* keyedit.c (menu_addrevoker), getkey.c (finish_lookup): Fix problem with

adding a cert-only designated revoker. Code was looking for a key with sign ability, and not cert ability. Noted by Timo Schulz.
2025-07-02 22:46:30 +02:00 · 2005-10-27 16:23:59 +00:00 · 2005-10-27 16:23:59 +00:00 · b3ea683ac9
commit b3ea683ac9
parent 2b50f31435
3 changed files with 13 additions and 4 deletions
--- a/g10/getkey.c
+++ b/g10/getkey.c
@ -2345,7 +2345,7 @@ finish_lookup (GETKEY_CTX ctx)
    KBNODE k;
    KBNODE foundk = NULL;
    PKT_user_id *foundu = NULL;
-#define USAGE_MASK  (PUBKEY_USAGE_SIG|PUBKEY_USAGE_ENC)
+#define USAGE_MASK  (PUBKEY_USAGE_SIG|PUBKEY_USAGE_ENC|PUBKEY_USAGE_CERT)
    unsigned int req_usage = ( ctx->req_usage & USAGE_MASK );
    /* Request the primary if we're certifying another key, and also
       if signing data while --pgp6 or --pgp7 is on since pgp 6 and 7