knauss (Sandro Knauß)
User

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Saturday

  • Clear sailing ahead.

User Details

User Since
Apr 12 2015, 12:50 PM (210 w, 4 d)
Availability
Available

Recent Activity

Today

knauss updated the test plan for D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
Thu, Apr 25, 12:42 PM · KDE PIM
knauss added a comment to D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).

The review is getting a little bit messy, because of all those new test data.

Thu, Apr 25, 12:37 PM · KDE PIM
knauss updated the summary of D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
Thu, Apr 25, 12:30 PM · KDE PIM
knauss updated the diff for D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
  • Add test cases for a Decryption Oracle based on PGP inline.
  • TemplateParser: test htmlReply.
  • Rename convertedHtmlContent-> convertedHtmlContent for reply_Plain
  • Make unexpected data leak harder via reply.
Thu, Apr 25, 12:29 PM · KDE PIM
knauss updated the diff for D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
  • Add test for a normal encrypted message, to make sure decrpytion works.
  • templateparserjobtest: HTML mime parts are handled differently
  • WIP: Decryption Oracle is also possible with PGP inline.
  • TemplateParser: test htmlReply.
  • Rename convertedHtmlContent-> convertedHtmlContent for reply_Plain
  • Make unexpected data leak harder via reply.
Thu, Apr 25, 12:27 PM · KDE PIM

Yesterday

knauss added a comment to D20728: Adapt to printing model changes.

Please add a simple test case to make sure we catch those changes by tests.

Wed, Apr 24, 8:34 PM · KDE PIM
knauss accepted D20793: Simplify GenericGrantleeFormatter.

seems good.

Wed, Apr 24, 8:33 PM · KDE PIM
knauss closed D20770: Remove unused ObjectTreeParser::copyContentFrom..
Wed, Apr 24, 8:25 PM · KDE PIM
knauss committed R94:e2031122c98f: Remove unused ObjectTreeParser::copyContentFrom. (authored by knauss).
Remove unused ObjectTreeParser::copyContentFrom.
Wed, Apr 24, 8:25 PM
knauss committed R94:b8f95cd1fdf3: Add tests for ObjectTreeParser::htmlContent. (authored by knauss).
Add tests for ObjectTreeParser::htmlContent.
Wed, Apr 24, 8:25 PM
knauss closed D20751: Add tests for ObjectTreeParser::htmlContent..
Wed, Apr 24, 8:25 PM · KDE PIM
knauss committed R94:d6d2ca6d84c8: Move most of UnencryptedMessageTest tests to MimeTreeParser. (authored by knauss).
Move most of UnencryptedMessageTest tests to MimeTreeParser.
Wed, Apr 24, 8:25 PM
knauss closed D20750: Move most of UnencryptedMessageTest tests to MimeTreeParser..
Wed, Apr 24, 8:25 PM · KDE PIM

Tue, Apr 23

knauss updated the diff for D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
  • MimeTreeParser returns wrong content for inline mesasges with multiple encrypted blocks.
  • TemplateParser: test htmlReply.
Tue, Apr 23, 10:26 PM · KDE PIM
knauss updated the summary of D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
Tue, Apr 23, 10:20 PM · KDE PIM
knauss updated the summary of D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
Tue, Apr 23, 3:34 PM · KDE PIM
knauss updated the diff for D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
  • Add test for a normal encrypted message, to make sure decryption works.
  • templateparserjobtest: HTML mime parts are handled differently
  • WIP: Decryption Oracle is also possible with PGP inline.
Tue, Apr 23, 3:27 PM · KDE PIM
knauss requested review of D20770: Remove unused ObjectTreeParser::copyContentFrom..
Tue, Apr 23, 3:19 PM · KDE PIM
knauss added a revision to T3689: Add abi compliance checker to CI: D20769: abi-compliance-checker: disable clang include directories completly..
Tue, Apr 23, 2:22 PM · build.kde.org
knauss requested review of D20769: abi-compliance-checker: disable clang include directories completly..
Tue, Apr 23, 2:22 PM
knauss committed R94:880296b804bb: Refresh TemplateParserJobTest::test_convertedHtml logic (authored by knauss).
Refresh TemplateParserJobTest::test_convertedHtml logic
Tue, Apr 23, 2:12 PM
knauss closed D20755: Refresh TemplateParserJobTest::test_convertedHtml logic.
Tue, Apr 23, 2:12 PM · KDE PIM
knauss committed R94:102a0c5c3a69: Unique names for test rows. (authored by knauss).
Unique names for test rows.
Tue, Apr 23, 2:12 PM
knauss committed R94:f6bfa4538808: enable TemplateParserJobTest::test_replyPlain again. (authored by knauss).
enable TemplateParserJobTest::test_replyPlain again.
Tue, Apr 23, 2:12 PM
knauss closed D20754: Unique names for test rows..
Tue, Apr 23, 2:12 PM · KDE PIM
knauss closed D20753: enable TemplateParserJobTest::test_replyPlain again..
Tue, Apr 23, 2:12 PM · KDE PIM
knauss added a comment to D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).

This makes sense I think (and should go in IMHO), but I'm not sure if it is complete to cover all of bug 404698.

  • Do we need to be concerned about forwarding (which does include attachments AFAIK)?

make sense, yes.

Tue, Apr 23, 2:04 PM · KDE PIM
knauss added a comment to D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).

Sorry if this is a stupid question :D

But does this test make sense?

I mean how is the test supposed to decrypt the encrypted part of it? How does it know the keys/password/whatever to decrypt it?

Tue, Apr 23, 1:52 PM · KDE PIM
knauss updated the summary of D20750: Move most of UnencryptedMessageTest tests to MimeTreeParser..
Tue, Apr 23, 1:42 PM · KDE PIM
knauss added a comment to D20750: Move most of UnencryptedMessageTest tests to MimeTreeParser..

This is git logic, that it defines this as a copy. And I think git it more or less right, as we can't move every tests because some tests need MessageViewer::BufferedHtmlWriter. Only

Tue, Apr 23, 1:41 PM · KDE PIM
knauss updated the diff for D20750: Move most of UnencryptedMessageTest tests to MimeTreeParser..

update description.

Tue, Apr 23, 1:41 PM · KDE PIM

Mon, Apr 22

knauss added a comment to D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).

So these pass? There's no bug?

Mon, Apr 22, 9:24 PM · KDE PIM
knauss added a dependent revision for D20753: enable TemplateParserJobTest::test_replyPlain again.: D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
Mon, Apr 22, 9:22 PM · KDE PIM
knauss added a dependency for D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732): D20753: enable TemplateParserJobTest::test_replyPlain again..
Mon, Apr 22, 9:22 PM · KDE PIM
knauss requested review of D20757: Decryption Oracle based on replying to PGP or S/MIME (CVE-2019-10732).
Mon, Apr 22, 8:51 PM · KDE PIM
knauss requested review of D20756: Distinguish between mMsg and mOrigMsg..
Mon, Apr 22, 8:49 PM · KDE PIM
knauss requested review of D20755: Refresh TemplateParserJobTest::test_convertedHtml logic.
Mon, Apr 22, 8:49 PM · KDE PIM
knauss requested review of D20754: Unique names for test rows..
Mon, Apr 22, 8:48 PM · KDE PIM
knauss requested review of D20753: enable TemplateParserJobTest::test_replyPlain again..
Mon, Apr 22, 8:48 PM · KDE PIM
knauss requested review of D20751: Add tests for ObjectTreeParser::htmlContent..
Mon, Apr 22, 8:48 PM · KDE PIM
knauss requested review of D20750: Move most of UnencryptedMessageTest tests to MimeTreeParser..
Mon, Apr 22, 8:48 PM · KDE PIM
knauss committed R94:393520925c64: fix typo. (authored by knauss).
fix typo.
Mon, Apr 22, 8:46 PM

Mar 26 2019

knauss added a comment to T10724: List of applications respecting tor proxy settings.
  • pidgin
    • use the proxy settings from the preferences and make use every account is taking the general proxy setting.
    • nice thing about this, that you can enable/disable tor on an account base.
Mar 26 2019, 12:40 PM · KDE Privacy Goal
knauss updated the task description for T10716: Add check for accidental http: usage.
Mar 26 2019, 11:42 AM · KDE Privacy Goal
knauss added a parent task for T10733: Application to change routing to the internet: T10732: apptication to monitor all ongoing traffic.
Mar 26 2019, 11:41 AM · KDE Privacy Goal
knauss added a subtask for T10732: apptication to monitor all ongoing traffic: T10733: Application to change routing to the internet.
Mar 26 2019, 11:41 AM · KDE Privacy Goal
knauss created T10733: Application to change routing to the internet.
Mar 26 2019, 11:31 AM · KDE Privacy Goal
knauss added a comment to T10732: apptication to monitor all ongoing traffic.

@vkrause: I havn't found the tool you mentioned "tcpconnect"?

