Closed Bug 1709046 Opened 3 months ago Closed 2 months ago

Cannot disable the use of OpenPGP if no valid key is present

Categories

(MailNews Core :: Security: OpenPGP, defect)

defect

Tracking

(thunderbird_esr78- fixed)

RESOLVED FIXED
90 Branch
Tracking Status
thunderbird_esr78 - fixed

People

(Reporter: KaiE, Assigned: mkmelin)

Details

Attachments

(2 files)

If previously an OpenPGP key was available, but now the key is no longer usable, Thunderbird will still remember that the key was configured (and try to use it), and will not provide an option to disable the OpenPGP configuration (no "None" selection).

To reproduce:

  • fresh email account config
  • create a new personal key
  • ensure the personal key is selected in account settings
  • either delete the key, or mark the key as no longer being a personal key

Actual behavior:

  • account settings report that the current config uses a key (ID shown)
  • there is no selection area to switch to "None"

In my opinion, the "None" selection should always be shown.
This would that the UI logic runs into scenarios that aren't predicted.

As a consequence, with the key gone, and the configuration still active, the user will get failures (cannot encrypt) when saving drafts (manual or automatic).

Assignee: alessandro → mkmelin+mozilla
Status: NEW → ASSIGNED

Pushed by mkmelin@iki.fi:
https://hg.mozilla.org/comm-central/rev/3e988d538ccf
when a configured key has been deleted, allow selecting None as configured key. r=kaie

Status: ASSIGNED → RESOLVED
Closed: 2 months ago
Resolution: --- → FIXED
Target Milestone: --- → 90 Branch
Pushed by mkmelin@iki.fi:
https://hg.mozilla.org/comm-central/rev/1c163e207f31
adjust browser_keyWizard.js for hidden vs. collapsed. rs=bustage-fix

I think this is a bad usability experience, and esr78 will be around for another 6 months, I suggest we consider some kind of minimal backport (without new strings).

This is a subset of Magnus' work that works as a backport for esr78.

It contains all the changes to fix this bug, by allowing the user to select "None", and thus disabling the configured but unsuable/absent key.

It omits the explanation and new strings.

Patch contains the test fix from the separate commit.

[Approval Request Comment]
Regression caused by (bug #): no
User impact if declined: invalid configuration cannot be fixed by user
Testing completed (on c-c, etc.): yes
Risk to taking this patch (and alternatives if risky): low

Attachment #9223134 - Flags: feedback?(mkmelin+mozilla)
Attachment #9223134 - Flags: approval-comm-esr78?
Attachment #9223134 - Flags: feedback?(mkmelin+mozilla) → feedback+

Comment on attachment 9223134 [details] [diff] [review]
1709046-backport-esr78.patch

[Triage Comment]
Approved for esr78

Attachment #9223134 - Flags: approval-comm-esr78? → approval-comm-esr78+
You need to log in before you can comment on or make changes to this bug.