gnome-keyring spice ssh-agent forward

From: Fabiano Fidêncio <fabiano fidencio org>
To: gnome-keyring-list gnome org
Subject: gnome-keyring spice ssh-agent forward
Date: Thu, 10 Sep 2015 18:07:45 +0200

Howdy!

I've been working on a prototype that allows to do agent forward
between a guest, using SPICE, and a spice client
(remote-viewer/virt-viewer/spicy)
The whole idea is to have something similar to "ssh -A guest", but
integrated with the desktop environment.

As a proof of concept I wrote a standalone ssh-agent that _unlink_ the
current running agent in the guest machine and creates its socket in
the same path used by the old agent. It works as you can see in these
small demo videos:
https://fidencio.fedorapeople.org/ssh-agent-forward/

Now where the problem starts: doing this would break the desktop
integration with gnome-keyring (got as example gnome-keyring-daemon
--replace, that would overwrite my socket ...)

So, what would be the best approach to still have spice ssh-agent
working and do _not_ break gnome-keyring integration? How can it be
extended to others DEs (I really don't want a gnome specific solution
for this)?

For sure, what _must_ be implemented would be a way to talk to both
agents, the local one and the remote one, merging then the responses
and returning it to any application that talks to the agent. But how
to achieve this in a DE agnostic way?

These are the questions that I have and I am open to
suggestions/further discussions.

Best Regards,
-- 
Fabiano Fidêncio

Follow-Ups:
- Re: gnome-keyring spice ssh-agent forward
  - From: Stef Walter

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]