-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On Wed, Jun 14, 2017 at 03:03:00AM -0700, Andrew Morgan wrote: > Hey everyone, another week another progress report. > > As always, you can find the report with screenshots here: > https://blog.amorgan.xyz/gsoc-weekly-progress-report-2.html > > Otherwise the text-only version is reproduced below: > > --- > > The work this week consisted of finishing off the context menus within > Nautilus and Dolphin. I'm happy to report that they've both been > finished off and accompanied by some icons from GNOME's Adwaita icon set. > > They actually work now too :) > > Some screenshots below: > > [] Icons appear in menu items now in Nautilus > > [] We also have a checkmark icon to indicate to the user that a folder > is marked as untrusted > > [] The popup menu now includes the name of the file that is being marked > as well as the file type
This window could use some better title ;) > [] Handy icons now show up on untrusted files! (...) > # Denying Local Read Permissions on Untrusted Files > > To prevent this mark otherwise being accidentally destroyed on the > originating VM, we can simply deny all users permission to read or write > from it (through a chmod 0). Props to my mentor Marek for the suggestion. > > This has the one hiccup of which we can no longer read a file's Extended > File Attributes, however our code can simply 'unlock' the file before > processing it by chmod'ing the file back to 0644 before processing, and > 'locking' it again afterwards. Also worth checking how other file manager actions handle this - moving file, viewing its properties, copying it... And even if copying do work, check if xattrs are preserved. > # Conclusion > > Now that the GUI is all finished, it's time to work on making the File > Managers (Nautilus and Dolphin) aware of untrusted files. While it's > easy enough to check for untrusted files on a right-click basis, we also > need to check their status on a single or double left-click (i.e when a > file is opened). > > Originally I planned to patch the File Managers to allow for running > code on a left-click, however after creating the Nautilus extension, it > seems to already do this by default. Coupled with the fact that files > are no longer locally editable and thus cannot be opened automatically, > we may not actually need to patch Nautilus at all! \o/ > Dolphin may still require a patch, but I'll be looking for ways to > possibly get away with not needing to while working on the Nautilus > version first. > > Any and all feedback is appreciated, see you all in a week! - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJZQbRzAAoJENuP0xzK19csslAH/jKp0cyvpzSbLnxRBEEhIoFH NAHvMlcq8rp2BCyCIUF3MLNxo5Mxz4vcN55IdO4vU83tGXRvTln2IJXLoNigVzkM RzwYiBScG3jX6uQI5K9cYnkh0GlI0uyzLow9AhTS8FuSKUMZQukZpEB23Ra6nZtk FiwU0mu/a9PRPIv9xn1YSMlcpFr96Jm9TysKLnqmda8/gb8oYPomhGbe6yg7/kjr H6B+20byrycwSPEIUCmJ608cOqLzUMcXQYPI/INGoU1Ea33HFgVELuSN9lscF6eE esFFRFTWgd8efuQX+Hhj9bp+n7C+r+FjqAJARSfIh2nHv4AFHbrX+hn9dUTUAXQ= =xaiL -----END PGP SIGNATURE----- -- You received this message because you are subscribed to the Google Groups "qubes-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-devel/20170614221101.GA1268%40mail-itl. For more options, visit https://groups.google.com/d/optout.
