项目场景:
例如像密码这种数据需要进行加密处理,这里采用国密非对称算法sm2工具类,提供通过公钥加密和私钥解密方法,基于hutool实现,入库时用公钥加密处理,在需要用到的地方用私钥解密处理,公钥和私钥在配置文件中
代码实现:
添加依赖
<dependency>
<groupId>cn.hutool</groupId>
<artifactId>hutool-all</artifactId>
<version>5.5.7</version>
</dependency>
<dependency>
<groupId>org.bouncycastle</groupId>
<artifactId>bcprov-jdk15to18</artifactId>
<version>1.66</version>
</dependency>
import cn.hutool.core.util.CharsetUtil;
import cn.hutool.core.util.StrUtil;
import cn.hutool.crypto.SecureUtil;
import cn.hutool.crypto.SmUtil;
import cn.hutool.crypto.asymmetric.KeyType;
import cn.hutool.crypto.asymmetric.SM2;
import lombok.extern.slf4j.Slf4j;
import org.apache.commons.codec.binary.Base64;
import org.springframework.core.env.Environment;
import org.springframework.util.StringUtils;
import java.io.UnsupportedEncodingException;
import java.security.KeyPair;
@Slf4j
public class Sm2Util {
private static SM2 sm2;
private static synchronized SM2 getSm2() {
if (sm2 == null) {
Environment environment = SpringBeanUtil.getApplicationContext().getEnvironment();
String privateKey = environment.getProperty("encrypt.sm2.privateKey");
String publicKey = environment.getProperty("encrypt.sm2.publicKey");
sm2 = SmUtil.sm2(Base64.decodeBase64(privateKey), Base64.decodeBase64(publicKey));
}
return sm2;
}
/**
* 公钥加密
*
* @param cipherTxt
* @return
*/
public static String encrypt(String cipherTxt) {
if (!StringUtils.hasText(cipherTxt)) {
return cipherTxt;
}
String encryptStr = getSm2().encryptBcd(cipherTxt, KeyType.PublicKey);
return encryptStr;
}
/**
* 私钥解密
*
* @param plainTxt
* @return
*/
public static String decrypt(String plainTxt) {
if (!StringUtils.hasText(plainTxt)) {
return plainTxt;
}
String decryptStr = StrUtil.utf8Str(getSm2().decryptFromBcd(plainTxt, KeyType.PrivateKey));
return decryptStr;
}
/**
* 生成一对 C1C2C3 格式的SM2密钥
*
* @return 处理结果
*/
public static void getSM2Key() {
KeyPair pair = SecureUtil.generateKeyPair("SM2");
byte[] privateKey = pair.getPrivate().getEncoded();
byte[] publicKey = pair.getPublic().getEncoded();
try {
System.out.println("私钥" + new String(Base64.encodeBase64(privateKey), CharsetUtil.UTF_8));
System.out.println("公钥" + new String(Base64.encodeBase64(publicKey), CharsetUtil.UTF_8));
} catch (UnsupportedEncodingException e) {
log.error(e.getMessage());
}
}
}