SM4前后端数据传输整体加密

最新推荐文章于 2024-05-17 02:06:03 发布
最新推荐文章于 2024-05-17 02:06:03 发布
阅读量1.8k 收藏 5
点赞数
文章标签: java spring boot 加密解密 1024程序员节
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_42702229/article/details/120930089
版权

1.SM所需包

pom

	<!--sm加密-->
		<dependency>
			<groupId>org.bouncycastle</groupId>
			<artifactId>bcprov-jdk15on</artifactId>
			<version>1.69</version>
		</dependency>
		<dependency>
			<groupId>com.alibaba</groupId>
			<artifactId>fastjson</artifactId>
			<version>1.2.76</version>
		</dependency>

2.服务器加密工具类



import com.alibaba.fastjson.JSONObject;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.pqc.math.linearalgebra.ByteUtils;

import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.spec.SecretKeySpec;
import java.security.Key;
import java.security.SecureRandom;
import java.security.Security;
import java.util.Arrays;
/**
 * sm4加密解密
 * CBC、ECB模式
 * @author wzk
 *
 */
@SuppressWarnings("restriction")
public class Sm4Utils {
    public static final String ENCODING = "UTF-8";
    public static final String ALGORIGTHM_NAME = "SM4";
    public static final String ALGORITHM_NAME_ECB_PADDING = "SM4/ECB/PKCS7Padding";
    public static final int DEFAULT_KEY_SIZE = 128;

    public Sm4Utils() {
    }

    static {
        Security.addProvider(new BouncyCastleProvider());
    }

    /**
     *  @Description:生成ecb暗号
     */
    private static Cipher generateEcbCipher(String algorithmName, int mode, byte[] key) throws Exception {
        Cipher cipher = Cipher.getInstance(algorithmName,BouncyCastleProvider.PROVIDER_NAME);
        Key sm4Key = new SecretKeySpec(key, ALGORIGTHM_NAME);
        cipher.init(mode, sm4Key);
        return cipher;
    }

    /**
     *  @Description:自动生成密钥
     */
    public static byte[] generateKey() throws Exception {
        return generateKey(DEFAULT_KEY_SIZE);
    }

    public static byte[] generateKey(int keySize) throws Exception {
        KeyGenerator kg = KeyGenerator.getInstance(ALGORIGTHM_NAME, BouncyCastleProvider.PROVIDER_NAME);
        kg.init(keySize, new SecureRandom());
        return kg.generateKey().getEncoded();
    }


    /**
     *  @Description:加密
     */
    public static String encryptEcb(String hexKey, String paramStr, String charset) throws Exception {
        String cipherText = "";
        if (null != paramStr && !"".equals(paramStr)) {
            byte[] keyData = ByteUtils.fromHexString(hexKey);
            charset = charset.trim();
            if (charset.length() <= 0) {
                charset = ENCODING;
            }
            byte[] srcData = paramStr.getBytes(charset);
            byte[] cipherArray = encryptEcbPadding(keyData, srcData);
            cipherText = ByteUtils.toHexString(cipherArray);
        }
        return cipherText;
    }

    /**
     *  @Description:加密
     */
    public static String encryptEcb(String hexKey, String paramStr) throws Exception {
        String cipherText = "";
        if (null != paramStr && !"".equals(paramStr)) {

            byte[] keyData = ByteUtils.fromHexString(hexKey);
            byte[] srcData = paramStr.getBytes(ENCODING);
            byte[] cipherArray = encryptEcbPadding(keyData, srcData);
            cipherText = ByteUtils.toHexString(cipherArray);
        }
        return cipherText;
    }

    /**
     *  @Description:加密模式之ecb
     */
    public static byte[] encryptEcbPadding(byte[] key, byte[] data) throws Exception {
        Cipher cipher = generateEcbCipher(ALGORITHM_NAME_ECB_PADDING, Cipher.ENCRYPT_MODE, key);
        byte[] bs = cipher.doFinal(data);
        return bs;
    }

    /**
     *  @Description:sm4解密
     */
    public static String decryptEcb(String hexKey, String cipherText, String charset) throws Exception {
        byte[] keyData = ByteUtils.fromHexString(hexKey);
        byte[] cipherData = ByteUtils.fromHexString(cipherText);
        byte[] srcData = decrypt_Ecb_Padding(keyData, cipherData);
        charset = charset.trim();
        if (charset.length() <= 0) {
            charset = ENCODING;
        }
        return  new String(srcData, charset);
    }

    /**
     *  @Description:sm4解密
     */
    public static  byte[] decryptEcb(String hexKey, String cipherText) throws Exception {
        byte[] keyData = ByteUtils.fromHexString(hexKey);
        byte[] cipherData = ByteUtils.fromHexString(cipherText);
        byte[] srcData = decrypt_Ecb_Padding(keyData, cipherData);
        return  srcData;
    }


    /**
     *  @Description:sm4解密
     */
    public static <T> T decryptEcb(String hexKey, String cipherText, String charset  , Class<T> tClass) throws Exception {
        byte[] keyData = ByteUtils.fromHexString(hexKey);
        byte[] cipherData = ByteUtils.fromHexString(cipherText);
        byte[] srcData = decrypt_Ecb_Padding(keyData, cipherData);
        charset = charset.trim();
        if (charset.length() <= 0) {
            charset = ENCODING;
        }
        return JSONObject.parseObject(new String(srcData, charset) , tClass);
    }

    /**
     *  @Description:sm4解密
     */
    public static <T> T decryptEcb(String hexKey, String cipherText , Class<T> tClass) throws Exception {
        byte[] keyData = ByteUtils.fromHexString(hexKey);
        byte[] cipherData = ByteUtils.fromHexString(cipherText);
        byte[] srcData = decrypt_Ecb_Padding(keyData, cipherData);
        return JSONObject.parseObject(new String(srcData, ENCODING) , tClass);
    }

    /**
     *  @Description:解密
     */
    public static byte[] decrypt_Ecb_Padding(byte[] key, byte[] cipherText) throws Exception {
        Cipher cipher = generateEcbCipher(ALGORITHM_NAME_ECB_PADDING, Cipher.DECRYPT_MODE, key);
        return cipher.doFinal(cipherText);
    }

    /**
     *  @Description:解密
     */
    public static byte[] decrypt_Ecb_Padding(String key, byte[] cipherText) throws Exception {
        return  decrypt_Ecb_Padding(ByteUtils.fromHexString(key) , cipherText );
    }

    /**
     *  @Description:密码校验
     */
    public static boolean verifyEcb(String hexKey,String cipherText,String paramStr) throws Exception {
        boolean flag = false;
        byte[] keyData = ByteUtils.fromHexString(hexKey);
        byte[] cipherData = ByteUtils.fromHexString(cipherText);
        byte[] decryptData = decrypt_Ecb_Padding(keyData,cipherData);
        byte[] srcData = paramStr.getBytes(ENCODING);
        flag = Arrays.equals(decryptData,srcData);
        return flag;
    }

//    /**
//     *  @Description:测试类
//     */
//    public static void main(String[] args) {
//        try {
//            String json = "{}";   // 自定义的32位16进制密钥
//            String key = "cc9368581322479ebf3e79348a2759";
//            String cipher = Sm4Utils.encryptEcb(key, json,ENCODING);
//            System.out.println(cipher);
//            System.out.println(Sm4Utils.verifyEcb(key, cipher, json));
//            json = Sm4Utils.decryptEcb(key, "7e76fa4f63302ed402ed9d2742f81a40311054d134b1fb689b045f74eaa370c17e9ddf8e332425a69fb4688fbffad464019a2c31f96459e35ce4785bab7b0dec",ENCODING);
//            System.out.println(json);
//        } catch (Exception e) {
//            e.printStackTrace();
//        }
//    }
}

3.客服端对应js 加密解密

const SboxTable = [
    [0xd6, 0x90, 0xe9, 0xfe, 0xcc, 0xe1, 0x3d, 0xb7, 0x16, 0xb6, 0x14, 0xc2, 0x28, 0xfb, 0x2c, 0x05],
    [0x2b, 0x67, 0x9a, 0x76, 0x2a, 0xbe, 0x04, 0xc3, 0xaa, 0x44, 0x13, 0x26, 0x49, 0x86, 0x06, 0x99],
    [0x9c, 0x42, 0x50, 0xf4, 0x91, 0xef, 0x98, 0x7a, 0x33, 0x54, 0x0b, 0x43, 0xed, 0xcf, 0xac, 0x62],
    [0xe4, 0xb3, 0x1c, 0xa9, 0xc9, 0x08, 0xe8, 0x95, 0x80, 0xdf, 0x94, 0xfa, 0x75, 0x8f, 0x3f, 0xa6],
    [0x47, 0x07, 0xa7, 0xfc, 0xf3, 0x73, 0x17, 0xba, 0x83, 0x59, 0x3c, 0x19, 0xe6, 0x85, 0x4f, 0xa8],
    [0x68, 0x6b, 0x81, 0xb2, 0x71, 0x64, 0xda, 0x8b, 0xf8, 0xeb, 0x0f, 0x4b, 0x70, 0x56, 0x9d, 0x35],
    [0x1e, 0x24, 0x0e, 0x5e, 0x63, 0x58, 0xd1, 0xa2, 0x25, 0x22, 0x7c, 0x3b, 0x01, 0x21, 0x78, 0x87],
    [0xd4, 0x00, 0x46, 0x57, 0x9f, 0xd3, 0x27, 0x52, 0x4c, 0x36, 0x02, 0xe7, 0xa0, 0xc4, 0xc8, 0x9e],
    [0xea, 0xbf, 0x8a, 0xd2, 0x40, 0xc7, 0x38, 0xb5, 0xa3, 0xf7, 0xf2, 0xce, 0xf9, 0x61, 0x15, 0xa1],
    [0xe0, 0xae, 0x5d, 0xa4, 0x9b, 0x34, 0x1a, 0x55, 0xad, 0x93, 0x32, 0x30, 0xf5, 0x8c, 0xb1, 0xe3],
    [0x1d, 0xf6, 0xe2, 0x2e, 0x82, 0x66, 0xca, 0x60, 0xc0, 0x29, 0x23, 0xab, 0x0d, 0x53, 0x4e, 0x6f],
    [0xd5, 0xdb, 0x37, 0x45, 0xde, 0xfd, 0x8e, 0x2f, 0x03, 0xff, 0x6a, 0x72, 0x6d, 0x6c, 0x5b, 0x51],
    [0x8d, 0x1b, 0xaf, 0x92, 0xbb, 0xdd, 0xbc, 0x7f, 0x11, 0xd9, 0x5c, 0x41, 0x1f, 0x10, 0x5a, 0xd8],
    [0x0a, 0xc1, 0x31, 0x88, 0xa5, 0xcd, 0x7b, 0xbd, 0x2d, 0x74, 0xd0, 0x12, 0xb8, 0xe5, 0xb4, 0xb0],
    [0x89, 0x69, 0x97, 0x4a, 0x0c, 0x96, 0x77, 0x7e, 0x65, 0xb9, 0xf1, 0x09, 0xc5, 0x6e, 0xc6, 0x84],
    [0x18, 0xf0, 0x7d, 0xec, 0x3a, 0xdc, 0x4d, 0x20, 0x79, 0xee, 0x5f, 0x3e, 0xd7, 0xcb, 0x39, 0x48],
];

const FK = [0xa3b1bac6, 0x56aa3350, 0x677d9197, 0xb27022dc];
const CK = [
    0x00070e15, 0x1c232a31, 0x383f464d, 0x545b6269,
    0x70777e85, 0x8c939aa1, 0xa8afb6bd, 0xc4cbd2d9,
    0xe0e7eef5, 0xfc030a11, 0x181f262d, 0x343b4249,
    0x50575e65, 0x6c737a81, 0x888f969d, 0xa4abb2b9,
    0xc0c7ced5, 0xdce3eaf1, 0xf8ff060d, 0x141b2229,
    0x30373e45, 0x4c535a61, 0x686f767d, 0x848b9299,
    0xa0a7aeb5, 0xbcc3cad1, 0xd8dfe6ed, 0xf4fb0209,
    0x10171e25, 0x2c333a41, 0x484f565d, 0x646b7279,
];

const SM4_ENCRYPT = 1;
const SM4_DECRYPT = 0;

function sm4_context() {
    this.mode = 0;
    this.sk = [];
}


function GET_ULONG_BE(n, b, i) {
    return (b[i] << 24) | (b[i + 1] << 16) | (b[i + 2]) << 8 | (b[i + 3]);
}

function PUT_ULONG_BE(n, b, i) {
    b[i] = n >>> 24;
    b[i + 1] = n >>> 16;
    b[i + 2] = n >>> 8;
    b[i + 3] = n;
}

function ROTL(x, n) {
    const a = (x & 0xFFFFFFFF) << n;
    const b = x >>> (32 - n);

    return a | b;
}


function sm4Sbox(n) {
    const l = n >>> 4;
    const r = n % 16;
    return SboxTable[l][r];
}

function sm4Lt(ka) {
    let bb = 0;
    let c = 0;
    const a = new Uint8Array(4);
    const b = new Array(4);
    PUT_ULONG_BE(ka, a, 0);
    b[0] = sm4Sbox(a[0]);
    b[1] = sm4Sbox(a[1]);
    b[2] = sm4Sbox(a[2]);
    b[3] = sm4Sbox(a[3]);
    bb = GET_ULONG_BE(bb, b, 0);

    c = bb ^ (ROTL(bb, 2)) ^ (ROTL(bb, 10)) ^ (ROTL(bb, 18)) ^ (ROTL(bb, 24));
    return c;
}

function sm4F(x0, x1, x2, x3, rk) {
    return (x0 ^ sm4Lt(x1 ^ x2 ^ x3 ^ rk));
}

function sm4CalciRK(ka) {
    let bb = 0;
    let rk = 0;
    const a = new Uint8Array(4);
    const b = new Array(4);
    PUT_ULONG_BE(ka, a, 0);
    b[0] = sm4Sbox(a[0]);
    b[1] = sm4Sbox(a[1]);
    b[2] = sm4Sbox(a[2]);
    b[3] = sm4Sbox(a[3]);
    bb = GET_ULONG_BE(bb, b, 0);

    rk = bb ^ (ROTL(bb, 13)) ^ (ROTL(bb, 23));

    return rk;
}

function sm4_setkey(SK, key) {
    const MK = new Array(4);
    const k = new Array(36);
    let i = 0;
    MK[0] = GET_ULONG_BE(MK[0], key, 0);
    MK[1] = GET_ULONG_BE(MK[1], key, 4);
    MK[2] = GET_ULONG_BE(MK[2], key, 8);
    MK[3] = GET_ULONG_BE(MK[3], key, 12);

    k[0] = MK[0] ^ FK[0];
    k[1] = MK[1] ^ FK[1];
    k[2] = MK[2] ^ FK[2];
    k[3] = MK[3] ^ FK[3];

    for (; i < 32; i++) {
        k[i + 4] = k[i] ^ (sm4CalciRK(k[i + 1] ^ k[i + 2] ^ k[i + 3] ^ CK[i]));
        SK[i] = k[i + 4];
    }
}

function sm4_one_round(sk, input, output) {
    let i = 0;
    const ulbuf = new Array(36);

    ulbuf[0] = GET_ULONG_BE(ulbuf[0], input, 0);
    ulbuf[1] = GET_ULONG_BE(ulbuf[1], input, 4);
    ulbuf[2] = GET_ULONG_BE(ulbuf[2], input, 8);
    ulbuf[3] = GET_ULONG_BE(ulbuf[3], input, 12);
    while (i < 32) {
        ulbuf[i + 4] = sm4F(ulbuf[i], ulbuf[i + 1], ulbuf[i + 2], ulbuf[i + 3], sk[i]);
        i++;
    }

    PUT_ULONG_BE(ulbuf[35], output, 0);
    PUT_ULONG_BE(ulbuf[34], output, 4);
    PUT_ULONG_BE(ulbuf[33], output, 8);
    PUT_ULONG_BE(ulbuf[32], output, 12);
}

function sm4_setkey_enc(ctx, key) {
    ctx.mode = SM4_ENCRYPT;
    sm4_setkey(ctx.sk, key);
}

function sm4_setkey_dec(ctx, key) {
    let i;
    let j;
    ctx.mode = SM4_ENCRYPT;
    sm4_setkey(ctx.sk, key);
    for (i = 0; i < 16; i++) {
        j = ctx.sk[31 - i];
        ctx.sk[31 - i] = ctx.sk[i];
        ctx.sk[i] = j;
    }
}

function sm4_crypt_ecb(ctx, mode, length, input, output) {
    let index = 0;
    while (length > 0) {
        const oneInput = input.slice(index, index + 16);
        const oneOutput = new Uint8Array(16);
        sm4_one_round(ctx.sk, oneInput, oneOutput);

        for (let i = 0; i < 16; i++) {
            output[index + i] = oneOutput[i];
        }
        index += 16;
        length -= 16;
    }
}

function sm4_crypt_cbc(ctx, mode, length, iv, input, output) {
    let i;
    const temp = new Array(16);
    let index = 0;

    if (mode == SM4_ENCRYPT) {
        while (length > 0) {
            const oneInput = input.slice(index, index + 16);
            const oneOutput = new Array(16);
            for (i = 0; i < 16; i++) {
                oneOutput[i] = oneInput[i] ^ iv[i];
            }

