生成椭圆曲线点 + sm3杂凑
let sigValueHex4 = sm2.doSignature(msg, privateKey, {
    hash: true,
}); // 签名
let verifyResult4 = sm2.doVerifySignature(msg, sigValueHex4, publicKey, {
    hash: true,
}); // 验签结果

// 纯签名 + 生成椭圆曲线点 + sm3杂凑(不做公钥推导)
let sigValueHex5 = sm2.doSignature(msg, privateKey, {
    hash: true,
    publicKey, // 传入公钥的话,可以去掉sm3杂凑中推导公钥的过程,速度会比纯签名 + 生成椭圆曲线点 + sm3杂凑快
});
let verifyResult5 = sm2.doVerifySignature(msg, sigValueHex5, publicKey, {
    hash: true,
    publicKey,
});

获取椭圆曲线点

const sm2 = require('@ddn/sm-crypto').sm2;

let poin = sm2.getPoint(); // 获取一个椭圆曲线点,可在sm2签名时传入

sm3

const sm3 = require('@ddn/sm-crypto').sm3;

let hashData = sm3('abc'); // 杂凑

sm4

加密

const sm4 = require('@ddn/sm-crypto').sm4;
const key = [0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10];

let encryptData = sm4.encrypt([0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10], key); // 加密

解密

const sm4 = require('@ddn/sm-crypto').sm4;
const key = [0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10];

let decryptData = sm4.decrypt([0x68, 0x1e, 0xdf, 0x34, 0xd2, 0x06, 0x96, 0x5e, 0x86, 0xb3, 0xe9, 0x4f, 0x53, 0x6e, 0x42, 0x46], key); // 解密

协议

MIT