Remove KeyRingUtils.deleteUserId() in favor of revoking SecretKeyRingEditor.removeUserId() methods

2025-12-10 06:11:08 +01:00 · 2021-12-27 13:35:58 +01:00 · 2021-12-27 13:35:58 +01:00 · 245376d7d0
commit 245376d7d0
parent 3a69f90401
4 changed files with 30 additions and 92 deletions
--- a/pgpainless-core/src/main/java/org/pgpainless/key/modification/secretkeyring/SecretKeyRingEditor.java
+++ b/pgpainless-core/src/main/java/org/pgpainless/key/modification/secretkeyring/SecretKeyRingEditor.java
@ -190,6 +190,28 @@ public class SecretKeyRingEditor implements SecretKeyRingEditorInterface {
        return this;
    }

+    @Override
+    public SecretKeyRingEditorInterface removeUserId(
+            SelectUserId userIdSelector,
+            SecretKeyRingProtector protector)
+            throws PGPException {
+        RevocationAttributes revocationAttributes = RevocationAttributes.createCertificateRevocation()
+                .withReason(RevocationAttributes.Reason.USER_ID_NO_LONGER_VALID)
+                .withoutDescription();
+        return revokeUserIds(userIdSelector,
+                protector,
+                revocationAttributes);
+    }
+
+    @Override
+    public SecretKeyRingEditorInterface removeUserId(
+            CharSequence userId,
+            SecretKeyRingProtector protector) throws PGPException {
+        return removeUserId(
+                SelectUserId.exactMatch(userId.toString()),
+                protector);
+    }
+
    // TODO: Move to utility class?
    private String sanitizeUserId(@Nonnull CharSequence userId) {
        // TODO: Further research how to sanitize user IDs.
--- a/pgpainless-core/src/main/java/org/pgpainless/key/modification/secretkeyring/SecretKeyRingEditorInterface.java
+++ b/pgpainless-core/src/main/java/org/pgpainless/key/modification/secretkeyring/SecretKeyRingEditorInterface.java
@ -69,6 +69,14 @@ public interface SecretKeyRingEditorInterface {
            @Nonnull SecretKeyRingProtector protector)
            throws PGPException;

+    SecretKeyRingEditorInterface removeUserId(SelectUserId userIdSelector,
+                                              SecretKeyRingProtector protector)
+        throws PGPException;
+
+    SecretKeyRingEditorInterface removeUserId(CharSequence userId,
+                                              SecretKeyRingProtector protector)
+        throws PGPException;
+
    /**
     * Add a subkey to the key ring.
     * The subkey will be generated from the provided {@link KeySpec}.
--- a/pgpainless-core/src/main/java/org/pgpainless/key/util/KeyRingUtils.java
+++ b/pgpainless-core/src/main/java/org/pgpainless/key/util/KeyRingUtils.java
@ -159,52 +159,6 @@ public final class KeyRingUtils {
        return ring.getPublicKey(keyId) != null;
    }

-    /**
-     * Delete the given user-id and its certification signatures from the given key.
-     *
-     * @deprecated Deleting user-ids is highly discouraged, since it might lead to all sorts of problems
-     * (e.g. lost key properties).
-     * Instead, user-ids should only be revoked.
-     *
-     * @param secretKeys secret keys
-     * @param userId user-id
-     * @return modified secret keys
-     */
-    @Deprecated
-    public static PGPSecretKeyRing deleteUserId(PGPSecretKeyRing secretKeys, String userId) {
-        PGPSecretKey secretKey = secretKeys.getSecretKey(); // user-ids are located on primary key only
-        PGPPublicKey publicKey = secretKey.getPublicKey(); // user-ids are placed on the public key part
-        publicKey = PGPPublicKey.removeCertification(publicKey, userId);
-        if (publicKey == null) {
-            throw new NoSuchElementException("User-ID " + userId + " not found on the key.");
-        }
-        secretKey = PGPSecretKey.replacePublicKey(secretKey, publicKey);
-        secretKeys = PGPSecretKeyRing.insertSecretKey(secretKeys, secretKey);
-        return secretKeys;
-    }
-
-    /**
-     * Delete the given user-id and its certification signatures from the given certificate.
-     *
-     * @deprecated Deleting user-ids is highly discouraged, since it might lead to all sorts of problems
-     * (e.g. lost key properties).
-     * Instead, user-ids should only be revoked.
-     *
-     * @param publicKeys certificate
-     * @param userId user-id
-     * @return modified secret keys
-     */
-    @Deprecated
-    public static PGPPublicKeyRing deleteUserId(PGPPublicKeyRing publicKeys, String userId) {
-        PGPPublicKey publicKey = publicKeys.getPublicKey(); // user-ids are located on primary key only
-        publicKey = PGPPublicKey.removeCertification(publicKey, userId);
-        if (publicKey == null) {
-            throw new NoSuchElementException("User-ID " + userId + " not found on the key.");
-        }
-        publicKeys = PGPPublicKeyRing.insertPublicKey(publicKeys, publicKey);
-        return publicKeys;
-    }
-
    public static <T extends PGPKeyRing> T injectCertification(T keyRing, PGPPublicKey certifiedKey, PGPSignature certification) {
        PGPSecretKeyRing secretKeys = null;
        PGPPublicKeyRing publicKeys;