实验2-2
在 Ubuntu或openEuler中(推荐 openEuler)中调试运行教材提供的源代码,至少运行SM2,SM3,SM4代码,使用GmSSL命令验证你代码的正确性,使用Markdown记录详细记录实践过程,每完成一项功能或者一个函数git commit 一次。(15分)
SM2加解密
- SM2加密
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ vim kdf.c
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ vim kdf.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ rm kdf.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ vim kdf.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ vim test.c
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ gcc -o test kdf.c SM2_ENC.c test.c -m32 -lmiracl_32
In file included from kdf.c:1:
kdf.c: In function ‘CF’:
kdf.h:21:31: warning: result of ‘2055708042 << 16’ requires 48 bits to represent, but ‘int’ only has 32 bits [-Wshift-overflow=]21 | #define SM3_rotl32(x,n) (((x) << n) | ((x) >> (32 - n)))| ^~
kdf.c:89:29: note: in expansion of macro ‘SM3_rotl32’89 | T = SM3_rotl32(SM3_T2, 16);| ^~~~~~~~~~
test.c: In function ‘main’:
test.c:5:9: warning: implicit declaration of function ‘SM2_ENC_SelfTest’ [-Wimplicit-function-declaration]5 | SM2_ENC_SelfTest();| ^~~~~~~~~~~~~~~~
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ ./test
原文
0x65,0x6e,0x63,0x72,0x79,0x70,0x74,0x69,
0x6f,0x6e,0x20,0x73,0x74,0x61,0x6e,0x64,
0x61,0x72,0x64,密文:
0x4,0xeb,0xfc,0x71,0x8e,0x8d,0x17,0x98,
0x62,0x4,0x32,0x26,0x8e,0x77,0xfe,0xb6,
0x41,0x5e,0x2e,0xde,0xe,0x7,0x3c,0xf,
0x4f,0x64,0xe,0xcd,0x2e,0x14,0x9a,0x73,
0xe8,0x58,0xf9,0xd8,0x1e,0x54,0x30,0xa5,
0x7b,0x36,0xda,0xab,0x8f,0x95,0xa,0x3c,
0x64,0xe6,0xee,0x6a,0x63,0x9,0x4d,0x99,
0x28,0x3a,0xff,0x76,0x7e,0x12,0x4d,0xf0,
0x59,0x98,0x3c,0x18,0xf8,0x9,0xe2,0x62,
0x92,0x3c,0x53,0xae,0xc2,0x95,0xd3,0x3,
0x83,0xb5,0x4e,0x39,0xd6,0x9,0xd1,0x60,
0xaf,0xcb,0x19,0x8,0xd0,0xbd,0x87,0x66,
0x21,0x88,0x6c,0xa9,0x89,0xca,0x9c,0x7d,
0x58,0x8,0x73,0x7,0xca,0x93,0x9,0x2d,
0x65,0x1e,0xfa,解密结果:
0x65,0x6e,0x63,0x72,0x79,0x70,0x74,0x69,
0x6f,0x6e,0x20,0x73,0x74,0x61,0x6e,0x64,
0x61,0x72,0x64,
解密成功- SM2签名验签
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ vim SM2_sv.c
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ vim SM2_sv.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ vim kdf.c
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2$ cd ..
