Page MenuHome GnuPG

okularTag
ActivePublic

Members

  • This project does not have any members.
  • View All

Watchers

  • This project does not have any watchers.
  • View All

Details

Description

Things for the Okular PDF Tool.

Recent Activity

Fri, Sep 22

ikloecker added a comment to T6730: Filename for multiple sigend pdf's.

I know Microsoft is probably not the best example, but copying an already copied file with the Windows Explorer you get "Copy of Copy of Copy of originalname.txt". Moreover, I think foo_signed_signed_signed.pdf makes it pretty clear that this is a PDF that has been signed multiple times. I would leave it as-is. People who don't like the name can easily change it.

Fri, Sep 22, 8:51 PM · okular
ebo added a comment to T6730: Filename for multiple sigend pdf's.

How about adding "-2" to a document where before _signed already was in the name, i.e. foo_signed.pdf -> foo_signed-2.pdf and so on: foo_signed-3.pdf, ...

Fri, Sep 22, 3:33 PM · okular
svuorela added a comment to T6613: Okular: filename suggestion unsuitable.

Just for reference:
Make it signature pretty: https://dev.gnupg.org/T6732
Default path: https://dev.gnupg.org/T6731
signed_signed: https://dev.gnupg.org/T6730

Fri, Sep 22, 3:13 PM · okular, Restricted Project
svuorela assigned T6732: Visual representation of signature is a bit ugly to aheinecke.
Fri, Sep 22, 3:11 PM · okular
svuorela added a comment to T6732: Visual representation of signature is a bit ugly.

Unfortunately, "make it not ugly" is a bit hard to work with. I'm open for ideas.

Fri, Sep 22, 3:11 PM · okular
svuorela created T6732: Visual representation of signature is a bit ugly.
Fri, Sep 22, 3:10 PM · okular
svuorela created T6731: Default save dir in okular/windows is wrong.
Fri, Sep 22, 3:09 PM · okular
svuorela assigned T6730: Filename for multiple sigend pdf's to aheinecke.

I'm going to assign this to @aheinecke - but @ebo might also have opinion on how it would be nice.

Fri, Sep 22, 3:08 PM · okular
svuorela created T6730: Filename for multiple sigend pdf's.
Fri, Sep 22, 3:07 PM · okular
svuorela closed T6613: Okular: filename suggestion unsuitable as Resolved.

As this issue was originally just about the "versioned file" and where to place _signed, I think we should keep this closed. Will create new issues based on the notes here.

Fri, Sep 22, 3:04 PM · okular, Restricted Project
svuorela added a comment to T6711: Okular: Reload signed PDF instead of opening another window.

I'm told that this is also what acrobat does, which is one of the reasons for the current approach.

Fri, Sep 22, 2:48 PM · Restricted Project, okular

Tue, Sep 12

ebo reopened T6613: Okular: filename suggestion unsuitable as "Open".
Tue, Sep 12, 2:29 PM · okular, Restricted Project
ebo added a comment to T6613: Okular: filename suggestion unsuitable.

well yes, it ends now in "_signiert.pdf" with German language settings and "_signed.pdf" in English.

Tue, Sep 12, 2:25 PM · okular, Restricted Project

Fri, Sep 8

aheinecke triaged T6711: Okular: Reload signed PDF instead of opening another window as High priority.
Fri, Sep 8, 12:02 PM · Restricted Project, okular
aheinecke closed T6613: Okular: filename suggestion unsuitable as Resolved.

Tested with current version. Works.

Fri, Sep 8, 11:57 AM · okular, Restricted Project

Mon, Sep 4

ebo moved T6613: Okular: filename suggestion unsuitable from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mon, Sep 4, 10:55 AM · okular, Restricted Project
svuorela changed the status of T6613: Okular: filename suggestion unsuitable from Open to Testing.
Mon, Sep 4, 10:33 AM · okular, Restricted Project
svuorela reassigned T6613: Okular: filename suggestion unsuitable from svuorela to ebo.
Mon, Sep 4, 10:33 AM · okular, Restricted Project
svuorela added a comment to T6613: Okular: filename suggestion unsuitable.

This should be in the newest for testing.

Mon, Sep 4, 10:32 AM · okular, Restricted Project

Aug 8 2023

werner triaged T6633: GPGME: Add API for extended key usage flags like nonRepudation as Normal priority.
Aug 8 2023, 3:36 PM · okular, Restricted Project
werner added a comment to T6633: GPGME: Add API for extended key usage flags like nonRepudation.

Here is an example from my QES cert:

Aug 8 2023, 3:31 PM · okular, Restricted Project
werner added a comment to T6633: GPGME: Add API for extended key usage flags like nonRepudation.

That does not mean that this is a good idea. And well, I heard that Poppler does not have a stable API.

Aug 8 2023, 3:09 PM · okular, Restricted Project
svuorela added a comment to T6633: GPGME: Add API for extended key usage flags like nonRepudation.

The poppler api exposes it. Has done it since more or less the incarnation of pdf signing in poppler I think.

Aug 8 2023, 12:02 PM · okular, Restricted Project
werner added a comment to T6633: GPGME: Add API for extended key usage flags like nonRepudation.

Don't do that. The key usage extensions rarely useful. This is the usual X.509 DbC (design by commitee) mess. See for example https://www.cs.auckland.ac.nz/~pgut001/pubs/x509guide.txt . Let's not try to follow this path.

Aug 8 2023, 11:57 AM · okular, Restricted Project

Aug 4 2023

svuorela added a comment to T6633: GPGME: Add API for extended key usage flags like nonRepudation.

The poppler API exposes key usage extensions, and I'm trying to reconstruct them from the canX flags, which of course is highly inaccurate.

Aug 4 2023, 10:59 AM · okular, Restricted Project
ikloecker added a comment to T6633: GPGME: Add API for extended key usage flags like nonRepudation.

Technically, the canX are already checking a flag internally because _gpgme_key stores the can_X values as single bits. There are still 17 unused bits in _gpgme_key, i.e. there's plenty of space for more flags like can_haz_cheezeburger.

Aug 4 2023, 9:31 AM · okular, Restricted Project
aheinecke renamed T6633: GPGME: Add API for extended key usage flags like nonRepudation from GPGME: Add API for extended key usage flags aka nonRepudation to GPGME: Add API for extended key usage flags like nonRepudation.
Aug 4 2023, 8:04 AM · okular, Restricted Project
aheinecke removed a subtask for T6632: Okular: Highlight / preselect "nonRepudiation" certificates for qualified signatures: T6633: GPGME: Add API for extended key usage flags like nonRepudation.
Aug 4 2023, 7:58 AM · okular, Restricted Project
aheinecke removed a parent task for T6633: GPGME: Add API for extended key usage flags like nonRepudation: T6632: Okular: Highlight / preselect "nonRepudiation" certificates for qualified signatures.
Aug 4 2023, 7:58 AM · okular, Restricted Project
aheinecke assigned T6633: GPGME: Add API for extended key usage flags like nonRepudation to werner.

OK, still the whole usage stuff screams for a flag style api IMO. With all the canX then reduced to checking for the according flags internally.
@werner I am assigning this to you for triage. Basically set it to wontfix or whishlist if you think it would be worthwhile or not for future canHazCheezeburger things

Aug 4 2023, 7:58 AM · okular, Restricted Project

Aug 3 2023

werner added a comment to T6632: Okular: Highlight / preselect "nonRepudiation" certificates for qualified signatures.

Use the is_qualified flag to figure out QES certificates. This is more than just a capability flag.

Aug 3 2023, 8:55 PM · okular, Restricted Project
werner added a comment to T6633: GPGME: Add API for extended key usage flags like nonRepudation.

NonRepudiation is not a well defined term. It is used by X.509 but often used similar to a digital signature. Thus this does not make sense. The is_qualified flag is what we need for QeS and it seems we already got this in gpgme.

Aug 3 2023, 8:54 PM · okular, Restricted Project
aheinecke triaged T6633: GPGME: Add API for extended key usage flags like nonRepudation as Normal priority.
Aug 3 2023, 4:41 PM · okular, Restricted Project
svuorela added a comment to T6632: Okular: Highlight / preselect "nonRepudiation" certificates for qualified signatures.

gpgme puts digitalSignature and norRepudiation into canSign. We need them separated at the sources (maybe exposing keyUsage directly in gpgme. That would also make the code in poppler better and more accurate. I'm trying to reconstruct the keyUsages from the canSign&friends functions.

Aug 3 2023, 4:25 PM · okular, Restricted Project
aheinecke triaged T6632: Okular: Highlight / preselect "nonRepudiation" certificates for qualified signatures as Normal priority.
Aug 3 2023, 3:07 PM · okular, Restricted Project

Jul 25 2023

aheinecke assigned T6613: Okular: filename suggestion unsuitable to svuorela.
Jul 25 2023, 9:09 AM · okular, Restricted Project

Jul 24 2023

ebo created T6613: Okular: filename suggestion unsuitable.
Jul 24 2023, 3:59 PM · okular, Restricted Project
ebo closed T6517: Update AppImage and include Okular as Resolved.

signing works, too

Jul 24 2023, 3:33 PM · AppImage, okular, kleopatra, Restricted Project

Jul 13 2023

aheinecke triaged T6594: Okular: Proper about data customization as Normal priority.
Jul 13 2023, 2:59 PM · Restricted Project, okular

Jul 5 2023

ikloecker changed the status of T6517: Update AppImage and include Okular from Open to Testing.

Ready for testing. I could view a signed PDF and verify the signature with the gpg backend, but other things may not work because of missing dependencies.

Jul 5 2023, 5:51 PM · AppImage, okular, kleopatra, Restricted Project

Jun 5 2023

ikloecker claimed T6517: Update AppImage and include Okular.
Jun 5 2023, 10:59 AM · AppImage, okular, kleopatra, Restricted Project
ikloecker triaged T6517: Update AppImage and include Okular as Normal priority.
Jun 5 2023, 10:59 AM · AppImage, okular, kleopatra, Restricted Project

Feb 24 2023

werner created okular.
Feb 24 2023, 12:03 PM