<html> <head> <base href="https://bugs.documentfoundation.org/"> </head> <body><table border="1" cellspacing="0" cellpadding="8"> <tr> <th>Bug ID</th> <td><a class="bz_bug_link bz_status_UNCONFIRMED " title="UNCONFIRMED - Macro security level not handled correctly in non-gtk3 backends" href="https://bugs.documentfoundation.org/show_bug.cgi?id=128749">128749</a> </td> </tr> <tr> <th>Summary</th> <td>Macro security level not handled correctly in non-gtk3 backends </td> </tr> <tr> <th>Product</th> <td>LibreOffice </td> </tr> <tr> <th>Version</th> <td>6.4.0.0.alpha0+ </td> </tr> <tr> <th>Hardware</th> <td>All </td> </tr> <tr> <th>OS</th> <td>All </td> </tr> <tr> <th>Status</th> <td>UNCONFIRMED </td> </tr> <tr> <th>Severity</th> <td>normal </td> </tr> <tr> <th>Priority</th> <td>medium </td> </tr> <tr> <th>Component</th> <td>UI </td> </tr> <tr> <th>Assignee</th> <td>libreoffice-bugs@lists.freedesktop.org </td> </tr> <tr> <th>Reporter</th> <td>glogow@fbihome.de </td> </tr></table> <p> <div> <pre>Description: My original bug started as the macro security user dialog, when opening a signed document with invalid signature, to be different on Windows and Linux on security level "Very High", even with the same macro security level in the GUI. It was a longer way to find the problem, then expected initially ;-) Real problem: when opening the macro security level dialog (Tools => Options... => LibreOffice => Security => Macro Security), the radio button doesn't represent the current value. Just open the dialog with a new profile, like $ SAL_USE_VCLPLUGIN=gtk3 ./inst*/program/soffice -env:UserInstallation=file:///tmp/test which (correctly) shows the macro security level as "High". With any other backend, like: $ SAL_USE_VCLPLUGIN=gen ./inst*/program/soffice -env:UserInstallation=file:///tmp/test the default security level is displayed as "Very High". During my initial investigation I found <a class="bz_bug_link bz_status_RESOLVED bz_closed" title="RESOLVED FIXED - radiobutton receives item status changed event after listbox value selection" href="show_bug.cgi?id=125609">bug 125609</a> but I did miss the "see also" bugs. My original bisecting pointed at commit 9127763db1fc ("weld MacroSecurity cluster") in the 6.3 development repository, but that might just be a false flag. I also noted that it didn't happen with any releases and a "git log --pretty= online origin/libreoffice-6-3 vcl/" had commit 4109dfff009f (Revert "<a class="bz_bug_link bz_status_VERIFIED bz_closed" title="VERIFIED FIXED - Form option buttons not reachable with tab key" href="show_bug.cgi?id=108687">tdf#108687</a> vcl: always enable tabstop on radio buttons"), which is a "see also" of 125609. Also reverting commit 4109dfff009f on master fixes the problem for me. Steps to Reproduce: 1. SAL_USE_VCLPLUGIN=gtk3 ./inst*/program/soffice -env:UserInstallation=file:///tmp/test 2. Tools => Options... => LibreOffice => Security => Macro Security 3. Register the default security level of "High" Any non-gtk3 backend, like: 4. SAL_USE_VCLPLUGIN=gen ./inst*/program/soffice -env:UserInstallation=file:///tmp/test 5. Tools => Options... => LibreOffice => Security => Macro Security 6. Register the default security level of "Very High" Actual Results: The displayed macro security level is wrong. Expected Results: The displayed macro security level is correct. Reproducible: Always User Profile Reset: No Additional Info:</pre> </div> </p> <hr> <span>You are receiving this mail because:</span> <ul> <li>You are the assignee for the bug.</li> </ul> </body> </html>