HARDY: gnome-ssh-askpass does *not* grab keyboard or focus if contested with other apps
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ssh-askpass (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: gnome-keyring
This bug is not a bug about gnome-ssh-askpass simply failing to popup.
If another gnome app already has the locks that gnome-ssh-askpass is attempting to obtain, gnome-ssh-askpass will fail. And often as a bunk side effect it will destroy the IO of what ever other app previously had the locks. This is easy to see in any gnome application that utilizes full-screen for example gnome-terminal.
Steps to reproduce with a locked key:
* open gnome-terminal
* fullscreen it (f11)
* ssh to something
Type and you will see some characters (mainly whitespace) pass through to gnome-terminal.
gnome-ssh-askpass will never obtain focus over the gnome-terminal which is already running full-screen. It will however eat pty's IO.
*****You can not exit, without killing it from a non-x TTY.*****
This is exploitable in a very easy fashion using the following command
gnome-terminal --hide-menubar --full-screen -e "ssh host-with-passkey"
On the flip side can this agent easily be disabled, I'd prefer to explicitly opt-in to agent with ssh-add are there any disadvantages to yanking it