public inbox for cygwin@cygwin.com
 help / color / mirror / Atom feed
* ssh-agent variables available to any user process
@ 2006-08-30  1:44 Lapo Luchini
  0 siblings, 0 replies; 3+ messages in thread
From: Lapo Luchini @ 2006-08-30  1:44 UTC (permalink / raw)
  To: [ML] CygWin 

[-- Attachment #1: Type: text/plain, Size: 584 bytes --]

Under FreeBSD, I launch ssh-agent in my .xsession script and its
environment is automatically inherited by every shell I then open in my
X11 session.
No such luck with Windows, but I found a way to propagate a environment
variable to any (future) user process after the user is already logged.
(or, at the very least...) Works for me.

Variables will be then available on any shell and program opened after
the attached script is executed.
(put it in "Startup" menu in order to execute it at logon time)

-- 
Lapo Luchini
lapo@lapo.it (OpenPGP & X.509)
www.lapo.it (Jabber, ICQ, MSN)

[-- Attachment #2: ssh-agent.js --]
[-- Type: application/x-javascript, Size: 668 bytes --]

[-- Attachment #3: Type: text/plain, Size: 218 bytes --]

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

^ permalink raw reply	[flat|nested] 3+ messages in thread
* RE: ssh-agent variables available to any user process
@ 2006-08-30 13:40 Karl M
  0 siblings, 0 replies; 3+ messages in thread
From: Karl M @ 2006-08-30 13:40 UTC (permalink / raw)
  To: cygwin

[-- Attachment #1: Type: text/plain, Size: 2663 bytes --]

Hi All...

>From: Jörg Schaible Reply-To: To: "[ML] CygWin " Subject: RE: ssh-agent 
>variables available to any user process
>Date: Wed, 30 Aug 2006 08:02:46 +0200
>
>Lapo Luchini wrote on Wednesday, August 30, 2006 12:42 AM:
>
> > Under FreeBSD, I launch ssh-agent in my .xsession script and its
> > environment is automatically inherited by every shell I then
> > open in my
> > X11 session.
> > No such luck with Windows, but I found a way to propagate a
> > environment variable to any (future) user process after the user is
> > already logged.
> > (or, at the very least...) Works for me.
> >
> > Variables will be then available on any shell and program opened after
> > the attached script is executed.
> > (put it in "Startup" menu in order to execute it at logon time)
>
>I use a similar approach for years utilizing keychain. In my ~/.profile I 
>have following lines:

I do domething similar, but skip using keychain because it adds so much time 
to launching a bash shell window. I just use ssh-agent directly. Once you do 
all this work, keychain isn't doing much for you.
>
>====== %< =======
>if test -z "`pidof ssh-agent`"; then
>     keychain ~/.ssh/id_dsa
>     . ~/.keychain/`hostname`-sh
>     # Create batch files to be called from running shells
>     cat ~/.keychain/`hostname`-sh | sed -e "s/;.*$//g" | u2d > 
>~/.keychain/`hostname`-command.bat
>     # Set environment directly
>     regtool -s set /machine/SYSTEM/CurrentControlSet/Control/Session\ 
>Manager/Environment/SSH_AUTH_SOCK $SSH_AUTH_SOCK
>     regtool -s set /machine/SYSTEM/CurrentControlSet/Control/Session\ 
>Manager/Environment/SSH_AGENT_PID $SSH_AGENT_PID
>     # Broadcast of WM_SETTINGCHANGE
>     update-env
>else
>     . ~/.keychain/`hostname`-sh
>fi
>====== %< =======
>
>And update-env.c is:
>
>====== %< =======
>#include <windows.h>
>int main() {
>     SendMessage(HWND_BROADCAST, WM_SETTINGCHANGE, 0, 
>(LPARAM)"Environment");
>}
>====== %< =======
>
>build with Makefile:
>
>====== %< =======
>all: update-env.exe
>
>%.exe: %.c
>	gcc -mno-cygwin $^ -o $*
>	strip $@
>====== %< =======
I use

ssh-add -l >/dev/null 2>&1
if [ $? -eq 1 ]; then
  ssh-add
fi

in my profile and I launch ssh-agent from a service(one service for each 
user), so it survives logout on windows. The service and service installer 
bash scripts are attached.

I've considered supporting this as a package, but have not seen much 
interest.
>
>I never found a way to broadcast the WM_SETTINGCHANGE directly form the 
>script without the little helper app.
Neither did I. My helper application sendchenv.exe, but the same as 
update-env.exe. My source is also attached.

HTH,

...Karl


[-- Attachment #2: secret-agent-service-install --]
[-- Type: text/plain, Size: 684 bytes --]

#!/bin/bash
# secret-agent-service-install service-name user-name

if [ "~$1" = "~" ]; then
  echo A service name is required.
  exit 1
fi

if [ "~$2" = "~" ]; then
  echo A user name is required.
  exit 1
fi

echo Uninstalling the secret-agent service, $1.
cygrunsrv --remove $1

echo Adding the \"Log on as a Service\" right for $2.
editrights -a SeServiceLogonRight -u $2

echo Installing the secret-agent service, $1.
cygrunsrv --install $1 \
  --args '/bin/secret-agent-service' \
  --disp "Secret Agent $2" \
  --desc "Creates an ssh-agent process for $2." \
  --path '/bin/bash' \
  --shutdown \
  --user "$2"

echo Starting the secret-agent service, $1.
cygrunsrv --start $1


[-- Attachment #3: secret-agent-service --]
[-- Type: text/plain, Size: 782 bytes --]

#!/bin/bash
# Launch the ssh-agent from a service so it survives logoff.

# When the service stops, kill the ssh-agent.
trap "ssh-agent -k;
  exit 0" TERM

# Clean up old files that may be left behind after a crash.
#   The file permissions make this safe to do in a multi-user
#   environment, but "/tmp" must be local to this host.
rm -rf /tmp/ssh-*

# Launch the ssh-agent.
eval $(ssh-agent)

# Provide the ssh-agent socket ID via the registry and broadcast
#   the change in case the user is logged before we finish.
#   Do not provide the ssh-agent PID to minimize the risk of
#   killing the ssh-agent.
regtool -s set /HKEY_CURRENT_USER/Environment/SSH_AUTH_SOCK $SSH_AUTH_SOCK
sendchenv

# Wait quietly until the service is stopped.
while true; do
  sleep 24h &
  wait
done


[-- Attachment #4: sendchenv.c --]
[-- Type: text/plain, Size: 299 bytes --]

// Notify all windows that environment variables may have changed.

#include <windows.h>

int main()
{
  DWORD dwReturnValue;

  if (SendMessageTimeout(HWND_BROADCAST, WM_SETTINGCHANGE, 0,
      (LPARAM) "Environment", SMTO_ABORTIFHUNG, 5000, &dwReturnValue))
    return 0;
  else
    return 1;
}



[-- Attachment #5: Type: text/plain, Size: 218 bytes --]

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

^ permalink raw reply	[flat|nested] 3+ messages in thread
* RE: ssh-agent variables available to any user process
@ 2006-08-30  9:11 Jörg Schaible
  0 siblings, 0 replies; 3+ messages in thread
From: Jörg Schaible @ 2006-08-30  9:11 UTC (permalink / raw)
  To: [ML] CygWin 

Lapo Luchini wrote on Wednesday, August 30, 2006 12:42 AM:

> Under FreeBSD, I launch ssh-agent in my .xsession script and its
> environment is automatically inherited by every shell I then
> open in my
> X11 session.
> No such luck with Windows, but I found a way to propagate a
> environment variable to any (future) user process after the user is
> already logged.
> (or, at the very least...) Works for me.
> 
> Variables will be then available on any shell and program opened after
> the attached script is executed.
> (put it in "Startup" menu in order to execute it at logon time)

I use a similar approach for years utilizing keychain. In my ~/.profile I have following lines:

====== %< =======
if test -z "`pidof ssh-agent`"; then
    keychain ~/.ssh/id_dsa
    . ~/.keychain/`hostname`-sh
    # Create batch files to be called from running shells
    cat ~/.keychain/`hostname`-sh | sed -e "s/;.*$//g" | u2d > ~/.keychain/`hostname`-command.bat
    # Set environment directly
    regtool -s set /machine/SYSTEM/CurrentControlSet/Control/Session\ Manager/Environment/SSH_AUTH_SOCK $SSH_AUTH_SOCK
    regtool -s set /machine/SYSTEM/CurrentControlSet/Control/Session\ Manager/Environment/SSH_AGENT_PID $SSH_AGENT_PID
    # Broadcast of WM_SETTINGCHANGE
    update-env
else
    . ~/.keychain/`hostname`-sh
fi
====== %< =======

And update-env.c is:

====== %< =======
#include <windows.h>
int main() {
    SendMessage(HWND_BROADCAST, WM_SETTINGCHANGE, 0, (LPARAM)"Environment");
}
====== %< =======

build with Makefile:

====== %< =======
all: update-env.exe

%.exe: %.c
	gcc -mno-cygwin $^ -o $*
	strip $@
====== %< =======

I never found a way to broadcast the WM_SETTINGCHANGE directly form the script without the little helper app.

- Jörg

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2006-08-30 12:13 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2006-08-30  1:44 ssh-agent variables available to any user process Lapo Luchini
2006-08-30  9:11 Jörg Schaible
2006-08-30 13:40 Karl M

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).