mirror of
git://git.gnupg.org/gnupg.git
synced 2024-06-02 22:38:02 +02:00
gpg: Fix extra check for sign usage of a data signature.
* g10/sig-check.c (check_signature_end_simple): -- Obviously we should not ignore a back signature here. Fixes-commit:214b007726
GnuPG-bug-id: 4014 Signed-off-by: Werner Koch <wk@gnupg.org> (cherry picked from commitb6275f3bda
)
This commit is contained in:
parent
7e2b0488d1
commit
b0d6e26bf3
|
@ -481,7 +481,8 @@ check_signature_end_simple (PKT_public_key *pk, PKT_signature *sig,
|
||||||
}
|
}
|
||||||
|
|
||||||
/* For data signatures check that the key has sign usage. */
|
/* For data signatures check that the key has sign usage. */
|
||||||
if (IS_SIG (sig) && !(pk->pubkey_usage & PUBKEY_USAGE_SIG))
|
if (!IS_BACK_SIG (sig) && IS_SIG (sig)
|
||||||
|
&& !(pk->pubkey_usage & PUBKEY_USAGE_SIG))
|
||||||
{
|
{
|
||||||
rc = gpg_error (GPG_ERR_WRONG_KEY_USAGE);
|
rc = gpg_error (GPG_ERR_WRONG_KEY_USAGE);
|
||||||
if (!opt.quiet)
|
if (!opt.quiet)
|
||||||
|
|
Loading…
Reference in New Issue
Block a user