proposal : x/crypto/ssh/agent: agent interface with context #63949

35niavlys · 2023-11-05T10:58:16Z

ExtentendAgent is missing a Context on each method with probably a method to init the Context.

In order to implement https://www.openssh.com/agent-restrict.html, we need a goroutine shared variable, so a context for each managed socket. No way to extend the current agent interface so it's probably the time to create a fully new interface ?

type ContextAgent interface {
	InitContext(ctx context.Context) context.Context
	List(ctx context.Context) ([]*Key, error)
	Add(ctx context.Context, key AddedKey) error
	Remove(ctx context.Context, key ssh.PublicKey) error
	RemoveAll(ctx context.Context) error
	Lock(ctx context.Context, passphrase []byte) error
	Unlock(ctx context.Context, passphrase []byte) error
	Signers(ctx context.Context) ([]ssh.Signer, error)
	Sign(ctx context.Context, key ssh.PublicKey, data []byte, flags SignatureFlags) (*ssh.Signature, error)
	Extension(ctx context.Context, extensionType string, contents []byte) ([]byte, error)
}

full example with impl: golang/crypto@master...35niavlys:golang_crypto:add_constraints

The text was updated successfully, but these errors were encountered:

35niavlys changed the title ~~proposal : x/crypto/ssh/agent:~~ proposal : x/crypto/ssh/agent: agent interface with context Nov 5, 2023

mauri870 added Proposal Proposal-Crypto Proposal related to crypto packages or other security issues labels Nov 5, 2023

ianlancetaylor added this to the Proposal milestone Nov 15, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

proposal : x/crypto/ssh/agent: agent interface with context #63949

proposal : x/crypto/ssh/agent: agent interface with context #63949

35niavlys commented Nov 5, 2023 •

edited

proposal : x/crypto/ssh/agent: agent interface with context #63949

proposal : x/crypto/ssh/agent: agent interface with context #63949

Comments

35niavlys commented Nov 5, 2023 • edited

35niavlys commented Nov 5, 2023 •

edited