Merge branch 'development' of github.com:open-keychain/open-keychain into development

2024-11-15 05:15:03 -05:00 · 2015-03-15 19:35:12 +01:00 · 2015-03-15 19:35:12 +01:00 · d824ec3bc9
commit d824ec3bc9
parent 75368034bd db39b779c9
2 changed files with 21 additions and 14 deletions
--- a/OpenKeychain-Test/src/test/java/org/sufficientlysecure/keychain/pgp/PgpKeyOperationTest.java
+++ b/OpenKeychain-Test/src/test/java/org/sufficientlysecure/keychain/pgp/PgpKeyOperationTest.java
@ -536,6 +536,12 @@ public class PgpKeyOperationTest {
                    expiry, modified.getPublicKey(keyId).getUnsafeExpiryTimeForTesting().getTime() / 1000);
            Assert.assertEquals("modified key must have same flags as before",
                    ring.getPublicKey(keyId).getKeyUsage(), modified.getPublicKey(keyId).getKeyUsage());
+
+            Date date = modified.canonicalize(new OperationLog(), 0).getPublicKey().getExpiryTime();
+            Assert.assertNotNull("modified key must have an expiry date", date);
+            Assert.assertEquals("modified key must have expected expiry date",
+                    expiry, date.getTime() / 1000);
+
        }

        {
--- a/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/CanonicalizedPublicKey.java
+++ b/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/CanonicalizedPublicKey.java
@ -126,27 +126,28 @@ public class CanonicalizedPublicKey extends UncachedPublicKey {
        // the getValidSeconds method is unreliable for master keys. we need to iterate all
        // user ids, then use the most recent certification from a non-revoked user id
        if (isMasterKey()) {
-            Date latestCreation = null;
            seconds = 0;

+            long masterKeyId = getKeyId();
+
+            Date latestCreation = null;
            for (byte[] rawUserId : getUnorderedRawUserIds()) {
                Iterator<WrappedSignature> sigs = getSignaturesForRawId(rawUserId);
-
-                // there is always a certification, so this call is safe
+                while (sigs.hasNext()) {
                    WrappedSignature sig = sigs.next();
-
-                // we know a user id has at most two sigs: one certification, one revocation.
-                // if the sig is a revocation, or there is another sig (which is a revocation),
-                // the data in this uid is not relevant
-                if (sig.isRevocation() || sigs.hasNext()) {
+                    if (sig.getKeyId() != masterKeyId) {
+                        continue;
+                    }
+                    if (sig.isRevocation()) {
                        continue;
                    }

-                // this is our revocation, UNLESS there is a newer certificate!
                    if (latestCreation == null || latestCreation.before(sig.getCreationTime())) {
                        latestCreation = sig.getCreationTime();
                        seconds = sig.getKeyExpirySeconds();
                    }
+
+                }
            }
        } else {
            seconds = mPublicKey.getValidSeconds();