Remove work arounds for Java versions less than 15.

Author: jonwltn

kse/src/main/java/org/kse/crypto/ecc/EccUtil.java

@@ -30,6 +30,7 @@
 import java.security.interfaces.ECKey;
 import java.security.interfaces.ECPrivateKey;
 import java.security.interfaces.ECPublicKey;
+import java.security.interfaces.EdECPrivateKey;
 import java.security.spec.ECParameterSpec;
 import java.security.spec.PKCS8EncodedKeySpec;
 import java.util.List;
@@ -310,9 +311,11 @@ public static EdDSACurves detectEdDSACurve(PublicKey publicKey) {
     }
 
     /**
-     * Converts an Ed25519 or Ed448 PrivateKey object to a BC EdDSAPrivateKey.
+     * Converts an Ed25519 or Ed448 PrivateKey object to a BC EdDSAPrivateKey. This method is
+     * usually used to determine the Edwards curve since the BC EdDSAPrivatey provides
+     * "Ed25519" or "Ed448" in the algorithm, whereas the JDK EdECPrivateKey only says "EdDSA".
      * <br>
-     * If the given privateKey is a JDK EdDSA key (Java 15+), convert it to a BouncyCastle EdDSA key.
+     * If the given privateKey is a JDK EdDSA key, convert it to a BouncyCastle EdDSA key.
      * If the given privateKey is already a BouncyCastle EdDSA key, return it as-is.
      * Otherwise (no known implementation class) return null.
      *
@@ -325,12 +328,9 @@ public static EdDSAPrivateKey getEdPrivateKey(PrivateKey privateKey) {
         }
 
         try {
-            // Use reflection so that KSE can still compile with JDK 11.
-            Class<?> c = Class.forName("java.security.interfaces.EdECPrivateKey");
-            if (c.isAssignableFrom(privateKey.getClass())) {
-                // Quickest way to convert to a BC EdDSA key. Doesn't require importing any
-                // Ed25519 or Ed448 specific classes, and it doesn't require using reflection
-                // to access the JDK 15+ EC crypto provider.
+            if (privateKey instanceof EdECPrivateKey) {
+                // Shortest way to convert to a BC EdDSA key. Doesn't require importing any
+                // Ed25519 or Ed448 specific classes.
                 KeyFactory kf = KeyFactory.getInstance(privateKey.getAlgorithm(), KSE.BC);
                 PrivateKey bcPrivateKey = kf.generatePrivate(new PKCS8EncodedKeySpec(privateKey.getEncoded()));
                 return (EdDSAPrivateKey) bcPrivateKey;
@@ -340,14 +340,4 @@ public static EdDSAPrivateKey getEdPrivateKey(PrivateKey privateKey) {
         }
         return null;
     }
-
-    /**
-     * Checks if the given privateKey is an EdDSA private key (Ed25519 or Ed448).
-     *
-     *  @param key A key
-     * @return True, if the given key is an EdDSA private key
-     */
-    public static boolean isEdPrivateKey(Key key) {
-        return key instanceof PrivateKey && getEdPrivateKey((PrivateKey) key) != null;
-    }
 }

kse/src/main/java/org/kse/crypto/keypair/KeyPairUtil.java

@@ -47,6 +47,7 @@
 import java.security.interfaces.DSAPrivateKey;
 import java.security.interfaces.ECPrivateKey;
 import java.security.interfaces.ECPublicKey;
+import java.security.interfaces.EdECPrivateKey;
 import java.security.interfaces.RSAPrivateCrtKey;
 import java.security.interfaces.RSAPrivateKey;
 import java.security.spec.DSAPrivateKeySpec;
@@ -467,7 +468,7 @@ public static KeyPair generateKeyPair(PrivateKey privateKey) throws CryptoExcept
                 PublicKey publicKey = kf.generatePublic(publicSpec);
                 keyPair = new KeyPair(publicKey, privateKey);
             }
-            if (EccUtil.isEdPrivateKey(privateKey)) {
+            if (privateKey instanceof EdECPrivateKey) {
                 EdDSAPrivateKey edPrivate = EccUtil.getEdPrivateKey(privateKey);
                 byte[] pubKeyBytes = edPrivate.getPublicKey().getEncoded();
                 KeyFactory kf = KeyFactory.getInstance(edPrivate.getAlgorithm(), KSE.BC);

kse/src/main/java/org/kse/crypto/signing/SignatureType.java

@@ -49,7 +49,6 @@
 import org.bouncycastle.asn1.rosstandart.RosstandartObjectIdentifiers;
 import org.kse.crypto.digest.DigestType;
 import org.kse.crypto.ecc.EdDSACurves;
-import org.kse.version.JavaVersion;
 
 /**
  * Enumeration of Signature Types supported by the X509CertUtil class.
@@ -269,14 +268,10 @@ public static List<SignatureType> rsaSignatureTypes() {
         signatureTypes.add(SHA384WITHRSAANDMGF1);
         signatureTypes.add(SHA512WITHRSAANDMGF1);
 
-        // SHA3 signatures cause problems when reading certificates with standard providers (e.g. in P12 keystore)
-        // because at least up to Java 15 there is no support for SHA3 signatures (see http://openjdk.java.net/jeps/287)
-        if (JavaVersion.getJreVersion().isAtLeast(JavaVersion.JRE_VERSION_17)) {
-            signatureTypes.add(SHA3_224WITHRSAANDMGF1);
-            signatureTypes.add(SHA3_256WITHRSAANDMGF1);
-            signatureTypes.add(SHA3_384WITHRSAANDMGF1);
-            signatureTypes.add(SHA3_512WITHRSAANDMGF1);
-        }
+        signatureTypes.add(SHA3_224WITHRSAANDMGF1);
+        signatureTypes.add(SHA3_256WITHRSAANDMGF1);
+        signatureTypes.add(SHA3_384WITHRSAANDMGF1);
+        signatureTypes.add(SHA3_512WITHRSAANDMGF1);
 
         return signatureTypes;
     }

kse/src/main/java/org/kse/gui/dialogs/DViewAsymmetricKeyFields.java

@@ -36,6 +36,7 @@
 import java.security.interfaces.DSAPublicKey;
 import java.security.interfaces.ECPrivateKey;
 import java.security.interfaces.ECPublicKey;
+import java.security.interfaces.EdECPrivateKey;
 import java.security.interfaces.RSAPrivateCrtKey;
 import java.security.interfaces.RSAPrivateKey;
 import java.security.interfaces.RSAPublicKey;
@@ -132,7 +133,7 @@ private static String getTitle(Key key) {
             return MessageFormat.format(res.getString("DViewAsymmetricKeyFields.PrivateKey.title"), "EC");
         } else if (key instanceof EdDSAPublicKey) {
             return MessageFormat.format(res.getString("DViewAsymmetricKeyFields.PublicKey.title"), getEdAlg(key));
-        } else if (EccUtil.isEdPrivateKey(key)) {
+        } else if (key instanceof EdECPrivateKey) {
             return MessageFormat.format(res.getString("DViewAsymmetricKeyFields.PrivateKey.title"), getEdAlg(key));
         } else if (key instanceof MLDSAPublicKey) {
             return MessageFormat.format(res.getString("DViewAsymmetricKeyFields.PublicKey.title"), "ML-DSA");
@@ -239,7 +240,7 @@ private void populateFields() throws IOException {
             fields = getEcPrivateFields();
         } else if (key instanceof EdDSAPublicKey) {
             fields = getEdPubFields();
-        } else if (EccUtil.isEdPrivateKey(key)) {
+        } else if (key instanceof EdECPrivateKey) {
             fields = getEdPrivateFields();
         } else if (key instanceof MLDSAPublicKey) {
             fields = getMLDSAPublicFields();

kse/src/main/java/org/kse/gui/dialogs/DViewPrivateKey.java

@@ -33,6 +33,7 @@
 import java.security.PrivateKey;
 import java.security.interfaces.DSAPrivateKey;
 import java.security.interfaces.ECPrivateKey;
+import java.security.interfaces.EdECPrivateKey;
 import java.security.interfaces.RSAPrivateKey;
 import java.text.MessageFormat;
 import java.util.Optional;
@@ -54,7 +55,6 @@
 import org.kse.KSE;
 import org.kse.crypto.CryptoException;
 import org.kse.crypto.KeyInfo;
-import org.kse.crypto.ecc.EccUtil;
 import org.kse.crypto.keypair.KeyPairUtil;
 import org.kse.crypto.privatekey.PrivateKeyFormat;
 import org.kse.gui.CursorUtil;
@@ -311,7 +311,7 @@ private void populateDialog() throws CryptoException {
         jtaEncoded.setCaretPosition(0);
 
         jbFields.setEnabled((privateKey instanceof RSAPrivateKey) || (privateKey instanceof DSAPrivateKey)
-                || (privateKey instanceof ECPrivateKey) || (EccUtil.isEdPrivateKey(privateKey))
+                || (privateKey instanceof ECPrivateKey) || (privateKey instanceof EdECPrivateKey)
                 || (privateKey instanceof MLDSAPrivateKey) || (privateKey instanceof SLHDSAPrivateKey));
     }
 

kse/src/test/java/org/kse/crypto/ecc/EccUtilTest.java

@@ -22,10 +22,8 @@
 
 import static org.assertj.core.api.Assertions.assertThat;
 import static org.junit.jupiter.api.Assertions.assertEquals;
-import static org.junit.jupiter.api.Assertions.assertFalse;
 import static org.junit.jupiter.api.Assertions.assertNotNull;
 import static org.junit.jupiter.api.Assertions.assertThrows;
-import static org.junit.jupiter.api.Assertions.assertTrue;
 
 import java.math.BigInteger;
 import java.security.InvalidParameterException;
@@ -184,11 +182,4 @@ void detectEDDSACurveNotEd() throws Exception {
         assertThrows(InvalidParameterException.class, () -> EccUtil.detectEdDSACurve(ecKeyPair.getPublic()));
     }
 
-    @Test
-    void isEdPrivateKey() throws Exception {
-        KeyPair edKeyPair = KeyPairUtil.generateECKeyPair("Ed448", KSE.BC);
-        assertTrue(EccUtil.isEdPrivateKey(edKeyPair.getPrivate()));
-        assertFalse(EccUtil.isEdPrivateKey(edKeyPair.getPublic()));
-        assertFalse(EccUtil.isEdPrivateKey(KeyPairUtil.generateECKeyPair("secp384r1", KSE.BC).getPrivate()));
-    }
 }