Ubuntu20上编译Gmssl库并使用Java调用其提供的Java Wapper API接口
1.Gmssl库的安装
因为我的ubuntu版本是ubuntu20,所以安装GCC时需要这样安装。
拥有 sudo 权限用户身份或者 root 身份运行下面的命令:
sudo apt update
sudo apt install build-essential
这里提醒一下,执行这个update命令的时候,由于apt源的问题,会等很长一段时间。但是,千万不要更换源,千万不要更换源,千万不要更换源。别问为什么。
然后安装build-essential时,也会等很长时间,但是不要换源。
然后装好之后,使用gcc -v来查看版本。
然后编译Gmssl。这里也有说法,官网推荐安装是在解压后的目录中使用。
./config
make
sudo make install
步骤是没错的,但是需要修改两个文件才能编译通过。(感谢朱煜成同学提供的过坑办法)。需要修改的文件如下:
将:
use if $^O ne "VMS", 'File::Glob' => qw/glob/;
改为:
use if $^O ne "VMS", 'File::Glob' => qw/:glob/;
同理需要修改的一个文件是:./test/build.info
同理将:
use if $^O ne "VMS", 'File::Glob' => qw/glob/;
改为:
use if $^O ne "VMS", 'File::Glob' => qw/:glob/;
之后再执行
./config
make
sudo make install
等待执行完成之后在命令行执行 openssl命令。但这时候仍会报错。
gmssl: symbol lookup error: gmssl: undefined symbol: BIO_debug_callback, version OPENSSL_1_1_0d
需要执行一条命令
sudo ldconfig
然后再执行 openssl
出现如下证明成功
2.Gmssljndi.so文件的生成
这个文件是怎么来的,是真的难找到。官方文档一点没有提。所以只能摸索着来,在它的java文件夹中有一个build.sh的文件,打开之后可以看到它的逻辑,我知道为什么有人会在问答贴上大骂了。这确实是写死的,也没有说明。
看到生成的命令之后。我们在当前文件夹下使用命令执行就可以在当前文件夹下执行:
gcc -shared -fPIC -Wall -I./jni -I ../include -L ../lib GmSSL.c -lcrypto -o libgmssljni.so
然后会在当前文件夹生成libgmsssjni.so
3.代码中的引入
官网中给出的例子是使用
但是这样是根本不行的。因为libssljni.so没有添加到classpath中。所以不行。这样不行的具体原因我还没有搞明白。但是使用System.load函数就可以实现加载绝对路径的文件。所以
加载这个libgmssljni.so的绝对路径即可,然后运行效果。
完整代码
public class GmsslTest {
public native String[] getVersions();
public native String[] getCiphers();
public native String[] getDigests();
public native String[] getMacs();
public native String[] getSignAlgorithms();
public native String[] getPublicKeyEncryptions();
public native String[] getDeriveKeyAlgorithms();
public native byte[] generateRandom(int length);
public native int getCipherIVLength(String cipher);
public native int getCipherKeyLength(String cipher);
public native int getCipherBlockSize(String cipher);
public native byte[] symmetricEncrypt(String cipher, byte[] in, byte[] key, byte[] iv);
public native byte[] symmetricDecrypt(String cipher, byte[] in, byte[] key, byte[] iv);
public native int getDigestLength(String digest);
public native int getDigestBlockSize(String digest);
public native byte[] digest(String algor, byte[] data);
public native String[] getMacLength(String algor);
public native byte[] mac(String algor, byte[] data, byte[] key);
public native byte[] sign(String algor, byte[] data, byte[] privateKey);
public native int verify(String algor, byte[] digest, byte[] signature, byte[] publicKey);
public native byte[] publicKeyEncrypt(String algor, byte[] in, byte[] publicKey);
public native byte[] publicKeyDecrypt(String algor, byte[] in, byte[] privateKey);
public native byte[] deriveKey(String algor, int keyLength, byte[] peerPublicKey, byte[] privateKey);
public native String[] getErrorStrings();
static {
//System.loadLibrary("libssl");
System.load("/software/GmSSL-master/java/libgmssljni.so");
}
public static void main(String[] args) {
int i;
final org.gmssl.GmSSL gmssl = new org.gmssl.GmSSL();
/* GmSSL versions */
