[Authentication] Application-specific keys
Paul Vojta
vojta at math.berkeley.edu
Sat Sep 18 13:22:48 PDT 2010
On Sat, Sep 18, 2010 at 08:43:17PM +0200, Michael Leupold wrote:
> Hi Anders,
>
> 2010/9/18 Anders Rundgren <anders.rundgren at telia.com>:
> > Anyway, I want to be able to provision a key and at the same time be able
> > to define what applications that have the right to use them. The
> > enforcement
> > must of course be the OS.
> >
> > My question is really only if you have thought about this and how you
> > identify
> > applications?
>
> Without having done this yet, it should be possible. If you have the
> PID of the calling process on D-Bus you should be able to get
> information about it using /proc (eg. the executable path). IIRC
> gnome-keyring does it like that but I currently can't find the code
> that does it.
>
> Regards,
> Michael
I believe it uses socket credentials on the keyring socket to handle that
sort of question.
This is in egg/egg-unix-credentials.c .
--Paul Vojta, vojta at math.berkeley.edu
More information about the Authentication
mailing list