Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

enable qvm-service gui-agent-virtual-input-device for Whonix-Workstation App Qubes by default #8534

Open
adrelanos opened this issue Sep 19, 2023 · 6 comments · May be fixed by QubesOS/qubes-gui-daemon#149
Open

enable qvm-service gui-agent-virtual-input-device for Whonix-Workstation App Qubes by default #8534

adrelanos opened this issue Sep 19, 2023 · 6 comments · May be fixed by QubesOS/qubes-gui-daemon#149
Labels
C: gui-virtualization C: Whonix This issue impacts Qubes-Whonix help wanted This issue will probably not get done in a timely fashion without help from community contributors. P: default Priority: default. Default priority for new issues, to be replaced given sufficient information. pr submitted A pull request has been submitted for this issue. T: enhancement Type: enhancement. A new feature that does not yet exist or improvement of existing functionality.

Comments

@adrelanos
Copy link
Member

Quote skyzzuu:

That PR was just approved by Qubes. Whenever the new gui agent arrives, it can be enabled in the whonix templates using the qvm-service gui-agent-virtual-input-device.

We should enable the qvm-service gui-agent-virtual-input-device by default using qubes-core-admin-addon-whonix?

related development notes on qubes-core-admin-addon-whonix:
Dev/Qubes - Whonix chapter qvm-tags in Whonix wiki

We could prepare a PR but not merge it yet to give manually testing enabling qvm-service gui-agent-virtual-input-device to see if kloak in Qubes time.

suggested timeline:

  1. The related PR Create virtual input device to allow the use of kloak qubes-gui-agent-linux#194 which makes this possible hitting Qubes testing (or stable) repository.
  2. Writing documentation and inviting testers to manually test qvm-service gui-agent-virtual-input-device this.
  3. Enabling qvm-service gui-agent-virtual-input-device by default for everybody for all Whonix-Workstation App Qubes.

The draft PR to enable qvm-service gui-agent-virtual-input-device by default in qubes-core-admin-addon-whonix could be contributed at any time.

related:
@adrelanos adrelanos added P: default Priority: default. Default priority for new issues, to be replaced given sufficient information. T: enhancement Type: enhancement. A new feature that does not yet exist or improvement of existing functionality. labels Sep 19, 2023
@andrewdavidwong andrewdavidwong added C: gui-virtualization C: Whonix This issue impacts Qubes-Whonix labels Sep 19, 2023
@DemiMarie
Copy link

I expect this to work well so long as there is only one window in the qube, but this may cause synchronization problems when there are multiple windows in the qube.

@skyzzuu
Copy link

skyzzuu commented Sep 20, 2023

I expect this to work well so long as there is only one window in the qube, but this may cause synchronization problems when there are multiple windows in the qube.

Within the handle_keypress function, it's split up into 2 separate sections, one that only ever writes to /dev/uinput and one that only ever writes to the xserver fd. The section that runs depends on whether virtual input device creation was requested or not.

Running a quick test of this with virtual input device creation requested within a qube with gnome-text-editor in 1 window, and gnome-terminal with nano running in another produces the following results on my device:

shift test:
start in gnome-text-editor
press and hold down shift
switch to nano while still holding shift
typing produces upper-case characters
release shift
switch back to gnome-text-editor
typing produces lower-case characters

caps-lock test:
start in gnome-text-editor
press down caps-lock
switch to nano with caps-lock still down
typing produces upper-case characters
press caps-lock again to disable
switch back to gnome-text-editor
typing produces lower-case characters

ctrl test:
start in gnome-text-editor
press and hold down ctrl
switch to nano and press s
nano writes out the current file
release ctrl
switch back to gnome-text editor
pressing s types out a lower-case s

I receive the same results when switching between windows in different qubes even if there are several windows opened in each one.

In this case since it should only be writing to uinput, modifier sync should happen independent of the current window. The other section of handle_keypress is the original handle_keypress function that runs when the qvm-service is not enabled.

There was an issue originally with modifier syncing when switching between qubes, but that was addressed by having the gui-agent remember the last known state of the modifier, and then sending either a key down or key up if there's a change in state, then updating the state in last_known_modifier_states.

@adrelanos
Copy link
Member Author

I expect this to work well so long as there is only one window in the qube, but this may cause synchronization problems when there are multiple windows in the qube.

If this is an issue it would be best to move it to a separate ticket. What you describe sounds very important. But the scope of this ticket is rather simple in comparison.

@DemiMarie

This comment was marked as off-topic.

Sign in to view
@marmarek
Copy link
Member

I’m not sure which ticket this should belong with.

Not this one. This one is about enabling the feature for Whonix VMs, not how the feature itself works.

@DemiMarie DemiMarie mentioned this issue Sep 21, 2023
Open
@adrelanos adrelanos mentioned this issue Sep 21, 2023
Open
@adrelanos
Copy link
Member Author

Since QubesOS/qubes-gui-agent-linux#194 was implemented, this ticket is now unblocked.

Anyone please feel free to help with this one.

//cc @skyzzuu

@andrewdavidwong andrewdavidwong added the help wanted This issue will probably not get done in a timely fashion without help from community contributors. label Sep 24, 2024
@ArrayBolt3 ArrayBolt3 linked a pull request Oct 1, 2024 that will close this issue
Open
@andrewdavidwong andrewdavidwong added the pr submitted A pull request has been submitted for this issue. label Oct 2, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
C: gui-virtualization C: Whonix This issue impacts Qubes-Whonix help wanted This issue will probably not get done in a timely fashion without help from community contributors. P: default Priority: default. Default priority for new issues, to be replaced given sufficient information. pr submitted A pull request has been submitted for this issue. T: enhancement Type: enhancement. A new feature that does not yet exist or improvement of existing functionality.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add event buffering for cloaking user input patterns ArrayBolt3/qubes-gui-daemon
5 participants
@marmarek @adrelanos @DemiMarie @andrewdavidwong @skyzzuu