Page MenuHome GnuPG
Create Task
Maniphest T6869

Kleopatra: Improve verification results messages (esp. for invalid signature and multiple signatures)
Testing, NormalPublic
Actions

Description

This is the validation result if you sign a file and after that change its content:

I think the wording could be improved. We should at least add some more information, as IMHO for a user the combination of "The signature is VS-NfD compliant" and "The signature is invalid: Invalid Signature" is contradictory. As well as linguistically ugly with the doubling of "invalid".

Edit (2024-06-18):

We decided to overhaul the message completely, not only for invalid signatures, but for the valid ones, too and combined decrypt/verify.

Edit (2024-09-16):
Todo:

  • remove the summary for all signatures as a whole
  • font color should always be black
  • remove the import / search buttons, instead make the fingerprints link to either search window or the certificate details
  • we need a substructure for the signatures in order to
    • color the background of every verification result separately: green, red, white (maybe only a colored bar in front of the result instead or additionally)
    • put an icon in front of the verification result
  • show no text "not VS-NfD compliant" for invalid signatures
  • keep the text for the results easy to comprehend even if read by screen reader (important info first etc)
  • possibly sort the signatures in some way

Note (not only) for testing: Check out

  • single signatures valid/invalid
  • multiple signatures with combinations of valid/invalid

Revisions and Commits

rLIBKLEO Libkleo
rLIBKLEO85f3a5654315 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEO016fb2777df3 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEOe18e1eafb136 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEObb2be20299b0 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEO5f1c9a633065 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEOb173008115cb Formatting::prettySignature: Linkify unknown certificates
rLIBKLEOac483c7d9516 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEO689d05699bb4 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEO4b6d20817375 FileNameRequester: Add API for setting the button's tooltip
rLIBKLEO8c4492b93f47 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEO556d332f99c4 FileNameRequester: Add API for setting the button's tooltip
rLIBKLEO5d1256c6ae04 Formatting::prettySignature: Linkify unknown certificates
rLIBKLEO85b104793306 FileNameRequester: Add API for setting the button's tooltip
rLIBKLEO40b725ddc9b9 FileNameRequester: Add API for setting the button's tooltip
rLIBKLEOdeeb33a26a52 Only show compliance info for signatures that are valid
rLIBKLEO0a8c1ce5b52a Only show compliance info for signatures that are valid
rKLEOPATRA Kleopatra
rKLEOPATRAf363ac3cf573 Improve DecryptVerifyFilesDialog
rKLEOPATRA1085bb3be222 Improve DecryptVerifyFilesDialog
rKLEOPATRA94831bacd9e2 Improve DecryptVerifyFilesDialog
rKLEOPATRA9df63786f060 Improve DecryptVerifyFilesDialog
rKLEOPATRAa2106d5a4395 Improve DecryptVerifyFilesDialog
rKLEOPATRA3fcf7e26ebb6 Improve DecryptVerifyFilesDialog
rKLEOPATRA9302d2549214 Improve DecryptVerifyFilesDialog
rKLEOPATRAd1fe8c571c64 Add missing markup to string
rKLEOPATRA0d3038b21328 Add missing markup to string
rKLEOPATRA1c01fe45502c Improve DecryptVerifyFilesDialog
rKLEOPATRA0e317bca71fd Improve DecryptVerifyFilesDialog
rKLEOPATRA171ad5bbb83d Improve warning about mail address mismatch
rKLEOPATRAd3b75c7d3151 Improve warning about mail address mismatch
rKLEOPATRA0ece187a70c3 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA921f7afb9c37 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRAd476b6d5b50c Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA612e37c75f2a Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA77fc412e2990 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRAe10dcdae2d91 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA29ca911bba7e Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA8bf5d4338303 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRAcfa669a35566 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA1908d4a1d4e1 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRAe8427f6a47f9 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA01004bede095 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA19e4c3c24438 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA09d1d72b8323 Use custom texts for the notepad's result messages
rKLEOPATRA6063fe1bef1a Use custom texts for the notepad's result messages
rKLEOPATRA70ff366f6bce Use custom texts for the notepad's result messages
rKLEOPATRA5082069855f9 Use custom texts for the notepad's result messages
rKLEOPATRA0c652f7facb2 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA829387e978fa Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRAc8c6920d2f61 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA009cf47f2bb4 Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRA05681946fefb Overhaul labels for encryption & signing / decrpytion & verification results
rKLEOPATRAeb4f8101f465 Remove Task::icon and related functions
rKLEOPATRAd2496ed929db Remove Task::icon and related functions

Related Objects
Search...

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
ebo mentioned this in T6870: Kleopatra: Improve representation of signature verification result in case of multiple signatures.Dec 8 2023, 3:28 PM
ikloecker added a subscriber: ikloecker.Jun 17 2024, 4:10 PM

The part after the colon in "The signature is invalid: Invalid Signature" is the error returned by gpg that's responsible for the invalid signature. It could potentially be some other reason. Of course, we can simply not show the error anymore. Obviously, this would remove some details, but maybe that's okay. People could still look at the audit protocol for further information.

I don't really think it's a good idea to speculate about the reason for the invalid signature. An invalid signature has to raise a red flag. Always. If people start to ignore invalid signatures then all hope is lost.

werner added a subscriber: werner.Jun 17 2024, 4:25 PM

It is trivial append a bogus signature and would thuns inhibit to check the expected signature.

ebo added a comment.EditedJun 17 2024, 4:33 PM

In reply to Ingo:
Ok, I can live with that but I still would like this message to be improved.
Looking at it some more I noticed some other details which bother me:

a) In contrast to in a "Valid Signature" message (which seems to be always on a new line), there is no line break before "Invalid Signature"
b) The text continues in the new paragraph with "With certificate:". But there is no line "Signature created on $DATE" before that which makes the meaning unclear. Could we print that line here, too? And only prepend it with "Invalid" to not cause confusion? -> "Invalid signature created on $DATE"
c) Red text on a red tinted background is not really good for a11y …

ebo added a comment.Jun 18 2024, 2:40 PM

A minimal fix would be:

  • Line break before the "Invalid Signature" (so it's the same formatting as with valid signatures)
  • Then after the space a line "Invalid Signature with the certificate:"
  • Delete the lines below the certificate.

But we decided to wait and completely rework those messages (invalid and valid) and make them better to grasp at a glance.
To be continued…

ebo renamed this task from Kleopatra: Improve information in case of invalid signature to Draft: Kleopatra: Improve verification results messages (especially in case of invalid signature).Jun 18 2024, 2:46 PM
ebo updated the task description. (Show Details)
ebo added a subscriber: alexk.
ikloecker mentioned this in T5846: Kleopatra: File operation resultlistwidget accessibility.Jun 20 2024, 2:11 PM
ebo added a comment.EditedAug 20 2024, 4:51 PM

current plan after discussion today is as follows:

  • remove the summary for all signatures as a whole
  • font color should always be black
  • remove the import / search buttons, instead make the fingerprints link to either search window or the certificate details
  • we need a substructure for the signatures in order to
    • color the background of every verification result separately: green, red, white (maybe only a colored bar in front of the result instead or additionally)
    • put an icon in front of the verification result
  • show no text "not VS-NfD compliant" for invalid signatures
  • keep the text for the results easy to comprehend even if read by screen reader (important info first etc)
  • possibly sort the signatures in some way
ebo renamed this task from Draft: Kleopatra: Improve verification results messages (especially in case of invalid signature) to Kleopatra: Improve verification results messages (esp. for invalid signature and multiple signatures).Sep 16 2024, 12:38 PM
ebo raised the priority of this task from Wishlist to Normal.
ebo updated the task description. (Show Details)
TobiasFella added a commit: rLIBKLEO0a8c1ce5b52a: Only show compliance info for signatures that are valid.Sep 17 2024, 10:46 AM
TobiasFella added a commit: rLIBKLEOdeeb33a26a52: Only show compliance info for signatures that are valid.Sep 18 2024, 9:33 AM
TobiasFella added a subscriber: TobiasFella.Sep 18 2024, 9:41 AM

show no text "not VS-NfD compliant" for invalid signatures

done in https://invent.kde.org/pim/libkleo/-/merge_requests/137

TobiasFella added a commit: rLIBKLEO40b725ddc9b9: FileNameRequester: Add API for setting the button's tooltip.Sep 18 2024, 9:56 AM
TobiasFella added a commit: rLIBKLEO85b104793306: FileNameRequester: Add API for setting the button's tooltip.
TobiasFella added a commit: rLIBKLEO5d1256c6ae04: Formatting::prettySignature: Linkify unknown certificates.Sep 18 2024, 10:52 AM
TobiasFella added a commit: rLIBKLEO556d332f99c4: FileNameRequester: Add API for setting the button's tooltip.Sep 18 2024, 11:15 AM
ikloecker assigned this task to TobiasFella.Sep 18 2024, 3:12 PM

