From c54fe21f44f118c59874fe97b662b3faea6ebc48 Mon Sep 17 00:00:00 2001
From: Vincent Breitmoser <valodim@mugenguild.com>
Date: Sat, 16 Aug 2014 05:13:09 +0200
Subject: modifySecretKey: err out on revocation of nonexistent user id

---
 .../org/sufficientlysecure/keychain/pgp/PgpKeyOperation.java | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpKeyOperation.java')

diff --git a/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpKeyOperation.java b/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpKeyOperation.java
index fe84b3802..06d8dff69 100644
--- a/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpKeyOperation.java
+++ b/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpKeyOperation.java
@@ -403,6 +403,18 @@ public class PgpKeyOperation {
                 progress(R.string.progress_modify_revokeuid, (i-1) * (100 / saveParcel.mRevokeUserIds.size()));
                 String userId = saveParcel.mRevokeUserIds.get(i);
                 log.add(LogLevel.INFO, LogType.MSG_MF_UID_REVOKE, indent, userId);
+                // Make sure the user id exists (yes these are 10 LoC in Java!)
+                boolean exists = false;
+                for (String uid : new IterableIterator<String>(modifiedPublicKey.getUserIDs())) {
+                    if (userId.equals(uid)) {
+                        exists = true;
+                        break;
+                    }
+                }
+                if (!exists) {
+                    log.add(LogLevel.ERROR, LogType.MSG_MF_ERROR_NOEXIST_REVOKE, indent);
+                    return new EditKeyResult(EditKeyResult.RESULT_ERROR, log, null);
+                }
 
                 // a duplicate revocation will be removed during canonicalization, so no need to
                 // take care of that here.
-- 
cgit v1.2.3