Bug 85925 - RFE: SSH auth agent
Summary: RFE: SSH auth agent
Status: ASSIGNED
Alias: None
Product: Spice
Classification: Unclassified
Component: RFE (general) (show other bugs)
Version: unspecified
Hardware: Other All
: medium normal
Assignee: Spice Bug List
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2014-11-05 17:13 UTC by Marc-Andre Lureau
Modified: 2017-09-20 16:56 UTC (History)
1 user (show)

See Also:
i915 platform:
i915 features:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marc-Andre Lureau 2014-11-05 17:13:03 UTC
Forward ssh keys to the remote VM. It would be \o/

Thanks to SSH_AUTH_SOCK, it is possible to forward your credentials. The protocol is described in http://api.libssh.org/rfc/PROTOCOL.agent, so a new channel may just forward all this to the client, which may in turn implement an agent or forward it to an existing agent?
Comment 1 Fabiano Fidêncio 2015-09-10 22:51:46 UTC
(In reply to Marc-Andre Lureau from comment #0)
> Forward ssh keys to the remote VM. It would be \o/
> 
> Thanks to SSH_AUTH_SOCK, it is possible to forward your credentials. The
> protocol is described in http://api.libssh.org/rfc/PROTOCOL.agent, so a new
> channel may just forward all this to the client, which may in turn implement
> an agent or forward it to an existing agent?

A prototype has been done, but the integration with the DE is still far away to be ready.
Further discussions about the DE integration can be followed here: https://mail.gnome.org/archives/gnome-keyring-list/2015-September/msg00000.html

Also, this is one suggestion to solve this problem:
13:21 <  fidencio> elmarco: one option would be to have something like ssh-add --pipe /path/to/another_agent
13:22 <  fidencio> so, it would be expanding the ssh-agent protocol and having a DE agnostic solution
13:22 <  fidencio> it could be implemented in the gnome-keyring and in the openssh ...
13:22 <  fidencio> elmarco: does it still sound bad to you?

Links for further discussions and patches for libssh will be added here later.


Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct.