Page MenuHome GnuPG
Create Task
Maniphest T6867

Kleopatra: Process for multiple detatched signatures of a file
Open, WishlistPublic
Actions

Description

We should support the following usecase in Kleopatra:

A document has to be signed (OpenPGP) by two (or possibly more) different persons.
In order for a one-click verification by the recipient of the document we need one signature file with both signatures. And it needs to have only the expected document name in it's filename before the ".sig".

At the moment it is only possible to concatenate 2 signature files on the cli, which is not very user friendly.

What would be the best way to simplify this?

Would it be possible - if we find a signature already next to a document - to ask if we want to replace the signature or to add a new one in the same file?
For this we should check first, if the first signature is valid. If invalid we would offer replacement only.

Related Objects

Event Timeline

ebo created this task.Dec 5 2023, 2:21 PM
ikloecker added a subscriber: ikloecker.Dec 5 2023, 4:43 PM

What if the second signer cannot verify the first signature because they don't have the required public key?

ebo mentioned this in T6870: Kleopatra: Improve representation of signature verification result in case of multiple signatures.Dec 8 2023, 3:28 PM
aheinecke triaged this task as Normal priority.Dec 11 2023, 2:03 PM
aheinecke added a subscriber: aheinecke.
In T6867#179911, @ikloecker wrote:

What if the second signer cannot verify the first signature because they don't have the required public key?

In that case I would say we override. For a signature I would not even ask the user if it should be replaced. Since why would you sign something that is already signed other then updating / replacing the signature?
The usecase for concatenation here is to countersign a document and for that you need to validate the first signature IMO, too. But you also don't really want to do that in case of large files, say > 10mb in that case you might just want to ask, add or replace.

aheinecke lowered the priority of this task from Normal to Wishlist.Dec 11 2023, 2:04 PM

Wishlist as the other tasks realted to that are also wishlist and this would be a new feature.