Open Bug 1627962 Opened 2 years ago Updated 4 months ago

Support OpenPGP encrypt/decrypt filter actions

Categories

(MailNews Core :: Security: OpenPGP, enhancement, P3)

enhancement

Tracking

(Not tracked)

People

(Reporter: KaiE, Unassigned)

References

(Blocks 2 open bugs)

Details

Enigmail supported 3 actions for message filters:

  • create decrypted copy
  • decrypt permanently
  • encrypt to key

I'd like to disable those actions for now, but we can consider to enable them at a later time.

(Not all of the dependent code has yet been ported, for example persistentCrypt.decryptAttachment).

Also, for consistency, it would be good to offer these actions for both OpenPGP and S/MIME.

Would that decrypted copy be stored locally only so that the user can do a fulltext search on them without compromising the security of the message stored on the server?

(In reply to Selek Respa from comment #1)

Would that decrypted copy be stored locally only so that the user can do a fulltext search on them without compromising the security of the message stored on the server?

Patrick, how does Enigmail implement this currently?

Priority: -- → P3

For the record, to decrypt a message permanently, Enigmail uses code originally copied from the add-on "Header Tools Lite". Basically, the a new message is written into a file, that file is added as a message and then the original message is removed. The p≡p version of this code can be found here in copyMessageToFolder(msgHdr, content, ...) where msgHdr is the header of the message to be removed and content is the MIME text of the new message:
https://pep-security.lu/dev/repos/pEp_for_Thunderbird/file/4e3ed7810783/addon/content/TbHelper.js#l23

This method has some disadvantages: The new message receives a new message header, the selection in the thread pane/message list is lost unless some additional hacks are implemented to display the "new" message, and it's visible to the user that one message disappears from the thread pane and then a new one arrives making for a rather strange behaviour. Maybe it's not that bad in the context of this bug since you plan to decrypt on filter action. There is also bug 280588 which calls for permanent decryption in local folders (due to the known search restrictions, bug 188988 and bug 1562737).

So for the benefit of all encryption solutions in the Thunderbird ecosystem, I would suggest to implement a function to replace the content of a given message in the backend. That would then trigger a re-display of the content without any unwanted side effects.

Please let us know what you think.

I am still running a pre-78 version of Thunderbird with Enigmail for the sole purpose of getting a decrypted version of my OpenPGP message so that I can search through those messages.
There are two things that Enigmail implemented that would be of great help in TB78.

  • in Filter Rules implement a new condition "OpenPGP encrypted" to match all those encrypted messages coming in
  • Create Decrypted Copy with a parameter to select a folder
    Enigmail also implements a "Decrypt permanently" but I don't consider that important (the original message can always be deleted).
Blocks: 280588
Duplicate of this bug: 1684877
See Also: → 1693332
You need to log in before you can comment on or make changes to this bug.