Package: gajim-omemo Version: 2.6.27-1 Updated Debian 9 to Debian 10 and after that in Gajim talking to a friend resulted in conversation that defaulted to disabled omemo.
Changing it to OMEMO worked fine, how ever some messages already were sent as not end2end encrypted without me noticing - which is a security problem for my use case. I see this possibly at two problems (perhaps need to be splited into separate bugs?) 1) friends with whom I already had OMEMO (it was defaulting to using OMEMO encryption all the time before update) suddenly, silently went back to insecure mode. As result of GUI style change from the update, I didn't noticed the new icon informing about OMEMO being disabled, it is not clear enough warning. Instead: it should stay as it was before update, contacts for which people choosen to use OMEMO before update should remain in that state also after update. 2) in general, there should be a global option what to do with new/undecided contacts about e2e encryption, imo at least option to by default: enable omemo / what to do. With the option to ask, for each not yet decided contact, on sending first message, program would ask to "send without (e2e) encryption for this contact" or "turn on OMEMO for this contact".