Page MenuHome GnuPG
Create Task
Maniphest T3058

Implement GUI for compliance mode
Closed, ResolvedPublic
Actions

Description

For our Projects we need GUI for compliance mode de-vs in GpgOL and Kleopatra.

That is:

  1. Generating compliant certificates only.
  2. Highlighting signatures there were made by compliant keys.
  3. Highlighting decrypted messages thats were encrypted "compliant"
  4. Highlighting certificates that are compliant on key selection for encryption
  5. Highlighting certificates that are compliant in the Certificate List in Kleopatra.
  6. Highlighting certificates that are not compliant in Kleopatra's certificate list.
  7. Preventing any configuration changes that would make the system not compliant through the GUI

Let's play with subtasks now.

Details

Due Date
Apr 28 2017, 12:00 AM

Related Objects
Search...

Event Timeline

aheinecke created this task.Apr 5 2017, 12:05 PM
aheinecke created this object in space S1 Public.
aheinecke added a subtask: T3059: Make information that a verifyresult / decrypt result was compliant to a compliance mode available through GPGME.Apr 5 2017, 12:09 PM
aheinecke added a project: g10code Sprint (KW 15).Apr 6 2017, 4:24 PM
aheinecke moved this task from KW 15 to KW 14 on the g10code Sprint board.Apr 6 2017, 4:29 PM
aheinecke edited projects, added g10code Sprint (KW 14); removed g10code Sprint (KW 15).
aheinecke moved this task from KW 14 to KW 15 on the g10code Sprint board.Apr 11 2017, 5:50 PM
aheinecke edited projects, added g10code Sprint (KW 15); removed g10code Sprint (KW 14).
aheinecke closed this task as Resolved.Apr 18 2017, 10:14 AM
aheinecke moved this task from KW 15 to KW 16 on the g10code Sprint board.
aheinecke edited projects, added g10code Sprint (KW 16); removed g10code Sprint (KW 15).

As a first version you can now apply profiles in Kleopatra. It also respects the default_pubkey_algo_name and shows in tooltips / certificate details if a certificate is compliant.

aheinecke reopened this task as Open.Apr 18 2017, 11:50 AM

Accidentally marked this as resolved when I only wanted to update the status.

aheinecke edited projects, added g10code Sprint (KW 17); removed g10code Sprint (KW 16).Apr 24 2017, 10:09 AM
aheinecke lowered the priority of this task from High to Normal.May 2 2017, 10:06 AM
aheinecke removed a project: g10code Sprint (KW 17).

beta232 has some basic compliance support mainly missing is Compliance indication for crypto operations (encrypt / decrypt / sign /verify)

justus closed subtask T3059: Make information that a verifyresult / decrypt result was compliant to a compliance mode available through GPGME as Resolved.Jun 1 2017, 2:19 PM
justus reopened subtask T3059: Make information that a verifyresult / decrypt result was compliant to a compliance mode available through GPGME as Open.Jun 7 2017, 11:02 AM
justus closed subtask T3059: Make information that a verifyresult / decrypt result was compliant to a compliance mode available through GPGME as Resolved.Jun 8 2017, 2:24 PM
justus claimed this task.Jun 28 2017, 11:58 AM
justus raised the priority of this task from Normal to High.Jun 28 2017, 12:55 PM
justus created subtask T3231: Generating compliant certificates only.Jun 28 2017, 4:06 PM
justus created subtask T3232: Highlighting signatures there were made by compliant keys.
justus created subtask T3233: Highlighting decrypted messages thats were encrypted "compliant".
justus created subtask T3234: Highlighting certificates that are compliant on key selection for encryption.
justus created subtask T3235: Highlighting certificates that are compliant in the Certificate List in Kleopatra.
justus created subtask T3236: Preventing any configuration changes that would make the system not compliant through the GUI.Jun 28 2017, 4:10 PM
werner added a subscriber: bernhard.Jun 30 2017, 2:55 PM
justus added a comment.Jun 30 2017, 3:15 PM

Relevant upstream patch submissions:

https://phabricator.kde.org/D6451
https://phabricator.kde.org/D6449

bernhard added a comment.Jun 30 2017, 3:51 PM

Some details of these tasks are outline in the internal concept, including mockups.

justus closed subtask T3236: Preventing any configuration changes that would make the system not compliant through the GUI as Resolved.Jul 11 2017, 12:44 PM
justus closed subtask T3234: Highlighting certificates that are compliant on key selection for encryption as Resolved.
justus closed subtask T3233: Highlighting decrypted messages thats were encrypted "compliant" as Resolved.
justus closed subtask T3232: Highlighting signatures there were made by compliant keys as Resolved.
justus closed subtask T3231: Generating compliant certificates only as Resolved.Jul 11 2017, 12:46 PM
aheinecke added a comment.Jul 12 2017, 8:26 AM

Ok this looks nice already. My plan is the following:

  • Fix / Merge my work on a new keyresolver for GpgOL that would highlight compliant certificates the code for this will be in libkleo / kleopatra as gpgol uses this. (Will open a subtask for it)
  • Translate the new strings to german.
  • Give the customer a new Version with this and then ask what else we need. I'm unsure if KMail should also show compliant operations or if this is out of scope for Gpg4kde. Need to check this.
aheinecke created subtask T3275: Highlight compliant operations in GpgOL when Encrypting / Signing.Jul 12 2017, 8:32 AM
aheinecke closed this task as Resolved.Jul 26 2017, 11:12 AM
aheinecke closed subtask T3275: Highlight compliant operations in GpgOL when Encrypting / Signing as Resolved.

I think its done and released with beta-270