From 5ec0008f8d155c51ae7c7bbe9c2fe1db3aaa1fbd Mon Sep 17 00:00:00 2001
From: Paul Schaub <vanitasvitae@fsfe.org>
Date: Tue, 11 Jul 2023 01:04:50 +0200
Subject: [PATCH] Fix order of issuer/target certificate in certification
 verification method

---
 pgpainless-wot/src/main/kotlin/org/pgpainless/wot/WebOfTrust.kt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pgpainless-wot/src/main/kotlin/org/pgpainless/wot/WebOfTrust.kt b/pgpainless-wot/src/main/kotlin/org/pgpainless/wot/WebOfTrust.kt
index c3a34f6f..abb284d8 100644
--- a/pgpainless-wot/src/main/kotlin/org/pgpainless/wot/WebOfTrust.kt
+++ b/pgpainless-wot/src/main/kotlin/org/pgpainless/wot/WebOfTrust.kt
@@ -245,7 +245,7 @@ class WebOfTrust(private val certificateStore: PGPCertificateStore) {
                     // perform shared verification steps
                     verifyCommonSignatureCriteria(candidate, certification, issuerSigningKey, targetPrimaryKey, policy)
                     // check correct signature
-                    SignatureValidator.correctSignatureOverUserId(userId, issuerSigningKey, targetPrimaryKey).verify(certification)
+                    SignatureValidator.correctSignatureOverUserId(userId, targetPrimaryKey, issuerSigningKey).verify(certification)
                     // Only add the edge, if the above checks did not throw
                     networkBuilder.addEdge(fromCertification(issuer, target, userId, certification))
                     return // we're done