            sm4_one_round(ctx.sk, oneOutput, oneOutput);

            for (i = 0; i < 16; i++) {
                iv[i] = oneOutput[i];
                output[index + i] = oneOutput[i];
            }

            index += 16;
            length -= 16;
        }
    } else /* SM4_DECRYPT */ {
        while (length > 0) {
            const oneInput = input.slice(index, index + 16);
            const oneOutput = new Array(16);
            index += 16;
            for (i = 0; i < 16; i++) {
                temp[i] = oneInput[i];
            }

            sm4_one_round(ctx.sk, oneInput, oneOutput);

            for (i = 0; i < 16; i++) {
                oneOutput[i] = oneOutput[i] ^ iv[i];
                output[index + i] = oneOutput[i];
            }

            for (i = 0; i < 16; i++) {
                iv[i] = temp[i];
            }

            index += 16;
            length -= 16;
        }
    }
}

function strfix(str, len) {
    let length = len - str.length;
    while (length-- > 0) {
        str = `0${str}`;
    }
    return str;
}

function HEXStrXOR(str1, str2) {
    const buf1 = hex2Array(str1);
    const buf2 = hex2Array(str2);

    let result = '';
    for (let i = 0; i < 16; i++) {
        result += strfix((buf1[i] ^ buf2[i]).toString(16).toUpperCase(), 2);
    }

    return result;
}

function hex2Array(str) {
    const len = str.length / 2;
    let substr = '';
    const result = new Array(len);
    for (let i = 0; i < len; i++) {
        substr = str.slice(2 * i, 2 * (i + 1));
        result[i] = parseInt(substr, 16) || 0;
    }
    return result;
}


const stringToByteArray = function(str) {
    const bytes = new Array();
    let len;
    let c;
    len = str.length;
    for (let i = 0; i < len; i++) {
        c = str.charCodeAt(i);
        if (c >= 0x010000 && c <= 0x10FFFF) {
            bytes.push(((c >> 18) & 0x07) | 0xF0);
            bytes.push(((c >> 12) & 0x3F) | 0x80);
            bytes.push(((c >> 6) & 0x3F) | 0x80);
            bytes.push((c & 0x3F) | 0x80);
        } else if (c >= 0x000800 && c <= 0x00FFFF) {
            bytes.push(((c >> 12) & 0x0F) | 0xE0);
            bytes.push(((c >> 6) & 0x3F) | 0x80);
            bytes.push((c & 0x3F) | 0x80);
        } else if (c >= 0x000080 && c <= 0x0007FF) {
            bytes.push(((c >> 6) & 0x1F) | 0xC0);
            bytes.push((c & 0x3F) | 0x80);
        } else {
            bytes.push(c & 0xFF);
        }
    }
    return bytes;
};

const hexStringToByteArray = function(str) {
    let pos = 0;
    let len = str.length;
    if (len % 2 !== 0) {
        return str;
    }
    len /= 2;
    const arrBytes = new Array();
    for (let i = 0; i < len; i++) {
        const s = str.substr(pos, 2);
        const v = parseInt(s, 16);
        arrBytes.push(v);
        pos += 2;
    }
    return arrBytes;
};
const byteArrayToHexString = function(arr) {
    let str = '';
    for (let i = 0; i < arr.length; i++) {
        let tmp = arr[i].toString(16);
        if (tmp.length == 1) {
            tmp = `0${tmp}`;
        }
        str += tmp;
    }
    return str;
};
const byteArrayToString = function(arr) {
    if (typeof arr === 'string') {
        return arr;
    }
    let str = '';
    const _arr = arr;
    for (let i = 0; i < _arr.length; i++) {
        const one = _arr[i].toString(2);
        const v = one.match(/^1+?(?=0)/);
        if (v && one.length == 8) {
            const bytesLength = v[0].length;
            let store = _arr[i].toString(2).slice(7 - bytesLength);
            for (let st = 1; st < bytesLength; st++) {
                store += _arr[st + i].toString(2).slice(2);
            }
            str += String.fromCharCode(parseInt(store, 2));
            i += bytesLength - 1;
        } else {
            str += String.fromCharCode(_arr[i]);
        }
    }
    return str;
};

