If there is a configuration already existing, and the user issues a master-key command, the system will not be anymore able to decrypt the file(s).
It would be better to either:
1) warn the user about the (possible) need to re-encrypt files;
2) prevent the user to run master-key when already encrypted file exists, so that she need to manually remove/backup files before proceeding
3) make master-key to re-encrypt existing files.
If there is a configuration already existing, and the user issues a
master-key
command, the system will not be anymore able to decrypt the file(s). It would be better to either: 1) warn the user about the (possible) need to re-encrypt files; 2) prevent the user to runmaster-key
when already encrypted file exists, so that she need to manually remove/backup files before proceeding 3) makemaster-key
to re-encrypt existing files.