feat: Support for BLS keys.

Author: peacekeeper

src/main/java/com/danubetech/keyformats/JWK_to_PrivateKey.java

@@ -2,6 +2,7 @@
 
 import java.security.interfaces.RSAPrivateKey;
 
+import com.danubetech.keyformats.curves.Curves;
 import org.bitcoinj.core.ECKey;
 
 import com.danubetech.keyformats.keytypes.KeyType_for_JWK;
@@ -22,6 +23,10 @@ public static Object JWK_to_anyPrivateKey(JWK jsonWebKey) throws JOSEException {
 			return JWK_to_RSAPrivateKey(jsonWebKey);
 		else if (Curve.SECP256K1.getName().equals(keyType))
 			return JWK_to_secp256k1PrivateKey(jsonWebKey);
+		else if (Curves.BLS12381_G1.equals(keyType))
+			return JWK_to_BLS12381_G1PrivateKey(jsonWebKey);
+		else if (Curves.BLS12381_G2.equals(keyType))
+			return JWK_to_BLS12381_G2PrivateKey(jsonWebKey);
 		else if (Curve.Ed25519.getName().equals(keyType))
 			return JWK_to_Ed25519PrivateKeyBytes(jsonWebKey);
 		else if (Curve.X25519.getName().equals(keyType))
@@ -54,6 +59,40 @@ public static byte[] JWK_to_secp256k1PrivateKeyBytes(JWK jsonWebKey) throws JOSE
 		return ecKey.getD().decode();
 	}
 
+	public static ECKey JWK_to_BLS12381_G1PrivateKey(JWK jsonWebKey) throws JOSEException {
+
+		byte[] privateKeyBytes = JWK_to_BLS12381_G1PrivateKeyBytes(jsonWebKey);
+
+		return ECKey.fromPrivate(privateKeyBytes);
+	}
+
+	public static byte[] JWK_to_BLS12381_G1PrivateKeyBytes(JWK jsonWebKey) throws JOSEException {
+
+		if (! KeyType.EC.equals(jsonWebKey.getKeyType())) throw new IllegalArgumentException("Incorrect key type: " + jsonWebKey.getKeyType());
+
+		com.nimbusds.jose.jwk.ECKey ecKey = (com.nimbusds.jose.jwk.ECKey) jsonWebKey;
+		if (! Curves.BLS12381_G1.equals(ecKey.getCurve())) throw new IllegalArgumentException("Incorrect curve: " + ecKey.getCurve());
+
+		return ecKey.getD().decode();
+	}
+
+	public static ECKey JWK_to_BLS12381_G2PrivateKey(JWK jsonWebKey) throws JOSEException {
+
+		byte[] privateKeyBytes = JWK_to_BLS12381_G2PrivateKeyBytes(jsonWebKey);
+
+		return ECKey.fromPrivate(privateKeyBytes);
+	}
+
+	public static byte[] JWK_to_BLS12381_G2PrivateKeyBytes(JWK jsonWebKey) throws JOSEException {
+
+		if (! KeyType.EC.equals(jsonWebKey.getKeyType())) throw new IllegalArgumentException("Incorrect key type: " + jsonWebKey.getKeyType());
+
+		com.nimbusds.jose.jwk.ECKey ecKey = (com.nimbusds.jose.jwk.ECKey) jsonWebKey;
+		if (! Curves.BLS12381_G2.equals(ecKey.getCurve())) throw new IllegalArgumentException("Incorrect curve: " + ecKey.getCurve());
+
+		return ecKey.getD().decode();
+	}
+
 	public static byte[] JWK_to_Ed25519PrivateKeyBytes(JWK jsonWebKey) {
 
 		if (! KeyType.OKP.equals(jsonWebKey.getKeyType())) throw new IllegalArgumentException("Incorrect key type: " + jsonWebKey.getKeyType());

src/main/java/com/danubetech/keyformats/PrivateKey_to_JWK.java

@@ -4,6 +4,7 @@
 import java.security.interfaces.RSAPublicKey;
 import java.util.Arrays;
 
+import com.danubetech.keyformats.curves.Curves;
 import org.bitcoinj.core.ECKey;
 import org.bouncycastle.math.ec.ECPoint;
 
@@ -48,6 +49,54 @@ public static com.nimbusds.jose.jwk.ECKey secp256k1PrivateKeyBytes_to_JWK(byte[]
 		return secp256k1PrivateKey_to_JWK(privateKey, kid, use);
 	}
 
+	public static com.nimbusds.jose.jwk.ECKey BLS12381_G1PrivateKey_to_JWK(ECKey privateKey, String kid, String use) {
+
+		ECPoint publicKeyPoint = privateKey.getPubKeyPoint();
+		byte[] privateKeyBytes = privateKey.getPrivKeyBytes();
+		Base64URL xParameter = Base64URL.encode(publicKeyPoint.getAffineXCoord().getEncoded());
+		Base64URL yParameter = Base64URL.encode(publicKeyPoint.getAffineYCoord().getEncoded());
+		Base64URL dParameter = Base64URL.encode(privateKeyBytes);
+
+		com.nimbusds.jose.jwk.ECKey jsonWebKey = new com.nimbusds.jose.jwk.ECKey.Builder(Curves.BLS12381_G1, xParameter, yParameter)
+				.d(dParameter)
+				.keyID(kid)
+				.keyUse(use == null ? null : new KeyUse(use))
+				.build();
+
+		return jsonWebKey;
+	}
+
+	public static com.nimbusds.jose.jwk.ECKey BLS12381_G1PrivateKeyBytes_to_JWK(byte[] privateKeyBytes, String kid, String use) {
+
+		ECKey privateKey = ECKey.fromPrivate(privateKeyBytes);
+
+		return secp256k1PrivateKey_to_JWK(privateKey, kid, use);
+	}
+
+	public static com.nimbusds.jose.jwk.ECKey BLS12381_G2PrivateKey_to_JWK(ECKey privateKey, String kid, String use) {
+
+		ECPoint publicKeyPoint = privateKey.getPubKeyPoint();
+		byte[] privateKeyBytes = privateKey.getPrivKeyBytes();
+		Base64URL xParameter = Base64URL.encode(publicKeyPoint.getAffineXCoord().getEncoded());
+		Base64URL yParameter = Base64URL.encode(publicKeyPoint.getAffineYCoord().getEncoded());
+		Base64URL dParameter = Base64URL.encode(privateKeyBytes);
+
+		com.nimbusds.jose.jwk.ECKey jsonWebKey = new com.nimbusds.jose.jwk.ECKey.Builder(Curves.BLS12381_G2, xParameter, yParameter)
+				.d(dParameter)
+				.keyID(kid)
+				.keyUse(use == null ? null : new KeyUse(use))
+				.build();
+
+		return jsonWebKey;
+	}
+
+	public static com.nimbusds.jose.jwk.ECKey BLS12381_G2PrivateKeyBytes_to_JWK(byte[] privateKeyBytes, String kid, String use) {
+
+		ECKey privateKey = ECKey.fromPrivate(privateKeyBytes);
+
+		return secp256k1PrivateKey_to_JWK(privateKey, kid, use);
+	}
+
 	public static com.nimbusds.jose.jwk.OctetKeyPair Ed25519PrivateKeyBytes_to_JWK(byte[] privateKeyBytes, byte[] publicKeyBytes, String kid, String use) {
 
 		byte[] onlyPrivateKeyBytes = Arrays.copyOf(privateKeyBytes, 32);

src/main/java/com/danubetech/keyformats/PublicKey_to_JWK.java

@@ -2,6 +2,7 @@
 
 import java.security.interfaces.RSAPublicKey;
 
+import com.danubetech.keyformats.curves.Curves;
 import org.bitcoinj.core.ECKey;
 import org.bouncycastle.math.ec.ECPoint;
 
@@ -43,6 +44,48 @@ public static JWK secp256k1PublicKeyBytes_to_JWK(byte[] publicKeyBytes, String k
 		return secp256k1PublicKey_to_JWK(publicKey, kid, use);
 	}
 
+	public static JWK BLS12381_G1PublicKey_to_JWK(ECKey publicKey, String kid, String use) {
+
+		ECPoint publicKeyPoint = publicKey.getPubKeyPoint();
+		Base64URL xParameter = Base64URL.encode(publicKeyPoint.getAffineXCoord().getEncoded());
+		Base64URL yParameter = Base64URL.encode(publicKeyPoint.getAffineYCoord().getEncoded());
+
+		JWK jsonWebKey = new com.nimbusds.jose.jwk.ECKey.Builder(Curves.BLS12381_G1, xParameter, yParameter)
+				.keyID(kid)
+				.keyUse(use == null ? null : new KeyUse(use))
+				.build();
+
+		return jsonWebKey;
+	}
+
+	public static JWK BLS12381_G1PublicKeyBytes_to_JWK(byte[] publicKeyBytes, String kid, String use) {
+
+		ECKey publicKey = ECKey.fromPublicOnly(publicKeyBytes);
+
+		return BLS12381_G1PublicKey_to_JWK(publicKey, kid, use);
+	}
+
+	public static JWK BLS12381_G2PublicKey_to_JWK(ECKey publicKey, String kid, String use) {
+
+		ECPoint publicKeyPoint = publicKey.getPubKeyPoint();
+		Base64URL xParameter = Base64URL.encode(publicKeyPoint.getAffineXCoord().getEncoded());
+		Base64URL yParameter = Base64URL.encode(publicKeyPoint.getAffineYCoord().getEncoded());
+
+		JWK jsonWebKey = new com.nimbusds.jose.jwk.ECKey.Builder(Curves.BLS12381_G2, xParameter, yParameter)
+				.keyID(kid)
+				.keyUse(use == null ? null : new KeyUse(use))
+				.build();
+
+		return jsonWebKey;
+	}
+
+	public static JWK BLS12381_G2PublicKeyBytes_to_JWK(byte[] publicKeyBytes, String kid, String use) {
+
+		ECKey publicKey = ECKey.fromPublicOnly(publicKeyBytes);
+
+		return BLS12381_G2PublicKey_to_JWK(publicKey, kid, use);
+	}
+
 	public static JWK Ed25519PublicKeyBytes_to_JWK(byte[] publicKeyBytes, String kid, String use) {
 
 		Base64URL xParameter = Base64URL.encode(publicKeyBytes);

src/main/java/com/danubetech/keyformats/curves/Curves.java

@@ -0,0 +1,9 @@
+package com.danubetech.keyformats.curves;
+
+import com.nimbusds.jose.jwk.Curve;
+
+public class Curves {
+
+    public static final Curve BLS12381_G1 = new Curve("BLS12381_G1", "BLS12381_G1", null);
+    public static final Curve BLS12381_G2 = new Curve("BLS12381_G2", "BLS12381_G2", null);
+}

src/main/java/com/danubetech/keyformats/keytypes/KeyType_for_JWK.java

@@ -10,11 +10,11 @@ public class KeyType_for_JWK {
 	public static String keyType_for_JWK(JWK jsonWebKey) {
 
 		if (KeyType.RSA.equals(jsonWebKey.getKeyType()))
-			return jsonWebKey.getKeyType().getValue();
+			return jsonWebKey.getKeyType().getValue();	// "RSA"
 		else if (KeyType.EC.equals(jsonWebKey.getKeyType()))
-			return ((ECKey) jsonWebKey).getCurve().getName();
+			return ((ECKey) jsonWebKey).getCurve().getName();	// "secp256k1", "BLS12381_G1", "BLS12381_G2"
 		else if (KeyType.OKP.equals(jsonWebKey.getKeyType()))
-			return ((OctetKeyPair) jsonWebKey).getCurve().getName();
+			return ((OctetKeyPair) jsonWebKey).getCurve().getName();	// "Ed25519", "X25519"
 		else
 			throw new IllegalArgumentException("Unsupported key type " + jsonWebKey.getKeyType());
 	}