Cannot create OpenPGP key without expiration, always 2 years expiration are used.
Categories
(MailNews Core :: Security: OpenPGP, defect)
Tracking
(thunderbird_esr102 fixed, thunderbird113 fixed)
People
(Reporter: KaiE, Assigned: KaiE)
References
(Regression)
Details
(Keywords: regression, Whiteboard: [TM:102.11.1])
Attachments
(1 file)
|
48 bytes,
text/x-phabricator-request
|
wsmwk
:
approval-comm-beta+
wsmwk
:
approval-comm-esr102+
|
Details | Review |
Use OpenPGP key manager to generate a new key.
Select "Key does not expire".
Generate the key.
Actual incorrect behavior:
A key is created that will expire after two years.
But can be reproduced using TB 113 beta and TB 114 nightly.
|
Assignee | |
Comment 1•2 years ago
|
||
I can reproduce this bug using Thunderbird version 102.10, too :(
|
|
Assignee | |
Comment 2•2 years ago
|
||
When generating the key, and a zero expiration is wanted, Thunderbird will NOT call rnp_op_generate_set_expiration.
I wonder why this was never noticed before.
Nickolay, maybe the default library behavior changed during one of the past releases?
Maybe in the past RNP considered no call to rnp_op_generate_set_expiration as a zero expiration, and now it uses a default 2 year expiration period?
|
|
Assignee | |
Comment 3•2 years ago
|
||
|
||
Updated•2 years ago
|
|
||
Comment 4•2 years ago
|
||
Kai, yeah, the default key expiration time was changed in v0.16.1 via this PR: https://github.com/rnpgp/rnp/pull/1773/
|
|
Assignee | |
Comment 5•2 years ago
|
||
I see you have announced it in the release noted.
https://github.com/rnpgp/rnp/releases/tag/v0.16.1
I blame myself for not noticing it.
We need to learn from this.
Going forward, whenever we will update RNP again, we must carefully study all release notes, and investigate each change for potential effects.
|
||
Updated•2 years ago
|
Pushed by geoff@darktrojan.net:
https://hg.mozilla.org/comm-central/rev/0f79964a014f
When generating a non-expiring OpenPGP key, call rnp_op_generate_set_expiration(0). r=mkmelin
|
|
Assignee | |
Comment 7•2 years ago
|
||
Comment on attachment 9330405 [details]
Bug 1830094 - When generating a non-expiring OpenPGP key, call rnp_op_generate_set_expiration(0). r=mkmelin
[Approval Request Comment]
Regression caused by (bug #): 1790116
User impact if declined: False OpenPGP key meta information is used
Testing completed (on c-c, etc.): manually
Risk to taking this patch (and alternatives if risky): very low
|
||
Comment 8•2 years ago
|
||
Comment on attachment 9330405 [details]
Bug 1830094 - When generating a non-expiring OpenPGP key, call rnp_op_generate_set_expiration(0). r=mkmelin
[Triage Comment]
Approved for beta
|
||
Comment 9•2 years ago
|
||
| bugherder uplift | ||
Thunderbird 113.0b6:
https://hg.mozilla.org/releases/comm-beta/rev/efe3f192e88e
|
|
||
Comment 10•2 years ago
|
||
Probably safe but beta hasn't shipped yet, so skipping 102.11.0.
|
|
||
Comment 11•2 years ago
|
||
Comment on attachment 9330405 [details]
Bug 1830094 - When generating a non-expiring OpenPGP key, call rnp_op_generate_set_expiration(0). r=mkmelin
[Triage Comment]
Approved for esr102
|
||
Comment 12•2 years ago
|
||
| bugherder uplift | ||
Thunderbird 102.11.1:
https://hg.mozilla.org/releases/comm-esr102/rev/7dd849695ba3
Description
•