1
0
Fork 0
mirror of https://github.com/pgpainless/pgpainless.git synced 2024-11-05 03:55:58 +01:00

Fix order of issuer/target certificate in certification verification method

This commit is contained in:
Paul Schaub 2023-07-11 01:04:50 +02:00
parent 41dfb269f1
commit 7dfb814b8a
Signed by: vanitasvitae
GPG key ID: 62BEE9264BF17311

View file

@ -245,7 +245,7 @@ class WebOfTrust(private val certificateStore: PGPCertificateStore) {
// perform shared verification steps
verifyCommonSignatureCriteria(candidate, certification, issuerSigningKey, targetPrimaryKey, policy)
// check correct signature
SignatureValidator.correctSignatureOverUserId(userId, issuerSigningKey, targetPrimaryKey).verify(certification)
SignatureValidator.correctSignatureOverUserId(userId, targetPrimaryKey, issuerSigningKey).verify(certification)
// Only add the edge, if the above checks did not throw
networkBuilder.addEdge(fromCertification(issuer, target, userId, certification))
return // we're done