支持国密SM2/SM3/SM4算法的OpenSSL分支
Clone or download
guanzhi A workable SM9 R-ate pairing over BN curve
This textbook version R-ate pairing is very slow. About 0.5 seconds on my Macbook Pro 2018 with 2.7 GHz Core i7.
Latest commit c7aa2cc Sep 21, 2018
Permalink
Failed to load latest commit information.
Configurations Optimize sm2p256v1 curve for Intel processors Sep 7, 2018
VMS Revert "quantum init" Jan 4, 2018
apps Add gmca Mar 13, 2018
certs Revert "quantum init" Jan 4, 2018
crypto A workable SM9 R-ate pairing over BN curve Sep 21, 2018
demos Revert "quantum init" Jan 4, 2018
doc Revert "quantum init" Jan 4, 2018
engines Fix SKF and SDF engines build error Aug 2, 2018
external/perl Merge remote-tracking branch 'origin/master' Feb 14, 2017
fuzz update build system Dec 26, 2017
go Update GmSSL-Go version Aug 7, 2018
include A workable SM9 R-ate pairing over BN curve Sep 21, 2018
java remove java from config Nov 25, 2017
ms Revert "quantum init" Jan 4, 2018
os-dep Merge remote-tracking branch 'origin/master' Feb 14, 2017
php Bug fix Mar 12, 2018
ssl Add GMTLS v1.1 protocol support Mar 22, 2018
test add sm2 prime 256 test Jul 6, 2018
tools Revert "quantum init" Jan 4, 2018
util Update symbols Sep 7, 2018
.gitignore Add SDF pkey encrypt/decrypt support Mar 30, 2018
.travis.yml translate Jul 10, 2017
Configure Add GMTLS v1.1 protocol support Mar 22, 2018
LICENSE Revert "quantum init" Jan 4, 2018
Makefile.shared Revert "quantum init" Jan 4, 2018
README.md Grammar and spelling fixes. Jan 9, 2018
appveyor.yml Revert "quantum init" Jan 4, 2018
build.info Merge remote-tracking branch 'origin/master' Feb 14, 2017
config Revert "quantum init" Jan 4, 2018
config.com Merge remote-tracking branch 'origin/master' Feb 14, 2017
e_os.h Revert "quantum init" Jan 4, 2018

README.md

About GmSSL

Build Status

GmSSL is an open source cryptographic toolkit that provide first level support of Chinese national cryptographic algorithms and protocols which specified in the GM/T serial standards. As a branch of the OpenSSL project, GmSSL provides API level compatibility with OpenSSL and maintains all the functionalities. Existing projects such as Apache web server can be easily ported to GmSSL with minor modification and a simple rebuild. Since the first release in late 2014, GmSSL has been selected as one of the six recommended cryptographic projects by Open Source China and the winner of the 2015 Chinese Linux Software Award.

Features

GM/T Algorithms

GmSSL will support all the following GM/T cryptographic algorithms:

  • SM3 (GM/T 0004-2012): cryptographic hash function with 256-bit digest length.
  • SM4 (GM/T 0002-2012): block cipher with 128-bit key length and 128-bit block size, also named SMS4.
  • SM2 (GM/T 0003-2012): elliptic curve cryptographic schemes including digital signature scheme, public key encryption, (authenticated) key exchange protocol and one recommended 256-bit prime field curve sm2p256v1.
  • SM9 (GM/T 0044-2016): pairing-based cryptographic schemes including identity-based digital signature, encryption, (authenticated) key exchange protocol and one 256-bit recommended BN curve.
  • ZUC (GM/T 0001-2012): stream cipher, with 128-EEA3 encryption algorithm and 128-EIA3 integrity algorithm.
  • SM1 and SSF33: block ciphers with 128-bit key length and 128-bit block size without public specification, only provided with chip.

GmSSL supports many useful cryptographic algorithms and schemes:

  • Public-key schemes: Paillier, ECIES (Elliptic Curve Integrated Encryption Scheme)
  • Pairing-based cryptography: BF-IBE, BB1-IBE
  • Block ciphers and modes: Serpent, Speck
  • Block cipher modes: FPE (Format-Preserver Encryption)
  • OTP (One-Time Password) based on SM3/SM4 (GM/T 0021-2012)
  • Encoding: Base58

OpenSSL algorithms such as ECDSA, RSA, AES, SHA-1 are all still available in GmSSL.

GM/T Protocols

The GM/T standards cover 2 protocols:

  • SSL VPN Protocol (GM/T 0024-2014)
  • IPSec VPN Protocol (GM/T 0022-2014)

The GM/T 0024-2014 SSL VPN protocol is different from IETF TLS in the follows aspects:

  • Current version of TLS is 1.2 (0x0303) while GM/T SSL version is 1.1 (0x0101).
  • The handshake protocol of GM/T SSL is diffenet from TLS handshake.
  • There is an optional different record protocol in GM/T SSL designed for VPN applications.
  • GM/T SSL has 12 ciphersuites, some of these ciphers do not provide forward secrecy.

