begin refactor

2024-08-13 15:53:53 -04:00 · 2014-01-14 15:48:05 +00:00 · 2014-01-14 15:48:05 +00:00 · cd4a3dd237
commit cd4a3dd237
parent bb0baa815e
1 changed files with 40 additions and 14 deletions
--- a/OpenPGP-Keychain/src/org/sufficientlysecure/keychain/pgp/PgpOperation.java
+++ b/OpenPGP-Keychain/src/org/sufficientlysecure/keychain/pgp/PgpOperation.java
@ -927,20 +927,12 @@ public class PgpOperation {
                    if (tmp_subkeyBinding_isok)
                        subkeyBinding_isok = true;
                    if (tmp_subkeyBinding_isok) {
-                        PGPSignatureSubpacketVector hPkts = sig.getHashedSubPackets();
-                        PGPSignatureSubpacketVector uhPkts = sig.getUnhashedSubPackets();
-                        if (uhPkts.hasSubpacket(SignatureSubpacketTags.EMBEDDED_SIGNATURE)) {
-                            PGPSignatureList eSigList = uhPkts.getEmbeddedSignatures();
-                            for (int j = 0; j < eSigList.size(); ++j) {
-                                PGPSignature emSig = eSigList.get(j);
-                                emSig.init(contentVerifierBuilderProvider, signatureKey);
-                                primkeyBinding_isok = emSig.verifyCertification(mKey, signatureKey);
+                        primkeyBinding_isok = verifyPrimaryBinding(sig.getUnhashedSubPackets(), mKey, signatureKey);
+                        if (primkeyBinding_isok)
+                            break;
+                        primkeyBinding_isok = verifyPrimaryBinding(sig.getHashedSubPackets(), mKey, signatureKey);
                        if (primkeyBinding_isok)
                            break;
-                            }
-                        }
-                        if (hPkts.hasSubpacket(SignatureSubpacketTags.EMBEDDED_SIGNATURE)) {
-                        }
                    }
                }
            }
@ -954,6 +946,40 @@ public class PgpOperation {
        return returnData;
    }

+    private boolean verifyPrimaryBinding(PGPSignatureSubpacketVector Pkts, PGPPublicKey masterPublicKey, PGPPublicKey signingPublicKey)
+    {
+        boolean primkeyBinding_isok = false;
+        JcaPGPContentVerifierBuilderProvider contentVerifierBuilderProvider = new JcaPGPContentVerifierBuilderProvider()
+                .setProvider(Constants.BOUNCY_CASTLE_PROVIDER_NAME);
+        PGPSignatureList eSigList;
+
+        if (Pkts.hasSubpacket(SignatureSubpacketTags.EMBEDDED_SIGNATURE)) {
+            try {
+				eSigList = Pkts.getEmbeddedSignatures();
+            } catch (IOException e) {
+                return false;
+            } catch (PGPException e) {
+                return false;
+            }
+			for (int j = 0; j < eSigList.size(); ++j) {
+				PGPSignature emSig = eSigList.get(j);
+	            if (emSig.getSignatureType() == PGPSignature.PRIMARYKEY_BINDING) {
+                    try {
+						emSig.init(contentVerifierBuilderProvider, signingPublicKey);
+						primkeyBinding_isok = emSig.verifyCertification(masterPublicKey, signingPublicKey);
+						if (primkeyBinding_isok)
+							break;
+                    } catch (PGPException e) {
+                        continue;
+                    } catch (SignatureException e) {
+                        continue;
+                    }
+	            }
+			}
+        }
+        return primkeyBinding_isok;
+    }
+
    private static void processLine(final String pLine, final ArmoredOutputStream pArmoredOutput,
            final PGPSignatureGenerator pSignatureGenerator) throws IOException, SignatureException {