Don't check cert revocation status when decrypting.

openpgp-card-sequoia/src/decryptor.rs

@@ -49,7 +49,7 @@ impl<'a> CardDecryptor<'a> {
             let fp = openpgp::Fingerprint::from_bytes(fp.as_bytes());
 
             if let Some(vk) =
-                sq_util::get_subkey_by_fingerprint(cert, policy, &fp)?
+                sq_util::get_subkey_by_fingerprint(cert, policy, &fp, false)?
             {
                 if vk.for_storage_encryption() || vk.for_transport_encryption()
                 {

openpgp-card-sequoia/src/signer.rs

@@ -45,7 +45,7 @@ impl<'a> CardSigner<'a> {
             let fp = openpgp::Fingerprint::from_bytes(fp.as_bytes());
 
             if let Some(vk) =
-                sq_util::get_subkey_by_fingerprint(cert, policy, &fp)?
+                sq_util::get_subkey_by_fingerprint(cert, policy, &fp, true)?
             {
                 if vk.for_signing() {
                     let key = vk.key().clone();

openpgp-card-sequoia/src/sq_util.rs

@@ -98,7 +98,11 @@ pub fn get_subkey_by_fingerprint<'a>(
     cert: &'a Cert,
     policy: &'a dyn Policy,
     fp: &Fingerprint,
+    check_revocation: bool,
 ) -> Result<Option<ValidErasedKeyAmalgamation<'a, PublicParts>>, Error> {
+    // FIXME: if `test_revocation`, then first check if the primary key is
+    // revoked?
+
     // Find the (sub)key in `cert` that matches the fingerprint from
     // the Card's signing-key slot.
     let keys: Vec<_> =
@@ -111,12 +115,15 @@ pub fn get_subkey_by_fingerprint<'a>(
         let validkey = keys[0].clone().with_policy(policy, None)?;
         validkey.alive()?;
 
-        if let RevocationStatus::Revoked(_) = validkey.revocation_status() {
+        if check_revocation {
+            if let RevocationStatus::Revoked(_) = validkey.revocation_status()
+            {
                 return Err(Error::InternalError(anyhow!(
                     "(Sub)key {} in the cert is revoked",
                     fp
                 )));
             }
+        }
 
         Ok(Some(validkey))
     } else {