Closed Bug 1603782 Opened 5 years ago Closed 4 years ago

Implement OpenPGP message creation that uses separate MIME layers for signature and encryption

Categories

(MailNews Core :: Security: OpenPGP, enhancement)

enhancement
Not set
normal

Tracking

(thunderbird_esr78 fixed, thunderbird79 fixed)

RESOLVED FIXED
Thunderbird 80.0
Tracking Status
thunderbird_esr78 --- fixed
thunderbird79 --- fixed

People

(Reporter: KaiE, Assigned: KaiE)

References

(Blocks 1 open bug)

Details

Attachments

(1 file)

We should be able to create MIME messages, that have an inner signature layer, and an outer encryption layer.

Type: enhancement → task

This is not a task. It is an enhancement that requires code changes.

Type: task → enhancement
Assignee: nobody → kaie
Status: NEW → ASSIGNED

It introduces the ability described in this bug. It enables it by default for now, so we can get more testing. We can decide later if we always want to use two MIME layers, or only for external smartcard/GnuPG sining.

In addition, the attached patch makes smartcard signing work.
Using this advanced, optional feature will require several manual configuration steps, which I will document soon in a wiki page.

Also, the patch adds more attempts to find the GPGME shared library automatically.

Tested to work with GnuPG (software key), GnuPG (hardware smartcard), Qubes split GPG

Pushed by kaie@kuix.de:
https://hg.mozilla.org/comm-central/rev/a5b2c9c4ab88
Implement OpenPGP message creation that uses separate MIME layers for signature and encryption. r=PatrickBrunschwig DONTBUILD

Status: ASSIGNED → RESOLVED
Closed: 4 years ago
Resolution: --- → FIXED

Comment on attachment 9163877 [details]
Bug 1603782 - Implement OpenPGP message creation that uses separate MIME layers for signature and encryption. r=PatrickBrunschwig

Important change to support OpenPGP smarcards and Qubes OS for advanced users.
Changes how encrypted emails and signed emails are constructed. Now two separate MIME layers instead of one.
We should get this in to 78.1 to ensure wide testing, prior to enabling by default later.

Attachment #9163877 - Flags: approval-comm-esr78?
Attachment #9163877 - Flags: approval-comm-beta?

Comment on attachment 9163877 [details]
Bug 1603782 - Implement OpenPGP message creation that uses separate MIME layers for signature and encryption. r=PatrickBrunschwig

Approved for beta
Approved for esr78

Attachment #9163877 - Flags: approval-comm-esr78?
Attachment #9163877 - Flags: approval-comm-esr78+
Attachment #9163877 - Flags: approval-comm-beta?
Attachment #9163877 - Flags: approval-comm-beta+
Target Milestone: --- → Thunderbird 80.0
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: