-
Notifications
You must be signed in to change notification settings - Fork 14
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Message keys withheld due to "Never send encrypted messages to unverified sessions from this session" are not shown as such #2450
Comments
This is actually a expected UTD, we should probably report it as such. |
Can confirm this doesn't work correctly in Web: element-hq/element-web#27653 |
element-hq/element-web#27653 is now fixed, and EW now shows "The sender has blocked you from receiving this message because your device is unverified". However, this remains a problem in Element iOS (element-hq/element-ios#7825) and Element X. |
This isn't really the right error message, though. The "Never send encrypted messages to unverified sessions from this session" button isn't very clear what it means, but AFAICT it means that we won't send messages to verified devices belonging to unverified users (as well as unverified devices belonging to verified users). In other words, the error message should be something like: "The sender has blocked you from receiving this message because your device is unverified, or because they have not verified you". Which is obviously terrible, but at least not actively misleading. |
Suggested wording: "The sender's security settings prevented you receiving this message. This may be because your device is insecure, or they require you to perform user verification. Secure your device by verifying it, or verify with this user to fix this problem." |
I have opened element-hq/element-web#28465 to track updating the wording in EW, and #2621 for the longer-term task of distinguishing between the two situations. |
Great, but maybe too wordy, particularly for a mobile client? @americanrefugee I wonder if you can help us here? |
How about this instead: 1st case: The recipient's device is not secure, and we don't know if the sender selected the security option
2nd case: The recipients device is secure, but they still can't see the message(s)
|
Final wording:
|
@americanrefugee The crypto terminology talks about So maybe we should say:
|
I'd go with the second option. We ask the user to "verify" their device during sign in, not "secure" their device. So I think we at least need to use the use terminology everywhere. |
https://localazy.com/p/element/source-language/_a7139002366977292897 |
Element-Web, Android and iOS all have the ability to enable a security flag which says something like:
This can cause UTDs if the recipient has not been verified yet. We should really be displaying warning banners if there are unverified devices in the room when you are typing a message, to warn the sender that this message will be undecryptable for some devices/users.
This appears at the protocol level as a "withheld" to-device message - https://spec.matrix.org/latest/client-server-api/#reporting-that-decryption-keys-are-withheld with the code of
m.unverified
.Withheld messages are not shown as such element-ios#7825The text was updated successfully, but these errors were encountered: