gnome-keyring Secrets dbus api

From: Florian Eitel <feitel indeedgeek de>
To: gnome-keyring-list gnome org
Subject: gnome-keyring Secrets dbus api
Date: Sun, 21 Nov 2010 02:34:14 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi,

I'am trying to write some ruby code to access secrets in gnome-keyring
via dbus. After a lot testing I can query secrets but only in plain
mode. But I doesn't understand why it is possible to transfer secrets
unencrypted. So I trying dh-ietf1024-aes128-cbc-pkcs7 encryption but I
get stuck.

I'am generating a public key with DH and transfer it at the OpenSession
call. I received the other public key as result and calculate the
shared secret. I'am hoping this part works. But now I have a 1024 bit
secret and doesn't know how to generate my 128 Bit AES key. I tried to
read your code but I doesn't understand the whole pkcs thing. With the
128 bit key and the IV in each message it should be possible to encrypt
the transferred secret. I'am hoping for some hint.

Apart from this problem I had some problems with dbus discovery. The
freedesktop.org spec[1] writes e.g. org.freedesktop.Secret.Collection as
interface name but you used Secrets with tailing 's' in the
introspection files. Is this a bug? The API works correct with Secret.

And why isn't the service introspectable with some tools as d-feed[2]?
This would make the development a little bit easier.

At last I want to say a big thank you for this great project. Even
apart from gnome I played very much with gnome-keyring. It's amazing
to manage ssh/gpg/X.509 certs/passwords with one nice tool.

Florian

[1]: http://freedesktop.org/wiki/Specifications/secret-storage-spec
[2]: http://live.gnome.org/DFeet/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
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=DbNT
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: gnome-keyring Secrets dbus api
  - From: Stef Walter

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]