Miklos Vajna

https://gerrit.libreoffice.org/c/core/+/173514 avoids a buggy "sign status: invalid" state as an update right after load.

https://github.com/CollaboraOnline/online/pull/10069 is meant to fix the COOL side of the "signature removal" problems.

I'm still tweaking the above to pass all tests. In the meantime, https://gerrit.libreoffice.org/c/core/+/173651 starts on the signing side, first just creating suitable test certificates to do that with the existing...

https://gerrit.libreoffice.org/c/core/+/173691 extracts some duplicated cert parsing code, so I can build on that later.

https://gerrit.libreoffice.org/c/core/+/173806 starts handling the new signing key view options that an integration can pass to us. [sig.patch.txt](https://github.com/user-attachments/files/17093648/sig.patch.txt) is the mock patch I use on the online side till the core...

https://gerrit.libreoffice.org/c/core/+/173837 stores signing cert in the view, it's not yet read.

https://gerrit.libreoffice.org/c/core/+/173892 makes the signing work at an NSS level. The UI needs fixes here & there, still.

https://gerrit.libreoffice.org/c/core/+/173964 fixes the sign dialog part of the UI, now we show the Add button when the view has a sign cert.

https://gerrit.libreoffice.org/c/core/+/174002 fixes the cert chooser to show the right certificate. https://github.com/CollaboraOnline/online/pull/10135 fixes the COOL side to allow signature descriptions.

https://gerrit.libreoffice.org/c/core/+/174215 converts the cert chooser dialog to a jsdialog. https://gerrit.libreoffice.org/c/core/+/174307 fixes the status of the signature after mutating the trusted CA list.