Mar 26 2019, 11:27 AM · KDE Privacy Goal
knauss triaged T10732: apptication to monitor all ongoing traffic as Normal priority.
Mar 26 2019, 11:27 AM · KDE Privacy Goal
knauss closed T8622: sprint for privacy goal as Resolved.
Mar 26 2019, 10:08 AM · KDE Privacy Goal
knauss added a comment to T10728: Use HSTS for QNetworkAccessManager.

and for a kde wide search:
https://lxr.kde.org/search?_filestring=&_string=setStrictTransportSecurityEnabled

Mar 26 2019, 9:36 AM · KDE Privacy Goal

Mar 25 2019

knauss edited projects for T10731: files.kde.org redirects to mirrors with http only, added: Sysadmin; removed Websites.
Mar 25 2019, 9:32 PM · Sysadmin, KDE Privacy Goal
knauss created T10731: files.kde.org redirects to mirrors with http only.
Mar 25 2019, 9:30 PM · Sysadmin, KDE Privacy Goal
knauss moved T8408: Autocrypt support for kmail from incoming to Technical on the KDE Privacy Goal board.
Mar 25 2019, 9:13 PM · KDE Privacy Goal, KDE PIM: Junior Jobs, KDE PIM
knauss committed R81:927b5aeca234: Prepare environment to be able to test grantleeheaderstyle. (authored by knauss).
Prepare environment to be able to test grantleeheaderstyle.
Mar 25 2019, 9:05 PM
knauss closed D15727: Prepare environment to be able to test grantleeheaderstyle..
Mar 25 2019, 9:05 PM · KDE PIM
knauss reopened D15727: Prepare environment to be able to test grantleeheaderstyle..

messup different Review requests

Mar 25 2019, 7:39 PM · KDE PIM
knauss closed D15727: Prepare environment to be able to test grantleeheaderstyle..
Mar 25 2019, 7:38 PM · KDE PIM
knauss closed D17954: Grantleetheme should always prefer files that are located in DataLocation..
Mar 25 2019, 7:11 PM · KDE PIM
knauss committed R77:275785135605: Grantleetheme should always prefer files that are located in DataLocation. (authored by knauss).
Grantleetheme should always prefer files that are located in DataLocation.
Mar 25 2019, 7:11 PM
knauss triaged T10728: Use HSTS for QNetworkAccessManager as Normal priority.
Mar 25 2019, 6:30 PM · KDE Privacy Goal
knauss created T10728: Use HSTS for QNetworkAccessManager.
Mar 25 2019, 6:30 PM · KDE Privacy Goal
knauss moved T10725: Evaluate different internet stacks for modern recommendations from incoming to Technical on the KDE Privacy Goal board.
Mar 25 2019, 2:23 PM · Frameworks, KDE Privacy Goal
knauss created T10725: Evaluate different internet stacks for modern recommendations.
Mar 25 2019, 2:23 PM · Frameworks, KDE Privacy Goal
knauss moved T10724: List of applications respecting tor proxy settings from incoming to Communication on the KDE Privacy Goal board.
Mar 25 2019, 2:07 PM · KDE Privacy Goal

Mar 24 2019

knauss moved T10721: Leak information via DHCP from incoming to Technical on the KDE Privacy Goal board.
Mar 24 2019, 8:38 PM · Plasma, KDE Privacy Goal
knauss created T10721: Leak information via DHCP.
Mar 24 2019, 8:38 PM · Plasma, KDE Privacy Goal
knauss added a project to T10719: Rescue KDing (or similar) as offline dictionary: Plasma.

Maybe a thing Plasma wants to look at.

Mar 24 2019, 8:25 PM · Plasma, KDE Privacy Goal
knauss added a task to D19996: WIP Add a global test for insecure http: URLs used in code or documentation: T10716: Add check for accidental http: usage.
Mar 24 2019, 8:24 PM · Build System, Frameworks
knauss added a revision to T10716: Add check for accidental http: usage: D19996: WIP Add a global test for insecure http: URLs used in code or documentation.
Mar 24 2019, 8:24 PM · KDE Privacy Goal
knauss added a project to T8408: Autocrypt support for kmail: KDE Privacy Goal.
Mar 24 2019, 8:22 PM · KDE Privacy Goal, KDE PIM: Junior Jobs, KDE PIM
knauss removed a parent task for T8408: Autocrypt support for kmail: T7050: Privacy Software.
Mar 24 2019, 8:21 PM · KDE Privacy Goal, KDE PIM: Junior Jobs, KDE PIM
knauss removed a subtask for T7050: Privacy Software: T8408: Autocrypt support for kmail.
Mar 24 2019, 8:21 PM · Goal settings 2017
knauss added a project to T8807: Metadata Anonymisation Toolkit integration in Dolphin: KDE Privacy Goal.
Mar 24 2019, 8:21 PM · KDE Privacy Goal, Dolphin
knauss removed a subtask for T7050: Privacy Software: T8807: Metadata Anonymisation Toolkit integration in Dolphin.
Mar 24 2019, 8:21 PM · Goal settings 2017
knauss removed a parent task for T8807: Metadata Anonymisation Toolkit integration in Dolphin: T7050: Privacy Software.
Mar 24 2019, 8:21 PM · KDE Privacy Goal, Dolphin
knauss removed a parent task for T8809: Tor onion services for KDE websites: T7050: Privacy Software.
Mar 24 2019, 8:21 PM · KDE Privacy Goal, Websites
knauss removed a subtask for T7050: Privacy Software: T8809: Tor onion services for KDE websites.
Mar 24 2019, 8:21 PM · Goal settings 2017
knauss removed a parent task for T8811: Implement Differential Privacy telemetry: T7050: Privacy Software.
Mar 24 2019, 8:20 PM · KDE Privacy Goal, KUserFeedback
knauss removed a subtask for T7050: Privacy Software: T8811: Implement Differential Privacy telemetry.
Mar 24 2019, 8:20 PM · Goal settings 2017
knauss updated subscribers of T10719: Rescue KDing (or similar) as offline dictionary.

