-
-
Notifications
You must be signed in to change notification settings - Fork 129
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Required to manually restart pcscd.service each boot #81
Comments
Hmm, do you have anything (like gpg-agent) that at boot takes a lock on the YubiKey? Restarting pcscd would release that lock |
hi @FiloSottile , I have the exact same problem. I can help debugging. |
Couple day ago i started not being able to use yubikey as ssh key and today decided to change from gpg to yubikey-agent (already uninstalled gpg) and i have this same issue. I'm no expert on this but i can provide more details to help figure out this (but i'll most likely need some advice how to gather said details :) ) |
This doesn't sound like something we can fix in yubikey-agent, sorry. Either something in the system is taking a lock with pcscd before yubikey-agent is, or—less likely—piv-go is failing to talk to pcscd. |
@rtmor did you find a solution? |
Unfortunately not. I originally had a solution using gpg prior to switching to yubikey-agent. Perhaps an issue carried over. I've since switched to FIDO2 resident keys for SSH with Yubikey (https://www.yubico.com/blog/github-now-supports-ssh-security-keys/). Good luck! |
The solution is to add |
For me this solution does not work :( |
Sorry for just coming across your response now. When I get a chance, I will see if this solution works for me. I have a feeling that flag might have already been defined within |
@peterge1998 I'm also on Fedora 37 now and it worked. I had the same issue of having to restart pcscd. |
Honestly i must say after being on 37 for a while, that i never needed to restart it manually (at the time of writing i was on 37 for about a day :P) |
I'm on main GNOME version, when I tested KDE I didn't have this problem, but GNOME has it no matter how I install it. |
I'm on Fedora 37 (GNOME) as well, I still have the same issue. |
I'm running into an issue of yubikey-agent/ssh-add -L failing to read the contents of the yubikey on each reboot, unless the pcscd.service is manually restarted. Not sure if this is an pcsc or yubikey-agent issue, however, there appears to be no errors thrown by pcscd.{service,socket}.
Installed yubikey-agent using the steps recommended for manual installation. Temporarily disabled SELinux, but the problem still persists.
systemctl restart pcscd.service
always solves the issue, so it's not a major issue, however, a bit frustrating. I've included some debugging info below. If there is anything else I could provide to help please let me know.The text was updated successfully, but these errors were encountered: