Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package otpclient for openSUSE:Factory checked in at 2026-03-05 17:29:44 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/otpclient (Old) and /work/SRC/openSUSE:Factory/.otpclient.new.561 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "otpclient" Thu Mar 5 17:29:44 2026 rev:43 rq:1336659 version:4.4.1 Changes: -------- --- /work/SRC/openSUSE:Factory/otpclient/otpclient.changes 2026-02-18 17:12:21.067013073 +0100 +++ /work/SRC/openSUSE:Factory/.otpclient.new.561/otpclient.changes 2026-03-05 17:31:35.123530629 +0100 @@ -1,0 +2,30 @@ +Wed Mar 4 07:41:15 UTC 2026 - Paolo Stivanin <[email protected]> + +- Update to 4.4.1: + New Features + * Add cross-desktop search provider for GNOME Shell and KDE Plasma 6 (KRunner). OTP codes are displayed directly in search results and copied via system notification on activation. Can be toggled in settings. + * Add --password-file CLI option to read the password from an external file instead of stdin (thanks @kouta-kun) + Security + * Harden CLI password input: use read() with gcry_calloc_secure instead of fgets() to prevent password remnants in libc internal buffers. Disable all terminal echo modes and restore state via TCSAFLUSH. + * Fix under-allocation of secure password buffer for multibyte UTF-8 passwords (g_utf8_strlen returns character count, not byte count) + Bug Fixes + * Fix copy-paste bug in Authenticator Pro export: "issuer" key was read instead of "label" when building the Username field + * Fix secure-memory leak in get_otpauth_data: g_file_get_contents overwrote a gcrypt secure-buffer pointer with non-secure memory + * Fix g_utf8_strdown() memory leak in URI parsing + * Fix silent guint8 truncation of period/digits values; now validated with range checks + * Add missing g_set_error() on five error paths in Aegis encrypted backup import + * Fix salt and key_nonce leak on kdf_derive failure in Aegis export + * NULL-guard json_string_value() results across URI parsing, Authenticator Pro, and Aegis modules + * Unify hash type to guint32 in database layer (was mixing guint/guint32, potential issue on ILP64 platforms) + * Remove duplicate json_object_set() for "secret" key in build_json_obj + * Replace VLA stack buffers (salt, iv, tag) with heap allocations in get_data_from_encrypted_backup + * Fix search provider: add missing gcrypt initialization, fix memory leaks, eliminate redundant Argon2id+AES256-GCM cycle in result activation + * Improve --password-file error handling and terminal detection + * Fixed Ctrl+F search not working due to premature key controller destruction. + * Fixed GTK-CRITICAL assertions on close caused by accessing the tree view after widget destruction. + Refactoring + * Modernise application and window layer to GTK idioms: G_DECLARE_FINAL_TYPE, GtkEventControllerKey, configure-event for window-size tracking, proper dispose() for builder ownership + * Split monolithic activate() into resolve_db_path(), load_db_with_password(), setup_ui_and_timers() + * Extract config-misc.c/h utility module from window code + +------------------------------------------------------------------- Old: ---- v4.3.1.tar.gz v4.3.1.tar.gz.asc New: ---- v4.4.1.tar.gz v4.4.1.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ otpclient.spec ++++++ --- /var/tmp/diff_new_pack.EwgLVD/_old 2026-03-05 17:31:36.471586696 +0100 +++ /var/tmp/diff_new_pack.EwgLVD/_new 2026-03-05 17:31:36.475586863 +0100 @@ -18,7 +18,7 @@ %define uclname OTPClient Name: otpclient -Version: 4.3.1 +Version: 4.4.1 Release: 0 Summary: Simple GTK+ client for managing TOTP and HOTP License: GPL-3.0-or-later @@ -31,7 +31,7 @@ BuildRequires: gcc BuildRequires: gcc-c++ BuildRequires: libayatana-appindicator3-devel -BuildRequires: libcotp-devel >= 3.0.0 +BuildRequires: libcotp-devel >= 4.0.0 BuildRequires: libgcrypt-devel >= 1.10.1 BuildRequires: libjansson-devel >= 2.12.0 BuildRequires: libpng16-devel >= 1.6.30 @@ -42,7 +42,6 @@ BuildRequires: pkgconfig BuildRequires: protobuf-devel >= 3.6.0 BuildRequires: qrencode-devel >= 4.0.2 -BuildRequires: update-desktop-files BuildRequires: pkgconfig(glib-2.0) >= 2.68 BuildRequires: pkgconfig(gtk+-3.0) >= 3.24 @@ -57,20 +56,18 @@ %build %cmake \ -DCMAKE_INSTALL_PREFIX=%{_prefix} \ - -DBUILD_GUI=ON \ - -DBUILD_CLI=ON \ -DENABLE_MINIMIZE_TO_TRAY=ON %cmake_build %install %cmake_install -%suse_update_desktop_file -r com.github.paolostivanin.%{uclname} System Security GTK GNOME %files %dir %{_datadir}/%{name} %{_bindir}/%{name} %{_bindir}/%{name}-cli +%{_bindir}/otpclient-search-provider %{_datadir}/%{name}/otpclient.ui %{_datadir}/%{name}/add_popover.ui @@ -86,3 +83,12 @@ %{_datadir}/icons/hicolor/scalable/apps/com.github.paolostivanin.OTPClient-symbolic.svg %{_datadir}/icons/hicolor/scalable/apps/com.github.paolostivanin.OTPClient.svg +%dir %{_datadir}/gnome-shell +%dir %{_datadir}/gnome-shell/search-providers +%dir %{_datadir}/krunner +%dir %{_datadir}/krunner/dbusplugins +%{_datadir}/dbus-1/services/com.github.paolostivanin.OTPClient.KRunner.service +%{_datadir}/dbus-1/services/com.github.paolostivanin.OTPClient.SearchProvider.service +%{_datadir}/gnome-shell/search-providers/com.github.paolostivanin.OTPClient.SearchProvider.ini +%{_datadir}/krunner/dbusplugins/com.github.paolostivanin.OTPClient.KRunner.desktop + ++++++ v4.3.1.tar.gz -> v4.4.1.tar.gz ++++++ ++++ 3269 lines of diff (skipped)