function SM4CryptECBWithPKCS7Padding(data, sCryptFlag) {
    const szSM4Key = "cc9368581322479ebf3e79348a2759";
    if (szSM4Key.length !== 32) {
        // console.log("传入密钥[" + szSM4Key + "]长度不为32位");
        return '';
    }
    let szData = null;
    if (sCryptFlag === SM4_ENCRYPT) { // 加密
        szData = stringToByteArray(data);
    } else { // 解密
        szData = hexStringToByteArray(data);
    }
    const len = szData.length;

    if (sCryptFlag === SM4_ENCRYPT) { // 加密,进行填充PKCS7Padding
        const p = 16 - len % 16;
        for (let i = 0; i < p; i++) {
            szData.push(p);
        }
    }

    const ctx = new sm4_context();
    const lpbKey = hex2Array(szSM4Key);
    if (sCryptFlag === SM4_ENCRYPT) {
        sm4_setkey_enc(ctx, lpbKey); // 加密
    } else {
        sm4_setkey_dec(ctx, lpbKey); // 解密
    }
    const pbyCryptResult = new Array(szData.length);
    sm4_crypt_ecb(ctx, sCryptFlag, szData.length, szData, pbyCryptResult);
    if (sCryptFlag === SM4_DECRYPT) { // 解密,去除填充PKCS7Padding
        const p = pbyCryptResult[pbyCryptResult.length - 1];
        for (let i = 0; i < p; i++) {
            pbyCryptResult.pop();
        }
    }
    if (sCryptFlag === SM4_ENCRYPT) { // 加密
        return byteArrayToHexString(pbyCryptResult);
    } // 解密
    return byteArrayToString(pbyCryptResult);
}

//加密
export function encrypt(inArray) {
    return SM4CryptECBWithPKCS7Padding(inArray, 1);
}

//解密
export function decrypt(inArray) {
    return SM4CryptECBWithPKCS7Padding(inArray, 0);
}

4.加密拦截器(数据整体加密)

注意:前后端密钥要相同

EncryptInterceptor

import cn.hat.util.Sm4Utils;
import com.alibaba.fastjson.JSONObject;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.core.MethodParameter;
import org.springframework.http.MediaType;
import org.springframework.http.server.ServerHttpRequest;
import org.springframework.http.server.ServerHttpResponse;
import org.springframework.web.bind.annotation.RestControllerAdvice;
import org.springframework.web.servlet.mvc.method.annotation.ResponseBodyAdvice;


/**
 * @author HAT
 * @Description 解密拦截器
 * @date 2021/10/11 8:49
 */
@Slf4j
@RestControllerAdvice("cn.hat.controller")
public class EncryptInterceptor implements ResponseBodyAdvice {

    //对应yml密钥配置
    @Value("${SM4.secret}")
    private String DEFAULT_KEY;

    @Override
    public boolean supports(MethodParameter methodParameter, Class aClass) {
        return true;
    }

    @Override
    public Object beforeBodyWrite(Object object, MethodParameter methodParameter, MediaType mediaType, Class aClass, ServerHttpRequest serverHttpRequest, ServerHttpResponse serverHttpResponse) {
        try {
            return Sm4Utils.encryptEcb(DEFAULT_KEY, JSONObject.toJSONString(object));
        } catch (Throwable throwable) {
            throwable.printStackTrace();
            this.log.error("加密失败{}", throwable);
        }
        return object;
    }
}

application.yml

#sm4加密
SM4:
  #密钥
  secret: cc9368581322479ebf3e79348a2759

5.解密拦截器(数据整体解密)


import cn.hat.util.Sm4Utils;
import cn.hat.util.StringUtils;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.core.MethodParameter;
import org.springframework.http.HttpHeaders;
import org.springframework.http.HttpInputMessage;
import org.springframework.http.converter.HttpMessageConverter;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RestControllerAdvice;
import org.springframework.web.servlet.mvc.method.annotation.RequestBodyAdvice;

import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.io.InputStream;
import java.lang.reflect.Type;

/**
 * @Description 解密拦截器
 * @author HAT
 * @date 2021/10/11 8:49
 */
@Slf4j
@RestControllerAdvice("cn.hat.controller")
public class DecrypInterceptor implements RequestBodyAdvice {
    @Value("${SM4.secret}")
    private  String DEFAULT_KEY;
    @Override
    public boolean supports(MethodParameter methodParameter, Type type, Class<? extends HttpMessageConverter<?>> aClass) {
        return methodParameter.hasParameterAnnotation(RequestBody.class);
    }

    @Override
    public HttpInputMessage beforeBodyRead(HttpInputMessage httpInputMessage, MethodParameter methodParameter, Type type, Class<? extends HttpMessageConverter<?>> aClass) throws IOException {
        byte[] bytes = StringUtils.toByteArray(httpInputMessage.getBody());
        // 读取加密的请求体
        try {
            bytes = Sm4Utils.decryptEcb(DEFAULT_KEY, new String(bytes, Sm4Utils.ENCODING));
            // 使用解密后的数据,构造新的读取流
            InputStream rawInputStream = new ByteArrayInputStream(bytes);
            return new HttpInputMessage() {
                @Override
                public HttpHeaders getHeaders() {
                    return httpInputMessage.getHeaders();
                }

                @Override
                public InputStream getBody() throws IOException {
                    return rawInputStream;
                }
            };
        } catch (Throwable throwable) {
            throwable.printStackTrace();
            log.error("解密失败{}", throwable);
        }
        return null;
    }

    @Override
    public Object afterBodyRead(Object o, HttpInputMessage httpInputMessage, MethodParameter methodParameter, Type type, Class<? extends HttpMessageConverter<?>> aClass) {
        return o;
    }

    @Override
    public Object handleEmptyBody(Object o, HttpInputMessage httpInputMessage, MethodParameter methodParameter, Type type, Class<? extends HttpMessageConverter<?>> aClass) {
        return o;
    }
}

Fore_v_er
关注
  • 0
    点赞
  • 5
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
sm4 前后端 加密_关于前后端鉴权的几种方式
weixin_29357243的博客
12-09 822
“ 人生亦有命,安能行叹复坐愁”01 前言最近看的比较多的方面都是关于计算机网络的内容,不得不说这个方面是真的很广泛,然后花了一些时间来了解一下如何实现前后端鉴权的方式,查阅了一下文章,也顺便写一下总结。02 鉴权方式前后之间进行数据交互,当然后端要判断你是否是真正的操作者,只有符合条件的用户才可以操作。也就是说必须要有一个身份证明你是一个好人。通常会有四种方式:HTTP Basic Authen...
前后端实现加密传输(RSA)
热门推荐
LittleQ的博客
02-28 1万+
前后端实现加密传输(RSA) 由于前端使用HTTP协议, 因此产生了对于数据加密的需求, 由于JS和Python中RSA秘钥产生方式的差异,踩了不少坑, 在这里记录一下. 技术栈: JS、Python、Django、JSEncrypt 详细记录: # 密钥格式(公钥) -----BEGIN PUBLIC KEY----- # 密钥内容 -----END PUBLIC KEY----- ...
sm4前后端实现传输解密
11-28
通过java实现SM4加解密算法,同时用前端js重构,使得可以在前后端加密解密,用于安全传输身份证,手机号和姓名等。
Web前端最全前端使用国密SM4进行加密、解密_sm4在线加密(1),2024年最新字节跳动Web前端岗面试题
最新发布
2401_84447262的博客
05-17 952
所以面试没有其他的诀窍,只看你对这些知识点准备的充分程度。我意识到有很多经验和知识值得分享给大家,也可以通过我们的能力和经验解答大家在IT学习中的很多困惑,所以在工作繁忙的情况下还是坚持各种整理和分享。指出JS的宿主对象和原生对象的区别,为什么扩展JS内置对象不是好的做法?引用类型和基本类型有什么区别?js的基本类型有哪些?这里再分享一个复习的路线:(以下体系的复习资料是我从各路大佬收集整理好的)事件委托(手写例子),事件冒泡和捕获,如何阻止冒泡?显示原型和隐式原型,手绘原型链,原型链是什么?
前后端数据传输加密(一)
zengliangxi的专栏
03-31 1万+
1.AES对称加密 a.前端加解密 <script src="https://cdn.bootcss.com/crypto-js/3.1.9-1/crypto-js.min.js"></script> /** * 加密 **/ functionencrypt(value,key) { var tempValue = JSON.stringify(value); var tempKey = CryptoJS.enc.Utf8.parse(key); var...
前后端数据加密传输(附go语言实现)
DisMisPres的博客
03-12 3409
这里做的加密传输,仅仅只能添加破解的复杂性,不能真的保证数据不泄露。所以一般的服务在做数据交互时也并不会刻意去做这种前后端的数据加密,一般性的是做服务器的session或者客户端的cookie校验,来保证数据不泄露,不被篡改。但你要是说我做session校验的token在前端泄露了,那这种也是用户自己的问题(进入黑客网站或其他做了鉴权),服务防不了这种,顶多是增加校验复杂性来让其更加繁琐。所以说在类似付款的操作的时候,都会再进行一次校验(输入密码/验证指纹等),来再做一次权限校验。
RSA + AES对前后端数据进行加密
qq_14946371的博客
03-01 4580
前后端交互时,常常采取http方式进行传输,而明文传输通常会被网络抓包、反编译等手段得到htpp通讯接地址和参数等。为了确保信息的安全,在生产中使用了很多种加密手段。 最终采用 AES+RSA 组合进行接口参数加密和解密的方式脱颖而出,成为了当今主流手段。
sm2、sm3、sm4前后端加密解密.zip
07-09
sm2、sm3、sm4前后端加密解密
SM4前后端加密使用nopadding格式范例
01-13
SM4是一种在中国广泛使用的对称加密...总的来说,SM4前后端加密中的应用需要理解加密的基本原理,尤其是在nopadding模式下,需要注意数据的处理和填充问题。同时,良好的密钥管理和安全实践也是保障系统安全的关键。
国密SM4算法前后端加密解密完整代码.zip
12-24
国密SM4算法是一种在中国广泛使用的对称加密算法,它主要设计用于满足我国信息安全领域的特殊需求,具有高效、安全的特点。SM4算法基于128位的块大小和128位的密钥,与国际上的AES算法在设计思路上有相似之处,但其...
SM2、SM3前后端加密系列。
04-27
SM2、SM3前后端加密系列。
国密算法SM4JavaScript加密java解密
03-06
国密算法SM4JavaScript加密java解密主要web前台数据加密java后台解密。前台有javascript算法方法html示例,后台有java解密文件包。
springboot + vue 前后端加密传输 RSA互相加解密、加签验签、密钥对生成
nalanxiaoxiao2011的博客
01-05 3702
springboot + vue RSA加密传输 加签 验签 非对称加密
前后端数据加密传输基于AES+RSA实现
孙霸天的专栏
09-03 4209
前后端数据加密传输基于AES+RSA实现,优化升级版本
国密算法sm4前后端传输的数据进行加密
2401_84968557的博客
05-14 442
自我介绍一下,小编13年上海交大毕业,曾经在小公司待过,也去过华为、OPPO等大厂,18年进入阿里一直到现在。深知大多数网络安全工程师,想要提升技能,往往是自己摸索成长,但自己不成体系的自学效果低效又漫长,而且极易碰到天花板技术停滞不前!因此收集整理了一份《2024年网络安全全套学习资料》,初衷也很简单,就是希望能够帮助到想自学提升又不知道该从何学起的朋友。既有适合小白学习的零基础资料,也有适合3年以上经验的小伙伴深入学习提升的进阶课程,基本涵盖了95%以上网络安全知识点!真正的体系化!
SM4实现加密算法前后端一套 (java版)
taisuiyu6397的博客
07-02 4421
国密算法 1.java后台 public class SM4 { public static final String SM4_KEY="密匙自己填"; private static final int ENCRYPT=1; private static final int DECRYPT=0; private static final int ROUND=32; private static final int BLOCK=16; private byte[] Sbox={ (byt
国密加密sm4前后端代码
强哥的博客
12-23 3652
一、前端 sm4.js /** * base64js * base64js.toByteArray(d.input) * base64js.fromByteArray(c); * 国密SM4加密算法 * @author wzk * @email 1216113487@qq.com * @company 中科软 */ (function(r){if(typeof exports==="object"&&typeof module!=="undefined"){module..
vue+springboot前后端分离 注册 SM4 前端加密 后端解密
m0_59579040的博客
03-29 3739
注册表单密码加密提交到后端解密 一、前端部分 1.vue+elementui表单 <template> <el-form :model="registerForm" :rules="rules" ref="registerForm" label-position="left" label-width="0px" class="demo-ruleForm login-page" >
sm4加密
里查叔叔
07-01 1695
java js sm4 加密
国密算法sm3能对传输数据进行加密
06-13
SM3是一种哈希函数,不是加密算法,因此不能对传输数据进行加密。如果您需要加密数据,可以使用对称加密算法如AES或DES,或者非对称加密算法如RSA或ECC。而如果您需要对传输数据进行完整性校验,可以使用SM3生成消息摘要,并将摘要与数据一起传输,接收方再通过计算得到摘要并与接收到的摘要进行比对,以确保数据的完整性。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值