Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

KPXC doesn't honor ConfirmAccessItem in [FdoSecrets] when it cannot find the executable path #9255

Closed
StayPirate opened this issue Mar 18, 2023 · 5 comments · Fixed by #9690
Closed

KPXC doesn't honor ConfirmAccessItem in [FdoSecrets] when it cannot find the executable path #9255

StayPirate opened this issue Mar 18, 2023 · 5 comments · Fixed by #9690
Assignees
@droidmonkey
Labels
feature: Secret Service
Milestone
v2.7.6

Comments

@StayPirate
Copy link

I initially reported this issue to flathub/org.keepassxc.KeePassXC#109, but maybe this place is more appropriate as the behave seems to be related to KPXC in general and not to its flatpaked version.

The problem of fingerprinting short-live processes was lengthy discussed #7571 and #6458. The quickest workaround is to set ConfirmAccessItem=false under [FdoSecrets] to revert to 2.6.x behavior.

KPXC does not honor the ConfirmAccessItem option and keep showing the following dialog every time Nextcloud-client starts, even though I have ConfirmAccessItem=false

image

Please note that I'm using KPXC installed via flatpak and nextcloud-client too. My best guess is that KPXC has no visibility over the nextcloud binary because it's from another flatpak container.

Acceptance criteria

When ConfirmAccessItem is set to false KPXC shouldn't show the "Requesting access" dialog, regardless if it can access the client binary or not.
@StayPirate StayPirate added the bug label Mar 18, 2023
@StayPirate
Copy link
Author

When ConfirmAccessItem is set to false KPXC shouldn't show the "Requesting access" dialog, regardless if it can access the client binary or not.

Can this be consider a bug?

@nivekuil
Copy link

nivekuil commented Apr 28, 2023
edited
Loading

I think this checkbox is just broken in general. I see the same behavior with the Arch Linux packaged version. Also #7623 (comment)

@izbushka
Copy link

izbushka commented May 25, 2023
edited
Loading

Same for me, looks like this checkbox does not work at all regardless of the "executable path".

@StayPirate
Copy link
Author

@droidmonkey it seems that multiple users are affected by this bug, which makes me understand that the issue is not related to my setup. Might you share your point of view on this? Thanks

@droidmonkey droidmonkey added this to the v2.7.6 milestone May 25, 2023
@droidmonkey droidmonkey modified the milestones: v2.7.6, v2.8.0 Jul 16, 2023
@izbushka
Copy link

izbushka commented Aug 3, 2023

Looks like this patch fixes ConfirmAccessItem setting

izbushka pushed a commit to izbushka/keepassxc that referenced this issue Aug 3, 2023
Fixes keepassxreboot#9255 Access Confirmation dialog should not be sh…
9eda98b 
…own with option ConfirmAccessItem=true
@droidmonkey droidmonkey modified the milestones: v2.8.0, v2.7.6 Aug 3, 2023
@droidmonkey droidmonkey self-assigned this Aug 3, 2023
@izbushka izbushka mentioned this issue Aug 3, 2023
Merged
droidmonkey pushed a commit that referenced this issue Aug 3, 2023
@droidmonkey
Fixes #9255 Access Confirmation dialog should not be shown with optio…
29726e2 
…n ConfirmAccessItem=true
droidmonkey pushed a commit that referenced this issue Aug 5, 2023
@droidmonkey
Fixes #9255 Access Confirmation dialog should not be shown with optio…
4ea0a10 
…n ConfirmAccessItem=true
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@droidmonkey droidmonkey

Labels
feature: Secret Service
Projects
None yet
Milestone
v2.7.6
4 participants
@droidmonkey @nivekuil @izbushka @StayPirate