keepassxreboot/keepassxc

Referenced Passwords Show "Strong" When Editing

Open

#12,671 opened on 2025年11月12日

GitHub で見る
 (3 comments) (0 reactions) (0 assignees)C++ (27,139 stars) (1,797 forks)batch import
feature: Reference/Placeholdersgood first issueuser interface

説明

Have you searched for an existing issue?

  • Yes, I tried searching and reviewed the pinned issues

Brief Summary

When using a password that references another entry, the password is shown as "strong" even though the password it refers to itself is weak.

Note that the passwords are correctly shown as weak in the database view.

If i had to guess, it's because the reference is not being dereferenced / fetched before the password strength is determined, but only in the editing menu. The database view fetches the referenced password first.

Steps to Reproduce

  1. Create a weak password entry
  2. Clone that entry / Create a reference to the password in that entry
  3. See that the weak password is shown as weak, but the new cloned / referenced entry has a 'strong' password.

Expected Versus Actual Behavior

Expected: KeePassXC will show me that the referenced password is weak in the edit menu

Actual: KeePassXC insists the referenced password is strong

KeePassXC Debug Information

KeePassXC - Version 2.7.10
Revision: b342be4

Qt 5.15.18
Debugging mode is disabled.

Operating system: Arch Linux
CPU architecture: x86_64
Kernel: linux 6.17.7-arch1-1

Enabled extensions:
- Auto-Type
- Browser Integration
- Passkeys
- SSH Agent
- KeeShare
- YubiKey
- Secret Service Integration

Cryptographic libraries:
- Botan 3.9.0

Operating System

Linux

Linux Desktop Environment

KDE

Linux Windowing System

Wayland

コントリビューターガイド

技術スタック
cpp
領域
desktop
Issue 種別
bug
難度新しい貢献者にとっての実装難度です。1 は非常に小さな変更、5 は専門的な作業です。
3
推定時間経験ある貢献者が調査、実装、テスト、pull request 準備にかけるおおよその時間範囲です。
1-3 hours
活動状況Issue が今どれだけ取り組みやすいかを示します。新しい、活発、古い、ブロック中、またはメンテナー入力待ちなどです。
fresh
明確さ期待される変更、受け入れ条件、次の手順がどれだけ明確かを示します。
mostly clear
前提条件
Basic knowledge of C++Understanding of referenced entries in KeePassXC
初心者向け度初回貢献者にどれだけ取り組みやすいかを 1-100 で推定したスコアです。
40
調査方針
The issue suggests that the password strength calculation in the edit menu does not dereference referenced entries before evaluation. Look at the entry editing code, likely in the EntryView or similar classes. Compare with the database view where the reference is resolved. The fix would involve ensuring that when displaying password strength in the edit dialog, the referenced password is fetched and its actual strength is used.