GM/T 0024-2014 Ciphersuites:

 1. {0xe0,0x01} GMTLS_SM2DHE_SM2SIGN_WITH_SM1_SM3
 2. {0xe0,0x03} GMTLS_SM2ENC_WITH_SM1_SM3
 3. {0xe0,0x05} GMTLS_SM9DHE_SM9SIGN_WITH_SM1_SM3
 4. {0xe0,0x07} GMTLS_SM9ENC_WITH_SM1_SM3
 5. {0xe0,0x09} GMTLS_RSA_WITH_SM1_SM3
 6. {0xe0,0x0a} GMTLS_RSA_WITH_SM1_SHA1
 7. {0xe0,0x11} GMTLS_SM2DHE_SM2SIGN_WITH_SMS4_SM3
 8. {0xe0,0x13} GMTLS_SM2ENC_WITH_SMS4_SM3
 9. {0xe0,0x15} GMTLS_SM9DHE_SM9SIGN_WITH_SMS4_SM3
10. {0xe0,0x17} GMTLS_SM9ENC_WITH_SMS4_SM3
11. {0xe0,0x19} GMTLS_RSA_WITH_SMS4_SM3
12. {0xe0,0x1a} GMTLS_RSA_WITH_SMS4_SM3

GmSSL supports the standard TLS 1.2 protocol with SM2/SM3/SM4 ciphersuites and the GM/T SSL VPN protocol and ciphersuites. Currently the following ciphersuites are supported:

ECDHE-SM2-WITH-SMS4-SM3
ECDHE-SM2-WITH-SMS4-SHA256

APIs

Except for the native C interface and the gmssl command line, GmSSL also provide the following interfaces:

  • Java: crypto, X.509 and SSL API through JNI (Java Native Interface).
  • Go: crypto, X.509 and SSL API through CGO.
  • SKF C API: GM/T 0016-2012 Smart token cryptography application interface specification.
  • SDF C API: GM/T 0018-2012 Interface specifications of cryptography device application.
  • SAF C API: GM/T 0019-2012 Universal cryptography service interface specification.
  • SOF C/Java API: GM/T 0020-2012 Certificate application integrated service interface specification.

Supported Cryptographic Hardwares

  • USB-Key through the SKF ENGINE and the SKF API.
  • PCI-E card through the SDF ENGINE and the SDF API.
  • GM Instruction sets (SM3/SM4) through the GMI ENGINE.

Quick Start

This short guide describes the build, install and typical usage of the gmssl command line tool. Visit http://gmssl.org for more documents.

Download (GmSSL-master.zip), uncompress it and go to the source code folder. On Linux and OS X, run the following commands:

$ ./config
$ make
$ sudo make install

After installation you can run gmssl version -a to print detailed information.

The gmssl command line tool supports SM2 key generation through ecparam or genpkey option, supports SM2 signing and encryption through pkeyutl option, supports SM3 through sm3 or dgst option, and supports SM4 through sms4 or enc option.

The following are some examples.

SM3 digest generation:

$ echo -n "abc" | gmssl sm3
(stdin)= 66c7f0f462eeedd9d1f2d46bdc10e4e24167c4875cf2f7a2297da02b8f4ba8e0

SM4 encryption and decryption:

$ gmssl sms4 -in README.md -out README.sms4
$ gmssl sms4 -d -in README.sms4

SM2 private key generation:

$ gmssl genpkey -algorithm EC -pkeyopt ec_paramgen_curve:sm2p256v1 -pkeyopt ec_param_enc:named_curve -out skey.pem

Derive the public key from the generated SM2 private key:

$ gmssl pkey -pubout -in skey.pem -out vkey.pem

SM2 signature generation and verification:

$ gmssl sm3 -binary README.md | gmssl pkeyutl -sign -pkeyopt ec_scheme:sm2 -inkey skey.pem -out README.md.sig
$ gmssl sm3 -binary README.md | gmssl pkeyutl -verify -pkeyopt ec_scheme:sm2 -pubin -inkey vkey.pem -sigfile README.md.sig

Generate SM2 encryption key pair and do SM2 public key encyption/decryption. It should be noted pkeyutl -encrypt should only be used to encrypt short messages such as session key and passphrase.

$ gmssl genpkey -algorithm EC -pkeyopt ec_paramgen_curve:sm2p256v1 -pkeyopt ec_param_enc:named_curve -out dkey.pem
$ gmssl pkey -pubout -in dkey.pem -out ekey.pem
$ echo "Top Secret" | gmssl pkeyutl -encrypt -pkeyopt ec_scheme:sm2 -pubin -inkey ekey.pem -out ciphertext.sm2
$ gmssl pkeyutl -decrypt -pkeyopt ec_scheme:sm2 -inkey dkey.pem -in ciphertext.sm2

Self-signed SM2 certificate generation:

$ gmssl req -new -x509 -key skey.pem -out cert.pem