Jmeter接口加密測(cè)試小結(jié)

? ? ? 最近，公司做接口測(cè)試，但是發(fā)送請(qǐng)求前需要對(duì)個(gè)別參數(shù)做加密處理。之前一直沒(méi)做過(guò)這種，于是在網(wǎng)上查了很多資料，但是千篇一律，都是講的把加密工具類(lèi)打成jar包導(dǎo)入JMeter。因?yàn)槲覍?xiě)的工具類(lèi)引入了很多第三方j(luò)ar包，所以引入到JMeter里總是報(bào)錯(cuò)（額，具體錯(cuò)誤沒(méi)記等之后復(fù)現(xiàn)再貼）。

（本人小白，第一次寫(xiě) 0.0）

我的解決方法：把工具類(lèi)里所有涉及到的第三方包全都找出來(lái)，我涉及的有jce.jar，local_policy.jar，rt.jar，sunjce_provider.jar，US_export_policy.jar導(dǎo)入到測(cè)試計(jì)劃中如圖：

測(cè)試計(jì)劃

然后在HTTP請(qǐng)求下面添加前置處理器BeanShell PreProcessor，

添加BeanShell PreProcessor

之后在BeanShell PreProcessor的Script中進(jìn)行加密邏輯的代碼編寫(xiě)，代碼如下：

import java.io.IOException;

import java.security.InvalidKeyException;

import java.security.Key;

import java.security.KeyFactory;

import java.security.KeyPair;

import java.security.KeyPairGenerator;

import java.security.NoSuchAlgorithmException;

import java.security.PrivateKey;

import java.security.PublicKey;

import java.security.Security;

import java.security.spec.PKCS8EncodedKeySpec;

import java.security.spec.X509EncodedKeySpec;

import java.util.HashMap;

import java.util.Map;

import java.util.logging.Logger;

import javax.crypto.BadPaddingException;

import javax.crypto.Cipher;

import javax.crypto.IllegalBlockSizeException;

import javax.crypto.NoSuchPaddingException;

import com.sun.org.apache.xml.internal.security.utils.Base64;

import sun.misc.BASE64Decoder;

import sun.misc.BASE64Encoder;

//-------------------------------------------------RSA加密-------------------------------------------------------

String mingKey="MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyhMMmQTsZYpQX1iLM1QPWT+hD0Y/Z1wNvvxvavDLBQN9vASkjRnR8S4rlQBHAM/WbC+KC14KJcHTydYjmAIwREux20WxxbrdZZXey/BTv9MRHs2rhckYpGRaVGfpsFVDTFq2468i50xqcraYxcpPxpeohZMxKeixzMbnp/cf4UJiQJ0w0ARQyLJhgenA0hOJ3iGm8JRKxtxmZ6nA6oStV9VrtcUAm2N5F/Oiu5eMQIeWpuYkfMhplqU+/fr7Zx6hBAR/VVvsiGD/PMCYk4nKVKZ1hCCZCz+zBusonRobx+93wu0V7j11xJiC1gTUhRSa60Ox4OlQGXB0A3zxNSh4wIDAQAB";//公鑰

String miKey="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";//私鑰

String threeDesKey="ThisMy3DesKey";

String phonenum="17600662928";

String password="111111";

Cipher cipher=Cipher.getInstance("RSA");

//GetPublicKey

byte[] keyBytesPu;

keyBytesPu = (new BASE64Decoder()).decodeBuffer(mingKey);

X509EncodedKeySpec keySpecPu = new X509EncodedKeySpec(keyBytesPu);

KeyFactory keyFactoryPu = KeyFactory.getInstance("RSA");

PublicKey publicKey = keyFactoryPu.generatePublic(keySpecPu);

//GetPrivateKey

byte[] keyBytesPv;

keyBytesPv = (new BASE64Decoder()).decodeBuffer(miKey);

PKCS8EncodedKeySpec keySpecPv = new PKCS8EncodedKeySpec(keyBytesPv);

KeyFactory keyFactoryPv = KeyFactory.getInstance("RSA");

PrivateKey privateKey = keyFactoryPv.generatePrivate(keySpecPv);

//公鑰加密

cipher.init(Cipher.ENCRYPT_MODE, publicKey);

byte[] enBytes = cipher.doFinal(threeDesKey.getBytes());

String myKey= (new BASE64Encoder()).encode(enBytes);

//私鑰解密

cipher.init(Cipher.DECRYPT_MODE, privateKey);

byte[] deBytes = cipher.doFinal((new BASE64Decoder()).decodeBuffer(myKey));

String myKeyJ=new String(deBytes);

//-------------------------------------------------RSA加密-------------------------------------------------------

//-------------------------------------------------3DES加密-------------------------------------------------------

Cipher encryptCipher = null;

Cipher decryptCipher = null;

Security.addProvider(new com.sun.crypto.provider.SunJCE());

byte[] array=threeDesKey.getBytes();

// 創(chuàng)建一個(gè)空的8位字節(jié)數(shù)組

byte[] arrayTemp = new byte[8];

int length = array.length;

// 長(zhǎng)度是否大于8

if (length > 8)? {

System.arraycopy(array, 0, arrayTemp, 0, 8);

}? else? {

System.arraycopy(array, 0, arrayTemp, 0, length);

}

// 生成密鑰

Key key = new javax.crypto.spec.SecretKeySpec(arrayTemp, "DES");

encryptCipher = Cipher.getInstance("DES");

encryptCipher.init(Cipher.ENCRYPT_MODE, key);

decryptCipher = Cipher.getInstance("DES");

decryptCipher.init(Cipher.DECRYPT_MODE, key);

//3DES加密? threeDesKey="ThisMy3DesKey";

String content = "{\"telNum\":\"17600662928\",\"password\":\"111111\","

?+ "\"blackBox\":\"63ABCFB379461777733FFB402B5A3CA5\","

? + "\"client\":\"H5\",\"version\":\"3.9.0\","

+ "\"decodeNum\":\"d1ad62b5a1f9200c8a03c5df77d10910\"}";

//String content="111111";

byte[] byteMi = null;

byte[] byteMing = null;

// 加密后的字符串

String strEncrypt = "";

byteMing = content.getBytes("UTF8");

byteMi = encryptCipher.doFinal(byteMing);

strEncrypt = Base64.encode(byteMi);

//3DES解密

byte[] byteMingJ = null;

byte[] byteMiJ = null;

//解密后的字符串

String strMing = "";

byteMiJ = Base64.decode(strEncrypt);

byteMingJ = decryptCipher.doFinal(byteMiJ);

strMing = new String(byteMingJ, "UTF8");

log.info("3DES秘鑰："+threeDesKey);

log.info("公鑰加密："+myKey);

log.info("私鑰解密："+myKeyJ);

log.info("加密前的content："+content);

log.info("加密后的content："+strEncrypt);

log.info("解密后的content："+strMing);

vars.put("telNum",myKey);

vars.put("password",strEncrypt);

我代碼里面分別用到了RSA加密和3DES加密，vars.put（）這個(gè)方法可以對(duì)請(qǐng)求中的指定參數(shù)進(jìn)行傳參，且HTTP請(qǐng)求中的參數(shù)要進(jìn)行引用，如圖：

參數(shù)引用

處理完這些點(diǎn)擊運(yùn)行查看結(jié)果：

參數(shù)被加密

從上圖可以看出請(qǐng)求中的"telNum"與"password"參數(shù)已經(jīng)經(jīng)過(guò)加密了。

以上就是我的初步解決方法，第一次寫(xiě)果然語(yǔ)無(wú)倫次0.0 。