4 changed files with 8 additions and 9 deletions
--- a/Cargo.lock
+++ b/Cargo.lock
@ -1674,7 +1674,7 @@ dependencies = [

 [[package]]
 name = "keyfork"
-version = "0.2.3"
+version = "0.2.2"
 dependencies = [
 "card-backend-pcsc",
 "clap",
@ -1835,7 +1835,7 @@ dependencies = [

 [[package]]
 name = "keyfork-shard"
-version = "0.2.2"
+version = "0.2.1"
 dependencies = [
 "aes-gcm",
 "anyhow",
--- a/crates/keyfork-shard/Cargo.toml
+++ b/crates/keyfork-shard/Cargo.toml
@ -1,6 +1,6 @@
 [package]
 name = "keyfork-shard"
-version = "0.2.2"
+version = "0.2.1"
 edition = "2021"
 license = "AGPL-3.0-only"

--- a/crates/keyfork-shard/src/openpgp.rs
+++ b/crates/keyfork-shard/src/openpgp.rs
@ -25,7 +25,7 @@ use openpgp::{
        stream::{DecryptionHelper, DecryptorBuilder, VerificationHelper},
        Parse,
    },
-    policy::{NullPolicy, Policy},
+    policy::{NullPolicy, Policy, StandardPolicy},
    serialize::{
        stream::{ArbitraryWriter, Encryptor2, LiteralWriter, Message, Recipient, Signer},
        Marshal,
@ -276,7 +276,7 @@ impl<P: PromptHandler> Format for OpenPGP<P> {
        key_data: &[Self::PublicKey],
        threshold: u8,
    ) -> Result<Self::EncryptedData, Self::Error> {
-        let policy = NullPolicy::new();
+        let policy = StandardPolicy::new();
        let mut pp = vec![SHARD_METADATA_VERSION, threshold];
        // Note: Sequoia does not export private keys on a Cert, only on a TSK
        signing_key
@ -362,7 +362,7 @@ impl<P: PromptHandler> Format for OpenPGP<P> {
        public_key: &Cert,
        signing_key: &mut Self::SigningKey,
    ) -> Result<EncryptedMessage> {
-        let policy = NullPolicy::new();
+        let policy = StandardPolicy::new();
        let valid_cert = public_key
            .with_policy(&policy, None)
            .map_err(Error::Sequoia)?;
@ -577,8 +577,7 @@ fn get_encryption_keys<'a>(
    openpgp::packet::key::UnspecifiedRole,
 > {
    cert.keys()
-        // NOTE: this causes complications on Airgap systems
-        // .alive()
+        .alive()
        .revoked(false)
        .supported()
        .for_storage_encryption()
--- a/crates/keyfork/Cargo.toml
+++ b/crates/keyfork/Cargo.toml
@ -1,6 +1,6 @@
 [package]
 name = "keyfork"
-version = "0.2.3"
+version = "0.2.2"
 edition = "2021"
 license = "AGPL-3.0-only"