When testing file encryption with NVDA screenreader the repeat was not really intutive. The user is asked for the passphrase and hits enter and nothing happens because the OK button is greyed out. In this case if it would switch to the repeat field it would read the label of the repeat and it would work nicely.
Ingo please also generally test with NVDA if your new pinentry changes for generate passphrase etc. work.