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2$ mv sm2 sm2_encrypt
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2$ ls
sm2_encrypt
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2$ mkdir sm2_sv
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2$ ls
sm2_encrypt sm2_sv
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2$ cd sm2_sv
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ mv ^C
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ mv ~/shiyan/shiyan2/shiyan2-2/sm2_encrypt/SM2_sv.c
mv: 在 '/home/user/shiyan/shiyan2/shiyan2-2/sm2_encrypt/SM2_sv.c' 后缺少要操作的目标文件
请尝试执行 "mv --help" 来获取更多信息。
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ mv ~/shiyan/shiyan2/shiyan2-2/sm2_encrypt/SM2_sv.c ./
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ ls
SM2_sv.c
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ mv ~/shiyan/shiyan2/shiyan2-2/sm2_encrypt/SM2_sv.h ./
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ ls
SM2_sv.c SM2_sv.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ vim kdf.c
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ vim kdf.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ vim test.c
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ gcc -o test test.c SM2_sv.c kdf.c -lmiracl_32 -m32
In file included from kdf.c:1:
kdf.c: In function ‘CF’:
kdf.h:20:31: warning: result of ‘2055708042 << 16’ requires 48 bits to represent, but ‘int’ only has 32 bits [-Wshift-overflow=]20 | #define SM3_rotl32(x,n) (((x) << n) | ((x) >> (32 - n)))| ^~
kdf.c:92:29: note: in expansion of macro ‘SM3_rotl32’92 | T = SM3_rotl32(SM3_T2, 16);| ^~~~~~~~~~
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm2_sv$ ./test
SM2 签名验签成功SM3
- 一段式SM3算法的实现
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3$ cd sm3_achieve_by1
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_achieve_by1$ vim test.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_achieve_by1$ g++ -o test test.cpp -m32
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_achieve_by1$ ./test
SM3 Hash:
66 c7 f0 f4 62 ee ed d9 d1 f2 d4 6b dc 10 e4 e2
41 67 c4 87 5c f2 f7 a2 29 7d a0 2b 8f 4b a8 e0user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_achieve_by1$ git init
提示:使用 'master' 作为初始分支的名称。这个默认分支名称可能会更改。要在新仓库中
提示:配置使用初始分支名,并消除这条警告,请执行:
提示:
提示: git config --global init.defaultBranch <名称>
提示:
提示:除了 'master' 之外,通常选定的名字有 'main'、'trunk' 和 'development'。
提示:可以通过以下命令重命名刚创建的分支:
提示:
提示: git branch -m <name>
已初始化空的 Git 仓库于 /home/user/shiyan/shiyan2/shiyan2-2/sm3/sm3_achieve_by1/.git/
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_achieve_by1$ git add .
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_achieve_by1$ git commit -m "sm3_achieve_by1"
[master (根提交) a3f4468] sm3_achieve_by12 files changed, 236 insertions(+)create mode 100755 testcreate mode 100644 test.cpp- 手工实现三段式SM3算法
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ sm3.cpp
sm3.cpp:未找到命令
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ vim sm3.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ vim sm3.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ vim test.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ g++ -o test sm3.cpp test.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ ./test
Message: abc
Hash: 37bc43d1 1cab393d 7899ef62 24f568ec 18a8fd85 1d165c50 0c375402 0f466a04
Message: abcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcd
Hash: a8f95215 08e03054 1325267f d822077a e5c2fd1f 32b54ebb bf8c1c79 064c9b6d
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ g++ -o test sm3.cpp test.cpp -m32
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ ./test
Message: abc
Hash: 66c7f0f4 62eeedd9 d1f2d46b dc10e4e2 4167c487 5cf2f7a2 297da02b 8f4ba8e0
Message: abcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcd
Hash: debe9ff9 2275b8a1 38604889 c18e5a4d 6fdb70e5 387e5765 293dcba3 9c0c5732
- 基于openssl的sm3算法实现
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ vim sm3hash.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ vim sm3hash.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ vim test.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ g++ -o test sm3hah.cpp test.cpp-lssl -lcrypto
cc1plus: fatal error: sm3hah.cpp: 没有那个文件或目录
compilation terminated.
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ g++ -o test sm3hash.cpp test.cpp-lssl -lcrypto
/usr/bin/ld: 找不到 test.cpp-lssl: 没有那个文件或目录
collect2: error: ld returned 1 exit status
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ g++ -o test sm3hash.cpp test.cpp -lssl -lcrypto
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ ./test
raw data: abc
hash length: 32 bytes.
hash value:
0x66 0xc7 0xf0 0xf4 0x62 0xee 0xed 0xd9 0xd1 0xf2 0xd4 0x6b 0xdc 0x10 0xe4 0xe2 0x41 0x67 0xc4 0x87 0x5c 0xf2 0xf7 0xa2 0x29 0x7d 0xa0 0x2b 0x8f 0x4b 0xa8 0xe0 raw data:
0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64 0x61 0x62 0x63 0x64
hash length: 32 bytes.
hash value:
0xde 0xbe 0x9f 0xf9 0x22 0x75 0xb8 0xa1 0x38 0x60 0x48 0x89 0xc1 0x8e 0x5a 0x4d 0x6f 0xdb 0x70 0xe5 0x38 0x7e 0x57 0x65 0x29 0x3d 0xcb 0xa3 0x9c 0xc 0x57 0x32
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ - 实现HMAC-SM3算法
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3$ vim sm3.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3$ vim sm3.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3$ vim test.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3$ g++ -o test test.cpp sm3.cpp -m32
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3$ ./test
Message: abc
HMAC: ec76c401 b2ddceb3 916bdffa 0469b85f 90536ffc f4ecac77 539f3d8b 8bbe046c
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3$ git init
提示:使用 'master' 作为初始分支的名称。这个默认分支名称可能会更改。要在新仓库中
提示:配置使用初始分支名,并消除这条警告,请执行:
提示:
提示: git config --global init.defaultBranch <名称>
提示:
提示:除了 'master' 之外,通常选定的名字有 'main'、'trunk' 和 'development'。
提示:可以通过以下命令重命名刚创建的分支:
提示:
提示: git branch -m <name>
已初始化空的 Git 仓库于 /home/user/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3/.git/
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3$ git add .
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/HMAC-SM3$ git commit -m "sm3_hmac"
[master (根提交) d8d019c] sm3_hmac4 files changed, 555 insertions(+)create mode 100644 sm3.cppcreate mode 100644 sm3.hcreate mode 100755 testcreate mode 100644 test.cpp- 验证
手工实现三段式SM3算法
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_tree_achieve_byhand$ echo -n "abcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcdabcd" | gmssl sm3
debe9ff92275b8a138604889c18e5a4d6fdb70e5387e5765293dcba39c0c5732基于openssl的sm3算法实现
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm3/sm3_openssl$ echo -n "abc" | gmssl sm3
66c7f0f462eeedd9d1f2d46bdc10e4e24167c4875cf2f7a2297da02b8f4ba8e0HMAC-SM3验证
SM4
- 实现十六字节SM4算法
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/sm4_16$ vim sm4.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/sm4_16$ vim sm4.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/sm4_16$ vim test.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/sm4_16$ g++ -o test test.cpp sm4.cpp -m32
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/sm4_16$ ./test
sm4(16字节)自检成功user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/sm4_16$ git init
提示:使用 'master' 作为初始分支的名称。这个默认分支名称可能会更改。要在新仓库中
提示:配置使用初始分支名,并消除这条警告,请执行:
提示:
提示: git config --global init.defaultBranch <名称>
提示:
提示:除了 'master' 之外,通常选定的名字有 'main'、'trunk' 和 'development'。
提示:可以通过以下命令重命名刚创建的分支:
提示:
提示: git branch -m <name>
已初始化空的 Git 仓库于 /home/user/shiyan/shiyan2/shiyan2-2/sm4/sm4_16/.git/
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/sm4_16$ git add .
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/sm4_16$ git commit -m "sm4_16"
[master (根提交) 8205122] sm4_164 files changed, 159 insertions(+)create mode 100644 sm4.cppcreate mode 100644 sm4.hcreate mode 100755 testcreate mode 100644 test.cpp- 实现大数据版SM4-ECBCBCCFBOFB算法
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/SM4-ECBCBCCFBOFB$ vim sm4.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/SM4-ECBCBCCFBOFB$ vim sm4.h
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/SM4-ECBCBCCFBOFB$ vim sm4check.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/SM4-ECBCBCCFBOFB$ vim test.cpp
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/SM4-ECBCBCCFBOFB$ g++ -o test test.cpp sm4check.cpp sm4.cpp -m32
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2/sm4/SM4-ECBCBCCFBOFB$ ./test
ecb enc(len=16) memcmp ok
ecb dec(len=16) memcmp ok
ecb enc/dec(len=32) memcmp ok
ecb enc/dec(len=64) memcmp ok
ecb enc/dec(len=128) memcmp ok
ecb enc/dec(len=256) memcmp ok
ecb enc/dec(len=512) memcmp ok
ecb enc/dec(len=1024) memcmp ok
ecb enc/dec(len=2048) memcmp ok
ecb enc/dec(len=4096) memcmp ok
cbc enc(len=32) memcmp ok
cbc dec(len=32) memcmp ok
cbc enc/dec(len=32) memcmp ok
cbc enc/dec(len=64) memcmp ok
cbc enc/dec(len=128) memcmp ok
cbc enc/dec(len=256) memcmp ok
cbc enc/dec(len=512) memcmp ok
cbc enc/dec(len=1024) memcmp ok
cbc enc/dec(len=2048) memcmp ok
cbc enc/dec(len=4096) memcmp ok
cfb enc/dec(len=16) memcmp ok
cfb enc/dec(len=32) memcmp ok
cfb enc/dec(len=64) memcmp ok
cfb enc/dec(len=128) memcmp ok
cfb enc/dec(len=256) memcmp ok
cfb enc/dec(len=512) memcmp ok
cfb enc/dec(len=1024) memcmp ok
cfb enc/dec(len=2048) memcmp ok
cfb enc/dec(len=4096) memcmp ok
ofb enc/dec(len=16) memcmp ok
ofb enc/dec(len=32) memcmp ok
ofb enc/dec(len=64) memcmp ok
ofb enc/dec(len=128) memcmp ok
ofb enc/dec(len=256) memcmp ok
ofb enc/dec(len=512) memcmp ok
ofb enc/dec(len=1024) memcmp ok
ofb enc/dec(len=2048) memcmp ok
ofb enc/dec(len=4096) memcmp ok
在密标委网站http://www.gmbz.org.cn/main/bzlb.html查找SM2,SM3,SM4相关标准,分析代码实现与标准的对应关系。(10分)
sm2
- SM2 椭圆曲线公钥密码算法第1部分:总则
- SM2 椭圆曲线公钥密码算法第2部分:数字签名算法
- SM2 椭圆曲线公钥密码算法第3部分:密钥交换协议
- SM2 椭圆曲线公钥密码算法第4部分:公钥加密算法
- SM2 椭圆曲线公钥密码算法第5部分:参数定义
sm3
- SM3 密码杂凑算法
sm4
- SM4分组密码算法
SM2 标准分析
国家标准:SM2 是基于椭圆曲线密码(ECC)的一种公钥密码标准,主要用于数字签名、密钥交换和公钥加密。它定义了一种特定的椭圆曲线参数和基于该曲线的加密、签名算法。
代码实现:在提供的实验文件中,SM2的加密和签名验签功能被实现并测试。代码使用了kdf.c和SM2_ENC.c等文件,并通过调用SM2_ENC_SelfTest()函数进行自测试。这表明代码实现了SM2算法的基本功能,包括密钥生成、加密、解密和签名验签。
对应关系:代码实现应遵循SM2标准中定义的椭圆曲线参数和操作,包括但不限于密钥生成、加密流程、解密流程、签名流程和验签流程。
SM3 标准分析
国家标准:SM3 是一种密码散列函数,用于生成消息的摘要。它具有与SHA-256相同的安全等级,但算法细节不同。
代码实现:实验文件中包含了一段式和三段式SM3算法的实现,并通过gmssl sm3命令验证了实现的正确性。代码生成的哈希值与国家标准中定义的SM3算法的预期输出一致。
对应关系:代码实现应遵循SM3标准中定义的算法步骤,包括消息填充、消息处理和最终的摘要生成。
SM4 标准分析
国家标准:SM4 是一种对称加密标准,类似于AES,用于数据的加密和解密。
代码实现:实验文件中实现了16字节的SM4算法和大数据量的SM4-ECBCBCCFBOFB算法。代码通过自检测试,验证了加密和解密的正确性。
对应关系:代码实现应遵循SM4标准中定义的加密算法,包括密钥调度、轮函数和加密模式(如ECB、CBC、CFB、OFB)。
结论
根据提供的实验文件内容,代码实现似乎遵循了SM2、SM3、SM4的国家标准。代码通过了自测试,并使用GmSSL工具验证了哈希和加密结果的正确性,这表明实现与标准保持一致。然而,要进行深入的分析,需要访问具体的国家标准文档和Gitee上的代码库,以便对照标准的具体条款进行详细检查。
实验记录中提交 gitee 课程项目链接,提交本次实验相关 git log运行结果
- git log
user@user-VirtualBox:~/shiyan/shiyan2/shiyan2-2$ git log
commit 009b9e1261554d92bc637f1571483a61a7a84a60 (HEAD -> master)
Author: 陆宇航 <11537412+terrestrial-aerospace@user.noreply.gitee.com>
Date: Sun Nov 3 20:37:25 2024 +0800sm3_opensslcommit 954879416ecee54fcefed103b29184ccbd187579
Author: 陆宇航 <11537412+terrestrial-aerospace@user.noreply.gitee.com>
Date: Sun Nov 3 19:15:00 2024 +0800sm2_encrypt & decrypt
![Vue面试常考内容[从宏观到微观]](http://pic.xiahunao.cn/nshx/Vue面试常考内容[从宏观到微观])
