go/crypto-sm
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
crypto-sm/sm4.go

101 lines
2.8 KiB
Go
Raw Normal View History

feat: 实现国密SM2/SM3/SM4算法,兼容@go/crypto接口,作者:AI
2026-04-23 21:02:09 +08:00
package sm
import (
"crypto/cipher"
"errors"
"apigo.cc/go/crypto"
"apigo.cc/go/safe"
"github.com/emmansun/gmsm/sm4"
)
type SM4Cipher struct {
useGCM bool
}
var SM4CBC = &SM4Cipher{useGCM: false}
var SM4GCM = &SM4Cipher{useGCM: true}
func NewSM4CBC(safeKeyBuf, safeIvBuf *safe.SafeBuf) (*crypto.Symmetric, error) {
return crypto.NewSymmetric(SM4CBC, safeKeyBuf, safeIvBuf)
}
func NewSM4CBCAndEraseKey(key, iv []byte) (*crypto.Symmetric, error) {
return crypto.NewSymmetricAndEraseKey(SM4CBC, key, iv)
}
refactor(crypto-sm): align with crypto naming conventions and fix typos (by AI)
2026-05-01 18:11:19 +08:00
func NewSM4CBCWithoutEraseKey(key, iv []byte) (*crypto.Symmetric, error) {
return crypto.NewSymmetricWithoutEraseKey(SM4CBC, key, iv)
feat: 实现国密SM2/SM3/SM4算法,兼容@go/crypto接口,作者:AI
2026-04-23 21:02:09 +08:00
}
func NewSM4GCM(safeKeyBuf, safeIvBuf *safe.SafeBuf) (*crypto.Symmetric, error) {
return crypto.NewSymmetric(SM4GCM, safeKeyBuf, safeIvBuf)
}
func NewSM4GCMAndEraseKey(key, iv []byte) (*crypto.Symmetric, error) {
return crypto.NewSymmetricAndEraseKey(SM4GCM, key, iv)
}
refactor(crypto-sm): align with crypto naming conventions and fix typos (by AI)
2026-05-01 18:11:19 +08:00
func NewSM4GCMWithoutEraseKey(key, iv []byte) (*crypto.Symmetric, error) {
return crypto.NewSymmetricWithoutEraseKey(SM4GCM, key, iv)
feat: 实现国密SM2/SM3/SM4算法,兼容@go/crypto接口,作者:AI
2026-04-23 21:02:09 +08:00
}
docs: support ByPassword series and release v1.1.0 (by AI)
2026-05-07 20:59:29 +08:00
func NewSM4CBCByPassword(password, salt []byte) (*crypto.Symmetric, error) {
derived := crypto.DeriveKey(password, salt, 16+16)
defer safe.ZeroMemory(derived)
return NewSM4CBCAndEraseKey(derived[:16], derived[16:])
}
func NewSM4GCMByPassword(password, salt []byte) (*crypto.Symmetric, error) {
derived := crypto.DeriveKey(password, salt, 16+12)
defer safe.ZeroMemory(derived)
return NewSM4GCMAndEraseKey(derived[:16], derived[16:])
}
feat: 实现国密SM2/SM3/SM4算法,兼容@go/crypto接口,作者:AI
2026-04-23 21:02:09 +08:00
func (s *SM4Cipher) Encrypt(data []byte, key []byte, iv []byte) ([]byte, error) {
docs: support ByPassword series and release v1.1.0 (by AI)
2026-05-07 20:59:29 +08:00
feat: 实现国密SM2/SM3/SM4算法,兼容@go/crypto接口,作者:AI
2026-04-23 21:02:09 +08:00
block, err := sm4.NewCipher(key)
if err != nil {
return nil, err
}
if s.useGCM {
sm4gcm, err := cipher.NewGCM(block)
if err != nil {
return nil, err
}
return sm4gcm.Seal(nil, iv[:sm4gcm.NonceSize()], data, nil), nil
} else {
blockSize := block.BlockSize()
paddedData := crypto.Pkcs5Padding(data, blockSize)
blockMode := cipher.NewCBCEncrypter(block, iv[:blockSize])
crypted := make([]byte, len(paddedData))
blockMode.CryptBlocks(crypted, paddedData)
return crypted, nil
}
}
func (s *SM4Cipher) Decrypt(data []byte, key []byte, iv []byte) ([]byte, error) {
block, err := sm4.NewCipher(key)
if err != nil {
return nil, err
}
if s.useGCM {
sm4gcm, err := cipher.NewGCM(block)
if err != nil {
return nil, err
}
return sm4gcm.Open(nil, iv[:sm4gcm.NonceSize()], data, nil)
} else {
blockSize := block.BlockSize()
if len(data)%blockSize != 0 {
return nil, errors.New("ciphertext is not a multiple of block size")
}
blockMode := cipher.NewCBCDecrypter(block, iv[:blockSize])
plainText := make([]byte, len(data))
blockMode.CryptBlocks(plainText, data)
docs(crypto-sm): update API reference and AI guidelines for crypto-sm
2026-04-23 21:49:25 +08:00
unpadded := crypto.Pkcs5UnPadding(plainText)
if unpadded == nil {
return nil, errors.New("padding error")
}
return unpadded, nil
feat: 实现国密SM2/SM3/SM4算法,兼容@go/crypto接口,作者:AI
2026-04-23 21:02:09 +08:00
}
}
Reference in New Issue Copy Permalink