# Install gmssl with Homebrew

Toolkit for Chinese national cryptographic standards. Version 3.2.0 via Homebrew; verified 2026-06-21.

## Install

```sh
sudo av install brew:gmssl
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install gmssl
```

  Evidence: local Homebrew formula metadata

## Package facts

- **Package key:** brew:gmssl
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/gmssl>
- **Version:** 3.2.0
- **Source summary:** Toolkit for Chinese national cryptographic standards
- **Homepage:** <https://github.com/guanzhi/GmSSL>
- **Repository:** <https://github.com/guanzhi/GmSSL>
- **Upstream docs:** <https://github.com/guanzhi/GmSSL#readme>
- **License:** Apache-2.0
- **Source archive:** <https://github.com/guanzhi/GmSSL/archive/refs/tags/v3.2.0.tar.gz>
- **Last updated:** 2026-06-21T07:05:30Z
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- gmssl (cli)
- gmssl (alias)

## Build dependencies

- cmake

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 3.2.0
- Package-manager updated: 2026-06-21
- Local data: ok
- Upstream repository: https://github.com/guanzhi/GmSSL
- Upstream latest detected: v3.2.0 (current)
## Project history and usage

GmSSL is an open-source cryptographic toolkit developed by Peking University for Chinese commercial cryptography standards. It provides a gmssl command-line tool, a C library, protocol support, and language bindings around SM2, SM3, SM4, SM9, TLCP, TLS, and related algorithms.

### Project history

The public GitHub repository was created in 2014. The README describes GmSSL as a domestic commercial cryptography open-source library independently developed by Peking University, covering national cryptographic algorithms, standards, secure communication protocols, mainstream operating systems and processors, cryptographic keys, and cryptographic cards.

The 3.x series was a major rewrite. The README states that GmSSL 3 reduced memory needs and binary size, removed the OpenSSL-compatible API from the core, adopted CMake, targeted embedded environments, and added a separate OpenSSL compatibility layer for applications such as Nginx.

GmSSL releases show a 3.0.0 release in 2022, 3.1.x releases in 2023, and 3.2.0 in 2026. The README's changelog for 3.1.1 onward includes TLS 1.3 work, TLCP support, post-quantum algorithms, command-line options for cryptographic operations, performance improvements, and removal of broken algorithms such as RC4 and MD5.

### Adoption history

GmSSL's adoption is tied to compliance and interoperability needs around Chinese national cryptographic standards. Its README emphasizes SM algorithms, TLCP, RFC 8998 TLS 1.3 cipher suites, hardware interfaces such as SDF and SKF, and language bindings for Java, PHP, Go, Python, Rust, and Node.js.

Homebrew packaging gives macOS and Unix-like developers a convenient way to test the gmssl CLI and library without building the full CMake project manually. The GitHub repository's large star and fork counts also indicate broader interest than a single-vendor compliance sample.

### How it is used

Practitioners build GmSSL with CMake, install the gmssl command-line tool and libgmssl, and use it to exercise SM-family algorithms, certificate workflows, digital envelopes, TLS/TLCP protocol support, and benchmark tests.

Application developers use the C library or language bindings when they need Chinese commercial cryptography support in services, embedded systems, mobile platforms, or compatibility layers for existing OpenSSL-oriented software.

### Why package nerds care

GmSSL is package-significant because cryptographic standards support is hard to vendor casually. A package-managed build gives users a repeatable toolkit for SM2, SM3, SM4, SM9, TLCP, and TLS experiments without treating a security-sensitive C library as a one-off source checkout.

It also shows a common packaging tension in crypto: users want a familiar OpenSSL-like CLI surface, but the project deliberately changed APIs in GmSSL 3 and moved OpenSSL compatibility into a separate layer.

### Timeline

- 2014: Public GitHub repository created.
- 2018: GMBrowser v0.1 release published in the repository release stream.
- 2022: GmSSL 3.0.0 released.
- 2023: GmSSL 3.1.x releases published.
- 2026: GmSSL 3.2.0 released.

### Related projects

- OpenSSL is related through the compatibility-layer discussion in the README.
- GmSSL-Java, GmSSL-PHP, GmSSL-Go, GmSSL-Python, gmssl-rs, and GmSSL-Nodejs provide language bindings around the core library.
- SoftSDF is a related software SDF module for development and testing.

### Sources

- <https://api.github.com/repos/guanzhi/GmSSL>
- <https://github.com/guanzhi/GmSSL>
- <https://github.com/guanzhi/GmSSL/releases>


## Security Notes

narrow executable package without higher-risk signals.

- **Geiger risk:** green / low
- narrow executable package without higher-risk signals

## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** gmssl
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable


## Related links

- [Source-control packages](https://www.automicvault.com/pkg/source-control-tools/) - Belongs to a source-control command family.
- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [cmake](https://www.automicvault.com/pkg/brew/cmake/) - Build dependency declared by Homebrew.
- [gnutls](https://www.automicvault.com/pkg/brew/gnutls/) - Shares av.db curated category or tags: cli, cryptography, security, ssl, tls.
- [libressl](https://www.automicvault.com/pkg/brew/libressl/) - Shares av.db curated category or tags: cli, cryptography, security, ssl, tls.
- [mbedtls](https://www.automicvault.com/pkg/brew/mbedtls/) - Shares av.db curated category or tags: cli, cryptography, security, ssl, tls.
- [wolfssl](https://www.automicvault.com/pkg/brew/wolfssl/) - Shares av.db curated category or tags: cli, cryptography, security, ssl, tls.
- [botan](https://www.automicvault.com/pkg/brew/botan/) - Shares av.db curated category or tags: cli, cryptography, security, tls.
- [cfssl](https://www.automicvault.com/pkg/brew/cfssl/) - Shares av.db curated category or tags: cli, cryptography, security, tls.
- [nss](https://www.automicvault.com/pkg/brew/nss/) - Shares av.db curated category or tags: cli, cryptography, security, tls.
- [ccrypt](https://www.automicvault.com/pkg/brew/ccrypt/) - Shares av.db curated category or tags: cli, cryptography, security.
- [jose](https://www.automicvault.com/pkg/brew/jose/) - Security-sensitive metadata or terminology overlaps. Shared terms: cli, cryptography, security.
- [opensc](https://www.automicvault.com/pkg/brew/opensc/) - Security-sensitive metadata or terminology overlaps. Shared terms: cli, cryptography, security.

## Combined YAML source

View the package source record on GitHub. [combined/gmssl.yml](https://github.com/automic-vault/db/blob/main/combined/gmssl.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- cross-ecosystem install command graph
