Join GitHub today
Wrong subkey in web encrypt UI #1853
The web encryption interface is picking the wrong subkey. It should either use the longest lasting subkey, or at least the most recently created subkey (I would prefer the former). It's wrong on either count and chooses the oldest subkey.
Going from the output above, the default encryption subkey used should be 75874BF2 as it's the longest lasting subkey and also the newest. Yet, the web UI seems to be encrypting with 872082CC instead.
This is quite frustrating as I have to re-layout my keychain and distribute all my subkeys again.
Should be fixed:
I think this issue needs to be reopened. This subkey selection strategy is not the same as gpg2 or GPGTools, leading to confusion and UX difficulties.
The strategy used elsewhere is to look at key generation time, and to use the newest encryption subkey that's otherwise still valid (unexpired, unrevoked etc). The main problem with selecting the oldest key is that it may be a non-expiring offline master key, making it rather unusable in the course of regular communication.