Check all signing subkeys when verifying identity

Fixes C3S#11.

app/models/pgpkey.rb

@@ -8,4 +8,8 @@ def public_key
   def metadata
     GPGME::Key.get(self.fpr).to_s
   end
+
+  def subkeys
+    GPGME::Key.get(self.fpr).subkeys
+  end
 end

lib/decrypt_mails.rb

@@ -36,7 +36,10 @@ def receive_with_encryption(email, options={})
         user = User.find_by_mail sender_email if sender_email.present?
         key = Pgpkey.find_by user_id: user.id
         signatures.each do |s|
-          valid = true if key.fpr == s.fpr
+          key.subkeys.each do |subkey|
+            valid = true if subkey.capability.include? :sign and \
+                            subkey.fpr == s.fpr
+          end
         end if not signatures.empty?
       end