From e08505e07d77ea95247e25b40313cb5cfea8e0a7 Mon Sep 17 00:00:00 2001
From: Paul Schaub <vanitasvitae@fsfe.org>
Date: Wed, 3 May 2023 17:25:59 +0200
Subject: [PATCH] CertificateValidator: Skip revocation signatures not made by
 primary key

---
 .../org/pgpainless/signature/consumer/CertificateValidator.java  | 1 +
 1 file changed, 1 insertion(+)

diff --git a/pgpainless-core/src/main/java/org/pgpainless/signature/consumer/CertificateValidator.java b/pgpainless-core/src/main/java/org/pgpainless/signature/consumer/CertificateValidator.java
index c629de2d..6cd3e328 100644
--- a/pgpainless-core/src/main/java/org/pgpainless/signature/consumer/CertificateValidator.java
+++ b/pgpainless-core/src/main/java/org/pgpainless/signature/consumer/CertificateValidator.java
@@ -74,6 +74,7 @@ public final class CertificateValidator {
             PGPSignature revocation = primaryKeyRevocationIterator.next();
             if (revocation.getKeyID() != primaryKey.getKeyID()) {
                 // Revocation was not made by primary key, skip
+                continue;
                 // TODO: What about external revocation keys?
             }
             try {