[PATCH] Fix for some flaws when using a key with multiple subkeys

Carl Michael Skog cmskog at gmail.com
Mon Nov 4 18:14:12 CET 2019


Den mån 4 nov. 2019 kl 17:56 skrev Eddie Barraco <contact at eddiebarraco.fr>:

>
> In fact I'm questioning the point.
>
> IMHO:
>
> If you are using subkeys, you just have to specify the subkey id.
> Then you can add as many subkeys you want, pass will still be using the
> specified one. It is also usefull to give sort of access permissions on
> some pc that have or not have some subkeys.
>
> I don't really see the point on giving pass the mind behind the subkey
> selection.
>
> It is strongly probable that I'm missing something. I'm sorry if this is
> the case.
>

Look for example at "pass init".
It explicitly claims to be reencrypting with all subkeys(It even prints
them out).
"Claims" is the keyword here, because it doesn't.
It reencrypts in the normal gpg way(ONLY with the latest encryption subkey).
There is also tests in the test suite that checks that all subkeys are used.
There is just no keys with more than one subkey.

Regards
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20191104/ae17dda1/attachment.html>


More information about the Password-Store mailing list