We track the Pricavy Goal in the KDE Privacy Goal project

Mar 24 2019, 8:19 PM · Plasma, KDE Privacy Goal
knauss removed a parent task for T10719: Rescue KDing (or similar) as offline dictionary: T7050: Privacy Software.
Mar 24 2019, 8:18 PM · Plasma, KDE Privacy Goal
knauss removed a subtask for T7050: Privacy Software: T10719: Rescue KDing (or similar) as offline dictionary.
Mar 24 2019, 8:18 PM · Goal settings 2017
knauss edited projects for T10719: Rescue KDing (or similar) as offline dictionary, added: KDE Privacy Goal; removed Goal settings 2017.
Mar 24 2019, 8:18 PM · Plasma, KDE Privacy Goal
knauss updated the diff for D19996: WIP Add a global test for insecure http: URLs used in code or documentation.

fixing a typo.

Mar 24 2019, 3:11 PM · Build System, Frameworks
knauss updated the diff for D19996: WIP Add a global test for insecure http: URLs used in code or documentation.

make parallel network requests.

Mar 24 2019, 2:29 PM · Build System, Frameworks
knauss moved T10717: State of using Tor Browser as default browser from incoming to Communication on the KDE Privacy Goal board.
Mar 24 2019, 1:10 PM · KDE Privacy Goal
knauss triaged T10717: State of using Tor Browser as default browser as Normal priority.
Mar 24 2019, 1:10 PM · KDE Privacy Goal
knauss added projects to T7527: Make Konqueror respect privacy by default or replace by Falcon.: Falkon, Konqueror.
Mar 24 2019, 1:07 PM · Konqueror, Falkon, KDE Privacy Goal
knauss removed a project from T8622: sprint for privacy goal: Goal settings 2017.
Mar 24 2019, 1:05 PM · KDE Privacy Goal
knauss removed a project from T7527: Make Konqueror respect privacy by default or replace by Falcon.: Goal settings 2017.
Mar 24 2019, 1:05 PM · Konqueror, Falkon, KDE Privacy Goal
knauss removed a subtask for T7050: Privacy Software: T7527: Make Konqueror respect privacy by default or replace by Falcon..
Mar 24 2019, 1:05 PM · Goal settings 2017
knauss removed a parent task for T7527: Make Konqueror respect privacy by default or replace by Falcon.: T7050: Privacy Software.
Mar 24 2019, 1:05 PM · Konqueror, Falkon, KDE Privacy Goal
knauss removed a project from T7528: Make Akregator respect privacy by default: Goal settings 2017.
Mar 24 2019, 1:04 PM · KDE Privacy Goal, KDE PIM
knauss removed a subtask for T7050: Privacy Software: T7528: Make Akregator respect privacy by default.
Mar 24 2019, 1:04 PM · Goal settings 2017
knauss removed a parent task for T7528: Make Akregator respect privacy by default: T7050: Privacy Software.
Mar 24 2019, 1:04 PM · KDE Privacy Goal, KDE PIM
knauss removed a project from T8447: Indexing encrypted mails: Goal settings 2017.
Mar 24 2019, 1:04 PM · KDE Privacy Goal, KDE PIM
knauss removed a subtask for T7050: Privacy Software: T8447: Indexing encrypted mails.
Mar 24 2019, 1:04 PM · Goal settings 2017
knauss removed a parent task for T8447: Indexing encrypted mails: T7050: Privacy Software.
Mar 24 2019, 1:04 PM · KDE Privacy Goal, KDE PIM
knauss removed a parent task for T8567: Add DKIM Status: T7050: Privacy Software.
Mar 24 2019, 1:03 PM · KDE Privacy Goal, KDE PIM