Tobias is working on this

TobiasFella added a commit: rLIBKLEO8c4492b93f47: Formatting::prettySignature: Linkify unknown certificates.Sep 23 2024, 12:03 PM
TobiasFella added a commit: rLIBKLEO4b6d20817375: FileNameRequester: Add API for setting the button's tooltip.Sep 23 2024, 3:11 PM
TobiasFella added a commit: rLIBKLEO689d05699bb4: Formatting::prettySignature: Linkify unknown certificates.
TobiasFella added a commit: rLIBKLEOac483c7d9516: Formatting::prettySignature: Linkify unknown certificates.Sep 23 2024, 3:20 PM
TobiasFella added a commit: rKLEOPATRAd2496ed929db: Remove Task::icon and related functions.Sep 23 2024, 4:04 PM
TobiasFella added a commit: rLIBKLEOb173008115cb: Formatting::prettySignature: Linkify unknown certificates.Sep 24 2024, 10:29 AM
TobiasFella added a commit: rKLEOPATRAeb4f8101f465: Remove Task::icon and related functions.
TobiasFella added a commit: rKLEOPATRA05681946fefb: Overhaul labels for encryption & signing / decrpytion & verification results.Sep 24 2024, 4:49 PM
TobiasFella added a commit: rKLEOPATRA009cf47f2bb4: Overhaul labels for encryption & signing / decrpytion & verification results.Sep 30 2024, 1:43 PM
TobiasFella added a commit: rKLEOPATRAc8c6920d2f61: Overhaul labels for encryption & signing / decrpytion & verification results.Sep 30 2024, 4:01 PM
TobiasFella added a commit: rKLEOPATRA829387e978fa: Overhaul labels for encryption & signing / decrpytion & verification results.Oct 1 2024, 11:03 AM
TobiasFella added a commit: rLIBKLEO5f1c9a633065: Formatting::prettySignature: Linkify unknown certificates.Oct 1 2024, 2:57 PM
TobiasFella added a commit: rKLEOPATRA0c652f7facb2: Overhaul labels for encryption & signing / decrpytion & verification results.Oct 2 2024, 1:50 PM
TobiasFella added a commit: rKLEOPATRA5082069855f9: Use custom texts for the notepad's result messages.Oct 15 2024, 4:28 PM
TobiasFella added a commit: rKLEOPATRA70ff366f6bce: Use custom texts for the notepad's result messages.Oct 15 2024, 4:57 PM
TobiasFella added a commit: rKLEOPATRA6063fe1bef1a: Use custom texts for the notepad's result messages.Oct 16 2024, 11:20 AM
TobiasFella added a commit: rKLEOPATRA09d1d72b8323: Use custom texts for the notepad's result messages.
TobiasFella mentioned this in T7341: Kleopatra: Improve notepad result messages.Oct 16 2024, 2:15 PM
TobiasFella changed the status of subtask T7341: Kleopatra: Improve notepad result messages from Open to Testing.Oct 28 2024, 2:38 PM
TobiasFella added a commit: rKLEOPATRA19e4c3c24438: Overhaul labels for encryption & signing / decrpytion & verification results.Oct 29 2024, 3:28 PM
TobiasFella added a commit: rKLEOPATRA01004bede095: Overhaul labels for encryption & signing / decrpytion & verification results.Oct 30 2024, 4:32 PM
TobiasFella added a commit: rKLEOPATRAe8427f6a47f9: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 5 2024, 4:51 PM
TobiasFella added a commit: rKLEOPATRA1908d4a1d4e1: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 6 2024, 10:27 AM
TobiasFella added a commit: rKLEOPATRAcfa669a35566: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 6 2024, 12:02 PM
TobiasFella added a commit: rKLEOPATRA8bf5d4338303: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 6 2024, 12:12 PM
TobiasFella added a commit: rKLEOPATRA29ca911bba7e: Overhaul labels for encryption & signing / decrpytion & verification results.
TobiasFella added a commit: rKLEOPATRAe10dcdae2d91: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 6 2024, 12:41 PM
TobiasFella added a commit: rKLEOPATRA77fc412e2990: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 6 2024, 1:11 PM
TobiasFella added a commit: rKLEOPATRA612e37c75f2a: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 6 2024, 4:04 PM
TobiasFella added a commit: rKLEOPATRAd476b6d5b50c: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 6 2024, 4:13 PM
TobiasFella added a commit: rKLEOPATRA921f7afb9c37: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 7 2024, 10:58 AM
TobiasFella added a commit: rKLEOPATRA0ece187a70c3: Overhaul labels for encryption & signing / decrpytion & verification results.Nov 7 2024, 2:26 PM
TobiasFella added a commit: rKLEOPATRAd3b75c7d3151: Improve warning about mail address mismatch.Nov 7 2024, 3:01 PM
TobiasFella moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.Nov 11 2024, 10:25 AM
TobiasFella added a project: gpd5x.Nov 11 2024, 10:30 AM
TobiasFella added a commit: rKLEOPATRA171ad5bbb83d: Improve warning about mail address mismatch.Nov 11 2024, 1:06 PM
TobiasFella added a commit: rLIBKLEObb2be20299b0: Formatting::prettySignature: Linkify unknown certificates.Nov 13 2024, 10:25 AM
TobiasFella added a commit: rKLEOPATRA0e317bca71fd: Improve DecryptVerifyFilesDialog.Nov 13 2024, 11:00 AM
TobiasFella added a commit: rLIBKLEOe18e1eafb136: Formatting::prettySignature: Linkify unknown certificates.Nov 14 2024, 4:31 PM
TobiasFella added a commit: rKLEOPATRA1c01fe45502c: Improve DecryptVerifyFilesDialog.Nov 15 2024, 1:07 PM
ikloecker mentioned this in T7395: Prepare Release Notes for Gpg4win 4.4.0 for Kleopatra.Nov 20 2024, 10:13 AM
TobiasFella added a commit: rKLEOPATRA0d3038b21328: Add missing markup to string.Mon, Nov 25, 2:14 PM
TobiasFella added a commit: rLIBKLEO016fb2777df3: Formatting::prettySignature: Linkify unknown certificates.Mon, Nov 25, 2:44 PM
TobiasFella added a commit: rKLEOPATRAd1fe8c571c64: Add missing markup to string.Tue, Nov 26, 9:43 AM
ikloecker mentioned this in T7273: Kleopatra: Always show the verfication results of all signatures even if some signatures are bad.Wed, Nov 27, 11:04 AM
TobiasFella added a commit: rKLEOPATRA9302d2549214: Improve DecryptVerifyFilesDialog.Thu, Nov 28, 2:54 PM
TobiasFella added a commit: rKLEOPATRA3fcf7e26ebb6: Improve DecryptVerifyFilesDialog.Thu, Nov 28, 4:40 PM
TobiasFella added a commit: rKLEOPATRAa2106d5a4395: Improve DecryptVerifyFilesDialog.Thu, Dec 5, 11:05 AM
TobiasFella added a commit: rKLEOPATRA9df63786f060: Improve DecryptVerifyFilesDialog.Thu, Dec 5, 12:37 PM
TobiasFella added a commit: rKLEOPATRA94831bacd9e2: Improve DecryptVerifyFilesDialog.Tue, Dec 10, 10:22 AM
TobiasFella added a commit: rKLEOPATRA1085bb3be222: Improve DecryptVerifyFilesDialog.Tue, Dec 10, 10:35 AM
TobiasFella added a commit: rKLEOPATRAf363ac3cf573: Improve DecryptVerifyFilesDialog.Tue, Dec 10, 10:55 AM
TobiasFella added a commit: rLIBKLEO85f3a5654315: Formatting::prettySignature: Linkify unknown certificates.Tue, Dec 10, 11:03 AM
TobiasFella added a comment.Tue, Dec 10, 4:02 PM

All changes proposed here have been implemented. I do plan more changes, but will put them in separate tickets

TobiasFella changed the task status from Open to Testing.Tue, Dec 10, 4:02 PM