lib/gpg: Show if GPG key has been revoked

Rather then showing the incorrect `BAD signature`.

Closes: #1872
Approved by: cgwalters

diff --git a/src/libostree/ostree-gpg-verify-result.c b/src/libostree/ostree-gpg-verify-result.c
index 5a8888e76a438c253e6accc1169cce489b49fbb1..d4d1cef6aa0b2b872011b5573391bb859168705d 100644 (file)
--- a/src/libostree/ostree-gpg-verify-result.c
+++ b/src/libostree/ostree-gpg-verify-result.c
@@ -621,6 +621,7 @@ ostree_gpg_verify_result_describe_variant (GVariant *variant,
   gboolean valid;
   gboolean sig_expired;
   gboolean key_expired;
+  gboolean key_revoked;
   gboolean key_missing;
   gsize len;
 
@@ -642,6 +643,8 @@ ostree_gpg_verify_result_describe_variant (GVariant *variant,
                        "b", &sig_expired);
   g_variant_get_child (variant, OSTREE_GPG_SIGNATURE_ATTR_KEY_EXPIRED,
                        "b", &key_expired);
+  g_variant_get_child (variant, OSTREE_GPG_SIGNATURE_ATTR_KEY_REVOKED,
+                       "b", &key_revoked);
   g_variant_get_child (variant, OSTREE_GPG_SIGNATURE_ATTR_KEY_MISSING,
                        "b", &key_missing);
   g_variant_get_child (variant, OSTREE_GPG_SIGNATURE_ATTR_FINGERPRINT,
@@ -703,6 +706,10 @@ ostree_gpg_verify_result_describe_variant (GVariant *variant,
                               "Good signature from \"%s <%s>\"\n",
                               user_name, user_email);
     }
+  else if (key_revoked)
+    {
+      g_string_append (output_buffer, "Key revoked\n");
+    }
   else if (sig_expired)
     {
       g_string_append_printf (output_buffer,