Skip to content
/ ssh-agent-client-rs Public

An ssh-agent client implementation in rust

License

Apache-2.0, MIT licenses found

Licenses found

Apache-2.0
LICENSE-APACHE
MIT
LICENSE-MIT
7 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

nresare/ssh-agent-client-rs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

53 Commits
.github/workflows
.github/workflows
 
 
examples
examples
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE-APACHE
LICENSE-APACHE
 
 
LICENSE-MIT
LICENSE-MIT
 
 
README.md
README.md
 
 

Repository files navigation

ssh-agent-client-rs

build crates.io

ssh-agent-client-rs is a pure rust client library for interacting with an ssh-agent using the protocol defined in draft-miller-ssh-agent-04

The aim with the design of this library is to provide an easy-to-use and well tested library that can be used to perform the most common tasks interacting with the ssh-agent. The API will always be synchronous, as that corresponds to most use cases, and unless I get very bored at some point, it will probably not be a complete implementation of the protocol. However, contributions are more than welcome.

It was inspired by russh-agent but the projects does not share any code. In particular this client only exposes a synchronous API which simplifies both the implementation and interface.

Implemented and tested features

This client implements the most of the features described in the protocol specification, including the ability to instruct an ssh-agent to

  • add identities, the term the specification uses for a key pair, given a private key
  • list identities
  • remove an identity given a specific public key
  • remove all identities
  • sign an arbitrary message

The following features have not yet been implemented

  • adding identities with constraints
  • the dedicated message to add smartcard keys using the SSH_AGENTC_ADD_SMARTCARD_KEY message. However, in practice at least resident type smartcard keys from a device implementing FIDO2 such as Yubikey series 5 is added using the regular message to add an identity, SSH_AGENTC_ADD_IDENTITY

Usage

The example code in examples should be pretty easy to follow. The basic idea is to create a Client instance and call its public methods to interact with the ssh-agent.

Windows support

Support for communicating with the openssh-ssh-agent shipped with Windows 11 is implemented using named pipes and the interprocess crate. To try the various example binaries, first set the SSH_AUTH_SOCK variable as follows:

> set SSH_AUTH_SOCK=\\.\pipe\openssh-ssh-agent
> cargo run --example list

If you are using the ssh-agent shipped with git for windows you might need to use the Unix socket emulation implementation available from https://github.com/bestia-dev/ssh-agent-client-rs-win-git-bash

License

Licensed under either of

Contribution

Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed as above, without any additional terms or conditions.

About

An ssh-agent client implementation in rust

Resources

Readme

License

Apache-2.0, MIT licenses found

Licenses found

Apache-2.0
LICENSE-APACHE
MIT
LICENSE-MIT
Activity

Stars

7 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases 7

Add support for sk-ecdsa keys Latest
Feb 27, 2024
+ 6 releases

Packages

No packages published

Languages