cn.jiguang.common.utils.sm2

Class BCECUtil

java.lang.Object

cn.jiguang.common.utils.sm2.BCECUtil

public class BCECUtil
extends java.lang.Object

这个工具类的方法，也适用于其他基于BC库的ECC算法

Constructor Summary

Constructors

Constructor and Description
BCECUtil()

Method Summary

Modifier and Type	Method and Description
static byte[]	convertECPrivateKeyPEMToPKCS8(java.lang.String pemString) 将PEM格式的私钥转换为PKCS8标准字节流
static java.lang.String	convertECPrivateKeyPKCS8ToPEM(byte[] encodedKey) 将PKCS8标准的私钥字节流转换为PEM
static byte[]	convertECPrivateKeySEC1ToPKCS8(byte[] sec1Key) 将SEC1标准的私钥字节流恢复为PKCS8标准的字节流
static byte[]	convertECPrivateKeyToPKCS8(org.bouncycastle.crypto.params.ECPrivateKeyParameters priKey, org.bouncycastle.crypto.params.ECPublicKeyParameters pubKey) 将ECC私钥转换为PKCS8标准的字节流
static byte[]	convertECPrivateKeyToSEC1(org.bouncycastle.crypto.params.ECPrivateKeyParameters priKey, org.bouncycastle.crypto.params.ECPublicKeyParameters pubKey) 将ECC私钥转换为SEC1标准的字节流 openssl d2i_ECPrivateKey函数要求的DER编码的私钥也是SEC1标准的， 这个工具函数的主要目的就是为了能生成一个openssl可以直接“识别”的ECC私钥.
static byte[]	convertECPublicKeyPEMToX509(java.lang.String pemString) 将PEM格式的公钥转为X509标准的字节流
static byte[]	convertECPublicKeyToX509(org.bouncycastle.crypto.params.ECPublicKeyParameters pubKey) 将ECC公钥对象转换为X509标准的字节流
static java.lang.String	convertECPublicKeyX509ToPEM(byte[] encodedKey) 将X509标准的公钥字节流转为PEM
static org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPrivateKey	convertPKCS8ToECPrivateKey(byte[] pkcs8Key) 将PKCS8标准的私钥字节流转换为私钥对象
static org.bouncycastle.crypto.params.ECPrivateKeyParameters	convertPrivateKeyToParameters(org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPrivateKey ecPriKey)
static org.bouncycastle.crypto.params.ECPublicKeyParameters	convertPublicKeyToParameters(org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey ecPubKey)
static org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPrivateKey	convertSEC1ToBCECPrivateKey(byte[] sec1Key) 将SEC1标准的私钥字节流转为BCECPrivateKey对象
static org.bouncycastle.crypto.params.ECPrivateKeyParameters	convertSEC1ToECPrivateKey(byte[] sec1Key) 将SEC1标准的私钥字节流转为ECPrivateKeyParameters对象 openssl i2d_ECPrivateKey函数生成的DER编码的ecc私钥是：SEC1标准的、带有EC_GROUP、带有公钥的， 这个工具函数的主要目的就是为了使Java程序能够“识别”openssl生成的ECC私钥
static org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey	convertX509ToECPublicKey(byte[] x509Bytes) 将X509标准的公钥字节流转为公钥对象
static org.bouncycastle.crypto.params.ECPrivateKeyParameters	createECPrivateKeyParameters(java.math.BigInteger d, org.bouncycastle.crypto.params.ECDomainParameters domainParameters)
static org.bouncycastle.crypto.params.ECPublicKeyParameters	createECPublicKeyParameters(java.math.BigInteger x, java.math.BigInteger y, org.bouncycastle.math.ec.ECCurve curve, org.bouncycastle.crypto.params.ECDomainParameters domainParameters)
static org.bouncycastle.crypto.params.ECPublicKeyParameters	createECPublicKeyParameters(byte[] xBytes, byte[] yBytes, org.bouncycastle.math.ec.ECCurve curve, org.bouncycastle.crypto.params.ECDomainParameters domainParameters)
static org.bouncycastle.crypto.params.ECPublicKeyParameters	createECPublicKeyParameters(java.lang.String xHex, java.lang.String yHex, org.bouncycastle.math.ec.ECCurve curve, org.bouncycastle.crypto.params.ECDomainParameters domainParameters)
static org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey	createPublicKeyFromSubjectPublicKeyInfo(org.bouncycastle.asn1.x509.SubjectPublicKeyInfo subPubInfo)
static byte[]	fixToCurveLengthBytes(int curveLength, byte[] src)
static java.security.KeyPair	generateKeyPair(org.bouncycastle.crypto.params.ECDomainParameters domainParameters, java.security.SecureRandom random)
static org.bouncycastle.crypto.AsymmetricCipherKeyPair	generateKeyPairParameter(org.bouncycastle.crypto.params.ECDomainParameters domainParameters, java.security.SecureRandom random) 生成ECC密钥对
static int	getCurveLength(org.bouncycastle.crypto.params.ECDomainParameters domainParams)
static int	getCurveLength(org.bouncycastle.crypto.params.ECKeyParameters ecKey)
static org.bouncycastle.asn1.x9.X9ECParameters	getDomainParametersFromGenSpec(java.security.spec.ECGenParameterSpec genSpec) copy from BC
static org.bouncycastle.asn1.x9.X962Parameters	getDomainParametersFromName(java.security.spec.ECParameterSpec ecSpec, boolean withCompression) copy from BC
static org.bouncycastle.asn1.x9.X9ECParameters	getDomainParametersFromName(java.lang.String curveName) copy from BC

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

BCECUtil

public BCECUtil()

Method Detail

generateKeyPairParameter

public static org.bouncycastle.crypto.AsymmetricCipherKeyPair generateKeyPairParameter(org.bouncycastle.crypto.params.ECDomainParameters domainParameters,
                                                                                       java.security.SecureRandom random)

生成ECC密钥对

Returns:

ECC密钥对

generateKeyPair

public static java.security.KeyPair generateKeyPair(org.bouncycastle.crypto.params.ECDomainParameters domainParameters,
                                                    java.security.SecureRandom random)
                                             throws java.security.NoSuchProviderException,
                                                    java.security.NoSuchAlgorithmException,
                                                    java.security.InvalidAlgorithmParameterException

Throws:

java.security.NoSuchProviderException

java.security.NoSuchAlgorithmException

java.security.InvalidAlgorithmParameterException

getCurveLength

public static int getCurveLength(org.bouncycastle.crypto.params.ECKeyParameters ecKey)

getCurveLength

public static int getCurveLength(org.bouncycastle.crypto.params.ECDomainParameters domainParams)

fixToCurveLengthBytes

public static byte[] fixToCurveLengthBytes(int curveLength,
                                           byte[] src)

createECPrivateKeyParameters

public static org.bouncycastle.crypto.params.ECPrivateKeyParameters createECPrivateKeyParameters(java.math.BigInteger d,
                                                                                                 org.bouncycastle.crypto.params.ECDomainParameters domainParameters)

createECPublicKeyParameters

public static org.bouncycastle.crypto.params.ECPublicKeyParameters createECPublicKeyParameters(java.math.BigInteger x,
                                                                                               java.math.BigInteger y,
                                                                                               org.bouncycastle.math.ec.ECCurve curve,
                                                                                               org.bouncycastle.crypto.params.ECDomainParameters domainParameters)

createECPublicKeyParameters

public static org.bouncycastle.crypto.params.ECPublicKeyParameters createECPublicKeyParameters(java.lang.String xHex,
                                                                                               java.lang.String yHex,
                                                                                               org.bouncycastle.math.ec.ECCurve curve,
                                                                                               org.bouncycastle.crypto.params.ECDomainParameters domainParameters)

createECPublicKeyParameters

public static org.bouncycastle.crypto.params.ECPublicKeyParameters createECPublicKeyParameters(byte[] xBytes,
                                                                                               byte[] yBytes,
                                                                                               org.bouncycastle.math.ec.ECCurve curve,
                                                                                               org.bouncycastle.crypto.params.ECDomainParameters domainParameters)

convertPrivateKeyToParameters

public static org.bouncycastle.crypto.params.ECPrivateKeyParameters convertPrivateKeyToParameters(org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPrivateKey ecPriKey)

convertPublicKeyToParameters

public static org.bouncycastle.crypto.params.ECPublicKeyParameters convertPublicKeyToParameters(org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey ecPubKey)

createPublicKeyFromSubjectPublicKeyInfo

public static org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey createPublicKeyFromSubjectPublicKeyInfo(org.bouncycastle.asn1.x509.SubjectPublicKeyInfo subPubInfo)
                                                                                                            throws java.security.NoSuchProviderException,
                                                                                                                   java.security.NoSuchAlgorithmException,
                                                                                                                   java.security.spec.InvalidKeySpecException,
                                                                                                                   java.io.IOException

Throws:

java.security.NoSuchProviderException

java.security.NoSuchAlgorithmException

java.security.spec.InvalidKeySpecException

java.io.IOException

convertECPrivateKeyToPKCS8

public static byte[] convertECPrivateKeyToPKCS8(org.bouncycastle.crypto.params.ECPrivateKeyParameters priKey,
                                                org.bouncycastle.crypto.params.ECPublicKeyParameters pubKey)

将ECC私钥转换为PKCS8标准的字节流

Parameters:

priKey -

pubKey - 可以为空，但是如果为空的话得到的结果OpenSSL可能解析不了

Returns:

convertPKCS8ToECPrivateKey

public static org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPrivateKey convertPKCS8ToECPrivateKey(byte[] pkcs8Key)
                                                                                                throws java.security.NoSuchAlgorithmException,
                                                                                                       java.security.NoSuchProviderException,
                                                                                                       java.security.spec.InvalidKeySpecException

将PKCS8标准的私钥字节流转换为私钥对象

Parameters:

pkcs8Key -

Returns:

Throws:

java.security.NoSuchAlgorithmException

java.security.NoSuchProviderException

java.security.spec.InvalidKeySpecException

convertECPrivateKeyPKCS8ToPEM

public static java.lang.String convertECPrivateKeyPKCS8ToPEM(byte[] encodedKey)
                                                      throws java.io.IOException

将PKCS8标准的私钥字节流转换为PEM

Parameters:

encodedKey -

Returns:

Throws:

java.io.IOException

convertECPrivateKeyPEMToPKCS8

public static byte[] convertECPrivateKeyPEMToPKCS8(java.lang.String pemString)
                                            throws java.io.IOException

将PEM格式的私钥转换为PKCS8标准字节流

Parameters:

pemString -

Returns:

Throws:

java.io.IOException

convertECPrivateKeyToSEC1

public static byte[] convertECPrivateKeyToSEC1(org.bouncycastle.crypto.params.ECPrivateKeyParameters priKey,
                                               org.bouncycastle.crypto.params.ECPublicKeyParameters pubKey)
                                        throws java.io.IOException

将ECC私钥转换为SEC1标准的字节流 openssl d2i_ECPrivateKey函数要求的DER编码的私钥也是SEC1标准的， 这个工具函数的主要目的就是为了能生成一个openssl可以直接“识别”的ECC私钥. 相对RSA私钥的PKCS1标准，ECC私钥的标准为SEC1

Parameters:

priKey -

pubKey -

Returns:

Throws:

java.io.IOException

convertECPrivateKeySEC1ToPKCS8

public static byte[] convertECPrivateKeySEC1ToPKCS8(byte[] sec1Key)
                                             throws java.io.IOException

将SEC1标准的私钥字节流恢复为PKCS8标准的字节流

Parameters:

sec1Key -

Returns:

Throws:

java.io.IOException

convertSEC1ToBCECPrivateKey

public static org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPrivateKey convertSEC1ToBCECPrivateKey(byte[] sec1Key)
                                                                                                 throws java.security.NoSuchAlgorithmException,
                                                                                                        java.security.NoSuchProviderException,
                                                                                                        java.security.spec.InvalidKeySpecException,
                                                                                                        java.io.IOException

将SEC1标准的私钥字节流转为BCECPrivateKey对象

Parameters:

sec1Key -

Returns:

Throws:

java.security.NoSuchAlgorithmException

java.security.NoSuchProviderException

java.security.spec.InvalidKeySpecException

java.io.IOException

convertSEC1ToECPrivateKey

public static org.bouncycastle.crypto.params.ECPrivateKeyParameters convertSEC1ToECPrivateKey(byte[] sec1Key)
                                                                                       throws java.security.NoSuchAlgorithmException,
                                                                                              java.security.NoSuchProviderException,
                                                                                              java.security.spec.InvalidKeySpecException,
                                                                                              java.io.IOException

将SEC1标准的私钥字节流转为ECPrivateKeyParameters对象 openssl i2d_ECPrivateKey函数生成的DER编码的ecc私钥是：SEC1标准的、带有EC_GROUP、带有公钥的， 这个工具函数的主要目的就是为了使Java程序能够“识别”openssl生成的ECC私钥

Parameters:

sec1Key -

Returns:

Throws:

java.security.NoSuchAlgorithmException

java.security.NoSuchProviderException

java.security.spec.InvalidKeySpecException

java.io.IOException

convertECPublicKeyToX509

public static byte[] convertECPublicKeyToX509(org.bouncycastle.crypto.params.ECPublicKeyParameters pubKey)

将ECC公钥对象转换为X509标准的字节流

Parameters:

pubKey -

Returns:

convertX509ToECPublicKey

public static org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey convertX509ToECPublicKey(byte[] x509Bytes)
                                                                                             throws java.security.NoSuchProviderException,
                                                                                                    java.security.NoSuchAlgorithmException,
                                                                                                    java.security.spec.InvalidKeySpecException

将X509标准的公钥字节流转为公钥对象

Parameters:

x509Bytes -

Returns:

Throws:

java.security.NoSuchProviderException

java.security.NoSuchAlgorithmException

java.security.spec.InvalidKeySpecException

convertECPublicKeyX509ToPEM

public static java.lang.String convertECPublicKeyX509ToPEM(byte[] encodedKey)
                                                    throws java.io.IOException

将X509标准的公钥字节流转为PEM

Parameters:

encodedKey -

Returns:

Throws:

java.io.IOException

convertECPublicKeyPEMToX509

public static byte[] convertECPublicKeyPEMToX509(java.lang.String pemString)
                                          throws java.io.IOException

将PEM格式的公钥转为X509标准的字节流

Parameters:

pemString -

Returns:

Throws:

java.io.IOException

getDomainParametersFromGenSpec

public static org.bouncycastle.asn1.x9.X9ECParameters getDomainParametersFromGenSpec(java.security.spec.ECGenParameterSpec genSpec)

copy from BC

Parameters:

genSpec -

Returns:

getDomainParametersFromName

public static org.bouncycastle.asn1.x9.X9ECParameters getDomainParametersFromName(java.lang.String curveName)

copy from BC

Parameters:

curveName -

Returns:

getDomainParametersFromName

public static org.bouncycastle.asn1.x9.X962Parameters getDomainParametersFromName(java.security.spec.ECParameterSpec ecSpec,
                                                                                  boolean withCompression)

copy from BC

Parameters:

ecSpec -

withCompression -

Returns: