Import of revocation certificate fails
David Shaw
dshaw@jabberwocky.com
Sun Sep 29 19:51:02 2002
--WYTEVAkct0FjGQmd
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
On Sun, Sep 29, 2002 at 04:35:07PM +0200, Lars Eilebrecht wrote:
> Hi,
>
> I'm desperately trying to revoke one of my keys.
> I still got the original revocation certificate, but
> importing the cert via "gpg -vv --import revocationcert.asc"
> fails. GPG bails out with the following errors:
[..]
> Anyone any idea what is going on here?
This is a bug in 1.2.0, unfortunately. I have attached a patch.
David
--
David Shaw | dshaw@jabberwocky.com | WWW http://www.jabberwocky.com/
+---------------------------------------------------------------------------+
"There are two major products that come out of Berkeley: LSD and UNIX.
We don't believe this to be a coincidence." - Jeremy S. Anderson
--WYTEVAkct0FjGQmd
Content-Type: text/plain; charset=us-ascii
Content-Disposition: attachment; filename="revoke.patch"
Index: sig-check.c
===================================================================
RCS file: /cvs/gnupg/gnupg/g10/sig-check.c,v
retrieving revision 1.73.2.2
retrieving revision 1.73.2.3
diff -u -r1.73.2.2 -r1.73.2.3
--- sig-check.c 15 Sep 2002 03:15:56 -0000 1.73.2.2
+++ sig-check.c 28 Sep 2002 17:34:43 -0000 1.73.2.3
@@ -521,8 +521,11 @@
return rc;
if( sig->sig_class == 0x20 ) { /* key revocation */
- /* designated revoker? */
- if(pk->keyid[0]!=sig->keyid[0] || pk->keyid[1]!=sig->keyid[1])
+ u32 keyid[2];
+ keyid_from_pk( pk, keyid );
+
+ /* is it a designated revoker? */
+ if(keyid[0]!=sig->keyid[0] || keyid[1]!=sig->keyid[1])
rc=check_revocation_keys(pk,sig);
else
{
--WYTEVAkct0FjGQmd--