kwalletaskpass (1) - Linux Manuals

kwalletaskpass: kwallet-based pass-phrase dialog for use with OpenSSH

Command to display kwalletaskpass manual in Linux: $ man 1 kwalletaskpass

NAME

kwalletaskpass - kwallet-based pass-phrase dialog for use with OpenSSH

SYNOPSIS

[options ] label

DESCRIPTION

is a kwallet- and pinentry-based pass-phrase dialog for use with OpenSSH. It is intended to be called from the ssh-add1 programme and not invoked directly.

If a passphrase is requested, works by first looking up the passphrase in the KWallet by means of kwalletcli(1); using it if found, then calling kwalletcli_getpin1 to interactively retrieve an answer from the user via pinentry otherwise. If the user specifies a passphrase, kwalletcli_getpin1 is run again to ask if the passphrase should be stored in the KWallet. Negative answers will be stored in the KWallet to avoid being asked each time. uses the KWallet folders kwalletaskpass and kwalletaskpass-blacklist with matching entry names.

If anything other than a key passphrase is requested, it is merely relayed to kwalletcli_getpin1. Some requests are known to require a boolean answer and are relayed using the boolean query flag; all others are relayed using a PIN query. ssh(1) accepts either the literal word ``yes'' (case-insensitively matched) or an empty answer (both only when using the OK button) as confirmation.

There are currently no options.

RETURN VALUES

exits 0 on success, 1 if the user cancelled the dialogue, or >1 if an error occurred.

ENVIRONMENT

DISPLAY: The X11 display to use for child processes. If this is unset or empty, kwalletcli will not be called.
PINENTRY: The pinentry programme to use. The default is inherited from kwalletcli_getpin1.

AUTHORS

was written by An mirabilos Aq m@mirbsd.org mostly for tarent solutions GmbH. The idea came from an askpass.C file found somewhere on the 'net, with no author information. Since it was licenced less freely, this is a rewrite from scratch; modular and with more functionality, too.