String[] versions = gmssl.getVersions();
for (i = 0; i < versions.length; i++) {
System.out.println(versions[i]);
}
/* Supported algorithms */
System.out.print("Ciphers: ");
String[] ciphers = gmssl.getCiphers();
for (i = 0; i < ciphers.length - 1; i++) {
System.out.print(ciphers[i] + ", ");
}
System.out.println(ciphers[i]);
System.out.print("Digests: ");
String[] digests = gmssl.getDigests();
for (i = 0; i < digests.length - 1; i++) {
System.out.print(digests[i] + ", ");
}
System.out.println(digests[i]);
System.out.print("MACs: ");
String[] macs = gmssl.getMacs();
for (i = 0; i < macs.length - 1; i++) {
System.out.print(macs[i] + ", ");
}
System.out.println(macs[i]);
System.out.print("SignAlgorithms: ");
String[] signAlgors = gmssl.getSignAlgorithms();
for (i = 0; i < signAlgors.length - 1; i++) {
System.out.print(signAlgors[i] + ", ");
}
System.out.println(signAlgors[i]);
System.out.print("PublicKeyEncryptions: ");
String[] encAlgors = gmssl.getPublicKeyEncryptions();
for (i = 0; i < encAlgors.length - 1; i++) {
System.out.print(encAlgors[i] + ", ");
}
System.out.println(encAlgors[i]);
System.out.print("DeriveKeyAlgorithms: ");
String[] kdfs = gmssl.getDeriveKeyAlgorithms();
for (i = 0; i < kdfs.length - 1; i++) {
System.out.print(kdfs[i] + ", ");
}
System.out.println(kdfs[i]);
/* Crypto operations */
System.out.print("Random(20) = ");
byte[] data = gmssl.generateRandom(20);
for (i = 0; i < data.length; i++) {
System.out.printf("%02X", data[i]);
}
System.out.println("");
System.out.printf("SMS4 IV length = %d bytes, key length = %d bytes, block size = %d bytes\n",
gmssl.getCipherIVLength("SMS4"),
gmssl.getCipherKeyLength("SMS4"),
gmssl.getCipherBlockSize("SMS4"));
byte[] key = {1,2,3,4,5,6,7,8,1,2,3,4,5,6,7,8};
byte[] iv = {1,2,3,4,5,6,7,8,1,2,3,4,5,6,7,8};
byte[] ciphertext = gmssl.symmetricEncrypt("SMS4", "01234567".getBytes(), key, iv);
System.out.print("Ciphertext: ");
for (i = 0; i < ciphertext.length; i++) {
System.out.printf("%02X", ciphertext[i]);
}
System.out.println("");
byte[] plaintext = gmssl.symmetricDecrypt("sms4", ciphertext, key, iv);
System.out.print("Plaintext: ");
for (i = 0; i < plaintext.length; i++) {
System.out.printf("%02X", plaintext[i]);
}
System.out.println("");
byte[] dgst = gmssl.digest("SM3", "abc".getBytes());
System.out.print("SM3(\"abc\") = ");
for (i = 0; i < dgst.length; i++) {
System.out.printf("%02X", dgst[i]);
}
System.out.println("");
byte[] macTag = gmssl.mac("HMAC-SM3", "abc".getBytes(), "password".getBytes());
System.out.print("HMAC-SM3(\"abc\") = ");
for (i = 0; i < macTag.length; i++) {
System.out.printf("%02X", macTag[i]);
}
System.out.println("");
byte[] sm2PrivateKey = new byte[] {
(byte)0x30,(byte)0x77,(byte)0x02,(byte)0x01,(byte)0x01,(byte)0x04,(byte)0x20,(byte)0x28,
(byte)0x7d,(byte)0x3f,(byte)0xb9,(byte)0xf4,(byte)0xbb,(byte)0xc8,(byte)0xbd,(byte)0xe1,
(byte)0x54,(byte)0x75,(byte)0x87,(byte)0x9f,(byte)0x08,(byte)0x61,(byte)0x20,(byte)0xe3,
(byte)0x65,(byte)0xf8,(byte)0xb2,(byte)0xca,(byte)0x14,(byte)0x26,(byte)0x81,(byte)0xf6,
(byte)0x1e,(byte)0xd8,(byte)0x7f,(byte)0xc0,(byte)0x66,(byte)0x20,(byte)0x29,(byte)0xa0,
(byte)0x0a,(byte)0x06,(byte)0x08,(byte)0x2a,(byte)0x81,(byte)0x1c,(byte)0xcf,(byte)0x55,
(byte)0x01,(byte)0x82,(byte)0x2d,(byte)0xa1,(byte)0x44,(byte)0x03,(byte)0x42,(byte)0x00,
(byte)0x04,(byte)0xb1,(byte)0x1e,(byte)0x4c,(byte)0x8c,(byte)0xa9,(byte)0x02,(byte)0xf2,
(byte)0x8d,(byte)0x8b,(byte)0x98,(byte)0xd2,(byte)0xd0,(byte)0xc4,(byte)0xf1,(byte)0x60,
(byte)0x91,(byte)0xfb,(byte)0x61,(byte)0x62,(byte)0x00,(byte)0xcf,(byte)0x93,(byte)0x4e,
(byte)0x3f,(byte)0xca,(byte)0xfd,(byte)0xf7,(byte)0x9d,(byte)0x76,(byte)0xb8,(byte)0x2b,
(byte)0xb3,(byte)0x30,(byte)0x98,(byte)0x65,(byte)0xf5,(byte)0x12,(byte)0xab,(byte)0x45,
(byte)0x78,(byte)0x29,(byte)0x87,(byte)0xdc,(byte)0x74,(byte)0x07,(byte)0x75,(byte)0xd0,
(byte)0x68,(byte)0xad,(byte)0x85,(byte)0x71,(byte)0x08,(byte)0xc2,(byte)0x19,(byte)0xf0,
(byte)0xf4,(byte)0xca,(byte)0x6e,(byte)0xe1,(byte)0xea,(byte)0x86,(byte)0xe6,(byte)0x21,
(byte)0x76};
byte[] sm2PublicKey = new byte[] {
(byte)0x30,(byte)0x59,(byte)0x30,(byte)0x13,(byte)0x06,(byte)0x07,(byte)0x2a,(byte)0x86,
(byte)0x48,(byte)0xce,(byte)0x3d,(byte)0x02,(byte)0x01,(byte)0x06,(byte)0x08,(byte)0x2a,
(byte)0x81,(byte)0x1c,(byte)0xcf,(byte)0x55,(byte)0x01,(byte)0x82,(byte)0x2d,(byte)0x03,
(byte)0x42,(byte)0x00,(byte)0x04,(byte)0xb1,(byte)0x1e,(byte)0x4c,(byte)0x8c,(byte)0xa9,
(byte)0x02,(byte)0xf2,(byte)0x8d,(byte)0x8b,(byte)0x98,(byte)0xd2,(byte)0xd0,(byte)0xc4,
(byte)0xf1,(byte)0x60,(byte)0x91,(byte)0xfb,(byte)0x61,(byte)0x62,(byte)0x00,(byte)0xcf,
(byte)0x93,(byte)0x4e,(byte)0x3f,(byte)0xca,(byte)0xfd,(byte)0xf7,(byte)0x9d,(byte)0x76,
(byte)0xb8,(byte)0x2b,(byte)0xb3,(byte)0x30,(byte)0x98,(byte)0x65,(byte)0xf5,(byte)0x12,
(byte)0xab,(byte)0x45,(byte)0x78,(byte)0x29,(byte)0x87,(byte)0xdc,(byte)0x74,(byte)0x07,
(byte)0x75,(byte)0xd0,(byte)0x68,(byte)0xad,(byte)0x85,(byte)0x71,(byte)0x08,(byte)0xc2,
(byte)0x19,(byte)0xf0,(byte)0xf4,(byte)0xca,(byte)0x6e,(byte)0xe1,(byte)0xea,(byte)0x86,
(byte)0xe6,(byte)0x21,(byte)0x76};
byte[] sig = gmssl.sign("sm2sign", dgst, sm2PrivateKey);
System.out.print("SM2 Signature : ");
for (i = 0; i < sig.length; i++) {
System.out.printf("%02X", sig[i]);
}
System.out.print("\n");
int vret = gmssl.verify("sm2sign", dgst, sig, sm2PublicKey);
System.out.println("Verification result = " + vret);
byte[] sm2Ciphertext = gmssl.publicKeyEncrypt("sm2encrypt-with-sm3", dgst, sm2PublicKey);
System.out.print("SM2 Ciphertext : ");
for (i = 0; i < sm2Ciphertext.length; i++) {
System.out.printf("%02X", sm2Ciphertext[i]);
}
System.out.print("\n");
byte[] sm2Plaintext = gmssl.publicKeyDecrypt("sm2encrypt-with-sm3", sm2Ciphertext, sm2PrivateKey);
System.out.print("SM2 Plaintext : ");
for (i = 0; i < sm2Plaintext.length; i++) {
System.out.printf("%02X", sm2Plaintext[i]);
}
System.out.print("\n");
/* Errors */
System.out.println("Errors:");
String[] errors = gmssl.getErrorStrings();
for (i = 0; i < errors.length; i++) {
System.out.println(errors[i]);
}
}
}