The crypt4gh file format allows for having multiple symmetric keys encoded in the headers and blocks being encoded with any of these (keys are tried to use for decoding, checking the mac for whatever it was successful or not).
We probably handle this correctly, but we don't seem to have automated tests. I also haven't checked if reencryption manages it properly, and again, tests seem to be missing.
The crypt4gh file format allows for having multiple symmetric keys encoded in the headers and blocks being encoded with any of these (keys are tried to use for decoding, checking the mac for whatever it was successful or not).
We probably handle this correctly, but we don't seem to have automated tests. I also haven't checked if reencryption manages it properly, and again, tests seem to be missing.