Ancestors

Written by Morten Linderud on 2025-01-06 at 22:31

It's been a day and I still don't grok kernel keyring possession.

I'd like a garbage collected anonymouss keyring for my ssh-agent, but it for some reason I can't run add_key own the process keyring 🙃

=> More informations about this toot | More toots from Foxboron@chaos.social

Toot

Written by Morten Linderud on 2025-01-12 at 16:36

So for those interested, signal handling in Go makes the application loose possession of the session keyring.

So having all keyctl calls going through a goroutine pinned to an os thread solves the problem.

Keyring implementation: https://github.com/Foxboron/ssh-tpm-agent/pull/84/commits/785684f00aa3b6ad5a6f2006b00184d2bcd081d4

OS Thread pinned keyring implementation on top: https://github.com/Foxboron/ssh-tpm-agent/pull/84/commits/9654e1adb8b286e3fe01565a33c3b5c312082480

[#]Golang #Linux #Keyctl

=> More informations about this toot | More toots from Foxboron@chaos.social

Descendants

Proxy Information
Original URL
gemini://mastogem.picasoft.net/thread/113816356483468789
Status Code
Success (20)
Meta
text/gemini
Capsule Response Time
244.910454 milliseconds
Gemini-to-HTML Time
0.901644 milliseconds

This content has been proxied by September (ba2dc).