aboutsummaryrefslogtreecommitdiff
path: root/src/mailman_pgp/rules/signature.py
diff options
context:
space:
mode:
Diffstat (limited to 'src/mailman_pgp/rules/signature.py')
-rw-r--r--src/mailman_pgp/rules/signature.py9
1 files changed, 8 insertions, 1 deletions
diff --git a/src/mailman_pgp/rules/signature.py b/src/mailman_pgp/rules/signature.py
index b7d4b5c..ae27bb5 100644
--- a/src/mailman_pgp/rules/signature.py
+++ b/src/mailman_pgp/rules/signature.py
@@ -35,7 +35,7 @@ from mailman_pgp.model.sighash import PGPSigHash
from mailman_pgp.pgp.wrapper import PGPWrapper
from mailman_pgp.utils.email import get_email
from mailman_pgp.utils.moderation import record_action
-from mailman_pgp.utils.pgp import hashes, verifies, expired
+from mailman_pgp.utils.pgp import hashes, verifies, expired, revoked
@public
@@ -106,6 +106,13 @@ class Signature:
'Signature is expired.')
return True
+ if revoked(verifications):
+ action = pgp_list.revoked_sig_action
+ if action != Action.defer:
+ record_action(msg, msgdata, action, email,
+ 'Signature is made by a revoked key.')
+ return True
+
# Take the `invalid_sig_action` if the verification failed.
if not verifies(verifications):
action = pgp_list.invalid_sig_action
generated by cgit v1.2.3-70-g09d2 (git 2.51.2) at 2025-11-08 13:39:36 +0000