Add SM2 and Certificate examples

Author: guanzhi

.gitignore

@@ -128,4 +128,4 @@ dmypy.json
 # Pyre type checker
 .pyre/
 *.pem
-
+.DS_Store

examples/sm2_cert.py

@@ -0,0 +1,65 @@
+# Copyright 2023 The GmSSL Project. All Rights Reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the License); you may
+# not use this file except in compliance with the License.
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+
+from gmssl import *
+
+cert_txt = '''\
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----'''
+with open('ROOTCA.pem', 'w') as file:
+	file.write(cert_txt)
+	file.close()
+
+cert = Sm2Certificate()
+cert.import_pem('ROOTCA.pem')
+
+print("Certificate")
+
+serial = cert.get_serial_number()
+print("Serial :", serial.hex())
+
+validity = cert.get_validity()
+print("Validity.notBefore :", validity.not_before)
+print("Validity.notAfter :", validity.not_after)
+
+issuer = cert.get_issuer()
+print("Issuer :")
+for key in issuer:
+	if key == 'raw_data':
+		print("    ", key, ":", issuer[key].hex())
+	else:
+		print("    ", key, ":", issuer[key])
+
+
+subject = cert.get_subject()
+print("Subject :")
+for key in subject:
+	if key == 'raw_data':
+		print("    ", key, ":", subject[key].hex())
+	else:
+		print("    ", key, ":", subject[key])
+
+public_key = cert.get_subject_public_key()
+public_key.export_public_key_info_pem('subject_public_key.pem')
+
+file = open('subject_public_key.pem',mode='r')
+fulltext = file.read()
+file.close()
+print("Subject Public Key:")
+print(fulltext)
+
+

examples/sm2_enc.py

@@ -0,0 +1,33 @@
+# Copyright 2023 The GmSSL Project. All Rights Reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the License); you may
+# not use this file except in compliance with the License.
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+
+from gmssl import *
+
+# run sm2_key.py first
+
+
+
+# Sender
+
+public_key = Sm2Key()
+public_key.import_public_key_info_pem('sm2pub.pem')
+
+plaintext = b'Plaintext message'
+ciphertext = public_key.encrypt(plaintext)
+
+
+# Receiver
+
+private_key = Sm2Key()
+private_key.import_encrypted_private_key_info_pem('sm2.pem', 'password')
+
+decrypted = private_key.decrypt(ciphertext)
+
+print("plaintext :", plaintext.hex())
+print("ciphertext :", ciphertext.hex())
+print("decrypted :", decrypted.hex())
+

examples/sm2_key.py

@@ -0,0 +1,28 @@
+# Copyright 2023 The GmSSL Project. All Rights Reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the License); you may
+# not use this file except in compliance with the License.
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+
+from gmssl import *
+
+sm2 = Sm2Key()
+sm2.generate_key()
+
+sm2.export_encrypted_private_key_info_pem('sm2.pem', 'password')
+print('export private key to encrypted file sm2.pem')
+
+sm2.export_public_key_info_pem('sm2pub.pem')
+print('export public key to file sm2pub.pem')
+
+private_key = Sm2Key()
+private_key.import_encrypted_private_key_info_pem('sm2.pem', 'password')
+print("private key has private key :", private_key.has_private_key())
+print("private key has public key :", private_key.has_public_key())
+
+public_key = Sm2Key()
+public_key.import_public_key_info_pem('sm2pub.pem')
+print("public key has private key :", public_key.has_private_key())
+print("public key has public key :", public_key.has_public_key())
+

examples/sm2_sign.py

@@ -0,0 +1,61 @@
+# Copyright 2023 The GmSSL Project. All Rights Reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the License); you may
+# not use this file except in compliance with the License.
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+
+from gmssl import *
+
+# run sm2_key.py first
+
+
+# Signer
+
+private_key = Sm2Key()
+private_key.import_encrypted_private_key_info_pem('sm2.pem', 'password')
+
+z = private_key.compute_z(SM2_DEFAULT_ID)
+
+sm3 = Sm3()
+sm3.update(z)
+sm3.update(b'abc')
+dgst = sm3.digest()
+
+sig = private_key.sign(dgst)
+print("signature1 :", sig.hex())
+
+signer = Sm2Signature(private_key, SM2_DEFAULT_ID, DO_SIGN)
+signer.update(b'abc')
+sig2 = signer.sign()
+print("signature2 :", sig2.hex())
+
+# Verifier
+
+public_key = Sm2Key()
+public_key.import_public_key_info_pem('sm2pub.pem')
+
+z = public_key.compute_z(SM2_DEFAULT_ID)
+
+sm3 = Sm3()
+sm3.update(z)
+sm3.update(b'abc')
+dgst = sm3.digest()
+
+ret = public_key.verify(dgst, sig)
+print("Verify signature1 success :", ret)
+
+ret = public_key.verify(dgst, sig2)
+print("Verify signature2 success :", ret)
+
+verifier = Sm2Signature(public_key, SM2_DEFAULT_ID, DO_VERIFY)
+verifier.update(b'abc')
+ret = verifier.verify(sig)
+print("Verify signature1 success :", ret)
+
+verifier = Sm2Signature(public_key, SM2_DEFAULT_ID, DO_VERIFY)
+verifier.update(b'abc')
+ret = verifier.verify(sig2)
+print("Verify signature2 success :", ret)
+
+

gmssl.py

@@ -953,7 +953,7 @@ def get_issuer(self):
 		issuer_raw = create_string_buffer(issuer_len.value)
 		libc.memcpy(issuer_raw, issuer_ptr, issuer_len)
 
-		issuer = { "raw_data" : issuer_raw }
+		issuer = { "raw_data" : issuer_raw.raw }
 		gmssl_parse_name(issuer, issuer_ptr, issuer_len)
 		return issuer
 
@@ -965,7 +965,7 @@ def get_subject(self):
 		subject_raw = create_string_buffer(subject_len.value)
 		libc.memcpy(subject_raw, subject_ptr, subject_len)
 
-		subject = { "raw_data" : subject_raw }
+		subject = { "raw_data" : subject_raw.raw }
 		gmssl_parse_name(subject, subject_ptr, subject_len)
 		return subject