Closed Bug 1759197 Opened 2 years ago Closed 2 years ago

ClientID security setting for SMTP no longer works after recent release 91.5

Categories

(MailNews Core :: Networking: SMTP, defect)

Product:
MailNews Core
Component:
Networking: SMTP
Version:
Thunderbird 91
Type:
defect

Tracking

(thunderbird_esr91+ fixed, thunderbird99+ fixed)

Status:
RESOLVED FIXED
Milestone:
100 Branch
Tracking Flags:
Tracking Status
thunderbird_esr91 + fixed
thunderbird99 + fixed

People

(Reporter: developers, Assigned: rnons)

References

(Regression)

Details

(Keywords: regression)

Attachments

(2 files)

smtp-clientid-jsm.patch
2.82 KB, patch
Details | Diff | Splinter Review
Bug 1759197 - Support clientid extension in SmtpClient.jsm. r=mkmelin
48 bytes, text/x-phabricator-request
wsmwk
: approval-comm-beta+
wsmwk
: approval-comm-esr91+
Details | Review

User Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:97.0) Gecko/20100101 Firefox/97.0

Steps to reproduce:

I had previously configured ClientID settings for my account in Thunderbird via Preferences / Config Editor - setting values:

  • mail.server.default.clientid -> (auto generated UUID string value)
  • mail.server.default.clientidEnabled -> true
  • mail.server.server1.clientid -> (auto generated UUID string value)
  • mail.smtpserver.default.clientid -> (auto generated UUID string value)
  • mail.smtpserver.default.clientidEnabled -> true
  • mail.smtpserver.smtp1.clientid -> (auto generated UUID string value)

This previously ensured that using Thunderbird to check email (via IMAP) and send email (via SMTP) would send a CLIENTID value after SSL negotiation, but before authentication.

Actual results:

After a recent software update of the thunderbird software on Ubuntu 20.04 - version 91.5 - the IMAP connections would still issue a CLIENTID value at the expected location, but would no longer issue a CLIENTID value for SMTP.

Expected results:

I expected that SMTP would have issued the configured ClientID command/value after successful SSL negotiation (but before authentication).

Thanks for reporting, didn't know about this feature, seems introduced in bug 1532388, will take a look.

If needed, I can provide a testing mailbox on a server that is ClientID enabled.

Found that in release 91.5 (current version packaged in Ubuntu 20.04) that using the advanced 'Config Editor' - turning off the option 'mailnews.smtp.jsmodule' restored ClientID for SMTP.

However, looking at the current source check out from Mercurial, it looks like what I presume was planned to be phased out C++ nsSmtpProtocol.cpp/h files are completely removed - and no indication that the ClientID logic was ported to the JSM version - I believe that would be SmtpClient.jsm?

That's correct, nsSmtpProtocol.cpp has been removed from trunk, fix should go to SmtpClient.jsm. Let me know if you want to send a patch, otherwise I will work on it later this week. Thanks.

I will give it a try tomorrow - but my JS -FU is not nearly as strong as my C/C++ Fu - I'll report back either way tomorrow on my success or failure :)

This patch attempts to port the ClientID capability introduced in https://bugzilla.mozilla.org/show_bug.cgi?id=1532388 for SMTP to the new SmtpClient.jsm implementation that appears to have taken over that functionality previously handled in nsSmtpProtocol.cpp.

While this is definitely not a 1 to 1 match for the original patch, I have tried to retain the integrity of the functionality it was trying to achieve to the best of my ability.

I've posted my best effort port of the functionality as a patch.

Something I am not sure how to do - is create a test - to ensure that this works properly and conforms with the packaging architecture of thunderbird in general.

Component: Untriaged → Networking: SMTP
Product: Thunderbird → MailNews Core
Assignee: nobody → remotenonsense
Status: UNCONFIRMED → ASSIGNED
Ever confirmed: true

Thanks a lot, I made some changes to your patch, please see if they make sense. It seems not easy to add a test, we have a smtpd.jsm, which is a test server and no ssl support.

Keywords: regression
Regressed by: smtp-js
status-thunderbird_esr91: --- → affected
Keywords: checkin-needed-tb
Target Milestone: --- → 100 Branch

Pushed by mkmelin@iki.fi:
https://hg.mozilla.org/comm-central/rev/1ff2b6c889b1
Support clientid extension in SmtpClient.jsm. r=mkmelin

Status: ASSIGNED → RESOLVED
Closed: 2 years ago
Keywords: checkin-needed-tb
Resolution: --- → FIXED

Modifications look good / make sense - thanks! And thanks for adding a test!

Comment on attachment 9268186 [details]
Bug 1759197 - Support clientid extension in SmtpClient.jsm. r=mkmelin

[Triage Comment]
Approved for beta

Attachment #9268186 - Flags: approval-comm-beta+

Comment on attachment 9268186 [details]
Bug 1759197 - Support clientid extension in SmtpClient.jsm. r=mkmelin

[Approval Request Comment]
Regression caused by (bug #): bug 1661694
User impact if declined: Client identity extension doesn't work for SMTP.
Testing completed (on c-c, etc.): beta
Risk to taking this patch (and alternatives if risky): low

Attachment #9268186 - Flags: approval-comm-esr91?
Attachment #9268186 - Flags: approval-comm-esr91?

Comment on attachment 9268186 [details]
Bug 1759197 - Support clientid extension in SmtpClient.jsm. r=mkmelin

[Approval Request Comment]
Based on the -esr91 patch in bug 1733366. Thanks

Attachment #9268186 - Flags: approval-comm-esr91?

Comment on attachment 9268186 [details]
Bug 1759197 - Support clientid extension in SmtpClient.jsm. r=mkmelin

[Triage Comment]
Approved for ers91

Attachment #9268186 - Flags: approval-comm-esr91? → approval-comm-esr91+
See Also: → 1772027
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: