GPG: use key fingerprint suffix to compare id for signing key

author Thomas Wolf <thomas.wolf@paranor.ch>

Tue, 21 May 2019 16:08:48 +0000 (18:08 +0200)

committer Thomas Wolf <thomas.wolf@paranor.ch>

Tue, 21 May 2019 16:11:28 +0000 (18:11 +0200)
author Thomas Wolf <thomas.wolf@paranor.ch>
Tue, 21 May 2019 16:08:48 +0000 (18:08 +0200)
committer Thomas Wolf <thomas.wolf@paranor.ch>
Tue, 21 May 2019 16:11:28 +0000 (18:11 +0200)
diff --git a/org.eclipse.jgit/src/org/eclipse/jgit/lib/internal/BouncyCastleGpgKeyLocator.java b/org.eclipse.jgit/src/org/eclipse/jgit/lib/internal/BouncyCastleGpgKeyLocator.java

index c942cf403db6ac10856132b4da75883f4a83e50c..47f8c85f4dc32fcd0d13923c91cd6ef35adc400a 100644 (file)
--- a/org.eclipse.jgit/src/org/eclipse/jgit/lib/internal/BouncyCastleGpgKeyLocator.java
+++ b/org.eclipse.jgit/src/org/eclipse/jgit/lib/internal/BouncyCastleGpgKeyLocator.java
@@ -181,10 +181,11 @@ class BouncyCastleGpgKeyLocator {
  
         private PGPPublicKey findPublicKeyByKeyId(KeyBlob keyBlob)
                         throws IOException {
+               String keyId = signingKey.toLowerCase(Locale.ROOT);
                 for (KeyInformation keyInfo : keyBlob.getKeyInformation()) {
-                       if (signingKey.toLowerCase(Locale.ROOT)
-                                       .equals(Hex.toHexString(keyInfo.getKeyID())
-                                                       .toLowerCase(Locale.ROOT))) {
+                       String fingerprint = Hex.toHexString(keyInfo.getFingerprint())
+                                       .toLowerCase(Locale.ROOT);
+                       if (fingerprint.endsWith(keyId)) {
                                 return getFirstPublicKey(keyBlob);
                         }
                 }
@@ -334,6 +335,7 @@ class BouncyCastleGpgKeyLocator {
                                         PGPUtil.getDecoderStream(new BufferedInputStream(in)),
                                         new JcaKeyFingerprintCalculator());
  
+                       String keyId = signingkey.toLowerCase(Locale.ROOT);
                         Iterator<PGPSecretKeyRing> keyrings = pgpSec.getKeyRings();
                         while (keyrings.hasNext()) {
                                 PGPSecretKeyRing keyRing = keyrings.next();
@@ -344,8 +346,7 @@ class BouncyCastleGpgKeyLocator {
                                         String fingerprint = Hex
                                                         .toHexString(key.getPublicKey().getFingerprint())
                                                         .toLowerCase(Locale.ROOT);
-                                       if (fingerprint
-                                                       .endsWith(signingkey.toLowerCase(Locale.ROOT))) {
+                                       if (fingerprint.endsWith(keyId)) {
                                                 return key;
                                         }
                                         // try user id
author	Thomas Wolf <thomas.wolf@paranor.ch>
	Tue, 21 May 2019 16:08:48 +0000 (18:08 +0200)
committer	Thomas Wolf <thomas.wolf@paranor.ch>
	Tue, 21 May 2019 16:11:28 +0000 (18:11 +0200)