[Pkg-xmpp-devel] Bug#940096: gajim-omemo on update to debian 10 silently disabled encryption

[blacksmith at peerfreedom.org]

Package: gajim-omemo
Version: 2.6.27-1

Updated Debian 9 to Debian 10 and after that in Gajim talking to a
friend resulted in conversation that defaulted to disabled omemo.

Changing it to OMEMO worked fine, how ever some messages already were
sent as not end2end encrypted without me noticing - which is a security
problem for my use case.


I see this possibly at two problems (perhaps need to be splited into
separate bugs?)


1) friends with whom I already had OMEMO (it was defaulting to using
OMEMO encryption all the time before update) suddenly, silently went
back to insecure mode.

As result of GUI style change from the update, I didn't noticed the new
icon informing about OMEMO being disabled, it is not clear enough warning.

Instead: it should stay as it was before update, contacts for which
people choosen to use OMEMO before update should remain in that state
also after update.


2) in general, there should be a global option what to do with
new/undecided contacts about e2e encryption, imo at least option to by
default:  enable omemo / what to do.

With the option to ask, for each not yet decided contact, on sending
first message, program would ask to "send without (e2e) encryption for
this contact" or "turn on OMEMO for this contact".